Security Directory

S

SAS Ligne Web Services - LWS

sitebuilderpro.fr

43

SiteBuilder Pro is a French SaaS company offering an AI-powered website builder targeting small to medium-sized businesses and entrepreneurs. The platform provides an easy drag-and-drop interface, professional templates, and integrated hosting and domain services via its parent company SAS Ligne Web Services - LWS. The website is well designed, mobile optimized, and provides clear pricing and customer testimonials, positioning it as a trustworthy and accessible solution in the website creation market. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and hosted by LWS in France. Security posture is good with HTTPS and SSL certificates, but lacks visible security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the site is professional and credible but could improve privacy compliance and security transparency.

M

Minecraft-France

minecraft-france.fr

49

Minecraft-France is a specialized French-language website dedicated to providing a comprehensive range of Minecraft-related content including mods, maps, shaders, guides, and news. Founded in 2011 by an individual named Ezral, it has established itself as the largest francophone Minecraft resource hub with an active community presence, including a popular Discord server. The site targets Minecraft players within the French-speaking community, offering daily updated content and fostering community engagement. Technically, the website is built on WordPress using popular plugins such as Yoast SEO Premium and Elementor for content management and design. It integrates Google Fonts and Google Adsense for typography and monetization respectively, and uses Swiper.js for interactive elements. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks several important security headers that could enhance protection against common web threats. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial; a privacy policy is present and appears comprehensive and GDPR compliant, but no cookie consent banner or detailed data retention policies were found. Contact information is limited to an email address, with no phone numbers or physical addresses publicly listed. Overall, Minecraft-France presents a trustworthy and professional online presence for its niche audience, though the absence of WHOIS data and some security best practices slightly reduce its trust score. Strategic improvements in security headers, cookie consent, and transparency around data protection would enhance its compliance and user trust.

B

Biscuits, Gâteaux et Panifications de France

biscuitsgateauxpanifications.fr

34

Biscuits, Gâteaux et Panifications de France is a French industry syndicate representing companies involved in biscuits, cakes, and bakery products. The organization focuses on promoting the diversity of products, valorizing métiers and savoir-faire, and enhancing the French gourmet heritage. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. It integrates modern technologies such as Google Analytics and Mapbox for enhanced user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies are absent. The absence of WHOIS data limits domain trust verification, but the website's professional content and social media presence support its legitimacy. Overall, the site is a credible and well-maintained digital presence for the syndicate.

И

Ипотечен и жилищен кредит

ipotechen.com

43

Ipotechen.com is a Bulgarian online platform specializing in mortgage and housing loan information, offering users access to multiple financial institutions including banks and non-bank lenders. The site provides detailed guidance on loan types, required documentation, and application procedures, targeting individuals seeking property financing in Bulgaria. The platform supports lead generation by enabling users to apply for loans via a single request sent to multiple companies, enhancing user convenience and market reach. Technically, the website is built on WordPress with Visual Composer, leveraging Google Fonts, Google Analytics, and Google Adsense for content presentation, analytics, and monetization respectively. The hosting is provided by superhosting.bg, with domain registration dating back to 2014, indicating a mature and stable presence. Security-wise, the site uses HTTPS and has domain transfer protection, but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is partially addressed with a privacy policy page, but no cookie consent mechanism is evident. Overall, the site presents a professional and functional digital presence with moderate security and privacy posture.

K

Kabelna.com - Доставчици|Пакети|Интернет|Телевизия|Домашен телефон

kabelna.com

44

Kabelna.com is a Bulgarian telecommunications comparison website established in 2013, offering users a comprehensive platform to find and compare providers and packages for cable, satellite, digital television, internet, and home phone services. The site targets consumers in Bulgaria seeking detailed information and filtering options by price, channel count, internet speed, and location. Technically, the site is built on WordPress with common plugins for SEO, live chat, and UI enhancements, hosted on SuperHosting.bg. It uses HTTPS and integrates Google services for analytics and advertising. Security posture is moderate with room for improvement, notably the lack of DNSSEC, security headers, and outdated WordPress version. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is functional and relevant but would benefit from enhanced security and compliance measures.

F

Film Association of South Tyrol (FAS)

fas-film.net

46

The Film Association of South Tyrol (FAS) is a professional organization representing film industry professionals in South Tyrol, Italy. It serves as a hub for filmmakers, actors, production companies, and service providers, promoting the region as a film-friendly location and supporting local film productions with international aspirations. The website is well-structured, bilingual (German and Italian), and provides clear information about the association's mission, membership, and news. The presence of partner logos and a newsletter subscription indicates active community engagement. Technically, the website is built on WordPress using WPBakery Page Builder and common JavaScript libraries such as jQuery and MediaElement.js. It employs HTTPS with a valid SSL certificate and includes a GDPR-compliant cookie consent mechanism. The site is moderately optimized for performance and mobile devices, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and does not provide visible security policies or incident response contacts. The WHOIS data for the domain is unavailable, which is unusual but the website content and professional presentation suggest legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site presents a trustworthy and professional front for the Film Association of South Tyrol, with minor improvements recommended in security headers and transparency around security policies. The missing WHOIS data warrants monitoring but does not currently indicate malicious intent.

