Technology security reports

S

Spline, Inc.

spline.design

62

Spline, Inc. is a technology company specializing in web-based 3D design software that enables real-time collaboration for creative teams and developers. Their platform offers tools for 3D modeling, animation, interactive experiences, and easy embedding into web projects. Positioned as an innovative SaaS provider, Spline targets designers and developers seeking accessible and collaborative 3D design solutions. The company was founded in 2019 and operates primarily from Iceland, leveraging modern web technologies and cloud hosting to deliver a performant and user-friendly experience. Their business model includes free browser-based tools, downloadable desktop apps, and enterprise offerings. The website reflects a professional brand with consistent messaging and strong trust signals including testimonials and customer logos.

N

NETZCOCKTAIL

netzcocktail.de

49

NETZCOCKTAIL is a German-based small business specializing in the development of successful websites with professional features aimed at optimizing Google search rankings. The company targets businesses seeking comprehensive website development and SEO services, positioning itself as a niche player in the technology sector. The website demonstrates a professional design with consistent branding and good content quality, although explicit privacy and terms of service policies are not present in the analyzed content. Technically, the site uses modern technologies including jQuery and Usercentrics for cookie consent management, and it is built on the AmphiCMS platform. HTTPS is enabled, and reCAPTCHA is used to enhance security. However, the absence of security headers and detailed contact information limits the overall security posture and trustworthiness. The site is accessible without any WAF or security challenges, indicating good availability.

R

rheinmedia gmbh

rheinmedia.de

41

rheinmedia gmbh is a German digital communication agency specializing in website development, consulting, design, and programming services primarily using TYPO3 CMS. The company targets businesses and organizations seeking professional online project realization and digital communication solutions. Their portfolio includes projects for local utilities, agricultural services, and fair trade campaigns, indicating a focus on regional and socially conscious clients. The website is professionally designed, mobile-optimized, and provides clear navigation, reflecting a mature digital presence. Technically, the website employs a traditional tech stack including jQuery 1.9.1, Flexslider, and Matomo analytics configured with cookie disabling to respect user privacy. The site is served over HTTPS, but uses an outdated jQuery version which may expose security risks. No advanced security headers were detected, and no cookie consent mechanism is present, indicating room for improvement in privacy compliance. The site lacks structured data markup and visible contact emails or phone numbers on the homepage, relying on a separate contact page. From a security perspective, the site demonstrates basic good practices such as HTTPS and privacy-conscious analytics but should update its JavaScript libraries and implement security headers to enhance protection. The absence of cookie consent banners and explicit privacy policy links on the homepage suggests partial GDPR compliance. No incident response or vulnerability disclosure information is provided, which could be improved to strengthen trust. Overall, rheinmedia presents a trustworthy and professional digital agency with a solid business model and good technical foundation but with moderate security and privacy compliance gaps. Strategic improvements in updating dependencies, enhancing security headers, and implementing cookie consent would elevate their security posture and compliance standing.

C

Clickonometrics

clickonometrics.pl

50

Clickonometrics operates as an advertising technology platform specializing in ad server solutions and campaign management tools for publishers, advertisers, and ad networks. Founded in 2016 and based in Poland, the company offers services including RTB, SSP, DSP, and various advertising pricing models such as CPC, CPA, CPS, and CPM. The website presents a professional and consistent brand image targeting a niche market within the online advertising ecosystem. Technically, the website employs a modern but straightforward technology stack including Bootstrap, jQuery, Google Fonts, and Google Analytics for tracking. The site is mobile-optimized and structured with clear navigation, though accessibility features are basic. Hosting and domain registration are managed through OVH sas, a reputable provider, with domain status flags enhancing domain security. However, no CMS or advanced frameworks are detected. From a security perspective, the site uses HTTPS and has domain-level protections but lacks visible security headers and explicit incident response or security policies. Privacy compliance is minimal, with a basic privacy policy located on a separate opt-out page and no cookie consent mechanism despite the use of tracking scripts. Contact information is not provided on the landing page, limiting transparency. Overall, the website is functional and professional but would benefit from enhanced security practices, improved privacy compliance, and more transparent business contact information to strengthen trust and regulatory adherence.

U

Réducteur de lien / Minimiseur d'URL [Raccourcir un lien]

urlz.fr

9

URLz.fr is a French-language URL shortening service established in 2011, providing users with a free tool to reduce long URLs for easier sharing on social media platforms. The website monetizes through multiple advertising networks and integrates a consent management platform to comply with GDPR requirements. The technical infrastructure includes Cloudflare DNS, OVH hosting, and various third-party ad and tracking scripts, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks explicit security headers and formal security policies. Privacy compliance is basic, with no dedicated privacy or terms of service pages found. Overall, the site is functional and moderately trustworthy but would benefit from enhanced transparency and security hardening.

