Security Directory

LG Electronics U.S.A., Inc. operates the website lghvac.com, providing comprehensive HVAC solutions for commercial and residential markets. The company is a recognized leader in the HVAC industry with a strong brand presence and a wide range of products including advanced VRF systems and smart connectivity options. The website targets HVAC professionals, dealers, and homeowners, offering product information, dealer programs, training, and resources. Technically, the site uses modern frameworks such as Angular and Bootstrap, with extensive integration of analytics and advertising technologies. Security posture is adequate with HTTPS and domain protections, but lacks visible security headers and explicit security policies. Privacy compliance is minimal with no clear privacy or cookie policies on the main site. Overall, the site is professional and trustworthy, with room for improvement in privacy and security transparency.

I

Intelligent Membranes

intelligentmembranes.co.uk

0

Intelligent Membranes is a specialized manufacturer and retailer of high-performance liquid-applied membranes designed for airtightness, waterproofing, and protective coatings in the construction industry. The company holds a strong market position in the UK, Europe, and USA, supported by certifications such as BBA and Passivhaus. Their product portfolio includes airtight paints, vapour control membranes, fire retardant coatings, and asbestos encapsulation solutions, targeting construction professionals and retrofit specialists. Technically, the website is built on WordPress with WooCommerce, leveraging modern marketing and analytics tools like Google Analytics, Microsoft Clarity, and Klaviyo. The site is well-optimized for mobile and provides a good user experience with clear navigation and professional content. Security posture is solid with HTTPS and reCAPTCHA usage, though it lacks some advanced security headers and a published security.txt file. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy page found. WHOIS data is missing or unavailable, which raises concerns about domain registration transparency. Overall, the website is professional and trustworthy but would benefit from improved transparency and security disclosures.

I

IKON Windows & Doors

ikonwindows.com

0

IKON Windows & Doors is a company specializing in manufacturing and supplying high-performance windows, doors, and facade solutions primarily targeting the North American market. Their website presents a professional and modern digital presence built on WordPress, featuring structured data and SEO optimizations. The company offers a portfolio of products including aluminum, steel, wood-clad, and UPVC windows and doors, catering to both residential and commercial sectors. Technically, the website employs common industry-standard plugins and tracking tools such as Google Analytics and Facebook Pixel, ensuring moderate digital maturity. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and formal privacy and cookie policies indicates room for improvement. The lack of WHOIS data raises concerns about domain legitimacy, which impacts overall trustworthiness. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and cookie policies, and establishing clear incident response contacts to improve compliance and trust.

FAKRO America, LLC. operates a professional website focused on manufacturing and retailing skylights, roof windows, attic ladders, and balcony windows. The company positions itself as a fast-growing leader in its niche market, targeting construction professionals, architects, and end customers. The website content is well-structured, with clear navigation and a consistent brand presence supported by active social media channels and a media center. Technical infrastructure relies on established JavaScript libraries and Google Analytics for user tracking, with a CMS identified as WebKameleon. The site is mobile optimized and performs moderately well. From a security perspective, the website uses HTTPS with anonymized IP tracking in Google Analytics and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers are not detected, and no dedicated security or incident response policies are published, indicating room for improvement in security posture. The absence of WHOIS data is a notable anomaly, reducing trust slightly despite the professional presentation and contact transparency. Overall, the website demonstrates a solid digital presence with good privacy compliance and business credibility. The main risks relate to missing WHOIS transparency and potential security header gaps. Strategic improvements in these areas would enhance trust and security maturity.

European Architectural Supply, Inc. is a specialized supplier of high-performance European windows and doors, focusing on energy-efficient building projects such as Passive House and Net Zero Energy constructions. The company has been operating since 2003 and positions itself as a premier North American provider with a strong emphasis on custom craftsmanship and collaboration with architects and contractors. Their product offerings include custom wood, aluminum, and uPVC windows and doors with advanced energy performance features. Technically, the website uses basic HTML, CSS, and JavaScript with an outdated jQuery version and Google Analytics for tracking. The site is hosted behind Cloudflare DNS but lacks modern security headers and cookie consent mechanisms. Performance and mobile optimization are basic, and SEO is minimally addressed through meta keywords and descriptions. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and visible security policies. No privacy or cookie policies are present, and no incident response or vulnerability disclosure information is provided. The WHOIS data indicates a legitimate, long-standing domain registration consistent with the business claims, enhancing trustworthiness. Overall, the website is functional and professional but would benefit from improved privacy compliance, updated technical stack, and enhanced security practices to better protect users and align with modern standards.

C

Cascadia Windows & Doors

cascadiawindows.com

0

Cascadia Windows & Doors is a specialized manufacturer of high-performance fiberglass windows, window walls, and doors designed primarily for commercial and residential construction markets. The company positions itself as an innovator in energy-efficient fenestration solutions, leveraging proprietary fiberglass technology to deliver superior thermal performance and durability. Their website reflects a mature digital presence with rich multimedia content, client testimonials, and detailed product information targeting architects, builders, and developers. Technically, the website is built on Smallbox CMS and integrates modern analytics tools such as Google Analytics and Google Tag Manager. The site is mobile-optimized and well-structured, providing a positive user experience. However, some technical improvements are recommended, including the implementation of security headers and enhanced privacy compliance features. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. The absence of visible security headers and privacy/cookie policies indicates room for improvement in security posture and regulatory compliance. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration transparency and trustworthiness. Overall, the website is professional and trustworthy from a content and business perspective but would benefit from enhanced security practices and clearer privacy disclosures to improve compliance and user trust.