U

UNISCA

unisca.it

51

UNISCA is an independent Italian association focused on coordinating and aggregating professionals and organizations in the creativity, arts, and entertainment sectors. Founded in 2021, it serves as a platform for idea exchange, advocacy, and sector synthesis. The website reflects a small-sized non-profit entity with a clear mission to support cultural identity and artistic autonomy within Italy. Technically, the site is built on WordPress using Elementor and related modern web technologies, providing a good user experience with mobile optimization and SEO best practices. Security posture is strong with HTTPS, DNSSEC, and security headers, though explicit security policies and incident response information are absent. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Fondazione Haydn di Bolzano e Trento

bolzanodanza.it

53

Bolzano Danza is a prominent contemporary dance festival organized by Fondazione Haydn di Bolzano e Trento, held annually in Bolzano, Italy. The festival showcases leading choreographers and performers, offering a diverse program of performances, workshops, and community engagement activities. It targets a broad audience interested in contemporary dance and cultural events, emphasizing inclusion and sustainability. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and Matomo for privacy-conscious analytics. It uses HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. The site integrates external partners and sponsors, enhancing its credibility and reach. From a security perspective, the website demonstrates good practices including HTTPS enforcement and cookie consent. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could benefit from additional hardening. The domain WHOIS data aligns well with the website's organizational claims, showing transparency and legitimacy. No blocking or WAF challenges were detected, allowing full content access and analysis. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining regular security audits to sustain trust and compliance.

S

sictom

sictom-pezenas-agde.fr

44

The SICTOM Pézenas-Agde website represents a local public service organization focused on waste collection and ecological transition in the Pézenas-Agde region of France. The site provides comprehensive information on waste sorting, collection schedules, recycling points, and community news, targeting residents and local businesses. The business model is that of a government or non-profit entity delivering essential environmental services with a strong community engagement focus. Technically, the website is built on WordPress using the Divi theme, incorporating modern JavaScript libraries such as jQuery and Leaflet for interactive maps. It integrates Google Analytics via MonsterInsights and employs a cookie consent mechanism compliant with GDPR. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit advanced security headers. No exposed sensitive data or vulnerabilities were detected in the provided content. The absence of WHOIS data reduces domain trust slightly, but the professional presentation and consistent branding support legitimacy. Overall, the site is well-structured, informative, and trustworthy for its intended audience. Strategic improvements in security headers and ongoing maintenance would enhance its security posture. The lack of WHOIS transparency is a minor concern but does not detract significantly from the site's credibility.

A

AW Solutions

awsolutions.fr

58

AW Solutions is a French platform specializing in the dematerialization of public procurement processes, serving both public buyers and private companies. It operates under the Groupe Achat Solutions, a well-established entity in the public procurement sector since 1989. The platform offers a comprehensive suite of services including call for tenders dissemination, buyer profiling, sourcing, and business intelligence, positioning itself as a leader in the French government procurement market. Technically, the website is built on WordPress with a modern tech stack including WooCommerce, Yoast SEO, and Matomo analytics, ensuring a professional and functional digital presence. Security measures such as HTTPS, Google reCAPTCHA, and Keycloak SSO are implemented, though there is room for improvement in HTTP security headers and explicit security policies. Privacy compliance is basic with cookie consent mechanisms and privacy policies present but lacking detailed GDPR compliance indicators. Overall, the website is trustworthy, professional, and well-aligned with its business objectives.

C

Cley Spy

cleyspy.co.uk

58

Cley Spy is a small UK-based retailer specializing in the sale of premium binoculars, telescopes, and outdoor equipment. The company targets outdoor enthusiasts and nature observers, offering both new and used products from well-known brands such as Swarovski, Leica, and Zeiss. The website serves as both an online store and a point of information for customers interested in quality optical gear. Technically, the site is built on WordPress with WooCommerce, integrating Google Analytics and Google Tag Manager for tracking, and Cookiebot for cookie consent management. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features are basic. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks some advanced security headers and a published security policy or vulnerability disclosure mechanism. The domain WHOIS data is unavailable due to a registration error indicating the domain name violates Nominet UK naming rules, which raises concerns about domain legitimacy despite the professional website content. Overall, the site is functional and professional but would benefit from improved transparency and domain registration clarity.

B

Birding Ecotours

birdingecotours.com

63

Birding Ecotours is a specialized tour operator offering small group and custom birding adventures worldwide. The company targets birding enthusiasts and eco-tourists with a comprehensive portfolio of tours categorized by destination, date, and style. The website is professionally designed using WordPress with modern plugins and SEO optimizations, providing an excellent user experience and clear navigation. Technical infrastructure includes Google Analytics, Google Tag Manager, and Smart Slider 3 for rich media presentation. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though no explicit security policy or incident response information is published. The absence of WHOIS data raises some concerns about domain legitimacy, but the professional web presence and content quality suggest a legitimate business. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site is secure, privacy-conscious, and well-structured, but domain registration verification is recommended.