B

BNI Osmose & Co

meetsuo.com

61

Meetsuo is a French technology company founded in 2023 that offers a SaaS platform designed to enhance the efficiency and quality of professional business meetings. Their solution targets professional networking groups and meeting organizers, providing tools such as attendance tracking, badge generation, QR code stands, photo directories, PowerPoint generation, satisfaction surveys, guest tracking, and payment management. The company positions itself as a niche provider with clear subscription pricing and positive customer testimonials, indicating a growing presence in its market segment. Technically, the website is built on a modern stack including Bootstrap, jQuery, and various UI libraries, hosted by OVH with DNS managed via Cloudflare. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and Google reCAPTCHA is used on the contact form, but DNSSEC is not enabled and no explicit security headers are detected, representing areas for improvement. Privacy compliance is basic with a privacy policy present but lacking explicit GDPR details. Overall, the website is trustworthy and functional but could benefit from enhanced security and privacy practices.

D

David Chelly

davidchelly.fr

36

David Chelly is a seasoned digital entrepreneur specializing in domain names and website monetization with over 25 years of experience. The website positions itself as a trusted expert in domain name consulting, web marketing, and digital strategy, targeting domain investors and digital entrepreneurs primarily in France and French-speaking markets. The business model revolves around consulting, coaching, publishing, and providing digital services related to domain names and web presence. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and user-friendly experience. The site is well-structured with good SEO practices and mobile optimization, although accessibility features could be improved. Analytics are implemented via Statcounter with minimal user tracking. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is present. WHOIS data is not publicly available, indicating privacy protection, which is reasonable for this type of personal business. Overall, the security posture is moderate but could benefit from enhancements in policy transparency and technical safeguards. The overall risk is low to moderate given the professional content and absence of suspicious elements, but improvements in privacy compliance and security best practices are recommended to enhance trust and regulatory adherence.

P

Pulsor Agency

pulsor.agency

58

Pulsor Agency is a specialized digital agency focused on creating world-class, data-driven landing pages tailored for unique projects. The website presents a professional and modern design, emphasizing high perceived value and client testimonials to establish credibility. The agency targets businesses or individuals seeking premium landing page solutions, positioning itself as a premium service provider in the technology sector. Technically, the site leverages Webflow CMS, GSAP animations, and Swiper.js for interactive content, hosted likely on Webflow's infrastructure, delivering fast performance and good mobile optimization. Security posture is moderate; HTTPS is implied but no explicit security headers were detected, and no privacy or cookie policies are present, which is a compliance gap. The WHOIS data is unavailable or malformed, limiting domain trust analysis and reducing overall legitimacy score. Tracking is implemented via Humblytics, but no consent mechanism is evident. Overall, the site is professional and functional but would benefit from enhanced transparency and security practices.

O

Ondřej Dvořák

ondrejdvorak.eu

59

Ondřej Dvořák operates a professional web design service primarily targeting small to medium businesses in the Czech Republic. The website showcases a portfolio of web design, e-shop development, and brand identity services, emphasizing effective and efficient online presence. The business positions itself as a quality-focused niche provider with strong client testimonials and social media engagement. Technically, the site is built on WordPress using the Breakdance builder and LiteSpeed caching, providing a modern and responsive user experience with good SEO practices. Security posture is solid with HTTPS enforced, but lacks advanced security headers and incident response disclosures. Privacy compliance is partially met with privacy and cookie policies present, though a cookie consent mechanism is missing. Overall, the site is trustworthy and professional, with room for improvement in security and privacy transparency.

Homerun is a Netherlands-based technology company specializing in applicant tracking and human resource management software designed for modern teams. Their SaaS platform offers a user-friendly and visually appealing ATS and HR toolset that streamlines hiring, leave tracking, employee data management, and team insights. The company targets growing teams and HR professionals seeking an efficient and personal approach to recruitment and team management. Homerun positions itself as a niche provider with a strong emphasis on user experience and brand culture, supported by positive customer testimonials and high ratings on independent review platforms.

V

Visicod

visicod.com

60

Visicod is a French digital communication agency specializing in bespoke website creation, SEO and SEA services, and personalized client support. Established since 2008, it serves artisans, small and medium enterprises across France with a focus on clear, effective digital solutions. The website demonstrates a professional and modern digital presence with strong client testimonials and transparent service offerings. Technically, the site uses modern web technologies, includes cookie consent mechanisms, and integrates Google Analytics for performance tracking. Security posture is good with HTTPS and privacy compliance, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection or recent registration, but the website content and structure indicate a legitimate and trustworthy business. Overall, Visicod presents a credible and professional digital agency profile with room for minor technical security enhancements.

C

Clint Agency

clintagency.com

60

Clint Agency is a French digital design agency specializing in product, service, brand, and website design. Founded in 2012, it serves businesses seeking innovative and meaningful digital solutions. The website is professionally designed, mobile-optimized, and rich in content showcasing their services and client projects. Technically, the site uses modern technologies including Webflow CMS, Google Tag Manager, and Axeptio for cookie consent, hosted with OVH and Cloudflare DNS. Security posture is strong with HTTPS and domain locks, though DNSSEC is not enabled. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the site is trustworthy and well-positioned in its market niche.

