Security Directory

C

Office de Tourisme Cap d'Agde Méditerranée, Hérault, Occitanie

capdagde.com

57

The website www.capdagde.com serves as the official tourism office portal for the Cap d'Agde Mediterranean region in Hérault, Occitanie, France. It provides comprehensive information on local tourism services including accommodation, activities, events, and gastronomy, targeting tourists and visitors to the region. The site is built on WordPress and integrates Matomo analytics for visitor tracking. The technical infrastructure is modern with responsive design and good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy, which should be further investigated. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and clearer contact information to improve trust and security.

L

La Ramoneta

laramoneta.com

47

La Ramoneta is a small, niche travel and lifestyle blog focused on promoting tourism and cultural experiences in the South of France. The website offers curated content including guides on activities, places to see, local food, accommodations, and cultural insights. The business model centers around content publishing and local food tours, targeting tourists and visitors interested in authentic regional experiences. The site maintains a consistent brand presence with active social media channels and a professional design. Technically, the website is built on WordPress with Yoast SEO and integrates Google Analytics and CookieControl for analytics and cookie consent management. The site is mobile optimized and has good SEO practices, though performance is moderate. Hosting is provided by Vautron Rechenzentrum AG, and the domain is registered since 2017, consistent with the business age. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks advanced security headers and does not enable DNSSEC. There is no visible privacy policy, terms of service, or incident response information, which are gaps in compliance and security transparency. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent from the data provided. Overall, La Ramoneta presents a trustworthy and professional online presence for a small travel blog, but should improve privacy and security disclosures to enhance compliance and user trust.

T

The Good Life France

thegoodlifefrance.com

57

The Good Life France is a niche lifestyle and travel website dedicated to providing comprehensive information about France, its culture, holidays, and lifestyle. Established in 2011, it targets enthusiasts of French culture and travel, offering rich content that appeals to a general audience interested in France. The website leverages WordPress CMS with Elementor and Astra theme, indicating a modern and maintainable technical infrastructure. Hosting is managed via OpenHostingService, and the site uses HTTPS with domain protections in place, though DNSSEC is not enabled. Security headers are minimal, and no explicit privacy or cookie policies are present, which are areas for improvement. Social media integration is strong, enhancing the site's reach and trustworthiness.

The website www.ville-marseillan.fr serves as the official digital portal for the municipal government of Marseillan, France. It provides residents and visitors with access to municipal news, public service notifications, beach weather updates, and live webcam feeds. The site targets local citizens and tourists, offering essential government services and information. The business model is that of a government entity providing public information and services online. Technically, the site is built on WordPress CMS with a custom theme and uses modern web technologies including jQuery and Matomo for analytics. It incorporates accessibility features and multilingual support via Google Translate. The site is well-optimized for SEO and mobile devices, with good performance and structured data markup enhancing search visibility. From a security perspective, the site enforces HTTPS, includes standard security headers, and does not expose sensitive data. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR requirements. However, there is no explicit security policy or incident response information published, which could be improved. Overall, the website demonstrates a solid security posture and professional digital presence appropriate for a municipal government. The lack of WHOIS data is likely due to privacy protection, which is reasonable for this type of entity. Strategic recommendations include publishing a dedicated security policy, enhancing incident response transparency, and maintaining regular security audits to ensure ongoing protection.

F

Fédération Hiéro Mulhouse

noumatrouff.fr

55

Noumatrouff is a cultural organization and music venue based in Mulhouse, France, operating as Fédération Hiéro Mulhouse. The website serves as a portal for concerts, rehearsal studio bookings, workshops, and membership subscriptions, targeting musicians and local music enthusiasts. The business model relies on event ticketing, studio rentals, and community engagement. The site links to partner platforms for ticket sales and studio reservations, indicating a collaborative ecosystem. Technically, the website is built on WordPress with common plugins for galleries, forms, and cookie management, reflecting a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and formal privacy policies. The absence of WHOIS data limits domain trust verification, though the website content and external references suggest legitimacy. Overall, Noumatrouff presents as a professional cultural entity with room for improvement in privacy and security transparency.