X

XABA SAS

xaba.fr

58

XABA SAS operates as a French B2B digital marketing and web services provider specializing in website editing, lead generation, and growth hacking strategies. The company targets businesses seeking to enhance their online presence and customer acquisition through tailored marketing solutions. The website reflects a professional and consistent brand image, supported by a domain registered since 2012, indicating established market presence. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, hosted with Cloudflare DNS services. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO optimizations in place. Security measures include HTTPS enforcement and Google reCAPTCHA integration, though additional security headers and policies could enhance the security posture. From a security perspective, the site shows good practices with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response contacts suggests room for improvement in transparency and preparedness. Privacy compliance is well addressed with a GDPR-compliant cookie consent mechanism and a privacy policy in French. Overall, the website presents a moderate risk profile with a solid foundation in business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility features to strengthen trust and compliance.

D

DYEZ

dyez.com

54

DYEZ is a French-based digital media company specializing in SEO and web content management with a decade of experience. The company offers services including article publication, SEO article writing, personalized consulting, and collaboration opportunities targeting advertisers, web agencies, SEO consultants, and businesses of various sizes. The website is professionally designed using WordPress with Elementor and SEO optimization plugins, reflecting a mature digital presence. Technically, the site is well-optimized for performance and mobile responsiveness, leveraging modern web technologies and best practices. Security posture is solid with HTTPS and Content Security Policy headers, though additional security headers and explicit privacy policies are lacking. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the site presents a credible business front with room for improvement in privacy compliance and security transparency.

I

Internet Society (ISOC) France

isoc.fr

43

Internet Society France is the French chapter of the global Internet Society, dedicated to protecting internet users and promoting an open, accessible, and neutral internet. The organization operates as a non-profit, engaging in advocacy, education, and community building within France and internationally. Their website reflects a professional presence with clear mission statements, event information, and membership opportunities. The organization is well-established with a domain age consistent with its founding date and maintains active social media channels for outreach. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder and Smart Slider 3, with integration of SEO tools like Yoast. Hosting appears to be through OVH with DNS managed via AWS, indicating a robust infrastructure. The site is mobile optimized and performs moderately well, though accessibility features are basic. SEO practices are good, with proper meta tags and structured data. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies. There is no visible cookie consent mechanism, which is a GDPR compliance gap. No vulnerability disclosure or security.txt files are present. Overall, the security posture is adequate but could be improved with additional best practices. The risk assessment is low given the organization's non-profit nature, clear contact information, and consistent domain registration. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and establishing a vulnerability disclosure process to enhance trust and compliance.

I

Institut F2I

institut-f2i.fr

59

Institut F2I is a private educational institution based in France specializing in post-baccalaureate education in information technology, digital technologies, and commerce. Founded in 2012, it offers courses from BAC to BAC+5 levels, including initial and alternating (work-study) programs. The institution targets students and professionals seeking specialized education in these sectors. The website reflects a focused educational business model with consistent branding and relevant content tailored to its audience. Technically, the website is built on WordPress CMS using modern libraries such as Bootstrap, jQuery, and Swiper, hosted by OVH. It employs Google Tag Manager and Google Analytics for tracking and marketing purposes, alongside reCAPTCHA for bot protection. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security-wise, the website uses HTTPS with a good SSL configuration and some best practices like reCAPTCHA; however, it lacks security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies despite the presence of cookie consent SDK. Overall, the website is professional and credible but requires improvements in privacy disclosures and security hardening to enhance trust and compliance.

I

ILGA World

ilga.org

73

ILGA World is a well-established global non-profit organization advocating for the human rights of lesbian, gay, bisexual, trans, and intersex people worldwide. Founded in 1978, it operates as a federation of over 2,000 member organizations across 170 countries, providing advocacy, research, and grassroots support. The website reflects a mature digital presence with comprehensive content, strong branding, and clear navigation targeting activists, civil society, and human rights stakeholders. Technically, the site is built on WordPress with modern plugins for SEO, accessibility, and user engagement. It uses Cloudflare DNS and integrates Google reCAPTCHA for form security. The site is mobile-optimized and accessible, with good SEO practices and cookie consent mechanisms in place. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced, clientTransferProhibited domain status, and no visible vulnerabilities or exposed sensitive data. However, DNSSEC is not enabled and security headers are not explicitly detected, indicating areas for improvement. Privacy compliance is strong with clear privacy and cookie policies and GDPR-aligned consent mechanisms. Overall, ILGA World’s website is trustworthy, professional, and secure, supporting its mission effectively. Strategic recommendations include enhancing DNS security, publishing explicit security policies, and implementing security.txt or vulnerability disclosure channels to further strengthen trust and compliance.

A

Arcus Foundation

stateoftheapes.com

58

State of the Apes is a non-profit publication initiative under the Arcus Foundation, focusing on the conservation of great apes and gibbons by examining the impact of human development activities. The website serves as a resource hub offering downloadable chapters, video interviews, and research reports targeting policymakers, academics, NGOs, and conservation experts. The platform is well-branded, professionally designed, and provides clear navigation and content relevant to its mission. Technically, the website is built on WordPress with Bootstrap and jQuery, enhanced by SEO plugins and integrated with marketing and analytics tools such as HubSpot Forms, Google Tag Manager, and LinkedIn Insight. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and publicly available security or incident response policies. The absence of WHOIS domain registration data is a notable concern, potentially impacting trustworthiness despite the reputable association with the Arcus Foundation. Overall, the website presents a low-risk profile with strong content and business credibility but would benefit from enhanced transparency in domain registration and security practices to improve trust and compliance.