E

Enreda SCA

enreda.coop

58

Enreda SCA is a Spanish cooperative specializing in social transformation through digital participation, OpenData, and product design and development. The company targets public and private institutions seeking to enhance citizen participation, transparency, and sustainability. With over a decade of experience and certification from the Consul Democracy Foundation, Enreda holds a credible market position in the technology and non-profit sectors. Their key services include citizen participation processes, digital participation software, transparency and data visualization, and sustainability consulting. Technically, the website is built using the Eleventy static site generator, leveraging modern JavaScript modules and libraries such as Lunr.js for search and Plausible Analytics for privacy-focused user tracking. Hosting is provided by DigitalOcean, indicating a reliable infrastructure. The site is mobile-optimized with good SEO practices and fast performance, though accessibility features are basic. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks DNSSEC, security headers, and published security policies or incident response contacts, which are areas for improvement. Privacy compliance is limited due to the absence of privacy and cookie policies, which could pose regulatory risks. Overall, the website is professional, trustworthy, and content-rich, but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

E

Eezy

eezy.com

67

Eezy is a digital creative services company focused on simplifying creativity by providing digital downloads, resources, and services such as stock photos, vector art, videos, an online template editor, and custom graphic design through its Design Studio. The company targets creative professionals including designers, photographers, and videographers. The website positions Eezy as a trusted provider with partnerships with major global brands. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, featuring Google Analytics and reCAPTCHA for analytics and security. Security posture is good with HTTPS and spam protection, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the business credibility given the professional site and external trust signals. Overall, Eezy presents a solid digital presence with room for improvement in privacy compliance and security best practices.

L

Le Silex

le-silex.com

59

Le Silex is a French-based SEO and netlinking service provider specializing in backlink campaign management and comprehensive netlinking strategies. The company positions itself as a platform of true experts with over 10 years of experience and a client base exceeding 300 satisfied customers. Their services include backlink monitoring, branding, relinking, and SEO consulting, targeting businesses seeking to improve their online visibility and search engine rankings. The website is professionally designed using Webflow, featuring modern technologies and a responsive layout optimized for mobile devices. The technical infrastructure leverages Webflow's hosting and includes analytics via Humblytics. Security posture is moderate with HTTPS assumed but lacking explicit security headers and cookie consent mechanisms. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, and does not raise immediate concerns. Overall, the website demonstrates a high level of professionalism and trustworthiness with clear contact information and client testimonials.

D

David Chelly

davidchelly.com

38

David Chelly is a digital entrepreneur specializing in domain names, website monetization, and web strategy with over 25 years of internet experience. The website presents a professional portfolio of services including management of a large network of websites, domain consulting, publishing, and event organization. The business targets internet professionals, domain investors, and web marketing audiences primarily in France and internationally. Technically, the site uses a modern front-end stack with Bootstrap and popular JavaScript libraries, providing a responsive and user-friendly experience. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which impacts compliance and trust. The WHOIS data is unavailable, raising concerns about domain registration transparency. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

N

Net 15

websee.fr

63

Websee is a French CMS platform developed by Net 15, specializing in creating professional, administrable websites for businesses, artisans, associations, and web agencies. The company emphasizes personalized service, responsive design, and compliance with modern web standards including GDPR and cookie consent. The website is well-structured, visually consistent, and provides clear contact channels and client testimonials, positioning itself as a trusted regional player in the web development market. Technically, the site uses a proprietary CMS with common JavaScript libraries and Matomo analytics, indicating a privacy-conscious approach. Security posture is adequate with HTTPS and cookie consent but lacks advanced HTTP security headers and explicit incident response policies. WHOIS data is unavailable, which slightly reduces domain trust assessment, but the overall business presence and content quality support legitimacy.

G

Groupe JVS

groupe-jvs.fr

48

Groupe JVS is a French software publishing group specializing in IT solutions for public sector organizations, particularly local and territorial collectivities. With over 40 years of experience, the group operates through five subsidiaries offering tailored software and digital services to facilitate the digital transformation of public services. Their market position is solid within the French public sector, supported by a network of 14 regional agencies and a portfolio of innovative solutions aimed at improving citizen engagement and administrative efficiency. Technically, the website is built on Drupal CMS and integrates modern analytics and marketing tools such as Matomo and HubSpot. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some improvements in accessibility and security headers could be made. The presence of cookie consent mechanisms and a comprehensive privacy policy indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a notable concern, reducing the overall trust score despite the professional appearance and business legitimacy of the site. Overall, Groupe JVS presents a professional and credible digital presence with room for improvement in security transparency and WHOIS data availability. Strategic recommendations include enhancing security headers, publishing a security policy, and monitoring domain registration details to ensure ongoing trustworthiness.

W

Web & SEO

webandseo.fr

45

Web & SEO is a French web business and affiliate marketing platform focused on helping individuals and professionals launch and grow online businesses, particularly niche sites and affiliate marketing ventures. The website offers a range of services including coaching, SEO audits, netlinking, and online courses. It positions itself as a niche authority in the French-speaking digital marketing space. Technically, the site is built on WordPress with modern optimizations and uses structured data for SEO enhancement. The security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-structured, serving a small but focused market segment.