B

BEWISO GmbH

bewiso.eu

0

BEWISO GmbH is an Austrian manufacturer specializing in premium window solutions, entrance doors, and custom stairs and railings, blending traditional craftsmanship with modern technology. The company targets architects, homeowners, and builders seeking high-quality, energy-efficient, and aesthetically pleasing building components. Their market position is niche, focusing on bespoke and passive house-certified products made in Austria. The website is currently an interim landing page announcing a full launch in June 2025, featuring professional design, customer testimonials, and multimedia content. Technically, the site is built on WordPress with Elementor and integrates Google Analytics with consent mode to respect EU privacy regulations. Security posture is good with HTTPS enforced, but lacks some security headers and visible privacy documentation. Overall, the site is professional and trustworthy with room for improvement in privacy compliance and security best practices.

Z

Zola

zolawindows.com

0

Zola is a medium-sized company specializing in the design, manufacture, and supply of high-performance European-style windows and doors, primarily serving the North American market. Their product range includes clad wood, aluminum, uPVC, and wood frames with various configurations such as tilt & turn, fixed, and folding walls. The company positions itself as a leader in Passive House certified windows, emphasizing architectural freedom, comfort, and energy efficiency. The website is professionally designed, content-rich, and targets architects, builders, and homeowners seeking premium window solutions. Technically, the website is built on the Webflow platform, leveraging modern web technologies and multiple analytics and marketing tools including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Bing UET. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for compliance and user trust. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional online presence. No contact emails or phone numbers are explicitly provided on the site, limiting direct communication channels. Social media presence is confirmed on Instagram and Facebook. Overall, the site demonstrates a solid business and technical foundation but requires enhancements in privacy compliance, security best practices, and transparency to improve trust and regulatory adherence.

R

Rockwool A/S

rockwool.com

0

Rockwool A/S is a well-established enterprise specializing in stone wool insulation products, a critical component in fire-resilient and energy-efficient buildings. Founded in 1909 and headquartered in Denmark, the company targets construction professionals and end users seeking high-quality insulation solutions. The website reflects a mature digital presence with comprehensive content, consistent branding, and clear business messaging. Technically, the site employs modern web technologies including JavaScript frameworks, marketing automation via Marketo, and cookie management through Cookiebot, ensuring a responsive and performant user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security headers and a public security policy page suggests room for improvement. The lack of WHOIS data for the domain introduces some uncertainty, but the overall professionalism and trust indicators mitigate this concern. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

P

Partel

partel.com

0

Partel is a specialized supplier of high performance passive house building supplies, targeting markets in the USA, Ireland, UK, and Europe. The company offers a range of products including membranes, tapes, adhesives, and thermal bridging solutions, supported by technical services such as onsite inspections, WUFI analysis, and training. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations with analytics and marketing tools. The digital infrastructure is professionally implemented with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is basic but present, with privacy and cookie policies and consent mechanisms. WHOIS data is unavailable, which slightly reduces trust but the overall professional presentation and multiple trust signals support legitimacy. Strategic recommendations include enhancing security headers, maintaining third-party script audits, and publishing a visible security policy.

Ingui Architecture is an established architectural firm specializing in sustainable and timeless design for residential, institutional, and commercial projects. With over 45 years of experience, the firm positions itself as an award-winning leader in its sector. The website reflects a professional and consistent brand image, targeting clients seeking high-quality architectural services. Technically, the site uses modern frontend technologies such as Tailwind CSS and Alpine.js, with analytics powered by Fathom and Cloudflare Insights. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security headers and privacy policies. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, though the website content and social media presence support the firm's credibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and domain registration transparency.

4

475 High Performance Building Supply

475.supply

0

475 High Performance Building Supply operates a professional e-commerce platform specializing in high quality building envelope solutions. The company combines product sales with educational resources and training to support building professionals and contractors. Their market position is niche but well established within the construction and building supply industry. The website is built on Shopify, leveraging modern web technologies and optimized for performance and accessibility. Security posture is strong with HTTPS, security headers, and secure forms, though no explicit security policy or incident response page was found. Privacy compliance is good with clear privacy and cookie policies and GDPR indicators. Overall, the site presents a trustworthy and professional digital presence with moderate business credibility and technical maturity.

The website www.ny.gov is the official online portal for the State of New York government, intended to provide residents and visitors with access to government information and public services. However, the current accessible content is limited to a Cloudflare Turnstile human verification challenge page, preventing full content analysis. The site leverages Cloudflare for security and performance, indicating a mature technical infrastructure focused on protecting against automated abuse. Due to the WAF challenge, no direct contact information, privacy policies, or business details are accessible, limiting the ability to fully assess compliance and security posture. The WHOIS data is incomplete, lacking registrar and nameserver information, but the .gov TLD and branding strongly suggest legitimacy as a government entity. Overall, the site demonstrates a high-security posture through access controls but requires bypassing the WAF to conduct a comprehensive evaluation.