N

Nová síť z.s.

artinres.cz

53

ART-IN-RES is a Czech-based online portal dedicated to connecting artists with providers of artistic residencies, facilitating creative stays essential for artistic project development. The platform targets artists primarily in the Czech Republic but also internationally, offering listings of residencies, open calls, and news updates. The business operates under Nová síť z.s., a Czech non-profit organization, and maintains a professional web presence with clear branding and consistent content quality. Technically, the website is built on WordPress using the Elementor page builder and Astra theme, integrating plugins for event management, GDPR compliance, and analytics. The site is mobile-optimized, SEO-friendly, and employs HTTPS with a cookie consent mechanism, reflecting a mature digital infrastructure suitable for its niche audience. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security headers and detailed security policies. No vulnerabilities or WAF blocks were detected, indicating a secure baseline posture. Privacy compliance is evident through GDPR-aligned cookie and privacy policies. However, contact information is limited to a newsletter subscription form, with no direct emails or phone numbers provided. Overall, ART-IN-RES presents a trustworthy, well-maintained platform with a clear focus on artistic residencies. Strategic improvements in security headers, incident response transparency, and expanded contact options could enhance trust and compliance further.

D

Datackathon

datackathon.com

56

Datackathon is a French digital magazine specializing in data, digital technology, cybersecurity, AI, cloud computing, SaaS, marketing, and e-commerce. It targets professionals and enthusiasts interested in these domains by providing regularly updated articles and news. The website is built on WordPress and leverages modern web technologies such as Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and user-friendly experience. Advertising is primarily managed through Google Adsense and affiliate marketing via ThirstyAffiliates. The website enforces HTTPS, ensuring secure communication, but lacks some advanced security headers and explicit cookie consent mechanisms, which are recommended for compliance and enhanced security. The WHOIS data for the domain is missing or unavailable, which raises questions about domain registration transparency, though the website content and structure appear legitimate and professional.

V

VDA-online

vda-online.de

41

VDA-online.de represents the Verband Deutscher Vereine für Aquarien- und Terrarienkunden, a well-established non-profit association founded in 1911, serving aquarium and terrarium enthusiasts in Germany with approximately 250 clubs and 9,000 members. The website is professionally built on WordPress using Elementor and related plugins, featuring good SEO and structured data implementations. The technical infrastructure is moderate in performance and well-optimized for mobile devices. Security posture is adequate with HTTPS usage but lacks explicit security headers and incident response disclosures. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the site is trustworthy and serves its niche audience effectively but would benefit from enhanced security and privacy transparency.

L

LWS

lws-hosting.com

48

LWS operates a professional and content-rich blog focused on web hosting, domain registration, VPS, dedicated servers, and WordPress hosting services. The company has a strong market presence in France with over 20 years of experience, offering accessible and quality hosting solutions. The blog serves as an educational and marketing platform targeting website creators, small to medium businesses, and e-commerce users. Technically, the website is built on WordPress with modern technologies including Google Analytics, Google Tag Manager, and caching plugins. The site is mobile-optimized and provides a good user experience with clear navigation and multimedia content such as videos. Performance is moderate with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published privacy or security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data for the subdomain is not available, which is expected, and the main domain is presumed legitimate based on branding and business presence. Overall, the website is trustworthy and professional, but could enhance compliance and security transparency by publishing privacy policies, terms of service, and security incident response information.

I

IUCN Academy

iucnacademy.org

51

The IUCN Academy website is a professionally developed online education platform specializing in environmental conservation and sustainability training. It offers a range of courses including professional certificates, delivered in hybrid and self-paced formats, targeting individuals and professionals seeking recognized environmental education. The platform leverages modern WordPress technologies including BuddyBoss and Learndash LMS to provide a structured and engaging learning experience. The website is well-branded and consistent, with clear navigation and relevant content that supports its educational mission. From a technical perspective, the site uses a modern tech stack with WordPress CMS, Elementor page builder, and integrates Google Tag Manager for analytics. Hosting and DNS management involve Cloudflare and GoDaddy, with domain registration locked against unauthorized changes. Performance and mobile optimization are good, though accessibility features are basic. SEO practices appear adequate with proper meta tags and structured content. Security posture is solid with HTTPS enforced and domain locking, but there are gaps such as the absence of DNSSEC and lack of published privacy and cookie policies, which impact compliance with GDPR and related regulations. No explicit incident response or vulnerability disclosure mechanisms are found, which could be improved to enhance trust and security readiness. Overall, the website presents a trustworthy and professional front for the IUCN Academy's educational offerings. Strategic improvements in privacy compliance, DNS security, and incident response transparency would further strengthen its security posture and regulatory adherence.