L

LadyGeekGeek Web Design

ladygeekgeek.com

34

LadyGeekGeek Web Design is a small freelance web design business based in Holywood and Belfast, Northern Ireland, specializing in bespoke, accessible, and responsive WordPress websites. The company has a strong market position serving local and international clients, including notable organizations such as Queen's University Belfast and Belfast Film Festival. The website showcases a professional portfolio and detailed service offerings, emphasizing user experience and content strategy. Technically, the site is built on WordPress, hosted by BigWetFish, and optimized for performance, mobile responsiveness, and accessibility. Security posture is good with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are missing. Privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

UnfoldWP is a small technology business specializing in the development and sale of premium multipurpose WordPress themes. Founded in 2022 and based in Nepal, the company targets WordPress users, bloggers, and developers seeking high-quality, customizable themes. Their business model revolves around theme sales, starter templates, and bundled plans, positioning themselves as a niche provider with a focus on design quality and user experience. The website reflects a professional and consistent brand image with strong trust indicators such as user testimonials and a money-back guarantee. Technically, the website is built on WordPress 6.8.3, utilizing modern technologies including jQuery, Google Tag Manager, LiteSpeed Cache for lazy loading, and SEO plugins like All in One SEO. The site demonstrates excellent performance, mobile optimization, and SEO practices, contributing to a fast and accessible user experience. Hosting details are not explicitly identified, but the presence of LiteSpeed assets suggests a performant hosting environment. From a security perspective, the site enforces HTTPS with excellent SSL configuration and follows best practices by avoiding exposed sensitive data and vulnerable libraries. However, it lacks visible security headers and does not publish formal security or incident response policies. No cookie consent mechanism is present, which is a compliance gap for GDPR. The WHOIS data is consistent with the website's claims, showing transparent registration without privacy protection, reinforcing legitimacy. Overall, UnfoldWP presents a low-risk profile with a strong business and technical foundation. Strategic improvements include implementing cookie consent, publishing security policies, and enhancing security headers to elevate compliance and security posture. These steps will further strengthen trust and regulatory adherence.

The website tpf-utilities.fr represents a small French business named Le Relais Internet, offering domain management, web hosting, SEO, and email redirection services. The business appears to be established since 2007 with a consistent domain registration and hosting aligned with its branding. However, the website itself is minimalistic, using a frameset to redirect users to an external page, with very limited visible content and no modern web technologies detected. The lack of privacy, cookie policies, and contact information indicates a low level of digital maturity and compliance. Security posture is weak due to absence of HTTPS and security headers, exposing the site to potential risks. Overall, the website is functional but lacks professionalism and trust signals, which may impact user confidence.

V

Velvetyne

velvetyne.fr

58

Velvetyne is a small, France-based open source font collective specializing in the design and distribution of libre fonts. The website serves as a platform to showcase their font projects, offer custom font services, and promote workshops. The target audience includes typography enthusiasts, designers, and the open source community. The business model revolves around open source font creation and community engagement. Technically, the website is built on the ProcessWire CMS and hosted by Alwaysdata. It uses standard web technologies such as HTML5, CSS, and SVG for font previews. The site demonstrates good design quality, mobile optimization, and clear navigation, although accessibility features are basic. Performance is moderate, with no evident use of advanced analytics or tracking. From a security perspective, the site lacks visible security headers and published security policies. There is no privacy or cookie policy, nor any incident response or vulnerability disclosure information. The domain is well-registered with a reputable registrar and has been active since 2010, supporting the legitimacy of the business. No WAF or blocking mechanisms are detected, and the site content is safe for general audiences. Overall, Velvetyne presents a trustworthy and professional presence in its niche, but it would benefit from enhanced security practices and privacy compliance to improve user trust and regulatory adherence.

C

Cargo

cargocollective.com

61

Cargo is a technology company operating a site builder platform tailored for designers and artists. The platform focuses on enabling creatives to showcase their work and connect with potential clients and peers. The business operates in a niche market segment with a clear target audience and offers key services including site building tools, templates, and a community network. The website is professionally designed with good content relevance and user experience, although it lacks explicit privacy and cookie policies. Technically, the site uses modern JavaScript frameworks, including React, and is hosted on Amazon AWS infrastructure. Analytics and advertising tools such as Google Tag Manager and Reddit Ads Pixel are integrated, indicating moderate user tracking. Security posture is adequate with HTTPS enabled and domain transfer protections in place, but lacks DNSSEC and security headers. Overall, the site is legitimate and functional but could improve compliance and security transparency.

S

Sempleo Corporate

sempleo.com

67

Sempleo Corporate is a French web agency specializing in affordable turnkey website creation services primarily targeting small municipalities, associations, and small businesses. Founded in 1995, the company offers subscription-based web packages starting at 15€/month, emphasizing simplicity, all-inclusive support, and French-based solutions. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. Technically, the site uses modern web technologies including Bootstrap, Firebase, and Matomo analytics, with a strong focus on privacy compliance through explicit cookie consent mechanisms. Security posture is solid with HTTPS and secure forms, though lacking explicit security policies or incident response contacts. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the overall business content and trust indicators suggest a legitimate operation. Strategic recommendations include enhancing security headers, publishing incident response information, and improving domain registration transparency.