S

Spreadshirt

spreadshirt.com

0

Spreadshirt operates a global print-on-demand e-commerce platform specializing in custom apparel, accessories, and home products. The website offers users the ability to create personalized products or shop from a wide range of designs. It targets a broad audience interested in unique, customizable merchandise and serves both individual consumers and corporate clients through its Pro services. The platform is well-established with a consistent brand presence and a comprehensive online help center to support customers. Technically, the website employs modern JavaScript frameworks and libraries such as Glide.js for UI components and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with integrations for analytics and marketing tools like Adobe AppMeasurement and Trustpilot. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS registration data for the domain is a notable anomaly, potentially due to privacy protection or alternative domain registration, which slightly impacts trustworthiness. Overall, Spreadshirt's website is professional, secure, and privacy-compliant, with strong business credibility. Strategic improvements in security transparency and domain registration clarity would enhance trust and compliance posture.

R

Reimagine Buildings Collective

reimaginebuildings.com

0

The Reimagine Buildings Collective is a specialized online community platform that connects builders, designers, and changemakers focused on creating healthy, climate-ready buildings. The platform offers peer-to-peer learning, collaborative cohorts called Reimagine Labs, and a rich repository of member stories and testimonials. It targets professionals dedicated to sustainable building practices and aims to foster connection, clarity, and confidence among its members. Technically, the website leverages modern web technologies including HTML5, CSS3, JavaScript, and video streaming via Cloudflare, hosted on the Mighty Networks platform. Analytics and tracking are implemented through Google Analytics, Bing UET, and TrackJS, indicating a moderate level of user behavior monitoring. Security posture is generally good with HTTPS enforced and CSRF protections, but lacks some recommended security headers and visible privacy or cookie policies, which are areas for improvement. The domain WHOIS data for the subdomain is unavailable, which is typical for subdomains, and does not detract from the legitimacy of the platform. Overall, the website is professional, trustworthy, and well-positioned within its niche, though it would benefit from enhanced privacy disclosures and security headers to improve compliance and security posture.

D

Domaining

domaining.com

0

Domaining.com is a specialized online portal focused on the domain name industry, providing news, market reports, auction recaps, and domain investment tips. The site aggregates content from multiple domain industry sources and offers tools for domain due diligence. It targets domain investors and professionals interested in domain market trends. Technically, the site uses Bootstrap 3 and jQuery, with Google Analytics for tracking. The website is accessible, uses HTTPS, and has a basic privacy policy but lacks cookie consent and terms of service pages. Security posture is moderate with no evident vulnerabilities but missing security headers and incident response information. WHOIS data is unavailable, which raises concerns about domain registration legitimacy. Overall, the site is functional and relevant for its niche audience but would benefit from improved compliance and transparency.

The website www.namepros.com is currently inaccessible due to a Cloudflare Turnstile human verification challenge page. This security mechanism blocks direct access to the site's content, preventing extraction of business, contact, or policy information. The WHOIS query for the domain returned no match, indicating either privacy protection, a subdomain usage, or a non-registered domain at the registry level. The site is protected and hosted behind Cloudflare, which provides security and performance services. Due to the lack of accessible content and WHOIS data, a comprehensive business and security posture assessment cannot be performed. The site appears to be a legitimate domain but requires removal of access restrictions for full analysis.

Macquarie Bank Limited operates a comprehensive Australian banking website offering a wide range of personal and business financial services including everyday banking, home loans, investing, and private banking. The site is well-branded and professionally designed, targeting Australian banking customers with clear navigation and extensive product information. The business is positioned as a large, established financial institution under the Macquarie Group umbrella. Technically, the website leverages Adobe Experience Manager CMS and integrates multiple modern analytics and marketing tools such as Google Tag Manager, Crazy Egg, and Facebook Pixel, indicating a mature digital infrastructure. The site is mobile-optimized and accessible with good SEO practices. Security posture is strong with HTTPS enforced and promotion of multi-factor authentication, though explicit security headers and policies could be more visible. WHOIS data is privacy protected, which is typical for financial institutions, but limits transparency. Overall, the website is trustworthy, professional, and secure with minor areas for improvement in security disclosures and contact information visibility.

M

Macquarie Group Limited

macquarie.com

0

Macquarie Group Limited is a global financial services organisation with Australian heritage, operating in 31 markets. The company provides diversified financial services including asset management, banking, advisory, and risk and capital solutions across various sectors such as debt, equity, and commodities. The website reflects a mature, enterprise-level business with a strong market position and a comprehensive service offering targeting corporate clients, investors, and financial professionals. Technically, the website is built on Adobe Experience Manager CMS with modern technologies like React and includes robust consent management via OneTrust and analytics through Google Tag Manager. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and public security policies could be improved. The WHOIS data is unavailable, which is unusual but does not detract from the site's legitimacy given the strong branding and content. Overall, the site is professional, secure, and compliant with privacy regulations.