R

RheinFit Sportakademie GmbH

adventure-minigolf-bochum.de

40

Adventure Minigolf Bochum is a small local hospitality and leisure business offering a unique adventure minigolf experience with 24 themed courses, hand-carved sculptures, and additional activities such as football billiards. The company operates under RheinFit Sportakademie GmbH and targets families, friends, and children aged six and above. The website is professionally designed using WordPress and the Divi theme, with good mobile optimization and SEO practices. Contact information and social media presence are clearly provided, enhancing business credibility. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the website is trustworthy and well-maintained, supporting the business's local market position.

O

Office Jack

officejack.de

70

Office Jack is a specialized e-commerce retailer based in Germany, focusing on ergonomic office furniture including height-adjustable desks and office chairs. The company targets businesses and institutes looking for modern, ergonomic office solutions. Their market position is that of a niche provider with a strong emphasis on quality, customization, and customer trust, supported by certifications such as Trusted Shops and CHIP Leading Shops 2025. The website is professionally designed, well-branded, and provides clear contact and business information. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Google Tag Manager. The site is mobile-optimized and SEO-friendly, with good performance and accessibility standards. Security posture is strong with HTTPS enforced and bot protection via reCAPTCHA, although some security headers could be improved. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism in place. No critical vulnerabilities or suspicious patterns were detected in the WHOIS data or website content. Overall, Office Jack presents a trustworthy and professional online presence with a solid technical foundation and good compliance practices, suitable for its business model and target market.

C

CHEMPARK

chempark.de

68

CHEMPARK is a major chemical industry park located in North Rhine-Westphalia, Germany, hosting approximately 500 companies over an 11 km² area. The website presents CHEMPARK as a leading sustainable chemical park in Europe, offering infrastructure and services to chemical companies. The business model focuses on providing industrial site services, sustainability initiatives, and visitor management to its target audience of chemical industry stakeholders. The website is professionally designed, with consistent branding and good content quality, targeting industry professionals and partners. Technically, the website is built on WordPress using Elementor and Yoast SEO, with Cloudflare providing CDN and security services including DDoS protection and CAPTCHA via Cloudflare Turnstile. Security is further enhanced by the Wordfence plugin. Analytics are handled by Matomo, respecting privacy compliance with a comprehensive cookie consent mechanism implemented by Real Cookie Banner Pro. The site is mobile-optimized and performs moderately well. Security posture is strong with HTTPS enforced, multiple security headers present, and anti-spam measures on forms. However, no explicit security policy or incident response contact information is published, and no vulnerability disclosure policy is found. Overall, the site is trustworthy and professionally maintained, with room for improvement in transparency around security policies. The overall risk is low, with recommendations to publish security policies, incident response contacts, and vulnerability disclosure information to enhance trust and compliance further.

D

Decathlon spółka z ograniczoną odpowiedzialnością

decathlonkariera.pl

58

Decathlonkariera.pl is the official career website for Decathlon Poland, a large retail company specializing in sports equipment and apparel. The site targets job seekers passionate about sports, offering information about current job openings, company values, and employee benefits. The business is well-established with a domain age consistent with its market presence since 2013. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its audience. Technically, the site is built on WordPress and uses common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook SDK. Hosting is provided by OVH SAS, a reputable provider. Performance is moderate with good mobile optimization. However, some security best practices like DNSSEC and security headers are missing, and there is no visible cookie consent mechanism, which could impact privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the provided content. The absence of security headers and incident response information suggests room for improvement. Privacy compliance is partially met with a privacy policy linked on the main Decathlon domain, but cookie consent and GDPR explicit indicators are lacking. Overall, the website is trustworthy and professional, serving its business purpose effectively. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance standing.

Deutsche Tierpark-Gesellschaft e.V. is a German non-profit organization dedicated to supporting and promoting zoological parks and animal parks. The website serves as an informational and engagement platform for zoo visitors, members, and supporters. It offers event information, organizational details, and resources related to zoological parks. The organization operates within a niche non-profit sector with a clear focus on animal parks in Germany. Technically, the website is built on WordPress, utilizing modern web technologies including JavaScript, PHP, and integrations with Google services such as Google Fonts, Google Maps, and YouTube embeds. The site employs a professional cookie consent mechanism compliant with GDPR, and uses plugins like Real Cookie Banner Pro and Formidable Forms to manage privacy and user interactions. Hosting is provided by rzone.de, with appropriate SSL and security headers in place, indicating a good level of technical maturity. From a security perspective, the website enforces HTTPS, implements security headers, and maintains privacy compliance with a clear cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response information, which could enhance trust and preparedness. Overall, the security posture is solid but could benefit from formalized policies and incident response contacts. The overall risk assessment is low, with the website presenting a trustworthy and professional front for the non-profit organization. Strategic recommendations include adding explicit security and incident response policies, enhancing accessibility, and maintaining regular audits of third-party integrations to mitigate potential risks. These steps will strengthen compliance, security posture, and user trust over time.