H

Huwise

huwise.com

73

Huwise is a technology company specializing in providing a SaaS data product marketplace solution that enables organizations to centralize, manage, and share their data assets securely and interactively. The company targets data leaders, business teams, IT leaders, and CSR/ESG leaders across sectors such as energy, transport, banking, and government. Their market position is strong, supported by Gartner citations, a high NPS score, and a client base of over 350 organizations. The website reflects a mature digital presence with comprehensive content, multimedia, and customer testimonials. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses various JavaScript libraries for enhanced user experience. It integrates Matomo for analytics and Axeptio for cookie consent, indicating attention to privacy compliance. The site is mobile-optimized, fast-loading, and SEO-friendly. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and incident response disclosures. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern and should be investigated to confirm domain registration legitimacy. Overall, Huwise presents a professional and trustworthy online presence with strong business credibility. The main risk lies in the missing WHOIS information, which impacts domain trustworthiness. Strategic recommendations include enhancing security header implementation, publishing incident response contacts, and verifying domain registration status.

Refdomaine.com is a French independent website dedicated to domain name information, offering news, guides, resources, and consulting services primarily targeting French-speaking domain professionals and enthusiasts. The site positions itself as a niche leader in the French domain name information space, with a consistent brand and good content quality. Technically, the site uses common web technologies such as Bootstrap, jQuery, and Font Awesome, hosted on o2switch.net, with moderate performance and good mobile optimization. Security posture is moderate with no detected HTTPS enforcement or security headers, and no cookie consent mechanism, indicating room for improvement in compliance and security best practices. The domain is registered since 2017 with no privacy protection, consistent with the business profile. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

Domstocks is a small Spanish-based technology company specializing in the sale of expired quality domains for SEO and branding purposes. Their website offers a professional and user-friendly platform targeting SEO professionals, domain investors, and digital marketers. The business model focuses on providing fixed-price expired domains with clean histories and SEO metrics, supported by alert services and domain selection assistance. Technically, the website uses legacy JavaScript libraries such as jQuery 1.8.3 and Owl Carousel, with moderate performance and good mobile optimization. Security posture is limited due to lack of security headers, outdated libraries, and absence of privacy and cookie policies. Analytics is minimal, relying on Statcounter. Overall, the site is professional but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Domstocks is a small technology-focused business specializing in the sale of expired quality domains with SEO value, brandable domains, and exact match domains. The company targets SEO professionals, domain investors, and digital marketers, offering fixed-price domain sales and domain selection services. The website is hosted on DreamHost and uses a basic technology stack including jQuery and Owl Carousel. While the site is accessible and well-structured with good content quality, it lacks key privacy and cookie policies and uses outdated JavaScript libraries, which may pose security risks. No security headers or incident response information are present, and SSL configuration details are not confirmed. Overall, the domain registration data is consistent and legitimate, supporting the business claims. The site uses minimal tracking via Statcounter and does not contain adult or questionable content.

Domstocks.es is a Spanish-based small business specializing in the sale of expired domains with strong SEO metrics, brandable names, and exact match domains (EMD). The company targets digital marketers, SEO professionals, and domain investors seeking quality domains for website creation, PBNs, or link selling. The business model focuses on fixed-price sales without auctions, providing alerts and personalized domain selection services. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technical infrastructure includes legacy JavaScript libraries such as jQuery 1.8.3 and Owl Carousel, with Google Fonts for typography. While the site is mobile-optimized and SEO-friendly, some modernization is recommended.

B

Berger-Levrault

berger-levrault.fr

71

Berger-Levrault is a reputable international software publisher headquartered in France, specializing in software solutions for public administrations, healthcare, education, and industry sectors. The company positions itself as a trusted provider with a focus on reliability and compliance. The website reflects a mature digital presence with multi-language support and professional branding. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Matomo, and Google Tag Manager, complemented by a robust consent management system via Didomi, ensuring GDPR compliance. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly visible. Overall, the website is professional, secure, and trustworthy, supporting the company's market position effectively.

I

Imago Numeris

imago-numeris.fr

56

Imago Numeris is a small French technology company specializing in website conception, realization, and SEO referencing services primarily targeted at municipalities and local communes. Established since 2005, the company emphasizes accessibility and multi-device compatibility in its offerings, aiming to provide tailored web solutions that meet the evolving needs of internet users across various devices. The website content reflects a professional and consistent branding approach with clear business information such as the SIRET registration number, enhancing credibility. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and Bootstrap framework for responsive design. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation. However, there is no evidence of advanced CMS usage or modern hosting details. Performance is moderate with basic SEO and accessibility features implemented. From a security perspective, the site lacks visible HTTPS/SSL confirmation and security headers, which lowers its security posture. No privacy or cookie policies are present, and no incident response or security contact information is provided. The absence of WHOIS data limits domain trust verification, although the displayed business registration details support legitimacy. No tracking or analytics scripts were detected, indicating minimal user data collection. Overall, the website is functional and professional but requires improvements in security best practices, privacy compliance, and transparency to enhance trustworthiness and regulatory adherence.