L

Look Engineering

look.tech

0

Look Engineering is a small, VC-backed consumer software startup focused on delivering high-quality software products without compromise. The company presents itself as a small team of multi-talented individuals currently working on a project named Abode. The website is minimalistic, with basic content and branding consistent with a startup in early stages. The technical infrastructure is modern, leveraging React and Next.js frameworks and hosted on Vercel, indicating a contemporary approach to web development. However, the website lacks comprehensive privacy, cookie, and security policies, and does not provide contact information or forms for user engagement. Security posture is minimal with no detected security headers or incident response information. Overall, the site is functional but basic, with room for significant improvements in compliance and security transparency.

B

Boutique Homes

boutique-homes.com

0

Boutique Homes is a specialized vacation rental platform offering hand-picked homes and small hotels with a focus on design and quality. Established in 2009, it targets affluent travelers seeking unique and stylish accommodations across popular global destinations. The website is built on modern technologies including React and Next.js, hosted on DigitalOcean with Cloudflare DNS, and integrates analytics and marketing tools such as Hotjar, Google Tag Manager, and Intercom. Security posture is strong with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and privacy policies are missing from the visible content. Overall, the platform demonstrates a mature digital presence with excellent design and user experience but lacks some privacy and security disclosures.

E

eBay Inc.

ebay.com

0

eBay Inc. operates a leading global e-commerce platform facilitating consumer-to-consumer and business-to-consumer sales worldwide. Founded in 1995, it has established a strong market position with a multibillion-dollar business and operations in approximately 30 countries. The website offers a wide range of products including electronics, cars, fashion, collectibles, and more, targeting a broad audience of consumers and businesses. The business model centers on providing an online marketplace where buyers can shop for free while sellers pay listing and transaction fees. Technically, the website employs modern web technologies such as Marko.js, lazy loading, and extensive JavaScript for dynamic content and performance optimization. The site is well-optimized for mobile devices, accessible, and SEO-friendly. Security is robust with HTTPS enforced, multiple security headers, and client-side error monitoring. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with GDPR adherence and a consent mechanism. The security posture is mature, with no evident vulnerabilities or exposed sensitive data. However, explicit security policies, incident response details, and vulnerability disclosure programs are not publicly documented on the site. The WHOIS data is unavailable due to registry restrictions, which is unusual but likely a privacy measure rather than a red flag. Overall, the site demonstrates high professionalism, trustworthiness, and operational maturity. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure program, and enhancing transparency around data protection officers and certifications to further strengthen trust and compliance.

D

drinkdirect.ch / Diwisa AG

trojka.ch

0

drinkdirect.ch operates as a specialized e-commerce platform focused on alcoholic beverages, prominently featuring the Trojka Vodka brand. The company, Diwisa AG, has a strong market presence in Switzerland, offering a wide range of spirits and mixer products with an emphasis on ease of use and variety. The website is professionally designed, mobile-optimized, and integrates multiple marketing and analytics tools to enhance user engagement and sales. Technically, the site uses modern e-commerce frameworks and maintains good security practices including HTTPS and security headers. However, explicit security policies and incident response information are not publicly available, which could be improved to enhance trust. Overall, the platform is mature, trustworthy, and well-positioned in its niche.

The website www.leejaemin.net is a professionally designed portfolio site for Jaemin Lee, showcasing a wide range of creative works including design projects, exhibitions, and writing. The site targets a general audience interested in art and design, primarily in South Korea, and is bilingual in Korean and English. The business model is focused on personal branding and promotion of creative services. Technically, the site is built on WordPress with Elementor and uses modern JavaScript libraries such as jQuery and egjs-jquery-transform. SEO is enhanced by the Yoast SEO plugin, and the site is served over HTTPS, ensuring secure connections. However, there is no evidence of privacy or cookie policies, which impacts compliance and user trust. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of security headers is a gap. The WHOIS data is missing or inaccessible, which raises questions about domain registration legitimacy despite the active and professional website presence. Overall, the site is functional and professional but would benefit from improved privacy compliance and clearer domain registration transparency.

W

Wyss Sebastian

wyssseb.ch

0

Wyss Sebastian's website is a personal WordPress blog hosted on a standard WordPress platform using the Twenty Twenty-Five theme. The site currently contains minimal content, with no published blog posts or business-related information. The technical infrastructure is modern and secure, utilizing HTTPS and standard WordPress technologies, but lacks advanced SEO, accessibility, and security headers. There are no privacy or cookie policies, nor any contact or incident response information, which limits compliance and trustworthiness. Overall, the site is safe and suitable for general audiences but lacks professional business features and security maturity.