D

Deutsche Gesellschaft für Herpetologie und Terrarienkunde

dght.de

47

The Deutsche Gesellschaft für Herpetologie und Terrarienkunde (DGHT) is a German non-profit organization dedicated to the conservation and study of amphibians and reptiles. The website serves as an information hub for conservation projects, terraristic expertise, environmental education, and scientific research. It targets conservationists, herpetologists, hobbyists, and educators. The organization maintains a reputable position within its niche, supported by partnerships and a membership model. Technically, the website is built on WordPress with Bootstrap and jQuery, hosted on Strato servers, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal vulnerability disclosure mechanisms. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and content-rich, with room for security and privacy improvements.

G

Groupement National Interprofessionnel des Semences et plants

gnis-pedagogie.org

48

SEMAE Pédagogie is an educational platform dedicated to providing comprehensive pedagogical resources about seeds, plants, and their uses, primarily targeting teachers and students in the agricultural and seed sectors in France. The website is professionally designed, featuring detailed dossiers, media libraries, and interactive activities such as competitions and educational kits. It serves as a key resource for the French seed industry, supported by the Groupement National Interprofessionnel des Semences et plants, positioning itself as a trusted educational authority in this niche. Technically, the website is built on WordPress with Bootstrap and integrates various modern web technologies including Google Maps API, Font Awesome, and social sharing tools like AddToAny. The site is mobile-optimized and exhibits good SEO practices. Cookie consent is managed via Tarteaucitron, ensuring GDPR compliance. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is incomplete and malformed, which limits domain trust verification; however, the website’s professional presentation and official affiliations mitigate concerns about legitimacy. Overall, SEMAE Pédagogie presents a secure, professional, and content-rich platform with strong educational value. Strategic improvements in security headers, incident response transparency, and WHOIS data clarity would enhance trust and compliance further.

S

SEMAE Village Semence

villagesemence.fr

10

SEMAE Village Semence operates as a specialized media platform focused on the agricultural seed and plant sector in France. The website serves as an information hub, providing broadcasts, event coverage, and educational content related to seeds and food sovereignty. It targets agricultural professionals, industry stakeholders, and the interested public. The company maintains a consistent brand presence across multiple social media platforms and organizes or participates in significant agricultural events such as the Salon International de l’Agriculture. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies including Google Analytics for tracking and Tarteaucitron for cookie consent management. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and implements cookie consent but lacks some advanced security headers, suggesting room for improvement in hardening its security posture. The WHOIS data is not publicly available, indicating privacy protection which is common and justified for this type of business. No suspicious or malicious indicators were found. The website content is safe for general audiences, with no adult or questionable material detected. Overall, the site presents a professional and trustworthy digital presence for its niche agricultural media business.

O

Ondřej Dvořák

ondrejdvorak.eu

59

Ondřej Dvořák operates a professional web design service primarily targeting small to medium businesses in the Czech Republic. The website showcases a portfolio of web design, e-shop development, and brand identity services, emphasizing effective and efficient online presence. The business positions itself as a quality-focused niche provider with strong client testimonials and social media engagement. Technically, the site is built on WordPress using the Breakdance builder and LiteSpeed caching, providing a modern and responsive user experience with good SEO practices. Security posture is solid with HTTPS enforced, but lacks advanced security headers and incident response disclosures. Privacy compliance is partially met with privacy and cookie policies present, though a cookie consent mechanism is missing. Overall, the site is trustworthy and professional, with room for improvement in security and privacy transparency.

D

Deník N

novydenik.com

62

Deník N is an independent Czech daily news media outlet established in 2015, offering subscription-based and advertising-supported news content primarily targeting the Czech-speaking general public. The website demonstrates a solid market position as a trusted independent news source with a consistent brand presence and good content quality. Technically, the site is built on WordPress with modern integrations such as Google Tag Manager, Google Analytics, OneSignal for notifications, and Didomi for consent management, reflecting a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and consent mechanisms in place, though explicit security headers and a published security policy are absent, indicating room for improvement. Overall, the site is trustworthy, privacy-conscious, and professionally maintained, with no signs of malicious activity or content safety concerns.

F

Fundación La Contienda Dehesa Sostenible

fundacionlacontienda.es

56

Fundación La Contienda Dehesa Sostenible is a Spanish non-profit organization dedicated to the preservation of the Iberian pig and its natural habitat, the dehesa. The foundation operates an innovative sustainable farming model and provides educational, research, and promotional services focused on this sector. The website reflects a regional leader position in sustainable agriculture within the Sierra de Aracena and Picos de Aroche natural park. Technically, the site is built on WordPress using the Divi theme, with modern web technologies and GDPR compliance mechanisms in place. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are lacking. Overall, the website is professional, trustworthy, and content-rich, targeting industry members, researchers, and the general public interested in Iberian pig farming and sustainability.

I

Instituto de Estudios Cajasol

institutocajasol.com

56

Instituto de Estudios Cajasol is a well-established business school based in Sevilla, Spain, offering professional master’s degrees, postgraduate courses, and corporate training primarily targeting professionals and students in Andalucía. The institution has a strong regional presence with a domain registered since 2006, reflecting its longevity and market position. The website is professionally designed, mobile-optimized, and rich in relevant content, supporting a positive user experience and strong SEO performance. Technically, the site leverages WordPress with popular plugins and integrates multiple marketing and analytics tools, including Google Tag Manager and Outbrain, indicating a mature digital marketing strategy. Security posture is good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and some security headers are not explicitly detected. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates high business credibility and trustworthiness with clear contact information and consistent branding.