L

La Kunsthalle, Centre d’Art Contemporain d’Intérêt National

kunsthallemulhouse.com

53

La Kunsthalle is a French contemporary art center operated by the city of Mulhouse, established since 2008. It serves as a cultural institution offering exhibitions, artist residencies, mediation programs, and publishing activities. The website targets the general public interested in contemporary art and is positioned as a nationally recognized center supported by public and regional cultural bodies. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, and uses Google Analytics for visitor tracking. The site is moderately optimized for mobile and SEO, with a good content structure and navigation. Security-wise, the site uses HTTPS and domain registration protections but lacks DNSSEC and security headers, and does not provide explicit security or incident response policies. Privacy compliance is weak, with no cookie consent mechanism despite tracking scripts. Overall, the website is professional and trustworthy but could improve in privacy and security practices.

L

Les Ateliers Grandis

lesateliersgrandis.fr

43

Les Ateliers Grandis is a French artisan manufacturer specializing in luxury clothing, with a strong heritage dating back to 1993. The company focuses on delivering refined, rare, and precious garments that reflect technical mastery and excellence in craftsmanship. Their market position is solid within the luxury fashion manufacturing sector, serving prestigious couture houses and emphasizing quality and tradition. The website reflects this positioning with professional design, clear navigation, and detailed business descriptions. Technically, the site is built on WordPress with modern plugins and libraries, optimized for mobile and SEO, and includes a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site is trustworthy and professionally maintained, with clear contact information and social media presence supporting legitimacy.

S

SHEMA

shema.fr

51

SHEMA is a French regional public-private mixed economy company specializing in urban development, public facility construction, and business real estate in Normandy. It serves local authorities and economic actors with a strong regional presence and a portfolio of ongoing projects. The website reflects a professional and well-structured digital presence with clear business information and modern technology use. The technical infrastructure is based on WordPress with performance optimizations and privacy compliance mechanisms in place. Security posture is good with HTTPS and cookie consent but lacks explicit security headers and incident response contacts. WHOIS data is missing, which slightly impacts trust but the overall legitimacy is supported by the website content and contact information. Strategic recommendations include enhancing security headers, publishing a security policy, and monitoring domain registration details.

C

CHI Créteil

chicreteil.fr

11

The Centre Hospitalier Intercommunal de Créteil (CHI Créteil) is a large public healthcare institution serving the Créteil region in France. The website provides comprehensive information about the hospital's services, specialties, patient resources, and professional opportunities. It is well-positioned as a regional healthcare provider with a strong focus on accessibility, patient care, and medical expertise. The site also highlights research and teaching activities, indicating an integrated healthcare and academic mission. Technically, the website is built on WordPress with modern web technologies including jQuery, Slick Carousel, and Google Fonts. It uses Matomo analytics configured with privacy by design, and a robust cookie consent mechanism via Tarteaucitron, reflecting a mature approach to privacy compliance. The site is mobile-optimized and accessible, with clear navigation and professional design. From a security perspective, the site enforces HTTPS and employs cookie consent controls. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly present and should be implemented to enhance security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted. Overall, the website is trustworthy, professional, and compliant with GDPR and cookie regulations. The lack of WHOIS data is typical for .fr domains and does not detract from legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular updates to plugins and CMS to mitigate vulnerabilities.

C

ClimateLaunchpad

climatelaunchpad.org

48

ClimateLaunchpad is a globally recognized green business ideas competition that supports entrepreneurs and innovators in transforming their sustainable ideas into successful startups. Established in 2015 and co-funded by the European Union through Climate KIC, it offers training, coaching, and competitive platforms culminating in national and regional finals. The website reflects a mature digital presence with a WordPress CMS, integration of Google Tag Manager for analytics, and a responsive design optimized for mobile users. Security practices include HTTPS enforcement and domain transfer protections, although enhancements like DNSSEC and security headers could improve the security posture. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. Overall, the site demonstrates high professionalism, trustworthiness, and a strong commitment to its mission of fostering green innovation worldwide.

S

SDIS34

sdis34.fr

54

SDIS34 is the official fire and rescue service for the Hérault department in France, providing essential public safety services including firefighting, rescue operations, prevention, and recruitment of volunteer and professional firefighters. The website serves as an information portal for residents and stakeholders, offering news, practical information, and access to services. The organization maintains a strong social media presence and uses modern web technologies to deliver content effectively. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder and Slider Revolution, integrating Google Maps for location services. The site is secured with HTTPS and employs standard security headers, reflecting a good security posture. Performance and mobile optimization are adequate, though accessibility could be improved. Security-wise, the site shows good practices like HTTPS enforcement and no visible vulnerabilities. However, the absence of explicit privacy, cookie, and terms of service pages, as well as missing WHOIS data, slightly reduce trust and compliance confidence. There is no visible incident response or vulnerability disclosure information. Overall, SDIS34's website is a professional and trustworthy public service platform with room for improvement in privacy compliance and transparency. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding security and incident response information, and ensuring WHOIS data availability to enhance legitimacy and trust.