M

Megi Zumstein

megizumstein.ch

0

Megi Zumstein is a graphic designer based in Luzern, Switzerland, presenting a professional portfolio website showcasing various cultural and artistic projects. The website targets a general audience interested in graphic design and cultural collaborations, positioning itself as a niche individual professional service provider. The site features modern frontend technologies such as Alpine.js and SVG graphics, with a responsive design and good navigation clarity. However, it lacks comprehensive privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. Technically, the website is built with modern web standards, uses HTTPS, and loads efficiently, but it could benefit from improved accessibility features and security best practices such as implementing security headers. No analytics or tracking scripts were detected, indicating minimal user tracking and good privacy from that perspective. From a security standpoint, the site has a good SSL configuration but lacks security headers and formal policies related to privacy and incident response. The domain uses privacy protection for WHOIS data, which is reasonable for a small business or individual professional. No suspicious patterns or vulnerabilities were identified in the content or technical setup. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, security hardening, and clearer contact information to improve trust and regulatory adherence.

The website lychkovskiy.com serves as a professional portfolio for Mikhail Lychkovskiy, a contemporary designer and poster artist. The site showcases a comprehensive gallery of poster artworks, emphasizing typographic treatment and a blend of national graphic styles. The business operates primarily as an independent artist, targeting design enthusiasts and art collectors, with sales facilitated through external shop links. The domain is relatively new, registered in 2022, aligning with the artist's career timeline. Technically, the website is built on the Adobe Portfolio platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and Adobe Typekit fonts. Google Tag Manager is employed for analytics and tracking purposes. The site demonstrates good mobile optimization and user experience, with clear navigation and professional design quality. However, accessibility features are basic, and SEO optimization is moderate. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, DNSSEC is not enabled, and no security headers were detected, indicating room for improvement in security hardening. Privacy compliance is lacking, with no privacy or cookie policies found, and no GDPR compliance indicators present. Contact information is limited to a single email address, with no phone numbers or physical addresses provided. Overall, the website presents a trustworthy and professional portfolio for an independent artist but would benefit from enhanced privacy policies, security headers, and clearer compliance documentation to improve its security posture and regulatory adherence.

V

virgileflores.com

virgileflores.com

0

The website virgileflores.com represents a creative bureau specializing in fashion, art, and music. It targets creative professionals and clients seeking artistic and fashion-related services. The business model is that of a niche creative agency with a small scale and focused market position. The website is built using the Framer platform and hosted on Framer's infrastructure, indicating a modern but simple technical setup. The site design is professional and visually appealing, with good mobile optimization and basic accessibility features. However, the site lacks comprehensive privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is minimal with no detected security headers or advanced protections, and WHOIS data is missing, raising concerns about domain legitimacy. Overall, the site is functional and professional but requires improvements in security, compliance, and business transparency to enhance trust and reduce risk.

Alex Dujet Type System Corp is a specialized graphic and type design studio based in Geneva, Switzerland, founded in 2015. The company focuses on visual communication, editorial, and type design, collaborating with a network of design professionals and co-founding the Swiss type foundry Extraset. The website serves as a portfolio showcasing extensive design projects and exhibitions, targeting graphic designers and related professionals. Technically, the site is built with standard web technologies including HTML5, CSS3, JavaScript, and jQuery, hosted on Infomaniak servers. While the site is content-rich and professionally designed, it lacks modern privacy and security compliance features such as privacy and cookie policies, security headers, and DNSSEC. The domain registration is consistent with the business claims, supporting legitimacy. Overall, the website demonstrates good business credibility but has room for improvement in security and privacy compliance.

The website represents zoty中欧·(中国有限公司), an entity positioned as an entertainment gaming platform combined with educational and research activities in China. The site offers news, academic events, organizational information, and various educational resources, targeting a general audience interested in technology and education. The business model appears to blend entertainment services with academic and research functions, positioning itself as a notable player in its niche. Technically, the website is built using Visual SiteBuilder 9 CMS and employs common JavaScript libraries such as jQuery and SuperSlide for UI effects. It integrates third-party analytics from 51.la and includes multiple external scripts, some from less-known domains. The site shows moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. From a security perspective, the site lacks HTTPS enforcement and security headers, exposing it to potential risks. No privacy or cookie policies are present, and WHOIS data is unavailable, raising concerns about domain legitimacy. The absence of contact emails and limited security best practices further reduce trustworthiness. Overall, the website is functional with relevant content but exhibits significant security and compliance gaps. Strategic improvements in HTTPS deployment, privacy compliance, and domain registration transparency are recommended to enhance trust and security.

N

Neo Neo

neoneo.ch

0

Neo Neo is a Swiss-based graphic design studio specializing in creative services including graphic design, type design, curating, and publishing. The website serves as a comprehensive portfolio showcasing projects from 2010 through 2024, highlighting a strong presence in cultural and artistic sectors. The business targets a general audience interested in high-quality graphic design and cultural projects. Technically, the website is built on WordPress with Yoast SEO plugin, indicating a moderate level of digital maturity and SEO awareness. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

S

Studio Guillaume Ruiz

guillaumeruiz.com

0

Studio Guillaume Ruiz is a small artistic and graphic design studio based in France, operating since 2011. The website serves as a portfolio showcasing a multidisciplinary range of projects including posters, workshops, editions, visual identities, interfaces, and signage. The business targets a general audience interested in creative design services and artistic direction. Technically, the website is built on WordPress and uses common libraries such as jQuery, Masonry, and Plyr, hosted by OVH sas. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility is basic. Security posture is moderate with HTTPS enabled and domain protections in place, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, and no contact or incident response information is provided, which impacts compliance and trust. Overall, the website is professional and functional but could improve in privacy and security transparency.