N

Net15

net15.fr

57

Net15 is a well-established French web agency based in Cantal since 1997, specializing in website creation, hosting, SEO, and digital communication services. The company targets SMEs, artisans, local authorities, and associations, offering tailored digital solutions including websites, e-commerce platforms, and collaborative tools. Their market position is that of a trusted regional digital partner with over 25 years of experience. Technically, the website is powered by the WebSee CMS platform and uses stable JavaScript libraries such as jQuery and Fancybox. The site is mobile-optimized, accessible, and SEO-friendly, though some modernization of libraries and addition of security headers could improve the technical posture. Performance is moderate with good user experience and navigation clarity. Security-wise, the site uses HTTPS and shows no obvious vulnerabilities or exposed sensitive data. However, the absence of HTTP security headers and public security policies indicates room for improvement. The WHOIS data is missing, which raises some concerns about domain registration transparency, though the website content and business presence suggest legitimacy. Overall, the website presents a professional and trustworthy digital presence with solid business credibility but would benefit from enhanced security practices and verification of domain registration details.

I

Iron Velvet

ironvelvet.studio

57

Iron Velvet is a small multidisciplinary digital studio focused on crafting innovative digital experiences. The website presents a professional and modern design using the Astro framework, targeting businesses seeking creative digital services. The content is relevant and well-structured, though limited in explicit business details such as company founding year or location. Technically, the site uses modern technologies and is mobile optimized with moderate performance. Security posture is basic with HTTPS implied but lacks explicit security headers and policies. Privacy and cookie policies are absent, and no direct contact emails or phone numbers are provided, only a contact form. WHOIS data is incomplete and malformed, reducing domain trustworthiness, but the website content itself appears legitimate and professional.

A

Association www.bzh

nddcamp.bzh

46

NDDCamp Rennes is a specialized event organized by Association www.bzh focusing on domain name security, combining technical, legal, and economic perspectives. The event targets professionals in the domain name and cybersecurity sectors, offering conferences, roundtables, and networking opportunities. The website is professionally designed using modern web technologies and provides clear information about the event, speakers, sponsors, and registration. The technical infrastructure is solid with Bootstrap and other frontend libraries, hosted on archive-host.org. Security posture is moderate with HTTPS assumed but lacking DNSSEC and security headers; visible PHP warnings indicate backend maintenance needs. Privacy compliance is weak due to missing privacy and cookie policies despite data collection forms. Overall, the site is trustworthy but could improve security and compliance aspects.

N

NDDCamp Alsace

nddcamp.alsace

46

NDDCamp Alsace is a specialized conference event focused on domain names, legal, SEO, marketing, and IT topics, targeting professionals in the domain industry and related fields. The event is organized by recognized experts and supported by reputable sponsors and partners, positioning it as a credible regional event with national and international reach. The website provides detailed information about speakers, program, location, and sponsors, facilitating networking and knowledge sharing. Technically, the site uses modern web technologies such as Bootstrap and jQuery, hosted on o2switch, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks DNSSEC and security headers, and no privacy or cookie policies are published, indicating compliance gaps. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

N

NDD Camp Paris

nddcamp.paris

50

NDDCamp Paris is a specialized annual conference focused on the domain name industry, bringing together professionals such as registrars, registries, lawyers, SEO experts, and investors. The event emphasizes knowledge sharing, networking, and discussion of current trends and challenges in domain names, including legal, marketing, and technical aspects. Supported by reputable partners like AFNIC and Sedo, it holds a recognized position within its niche market. The website presents a professional and content-rich platform, primarily in French, targeting domain industry stakeholders. Technically, the website uses modern front-end technologies including Bootstrap 5.3.3, jQuery, and various UI libraries for animations and interactivity. The site is moderately optimized for performance and mobile responsiveness but lacks advanced accessibility features and SEO optimizations. The backend uses PHP for form handling, though some minor PHP notices are visible, indicating room for backend code improvements. From a security perspective, the site uses HTTPS but lacks visible security headers and has minor backend errors that could leak information. No privacy or cookie policies are published, which is a compliance gap. Forms collect user data but lack visible advanced protections. Overall, the security posture is moderate but could be significantly improved with standard best practices. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy compliance, backend error handling, and security headers would enhance trust and reduce risk. The site is safe for general audiences and does not contain any adult or questionable content.

T

TemplatesNext

templatesnext.org

54

TemplatesNext is a small startup media development studio specializing in WordPress themes and plugins. The company emphasizes handcrafted design and clean code, targeting WordPress users and developers seeking quality themes and plugins. Their business model revolves around offering both free and premium WordPress products with lifetime support. The website is built on WordPress CMS, utilizing popular plugins such as Yoast SEO, Slider Revolution, and WPBakery Page Builder, indicating a modern and maintainable technical infrastructure. Performance and mobile optimization are good, though accessibility could be improved. Security posture is moderate with HTTPS enabled and spam protection on forms, but lacks advanced security headers and published security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy, though WHOIS data is unavailable, which slightly reduces transparency.