Tourisme Hérault operates an official regional tourism website promoting the Hérault region in Southern France. The site offers rich multimedia content, multilingual support, and detailed information about natural and cultural attractions, targeting tourists and holidaymakers. The business model focuses on tourism promotion and visitor engagement through surveys, videos, and inspirational content. Technically, the website is built on WordPress with Elementor and integrates modern analytics and tracking tools such as Google Tag Manager and Matomo. The site is mobile-optimized and accessible with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are not detected and no explicit incident response contacts are provided. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the site is trustworthy and well-maintained but would benefit from improved transparency in domain registration and contact information.

The website 'Produire bio en Bretagne' serves as an informational and support platform dedicated to organic farming in the Brittany region of France. Operated by FRAB, it provides educational content, technical resources, testimonials, and event information to assist farmers considering or undergoing conversion to organic agriculture. The site is positioned as a regional authoritative resource with a clear focus on organic agriculture principles and practices. Technically, the website is built on WordPress using the Total theme and Visual Composer, with integrations such as Google Analytics and Revolution Slider. Hosting is provided by OVH, a reputable provider, and the domain registration is consistent with the business's history and location. Security posture is adequate with HTTPS enforced and some privacy considerations, though there is room for improvement in implementing security headers and explicit cookie consent mechanisms. Overall, the site is professional, well-branded, and trustworthy, targeting agricultural professionals and stakeholders in organic farming.

G

Groupe Goyer

goyer.fr

37

Groupe Goyer is a well-established French company specializing in the design, manufacturing, and installation of custom façades, particularly in aluminium and mixed materials, with a history dating back to 1931. The company operates an integrated industrial process from conception to installation, serving a European market. Their website reflects a mature digital presence built on WordPress with modern plugins and SEO tools, offering good mobile optimization and accessibility features. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not publicly disclosed. The domain registration data is consistent with the company's long history and business claims, hosted by OVH, a reputable provider. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

Z

Zoznam, s.r.o.

plnielanu.sk

58

Plnielanu.sk is a Slovak lifestyle and health-oriented media website operated under the company Zoznam, s.r.o. It provides inspirational content focused on maintaining a healthy and active lifestyle for a general adult Slovak-speaking audience. The website leverages a WordPress CMS with Yoast SEO for content management and optimization, supported by a range of modern marketing and analytics tools including Google Tag Manager, Facebook Pixel, Gemius, and Didomi for GDPR-compliant consent management. The site integrates advertising networks such as Google Ad Manager and Adform, indicating a business model reliant on content publishing and advertising revenue. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the website presents a professional and trustworthy digital presence consistent with a regional media brand.

Hubbub is a specialized WordPress plugin provider focused on audience growth and website customization tools. Their flagship product offers features such as personalized email sign-up forms, social sharing buttons for over 18 networks, Pinterest sharing options, and integration with the Fediverse. The company positions itself as a niche player in the WordPress plugin market, targeting bloggers, marketers, and website owners seeking to convert visitors into engaged subscribers. The business is relatively new, founded in 2023, and operated by NerdPress, a certified B Corp, indicating a commitment to social and environmental standards. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Easy Digital Downloads for e-commerce, Affiliate WP for affiliate marketing, and analytics tools like Google Tag Manager and Microsoft Clarity. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. However, DNSSEC is not enabled, and several security headers are not explicitly detected, representing areas for improvement. No privacy or cookie policies were found, which is a compliance gap, especially for GDPR. No explicit contact information or incident response policies are publicly available, limiting transparency in security and privacy matters. Overall, the website is professional, trustworthy, and well-designed but would benefit from enhanced privacy compliance and security policy disclosures to improve user trust and regulatory adherence.