O

Office for Typography

officefortypography.ch

0

Office for Typography is a small, specialized design studio focusing on graphic design, type design, and font engineering with physical offices in Switzerland and Japan. The website presents a clean, minimalistic design that clearly communicates the company's core services and contact information. The business targets clients in need of professional typography and graphic design services, positioning itself as a niche player with an international footprint. Technically, the website is built with standard HTML5 and CSS3, without detectable CMS or advanced frameworks. The site is mobile-optimized and performs moderately well, though lacks advanced SEO and accessibility features. No analytics or tracking technologies are present, indicating a privacy-conscious approach or minimal digital marketing. From a security perspective, the site uses HTTPS (assumed from domain), but no security headers or policies are published. There are no forms or data collection points, reducing attack surface, but also no published privacy or cookie policies, which is a compliance gap. The WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the website is professional and trustworthy but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

Elias Hanzer is a small independent creative studio and typeface designer with a portfolio showcasing various typeface projects and collaborations. The website serves as a professional portfolio and project showcase targeting design professionals and typography enthusiasts. The technical infrastructure is based on WordPress with a modern theme and uses Matomo for analytics, indicating a moderate level of digital maturity. Mobile optimization and user experience are good, though some SEO and accessibility features could be improved. Security posture is adequate with HTTPS enabled and domain transfer lock, but lacks DNSSEC and security headers. Privacy compliance is basic with a privacy policy linked externally but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained but could benefit from enhanced security and privacy features.

L

Lisa Edi

lisaedi.com

0

Lisa Edi is a professional photographer based in Vienna, Austria, specializing in fashion, portrait, and still life photography. The website showcases a rich portfolio of artistic works and provides comprehensive contact and business information. The business operates a small-scale creative service model with additional print sales. Technically, the website is built on Craft CMS and uses modern JavaScript libraries, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protection, though DNSSEC and security headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the website presents a trustworthy and professional digital presence.

P

Paul Jochum

pauljochum.com

0

Paul Jochum's website serves as a professional portfolio showcasing his expertise in designing and developing visual identities for brands, institutions, and cultural projects. The site emphasizes a blend of graphic design, web design, and development to deliver cohesive branding systems with a focus on clarity and narrative. The business operates as a small-scale creative professional targeting niche clients in the cultural and institutional sectors. Technically, the website is built using the Framer platform, leveraging modern JavaScript and SVG technologies, with moderate performance and good mobile optimization. However, the site lacks advanced accessibility features and comprehensive SEO optimizations. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies, which poses compliance and trust challenges. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, although the website content appears professional and consistent. Overall, the site is functional and visually appealing but requires improvements in security, privacy compliance, and domain transparency to enhance trust and reduce risk.

L

linyouting

linyouting.com

0

The website linyouting.com serves as a personal portfolio for Youting Lin, a multidisciplinary designer specializing in graphic design and motion graphics. The site showcases various creative projects and visual works, targeting a general audience interested in design and multimedia art. The business model is primarily portfolio-based, aimed at personal branding and showcasing creative skills. The market position is niche, focusing on creative professionals and potential clients in the design industry. Technically, the site is built on the Cargo Collective platform, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and jQuery. The site is hosted on Cargo's infrastructure with assets served from freight.cargo.site and static.cargo.site. The site is mobile optimized with good design quality and user experience, though some SEO and accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, DNSSEC is not enabled, and no security headers are detected in the HTML content, which are areas for improvement. There are no published privacy, cookie, or terms of service policies, nor any incident response or security contact information, indicating limited compliance and transparency. Overall, the site is a well-designed personal portfolio with moderate technical maturity and security posture. The lack of privacy and security policies, as well as contact information, reduces trust and compliance scores. Strategic improvements in these areas would enhance the site's professionalism and security stance.

L

Lynn Oh

lynnsohn.com

0

Lynn Oh's website is a professionally designed portfolio showcasing her multidisciplinary graphic design expertise, including identity, typography, and motion graphics. The site highlights collaborations with prestigious agencies and clients such as Instagram, COLLINS, Pentagram, Apple, and Nike, positioning her as an established creative professional in the media industry. The business model is focused on personal branding and freelance/contract design services targeting creative industry professionals and potential clients. Technically, the website is built on the Cargo Collective platform using modern web standards including HTML5, CSS3, and JavaScript, with custom fonts loaded from WebType. The site is mobile optimized and performs moderately well, though accessibility and SEO optimizations are basic. Hosting and domain registration are consistent and reputable, with HTTPS enabled and domain transfer protections in place. From a security perspective, the site benefits from HTTPS and domain transfer lock but lacks DNSSEC and security headers, which are recommended for enhanced protection. There are no privacy or cookie policies, nor vulnerability disclosure mechanisms, indicating gaps in compliance and security transparency. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is safe, professional, and trustworthy with excellent content quality and business credibility. However, improvements in privacy compliance, security headers, and disclosure policies would strengthen its security posture and regulatory adherence.