M

Museum Kampa

museumkampa.cz

44

Museum Kampa is a well-established modern art museum located in Prague, Czech Republic, focusing on Central European modern art and preserving the collection of Jan and Meda Mládková. The website reflects a professional and consistent brand presence with good content quality and user experience. Technically, the site is built on WordPress with modern plugins and frameworks, showing moderate performance and good mobile optimization. Security posture is strong with HTTPS enabled and no critical vulnerabilities detected, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie consent mechanism. Overall, the site is trustworthy and serves its audience effectively.

S

SEAUTON International

seauton-international.com

53

SEAUTON International is a Brussels-based company specializing in association management, event organization, communication, branding, and financial processes. As part of the Uhoda Group, it leverages over 20 years of experience to serve associations and corporate clients, focusing on operational excellence and client satisfaction. The website reflects a professional and consistent brand image with clear service offerings and a target audience of associations and event organizers. Technically, the site is built on WordPress using modern libraries such as jQuery, GSAP, and Swiper, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced but lacks advanced security headers and incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. WHOIS data is missing, which raises concerns about domain registration transparency and slightly impacts trust. Overall, the site is functional, professional, and trustworthy but could improve in security and privacy compliance.

C

Cortijo Social Media

cortijosocialmedia.com

55

Cortijo Social Media is a Spanish communication agency established since 1996, offering services including public relations, event organization, audiovisual production, branding, and communication consulting. The website presents a professional image with clear navigation and good content quality, targeting institutions and companies seeking communication support. Technically, the site is built on WordPress with Bootstrap and jQuery, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks security headers and explicit privacy or incident response policies. The absence of WHOIS data and domain registration transparency raises concerns about domain legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

F

Fundación Cajasol

fundacioncajasol.com

57

Fundación Cajasol is a well-established non-profit cultural and social foundation based in Andalucía, Spain, founded in 2006. It offers a broad range of cultural events, educational programs, and social initiatives, positioning itself as a key regional player in these sectors. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to a general audience interested in culture and education. Technically, the site is built on WordPress, hosted on Microsoft Azure DNS infrastructure, and employs common security and compliance plugins such as Wordfence and GDPR Cookie Compliance. Security posture is strong with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism and trustworthiness.

G

Golden Snack s.r.o.

goldensnack.eu

46

Golden Snack s.r.o. is a Czech Republic-based snack manufacturer established in 2000, specializing in pellet snacks, crackers, potato chips, salt sticks, and popcorn. The company is a leading private label producer in the Czech Republic and a significant player in the EU snack market. Their product range includes healthier options under the Vital Snack brand, emphasizing BIO raw materials and reduced fat content. The website is professionally designed using WordPress and Elementor, featuring clear product information and contact details. Technical infrastructure includes modern web technologies and Google services for analytics and reCAPTCHA for form security. Security posture is adequate with HTTPS and CAPTCHA but lacks advanced security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies on the site. Overall, the website reflects a legitimate and established business with room for improvement in privacy and security transparency.

E

Eezy

eezy.com

67

Eezy is a digital creative services company focused on simplifying creativity by providing digital downloads, resources, and services such as stock photos, vector art, videos, an online template editor, and custom graphic design through its Design Studio. The company targets creative professionals including designers, photographers, and videographers. The website positions Eezy as a trusted provider with partnerships with major global brands. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, featuring Google Analytics and reCAPTCHA for analytics and security. Security posture is good with HTTPS and spam protection, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the business credibility given the professional site and external trust signals. Overall, Eezy presents a solid digital presence with room for improvement in privacy compliance and security best practices.

V

Virage Média

liner-communication.fr

47

Virage Média is a French digital marketing agency specializing in web creation, SEO, and SEA campaigns, targeting businesses seeking to enhance their online presence. The company offers tailored digital solutions including website development, search engine optimization, and targeted advertising campaigns to support business growth. The website demonstrates a mature digital infrastructure leveraging WordPress with Elementor, integrated with multiple analytics and marketing tools such as Google Analytics, TikTok Pixel, and HubSpot. Security posture is solid with HTTPS and reCAPTCHA protections, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website and domain registration data indicate a legitimate, professional small agency with a strong regional presence in France.

C

Calico

studio-calico.fr

47

Calico is a small, local communication agency based in Dijon, France, specializing in web and print services since 2009. Their offerings include website creation (both informational and e-commerce), graphic design, printing on various media, and promotional object marking. The company targets businesses and organizations seeking to enhance their digital and physical brand presence locally. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital infrastructure. Technically, the site runs on WordPress with modern plugins and integrates privacy-conscious analytics (Matomo) and security features like Google reCAPTCHA. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be added for improvement. The absence of WHOIS data limits domain trust analysis, but the professional presentation and clear contact information support legitimacy. Overall, Calico presents a trustworthy and competent digital presence suitable for its market niche.