S

Species360

species360.org

61

Species360 is a reputable non-profit organization specializing in providing a global database and information system for zoos, aquariums, and wildlife conservation entities. Their platform supports animal data management and conservation efforts worldwide, positioning them as a leader in zoological data services. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to their specialized audience. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and maintaining good performance and mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, although DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the domain registration details align well with the organization's history and legitimacy, supporting a high trust score.

U

Unie českých a slovenských zoologických zahrad

ucszoo.com

56

The Unie českých a slovenských zoologických zahrad (UCSZOO) website serves as the official online presence for a recently established non-profit organization representing 18 zoological gardens across Czechia and Slovakia. The organization focuses on coordinating conservation efforts, animal exchange programs, educational campaigns, and professional development among member zoos. The website is built on WordPress using the Divi theme and includes several plugins for enhanced functionality, including translation services. The site is well-branded and professionally designed, targeting zoo professionals and the general public interested in nature conservation. However, it lacks explicit privacy and cookie policies, which are important for compliance with data protection regulations.

I

International Zoo Educators Association

izea.net

69

The International Zoo Educators Association (IZEA) is a well-established non-profit organization founded in 2000, focused on conservation education within zoos and aquariums globally. The website serves as a resource hub offering training, educational materials, and networking opportunities for professionals in the field. The organization positions itself as a global leader in conservation education, targeting educators and conservation professionals. Technically, the website is built on WordPress, leveraging plugins such as Jetpack and Akismet for analytics and spam protection, respectively. The site demonstrates good digital maturity with a professional design, mobile optimization, and clear privacy compliance mechanisms including GDPR-aligned cookie consent. Security posture is solid with HTTPS enforced and domain registration consistent with the organization's profile, though some improvements like enabling DNSSEC and adding security headers could enhance protection. Overall, the site is trustworthy, safe, and professionally maintained, supporting the organization's mission effectively.

F

Fundacja FaniMani

fanipay.pl

35

FaniPay.pl is a specialized online payment platform tailored for foundations and associations in Poland, enabling them to collect donations securely and efficiently. Operated by Fundacja FaniMani since 2016, it integrates with the FaniMani platform and offers features such as simple registration, transparent fees, daily payouts, and donor data access. The platform enjoys trust from over 12,500 NGOs and partners with reputable payment processors like Autopay and Tpay. Technically, the website is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and secure forms, though improvements are needed in DNSSEC and security headers. Privacy compliance is partial due to the absence of a privacy policy page, but cookie consent is implemented. Overall, the site demonstrates a mature business model with strong credibility in the non-profit sector.

S

Saint-Georges-sur-Baulche

saint-georges-sur-baulche.fr

44

Saint-Georges-sur-Baulche is a French municipal government website providing comprehensive information and services to local residents, including administrative procedures, urban planning, family portals, and community news. The site serves as the official digital presence of the commune, targeting residents, families, seniors, youth, and local associations. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Bootstrap framework, and Leaflet.js for mapping, ensuring good mobile responsiveness and SEO optimization. The site employs cookie consent mechanisms and Google Analytics with user consent, reflecting a good privacy compliance posture. Security-wise, the site uses HTTPS with an excellent SSL configuration but lacks some HTTP security headers and formal security policies, indicating room for improvement. The WHOIS data is unavailable, likely due to privacy protection or registry policies, but the website content and branding strongly indicate legitimacy as an official municipal site. Overall, the site is professional, trustworthy, and well-maintained, with moderate technical performance and good user experience.

V

Vaše rodinné pekařství v Šumperku

pekarstviuradnice.cz

39

Vaše rodinné pekařství v Šumperku is a small local bakery business based in Šumperk, Czech Republic, specializing in fresh bakery products baked twice daily with an option for customers to pre-order their favorite items. The website is built on WordPress and uses modern web technologies such as lazy loading for images and Google Fonts for typography. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. However, the content is basic and lacks detailed business or contact information. The absence of privacy and cookie policies indicates limited compliance with data protection regulations. Security posture is moderate with HTTPS enabled but missing security headers and no visible incident response or security policies. The WHOIS data is unavailable, which raises concerns about domain legitimacy and reduces overall trust. No advertising or tracking technologies are detected, suggesting minimal user tracking. Overall, the website serves its purpose as a local bakery's online presence but requires improvements in compliance, security, and transparency to enhance trust and professionalism.