P

Privacyterms.io

termsandconditionstemplate.com

62

Privacyterms.io is a specialized online service providing customizable legal document templates including Privacy Policies, Terms and Conditions, and Disclaimers. The company targets website owners and small to medium businesses seeking compliance with international data protection laws such as GDPR, CalOPPA, and CCPA. Their market position is that of a niche provider offering both free and premium solutions with lawyer-drafted content. Technically, the website is built on WordPress using Oxygen Builder, leveraging modern web technologies and hosted behind Cloudflare for DNS and CDN services. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security-wise, the site enforces HTTPS and domain transfer protections but lacks advanced security headers and explicit incident response policies. No cookie consent mechanism was detected despite cookie usage for analytics. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve security posture and transparency. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing incident response information.

I

Ingenico

ingenico.com

71

Ingenico is a global leader in payment solutions, offering a wide range of products and services including smart payment terminals, cloud-based payment platforms, and end-to-end terminal management. The company targets merchants and businesses across multiple sectors such as retail, transportation, hospitality, and energy. As a subsidiary of Worldline, Ingenico benefits from a strong market position and extensive industry expertise. The website reflects a mature digital presence with comprehensive multilingual support and professional content tailored to its B2B audience. Technically, the site is built on Drupal 10, integrates standard analytics and marketing tools, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and compliance with PCI DSS and ISO 27001 standards. Privacy compliance is robust, featuring detailed privacy and cookie policies with user consent mechanisms. Overall, Ingenico's website and domain registration data indicate a trustworthy, enterprise-grade business with a solid reputation in the payments industry.

I

IPEX a.s.

ipex.cz

54

IPEX a.s. is a Czech technology company specializing in AI-powered customer service solutions, including chatbots, omnichannel communication platforms, and helpdesk software. The company positions itself as an established player with over 32 years in the market and serves a broad business audience seeking to optimize customer communication. Their website reflects a mature digital presence with modern technologies, strong SEO, and interactive demos to engage potential clients. The company maintains active social media channels and provides comprehensive contact information, enhancing trust and accessibility. Technically, the website is built on WordPress with a robust tech stack including Yoast SEO, Google Tag Manager, Hotjar, and GDPR-compliant cookie management. The site is well-optimized for performance, mobile responsiveness, and accessibility, indicating a high level of digital maturity. Security practices include HTTPS enforcement and consent management, though explicit security headers and policies could be improved. Security posture is generally strong with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. This gap slightly diminishes the overall trust score despite the professional presentation and business credibility. The company would benefit from publishing a security policy and incident response contacts to further enhance trust. Overall, IPEX demonstrates a solid business and technical foundation with room for improvement in transparency and security documentation. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen stakeholder confidence and compliance posture.

dream.jobs is an AI-powered job search platform that enables users to upload their CVs and receive personalized job opportunities. The platform also offers services for employers to post jobs, positioning itself as a modern career portal leveraging AI technology. The website uses modern frontend technologies such as React, Next.js, and Material-UI, providing a good user experience with responsive design and clear navigation. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and documented incident response or vulnerability disclosure policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the platform appears legitimate and professional, targeting job seekers and employers in the technology sector.

F

FePSeM

fepsem.org

61

FePSeM is a French professional federation dedicated to uniting and representing stakeholders in the Search Marketing industry, including agencies, professionals, and students. The organization offers certifications, events, a professional directory, and employment services, positioning itself as a key player in the French digital marketing ecosystem. The website is built on WordPress with modern SEO and marketing tools integrated, reflecting a mature digital presence. Security posture is solid with HTTPS and domain protections, though some improvements like DNSSEC and explicit security policies could enhance trust. Overall, the site is professional, content-rich, and trustworthy, serving its niche audience effectively.

B

BLOOM'UP

bloomup.net

51

Bloom'Up is a French accredited domain registrar specializing in the acquisition and resale of recently expired domain names with strong SEO potential. The company offers services such as dropcatching, backorder programming, immediate domain purchase, and auctions, targeting SEO professionals and digital marketers seeking to leverage domain authority and traffic. The website is professionally designed, mobile-optimized, and provides clear business information including contact details and accreditation by AFNIC, enhancing trustworthiness. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, and Owl Carousel, ensuring a responsive and visually appealing user experience. While the site uses HTTPS and secure transfer codes for domains, it lacks visible security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site demonstrates a good baseline with HTTPS and secure domain transfer processes. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy or recent registration status. No critical vulnerabilities or exposed sensitive data were identified. The site would benefit from enhanced security headers, explicit incident response policies, and GDPR-compliant cookie consent. Overall, Bloom'Up presents a credible and professional business with a niche market focus. The main risk lies in the missing WHOIS data which impacts domain trustworthiness. Strategic recommendations include improving security headers, implementing cookie consent, and publishing detailed security and incident response policies to bolster compliance and user trust.