S

SEMAE

semae.fr

58

SEMAE is a French interprofessional organization dedicated to the seed and plant sector, providing comprehensive information, regulatory guidance, certification services, and sector development support. The website serves a broad audience including producers, distributors, educators, journalists, and public officials, positioning itself as a key player in the European seed industry. Technically, the site is built on WordPress with Bootstrap and common web technologies, offering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain trust verification but the website content and social media presence indicate a legitimate and professional entity. Overall, the site is well-maintained, informative, and trustworthy for its target audience.

W

Web & SEO

webandseo.fr

45

Web & SEO is a French web business and affiliate marketing platform focused on helping individuals and professionals launch and grow online businesses, particularly niche sites and affiliate marketing ventures. The website offers a range of services including coaching, SEO audits, netlinking, and online courses. It positions itself as a niche authority in the French-speaking digital marketing space. Technically, the site is built on WordPress with modern optimizations and uses structured data for SEO enhancement. The security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-structured, serving a small but focused market segment.

L

LadyGeekGeek Web Design

ladygeekgeek.com

34

LadyGeekGeek Web Design is a small freelance web design business based in Holywood and Belfast, Northern Ireland, specializing in bespoke, accessible, and responsive WordPress websites. The company has a strong market position serving local and international clients, including notable organizations such as Queen's University Belfast and Belfast Film Festival. The website showcases a professional portfolio and detailed service offerings, emphasizing user experience and content strategy. Technically, the site is built on WordPress, hosted by BigWetFish, and optimized for performance, mobile responsiveness, and accessibility. Security posture is good with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are missing. Privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

A

Arts Council IE

artscouncil.ie

74

The Arts Council / An Chomhairle Ealaíon is the national government agency responsible for funding, developing, and promoting the arts in Ireland. It operates as a medium-sized government entity with a strong market position as the primary arts funding body in the country. The website clearly targets artists, arts organizations, and the general public interested in arts and culture, offering funding schemes, flagship programs, and resources to support the arts sector. The content is professionally curated, well-structured, and accessible, reflecting the organization's commitment to transparency and engagement. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Gravity Forms, ensuring good SEO, accessibility, and user interaction capabilities. Hosting is provided by HEAnet, a reputable Irish academic network provider, which aligns with the organization's national scope. The site demonstrates good mobile optimization and moderate performance, with room for improvement in security headers and DNSSEC implementation. From a security perspective, the site uses HTTPS with a strong SSL configuration and employs security plugins to mitigate common threats. However, it lacks some advanced HTTP security headers and does not publicly disclose incident response or vulnerability disclosure policies. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the website presents a trustworthy, professional, and secure digital presence for the Arts Council, supporting its mission effectively while maintaining good compliance and technical standards.

M

Musée La Piscine de Roubaix

roubaix-lapiscine.com

55

Musée La Piscine de Roubaix is a cultural institution and museum located in France, dedicated to art and industry. It serves a broad audience including tourists, art enthusiasts, and local visitors, offering exhibitions, educational activities, and virtual tours. The museum is supported by the City of Roubaix and various partners, positioning it as an important regional cultural entity. The website reflects this with professional design, consistent branding, and clear navigation. Technically, the site is built on WordPress with common plugins and libraries, providing moderate performance and basic mobile optimization. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit security policies are published. The WHOIS data is missing, which reduces domain trust from a registration perspective, but the website content and partner affiliations strongly indicate legitimacy. Overall, the site is trustworthy, safe, and professionally maintained, with room for improvement in security transparency and accessibility.

I

IM-PACT

im-pact.fr

48

IM-PACT is a specialized consulting firm focused on Building Information Modeling (BIM) services, targeting professionals and companies involved in digital construction modeling. The website presents a professional and consistent brand image, leveraging WordPress with Elementor and Yoast SEO for content management and optimization. The technical infrastructure is modern but lacks some advanced security configurations and privacy compliance features. Security posture is moderate with no detected blocking mechanisms or WAF, but absence of security headers and privacy policies lowers the overall security rating. The domain WHOIS data is unavailable, which reduces trustworthiness and raises moderate concerns about domain registration transparency. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

T

TPF Engenharia

tpfengenharia.com.br

42

TPF Engenharia is a well-established multinational engineering consultancy company with over 55 years of experience, primarily operating in Brazil. The company offers a broad range of services including project development, consulting, management, supervision, and innovation solutions, serving sectors such as transportation, energy, and real estate. Their market position is strong, supported by recognized certifications like ISO 9001, 14001, 45001, and Great Place To Work. The website reflects a professional and trustworthy brand with comprehensive content and clear contact information. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations. It employs Google Tag Manager for analytics and has a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible, though performance is moderate. Security posture is good with HTTPS enforced and no visible sensitive data exposure, but lacks some HTTP security headers and a formal security policy or incident response contact. Overall, the security posture is solid with room for improvement in security headers and vulnerability disclosure. The domain WHOIS data aligns well with the business claims, indicating legitimacy and consistency. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Strategic recommendations include enhancing HTTP security headers, publishing a security policy and incident response contacts, and implementing a security.txt file to facilitate vulnerability reporting. These steps will strengthen trust and compliance while maintaining the company's strong market presence.