I

Ing. Hana Cindrová

hanacindrova.cz

41

Ing. Hana Cindrová operates a small external accounting office primarily serving clients in the Olomoucký region and across the Czech Republic. The business offers comprehensive accounting, tax processing, and financial reporting services with over 17 years of industry experience. The website is professionally designed using WordPress and the Divi theme, providing clear service descriptions and contact information. Technically, the site is well-structured and mobile-optimized but lacks advanced security headers and privacy compliance features. The absence of WHOIS data limits domain trust assessment, though the site content and contact details appear legitimate. Overall, the site demonstrates a solid business presence with room for improvement in security and compliance.

P

ProFitArt

profitart.cz

56

ProFitArt is a cultural organization dedicated to supporting independent artists specializing in dance, physical, and nonverbal theatre. The organization provides production facilities, workshops, and event hosting to foster artistic development and collaboration. Their market position is niche, focusing on the independent performing arts community primarily in the Czech Republic. The website reflects a small-sized entity with a professional and consistent brand presence, supported by partnerships with cultural institutions and funding bodies. Technically, the website is built on WordPress with modern plugins such as Autoptimize and Yoast SEO, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Performance is moderate, with lazy loading images and optimized CSS. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, indicating GDPR compliance. However, the absence of security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the presence of clear contact information and partner logos. Overall, ProFitArt's website is a trustworthy and professional platform for its target audience, with good privacy compliance and a secure environment. Strategic enhancements in security policies and domain transparency would further strengthen its risk profile.

E

EcoSmart Building

ecosmart-building.com

58

EcoSmart Building is a French company specializing in energy performance and indoor air quality solutions for buildings. The company offers innovative predictive supervision technologies to optimize energy consumption and maintain healthy indoor environments. Their services target building managers and businesses seeking sustainable and efficient building management solutions. The website is built on WordPress using modern plugins such as Elementor and Revolution Slider, hosted by OVH sas. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS enabled and domain protection flags, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website presents a professional image with clear contact information but would benefit from enhanced security and privacy disclosures.

A

ANCV Cheque-Vacances

cheque-vacances.com

57

ANCV Cheque-Vacances operates a well-established French government-backed program providing holiday vouchers to individuals and organizations, facilitating access to tourism, leisure, and cultural activities. The website reflects a mature digital presence with a strong brand, extensive partner network, and multiple user segments including public agents, enterprises, and tourism professionals. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use, though some accessibility and security header improvements are recommended. Security posture is solid with HTTPS and bot protection, but lacks some advanced DNS and header configurations. Privacy compliance is minimal on the homepage, with no visible privacy or cookie policies, which should be addressed to meet GDPR standards. Overall, the domain registration and WHOIS data confirm legitimacy and consistency with the business claims.

M

MARKETING MALÝCH FIREM | Ing. Andrea Frodlová

andreafrodlova.cz

42

MARKETING MALÝCH FIREM | Ing. Andrea Frodlová is a small Czech Republic based business specializing in creating simple WordPress websites and providing marketing consulting services tailored for small businesses and local entrepreneurs. The website presents a professional image with clear contact details and a focus on helping clients improve their online presence and marketing communications. The business appears to be active since at least 2019 and emphasizes personalized service and affordability. Technically, the website is built on WordPress with standard marketing and analytics tools such as Google Analytics and Facebook Pixel, and it includes a GDPR-compliant cookie consent mechanism. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response information. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business registration details support legitimacy. Overall, the site is well-structured, mobile-optimized, and provides a good user experience with clear business focus.

V

Voala

voala.cz

41

Voala is a Czech graphic design studio specializing in custom graphic projects, visual identities, and printing services tailored for architects, designers, and corporate clients. The company operates a professional website with an integrated e-commerce platform, showcasing a portfolio and offering bespoke paper products and printing solutions. The business positions itself as a reliable partner with a focus on quality and tradition, targeting a niche market in the Czech Republic. Technically, the website is built on WordPress with WooCommerce, using modern libraries such as Bootstrap and jQuery, and integrates multiple analytics tools including Google Analytics, Smartlook, and Behavee Analytics. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but no visible cookie consent mechanism. WHOIS data is unavailable, which impacts domain trust assessment. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

K

Kanguroo-event

kanguroo-event.fr

46

Kanguroo-event.fr is a French event management platform specializing in complex event scenarios such as protocol invitations, conferences, and sports federations. The company offers a customizable SaaS solution with features including invitation management, access control via QR codes, seating arrangements, payment processing, and multi-language support. The website is professionally designed using WordPress and modern web technologies, providing a good user experience and clear navigation. However, the absence of WHOIS data limits domain trust verification. Security posture is solid with HTTPS and some security headers, but could be improved with explicit policies and disclosures. Privacy compliance is basic with a cookie consent mechanism but no clear privacy policy page. Overall, the platform appears legitimate and professional, targeting organizers of specialized events.