WebExpire is a specialized French domain registrar and auction platform focusing on freshly expired .fr domain names to help clients boost SEO. The company operates as an AFNIC accredited registrar, offering domain auctions, backorders, and transfer facilitation services. Their market position is niche but well-defined, targeting SEO professionals and domain investors in France. The website is professionally designed with clear navigation and relevant content, supporting a good user experience. Technically, the site employs modern web technologies including JavaScript frameworks, Google Tag Manager, Google Analytics, and Stripe for payment processing. It uses HTTPS with secure form tokens and a cookie consent mechanism, reflecting a mature digital infrastructure. Performance and mobile optimization are good, though accessibility could be improved. No CMS or hosting provider details were identified. Security posture is solid with HTTPS and CSRF protections, but lacks explicit security headers and published security policies or incident response contacts. Privacy compliance is strong with clear privacy and cookie policies and GDPR consent mechanisms. No vulnerabilities or exposed sensitive data were detected. Overall, the site is trustworthy and safe for general audiences. The main risk is the absence of WHOIS data, which is likely due to privacy protection common in domain registrar businesses. This does not detract significantly from legitimacy given other trust signals. Strategic recommendations include adding security headers, publishing a security policy, and implementing a vulnerability disclosure process to enhance security maturity and trust.

M

SEO tool to track your Google positions every day

monitorank.com

59

Monitorank is a professional SEO tool focused on daily Google position tracking for websites and competitors. It offers a modular subscription model with API access and integration with Google Looker Studio, targeting SEO professionals, agencies, and businesses. The website demonstrates a solid market position with notable clients and partners, supported by testimonials and trusted payment methods. Technically, the site uses modern web technologies, is mobile optimized, and integrates live chat and video content to enhance user experience. Security posture is good with HTTPS and secure payment options, though improvements are needed in security headers and cookie consent mechanisms. The absence of WHOIS data raises some concerns about domain legitimacy, but the overall professional presentation and client references mitigate this risk. Strategic recommendations include enhancing security headers, implementing explicit cookie consent, publishing security policies, and verifying domain registration details.

L

LWS

lws.fr

57

LWS is a well-established French web hosting company founded in 1999, offering a comprehensive range of services including domain registration, shared and dedicated hosting, VPS, WordPress optimized hosting, email solutions, and cloud storage. The company positions itself as a leading French hosting provider with a strong customer base of over 680,000 hosted sites and emphasizes performance, security, and customer support. Their infrastructure is based in France with ISO 27001 certified datacenters, ensuring data sovereignty and compliance with European regulations. Technically, the website is modern, fast, and mobile-optimized, leveraging popular JavaScript libraries and tracking tools such as Google Tag Manager and Bing Ads. The presence of cookie consent mechanisms and structured data indicates a mature digital presence with good SEO and privacy compliance. The company uses multiple social media channels for marketing and customer engagement. From a security perspective, LWS demonstrates strong practices including HTTPS enforcement, daily backups, and ISO 27001 certification. However, explicit security headers and a public vulnerability disclosure policy are not evident, which could be improved. The WHOIS data is not publicly available, likely due to privacy protection, but this is consistent with the company's profile and does not raise immediate concerns. Overall, LWS presents a trustworthy and professional web hosting service with a strong focus on the French market. The website quality, business credibility, and security posture are solid, making it a reliable choice for individuals and businesses seeking hosting solutions in France.

I

Inéolab

ineolab.fr

62

Inéolab is a specialized SEO and CRO agency based in Strasbourg, France, operating since 2010. The company offers comprehensive SEO services including audits, strategy development, content creation, technical optimization, and link building. Their market position is that of a trusted specialist agency with a strong focus on sustainable SEO practices and client engagement. Technically, the website is built on WordPress using modern themes and plugins, with good mobile optimization and SEO best practices implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and well-structured, supporting a positive business and security profile.

B

BrandShelter™

safebrands.fr

61

BrandShelter™ is a specialized service provider focused on protecting trademarks and intellectual property online, offering comprehensive domain management, monitoring, and legal support services. The company is positioned as a trusted partner for global brands and operates as part of Team Internet PLC, a major player in domain management. The website is professionally designed, multilingual, and provides detailed information about their services, client testimonials, and certifications such as ISO/IEC 27001, indicating a strong commitment to security and quality. Technically, the site is built on WordPress with modern analytics and marketing tools integrated, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and certifications, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. However, the WHOIS data for the domain is missing or not publicly available, which raises some concerns about domain registration transparency. Overall, the site demonstrates a mature digital presence with strong business credibility but would benefit from clarifying domain registration details to enhance trust.

S

Solidnames

solidnames.fr

54

Solidnames is a specialized French company founded in 2016, offering professional services in domain name surveillance, management, and recovery, including Web3 domain solutions. The company positions itself as a trusted boutique registrar with strong industry memberships and accreditations such as AFNIC and INTA. Their website reflects a professional and comprehensive service offering targeted exclusively at professional clients, including legal firms, enterprises, and public institutions. The digital infrastructure is built on WordPress with modern plugins ensuring multilingual support, SEO optimization, and security features like Google reCAPTCHA and GDPR-compliant cookie consent. Security posture is good with HTTPS enforced and anti-spam measures in place, though some security headers could be improved. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, supporting a high trust level. No critical vulnerabilities or suspicious content were detected.