S

Skala

skaladesign.ch

0

Skala is a Zurich-based graphic design and branding studio founded in 2022, specializing in creative services for institutions, brands, and individuals within culture, education, and business sectors. The website showcases a portfolio of diverse projects emphasizing visual identity, branding, and design innovation. The company positions itself as a niche creative agency with a consistent and professional brand image. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery and Ajaxify, with Google Analytics integrated for user tracking. The site is mobile-optimized and demonstrates good performance and SEO practices. Security-wise, the site uses HTTPS with an excellent SSL configuration but lacks security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. Overall, the website is professional and trustworthy with moderate risk due to missing privacy and security policy disclosures.

D

DR.ME

dr-me.com

0

DR.ME is a well-established creative design studio based in Manchester, UK, founded in 2010. The company specializes in innovative and experimental design services including graphic design, art direction, photography, illustration, collage, and video production. They serve a diverse client base in music, fashion, art, and culture sectors and have earned industry recognition such as the D&AD Yellow Pencil award. The website reflects a professional portfolio showcasing their work and client list, positioning them as a respected player in the creative media industry. Technically, the site is built on the Cargo Collective platform using modern web technologies and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and formal privacy or cookie policies. Overall, the site is safe, professional, and trustworthy but could improve compliance and security transparency.

L

Lamm & Kirch GbR

lamm-kirch.com

0

Lamm & Kirch GbR is a small, established graphic design studio founded in 2012, specializing in cultural sector projects including book design, visual identities, and exhibitions. Operating from Leipzig and Berlin, the studio collaborates with a network of professionals to deliver comprehensive design services. Their website reflects a professional and well-curated portfolio, demonstrating their market position as a reputable design studio with international recognition and multiple awards. Technically, the website uses standard web technologies with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is strong with a detailed GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the website is trustworthy, professional, and safe for general audiences.

Studio Terhedebrügge Terhedebrügge is a small Berlin-based design studio specializing in graphic and industrial design services. The website serves as a professional portfolio showcasing their projects and design expertise. The business targets a general audience interested in design and creative services within the Berlin region. The market position is niche, focusing on high-quality design work rather than mass-market offerings. Technically, the website is built on WordPress CMS and uses common frontend libraries such as jQuery and Swiper.js. The site demonstrates good mobile optimization and responsive design, with moderate performance characteristics. However, there is room for improvement in accessibility and SEO optimization. Hosting is provided by rzone.de, a German hosting provider consistent with the domain and business location. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and formal security policies. There are no visible privacy or cookie policies, and no incident response or vulnerability disclosure information is provided. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the security posture is moderate but could be enhanced by implementing standard security headers and compliance documentation. The overall risk assessment is low to moderate, with no critical vulnerabilities or blocking mechanisms detected. Strategic recommendations include adding privacy and cookie policies to comply with GDPR, improving security headers, and providing clear contact information for security incidents. Enhancing SEO and accessibility would also improve the site's technical maturity and user experience.

S

Studio Tillack Knöll

studiotillackknoell.com

0

Studio Tillack Knöll is a small, specialized design practice based in Stuttgart, Germany, focusing on visual communication, spatial design, and graphic design services. Their portfolio includes exhibitions, wayfinding systems, book design, branding, and digital experiences for clients in architecture, art, science, commerce, cultural institutions, and NGOs. The website presents a professional and well-structured portfolio with recent activity and project showcases, indicating an active and reputable studio with international recognition. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and SEO enhancements via Yoast SEO. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Hosting is inferred to be with GoDaddy.com, LLC, consistent with the domain registrar data. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanisms. Contact information is primarily via a contact form and physical address; no direct emails or phone numbers are publicly listed. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security headers to strengthen its security posture and regulatory adherence.

I

Image Format

imageformat.fr

0

Image Format is a French creative design portfolio website showcasing various visual and typographic projects. The site targets design professionals and enthusiasts, presenting a curated collection of creative works. The business model appears to be service or portfolio-based, emphasizing artistic and typographic design. The website is built on WordPress and uses common JavaScript libraries such as jQuery and Splide.js, hosted via Scaleway with DNS managed by o2switch.net. The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO features. Security posture is average with HTTPS likely enabled but lacking visible security headers and formal security policies. Privacy compliance is low due to absence of privacy and cookie policies. Contact information is limited to an email address, with no phone or physical address provided. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

M

Mykola Kovalenko Studio

mykolakovalenko.eu

0

Mykola Kovalenko Studio is a small creative design studio specializing in graphic design services such as posters, logos, brand identity, advertising, and packaging. The website serves primarily as a portfolio showcasing a wide range of projects with visual examples and categorization. The studio targets clients seeking professional graphic design and branding solutions. The business has been active since at least 2003, as indicated by copyright information. Technically, the website uses common JavaScript libraries including jQuery, FancyBox, Masonry, and LazyLoad to enhance user experience and image presentation. The site is moderately optimized for mobile devices and has a clear navigation structure. However, there is no evidence of a CMS or advanced frameworks. Performance is moderate with room for improvement in SEO and accessibility. From a security perspective, the website lacks visible security headers and privacy-related policies. HTTPS status is unknown from the provided data but is recommended. No forms or sensitive data collection points are present in the analyzed HTML, reducing immediate risk exposure. Social media links provide additional trust signals but no direct contact emails or phone numbers are listed on the main page. Overall, the website is a professional portfolio with moderate technical maturity and limited security and privacy compliance. Strategic improvements in security headers, privacy policies, and contact information would enhance trust and compliance.