L

Location iPad Toulosue

location-ipad-toulouse.com

46

The website www.location-ipad-toulouse.com operates as a local rental service agency in Toulouse, France, specializing in short and long-term rentals of electronic devices such as iPads, iPhones, Samsung devices, screens, and stands. The business targets both individuals and companies in need of such equipment, positioning itself as a responsive and proximity-based service provider. The website content is primarily in French and is optimized for search engines using Yoast SEO, with structured data implemented for enhanced visibility. Technically, the site is built on WordPress with modern plugins including Ninja Forms for contact forms and WP Rocket for performance optimization. The design is professional and mobile-friendly, providing a good user experience.

S

SELA Immo

sela-immo.fr

50

SELA Immo is a regional real estate company specializing in the sale and rental of land, houses, and apartments primarily in the Loire-Atlantique region of France. The website serves both individual consumers and professional clients, offering property listings, advice, and partnership opportunities with construction companies. The company positions itself as a trusted local real estate developer with a focus on sustainable and community-oriented projects. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Google Analytics, providing a modern and responsive user experience. However, some technical improvements are possible, including better security header implementation and full configuration of analytics tools. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security policies and incident response information. The absence of WHOIS data for the domain reduces trustworthiness and warrants further investigation. Overall, the website is professional, content-rich, and compliant with GDPR privacy requirements, making it a credible platform for real estate services in its market niche.

L

Loire-Atlantique Développement

boxloireatlantique.com

54

LA Box Loire-Atlantique is a French regional e-commerce platform specializing in local and responsible tourism gift boxes, offering curated weekend stays and activities in the Loire-Atlantique region. The company, represented by Loire-Atlantique Développement, targets consumers interested in authentic local experiences and sustainable tourism. The website is professionally designed with good content quality, clear navigation, and mobile optimization, supported by modern WordPress and WooCommerce technologies. SEO and structured data are well implemented, enhancing discoverability and user engagement. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit contact information or incident response details are visible. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, suggesting a need for further verification. Overall, the website presents a trustworthy and professional front for a niche hospitality business, with room for improvement in security and transparency.

The website sorties-scolaires-loireatlantique.com is operated by Loire-Atlantique Développement and serves as a regional platform for organizing school outings and pedagogical stays in the Loire-Atlantique area of France. It targets schools, teachers, and parents of primary and college students, offering educational trips and classes de découvertes. The site is positioned as a trusted regional educational tourism service provider with a medium-sized organizational footprint, founded in 2019. Technically, the website is built on WordPress with common plugins such as Yoast SEO, Google Analytics, and Complianz GDPR for cookie consent. The hosting registrar is Nuxit, and the site uses HTTPS with a good SSL configuration. Performance is moderate, with good mobile optimization and basic accessibility features. SEO is well implemented with proper meta tags and structured data. From a security perspective, the site benefits from HTTPS and reCAPTCHA on forms but lacks some security headers and DNSSEC. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements include adding a comprehensive privacy policy, enabling DNSSEC, and enhancing security headers to strengthen the security posture and privacy compliance.

L

Les Enfoirés

enfoires.fr

60

Les Enfoirés is a prominent French non-profit organization focused on social aid and fundraising through charity concerts and merchandise sales. The website serves as the official platform to engage supporters, partners, and the general public with information about events, news, and donation opportunities. The organization leverages a modern WordPress-based infrastructure with integrations such as Google Tag Manager and OneTrust for cookie consent, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and explicit privacy policies are recommended. The absence of WHOIS data limits domain trust verification but does not detract from the site's apparent legitimacy and professional presentation.

L

Le Tambour

assoletambour.com

52

Le Tambour is a French non-profit cultural association founded in 2001, dedicated to literary diffusion by connecting literature with other art forms. The organization offers writing workshops, public readings, theatrical performances, and text montages aimed at diverse audiences including schools and urban communities. The website reflects a professional and consistent brand presence with clear contact information and regional partnerships. Technically, the site is built on WordPress with common plugins and hosted by OVH sas, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences.

A

Agence SBA

agence-sba.com

11

Agence SBA is a French digital agency based near Poitiers, specializing in custom website creation, digital strategy, web marketing, AI integration, and compliance services such as RGPD and accessibility. The company positions itself as a strategic partner for SMEs and public entities, leveraging over 25 years of experience to deliver innovative and tailored digital solutions. The website demonstrates a mature technical infrastructure built on WordPress with modern libraries and plugins, ensuring good SEO, accessibility, and user experience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some improvements like DNSSEC and security headers could enhance protection. Overall, the site is professional, trustworthy, and compliant with privacy regulations, reflecting a credible and established business.

M

Mulhouse Alsace Agglomération - m2A

mulhouse-alsace.fr

10

Mulhouse Alsace Agglomération (m2A) is a regional government entity serving 39 communes in the Mulhouse Alsace area of France. The website serves as an official portal providing information on territorial development, public services including water, waste management, mobility, energy, culture, tourism, social services, and environmental initiatives. The organization positions itself as a key regional authority with a broad scope of services aimed at residents and stakeholders in the region. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO Premium, Elementor, AngularJS, and various performance and UI enhancement plugins. It integrates Google Analytics and Google Tag Manager for analytics and uses a chatbot service for user interaction. The site is mobile-optimized and features good SEO and accessibility practices, although some legacy technologies like AngularJS 1.4.14 may pose security concerns. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism. However, explicit security headers are not clearly detected, and the use of an older AngularJS version suggests a need for review and upgrade. No exposed sensitive data or critical vulnerabilities were found in the HTML content. The WHOIS data is unavailable, which slightly reduces domain trust but the official social media presence and content quality support legitimacy. Overall, the website is professional, well-structured, and serves its public service mission effectively. Strategic recommendations include enhancing security headers, upgrading legacy frameworks, and improving transparency in domain registration information to strengthen trust and security posture.

W

Welttierschutzgesellschaft e.V.

welttierschutz.org

51

Welttierschutzgesellschaft e.V. is a German non-profit organization dedicated to animal protection and welfare across multiple continents including Africa, Asia, South America, and Europe. The organization operates various projects such as animal rescue, veterinary aid, educational programs, and wildlife protection. Their website reflects a medium-sized NGO with a professional online presence, targeting donors, volunteers, and animal welfare supporters. Technically, the website is built on WordPress using the Kadence theme and includes modern JavaScript libraries and GDPR-compliant cookie management via Borlabs Cookie. Security posture is good with HTTPS enforced and domain registration protections in place, though DNSSEC is not enabled. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the site is trustworthy and professionally maintained, with room for improvement in formal privacy disclosures and enhanced DNS security.

F

Fundacja DODO

fundacjadodo.pl

53

Fundacja DODO is a Polish non-profit foundation dedicated to supporting the Wrocław Zoo and animal welfare initiatives. The website serves as a platform for fundraising and donations, leveraging WooCommerce and payment gateways such as Przelewy24 and Tpay. The organization appears to be small-sized and locally focused, with a domain age consistent with its founding year of 2016. The website is built on WordPress with modern technologies including React and jQuery, and integrates marketing tools like MailerLite for email campaigns. Mobile optimization and user experience are good, though accessibility and SEO could be improved. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy and cookie policies are missing, which impacts compliance and trust. Overall, the site is legitimate and trustworthy but would benefit from enhanced security and compliance documentation.

R

Ready for Boarding - travel not only by plane

readyforboardingblog.com

47

Ready for Boarding is a multilingual travel blog primarily targeting travel enthusiasts interested in experiences beyond air travel. Established around 2013, it offers travel stories, tips, and guides with a focus on Poland and Central Europe. The website is built on WordPress and integrates multiple third-party services including WooCommerce for e-commerce, Google Analytics for traffic analysis, and Facebook Pixel for advertising effectiveness. It employs a comprehensive cookie consent mechanism and privacy policy compliant with GDPR, reflecting a mature approach to privacy and user consent. Security posture is adequate with HTTPS enforced and use of Google reCAPTCHA, but lacks visible security headers and formal security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and consistent with a small professional travel blog. Overall, the site demonstrates good technical and content quality with room for improvement in security transparency and domain registration clarity.