J

Johnson / Kingston

johnsonkingston.ch

0

Johnson / Kingston is a Swiss design studio founded in 2012, specializing in contemporary graphic design with a strong focus on the intersection of design and technology. Their services include digital publishing, typeface development, custom workflows, and identity design for cultural and educational institutions. The studio has received international recognition, including multiple Swiss Design Awards, and maintains a professional online portfolio showcasing their work and teaching activities. Technically, the website uses modern web technologies such as HTML5, CSS3, JavaScript, jQuery, and Swiper.js, delivering a fast and visually rich user experience optimized for mobile devices. Security-wise, the site lacks visible security headers and privacy/cookie policies, which are areas for improvement, but it does not collect user data or use tracking scripts, reducing risk exposure. The domain registration data is consistent with the business claims, indicating legitimacy and trustworthiness.

M

Marinus Klinksik

marinusklinksik.de

0

Marinus Klinksik is a Hamburg-based multidisciplinary graphic and type designer with a professional online portfolio hosted on the Cargo Collective platform. The website showcases a strong focus on typography, editorial, web, and motion design, complemented by the launch of a type foundry called Why.Foundry in early 2024. The site is well-structured, visually professional, and targets clients and collaborators in the creative design industry. Technically, the website employs modern web standards, including HTTPS, security headers, and Google Analytics with IP anonymization, hosted on a reputable platform. Security posture is solid with no visible vulnerabilities, though cookie consent mechanisms and explicit security policies could be improved. Overall, the website presents a trustworthy and professional digital presence for a small creative business.

R

Raffinerie AG für Gestaltung

raffinerie.com

0

Raffinerie AG für Gestaltung is a well-established design agency based in Zürich, Switzerland, specializing in branding, digital, and editorial design services. The company has a strong portfolio featuring notable clients such as Helsana, Greenpeace, and Zürcher Kantonalbank, positioning itself as a reputable player in the media and creative design sector. The website reflects a professional and consistent brand image, targeting businesses and organizations seeking high-quality design solutions. Technically, the website is built on modern web technologies including HTML5, CSS3, JavaScript, and Alpine.js, hosted on infrastructure associated with Metanet AG. It is optimized for mobile devices and demonstrates good performance and accessibility standards. The use of Google Tag Manager and Vimeo embeds indicates a mature digital marketing and content delivery approach. From a security perspective, the site employs HTTPS with a valid SSL certificate and has domain transfer protections in place. However, it lacks DNSSEC and security headers, which are recommended to enhance security posture. Privacy compliance is basic, with a cookie policy present but no active consent mechanism or detailed GDPR compliance indicators. No incident response or security policy pages were found. Overall, the website is trustworthy and professionally maintained, with minor improvements recommended in security headers and privacy compliance to strengthen its security and regulatory posture.

babyinktwice is a specialized graphic design and letterpress print studio founded in 2009 by Dafi Kühne, operating from Zürich and Glarus, Switzerland. The studio focuses on artisanal poster printing and design services for cultural, architectural, and artistic projects, complemented by educational workshops and university teaching engagements in Europe and the United States. The website serves as a portfolio and e-commerce platform showcasing a rich collection of letterpress posters and projects, many of which have received prestigious awards and nominations. Technically, the website is built on WordPress 6.2.8, utilizing common libraries such as jQuery and D3.js, and styled with Bootstrap CSS. The site is moderately performant and mobile-optimized, with good SEO practices but basic accessibility features. Security-wise, the site enforces HTTPS but lacks important security headers and published security policies, which could be improved to enhance protection and compliance. The security posture is adequate but could benefit from implementing security headers, publishing privacy and cookie policies, and establishing incident response contacts. No vulnerabilities or malicious content were detected. Overall, the site is trustworthy and professional but has room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding security headers, establishing a vulnerability disclosure process, and enhancing incident response readiness to strengthen trust and compliance.

F

Fons Hickmann M23

m23.de

0

Fons Hickmann M23 is a Berlin-based design studio specializing in complex communication systems and graphic design projects. The website showcases a professional portfolio with diverse projects including posters, campaigns, animations, and editorial designs, targeting cultural institutions and design professionals. The business is well-established with a domain age dating back to 2002, indicating a mature presence in the design industry. Technically, the website is built on WordPress with modern JavaScript libraries such as Flickity and Plyr, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers which could enhance protection. Privacy compliance is weak due to absence of privacy and cookie policies, representing a compliance risk. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and content-rich but would benefit from improved privacy and security practices.