K

Kavárna Stará Pošta

starapostabela.cz

57

Kavárna Stará Pošta is a small local café and bar located in Bělá pod Bezdězem, Czech Republic, offering specialty coffee (Nordbeans), local beers (Zichovec), Prosecco, smoothies, homemade desserts, and light meals. The business targets a general mature audience seeking a calm and welcoming space for socializing or relaxation. The website is built on WordPress with modern plugins like Elementor and WooCommerce, featuring a professional design and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security best practices.

R

Ready for Boarding

readyforboarding.pl

43

Ready for Boarding is a Polish travel blog and e-commerce platform established since 2013, offering travel-related content and digital products such as downloadable guides and merchandise. The website targets travel enthusiasts primarily in Poland but also supports multilingual audiences through sister sites. Technically, the site is built on WordPress with WooCommerce, integrating modern analytics and marketing tools including Google Analytics, Meta Pixel, and Real Cookie Banner Pro, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and use of Google reCAPTCHA, although some security headers could be improved. Overall, the site presents a professional and trustworthy online presence with good content quality and user experience.

G

Genesii

genesii.fr

52

Genesii is a French technology company specializing in bespoke web application development, custom websites, and AI integration services. Positioned as a small but innovative agency, it serves businesses seeking digital transformation solutions. The company holds the 'Jeune Entreprise Innovante' certification, highlighting its commitment to innovation and research, particularly in machine learning and e-learning platforms. The website is professionally designed, mobile-optimized, and provides clear contact information, supporting its business credibility. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery, Owl Carousel, and Swiper. It integrates Google Analytics, Google Tag Manager, and Calendly for marketing and scheduling. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, alongside a GDPR-compliant cookie consent mechanism. However, additional security headers and a published security policy would enhance its security posture. The security evaluation shows a good baseline with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong with visible policies and consent mechanisms. The absence of WHOIS data limits domain trust analysis, but the website content and certifications support legitimacy. Overall, the site is safe, professional, and trustworthy, with recommendations to improve security headers and incident response transparency. Strategically, Genesii should focus on enhancing its security documentation, expanding accessibility compliance, and maintaining transparency in data protection to strengthen trust and compliance in the evolving regulatory landscape.

A

Association La SEVE

seve-asso.fr

57

Association La SEVE is a small French non-profit organization focused on education about biodiversity and permaculture training. The website presents a professional and consistent brand image with clear navigation and relevant content targeting a general audience interested in environmental education. The organization offers key services including nature animations, project accompaniment, and environmental site management, positioning itself as a regional leader in ecological education and permaculture. Technically, the site is built on WordPress using Elementor and Yoast SEO, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though security headers and incident response information are lacking. Privacy compliance is basic with no explicit privacy or cookie policies found, but a cookie consent mechanism is present. Overall, the site is trustworthy and safe, with no adult or questionable content detected. However, the absence of WHOIS data reduces domain trustworthiness, suggesting a need for domain registration verification.

U

Université de Technologie Belfort-Montbéliard

utbm.fr

56

Université de Technologie Belfort-Montbéliard (UTBM) is a recognized French public higher education institution specializing in engineering, master, and doctoral programs. It maintains accreditations such as CTI and the EUR-ACE label, emphasizing quality education and research. The website targets students, researchers, companies, and alumni, offering comprehensive academic and continuing education services. The institution has a solid market position within the French and international education sectors, supported by active social media presence and international partnerships. Technically, the website is built on WordPress with modern plugins and frameworks including Bootstrap, jQuery, and WPBakery. It employs GDPR-compliant cookie consent mechanisms and supports multilingual content via Weglot. Performance and mobile optimization are good, with accessibility features implemented. Analytics are primarily handled via Matomo, with Google Analytics configured but inactive. Security posture is good with HTTPS enforced and no exposed sensitive data. However, the absence of a published security policy and incident response contacts is a gap. The WHOIS data is unavailable, which slightly reduces trustworthiness but is mitigated by the institution's established reputation and accreditation. Overall, UTBM's website is professional, secure, and compliant, serving its educational mission effectively. Strategic improvements include publishing security policies and incident response information to enhance transparency and trust.

N

NaKoncerty.cz

nakoncerty.cz

29

NaKoncerty.cz is a Czech language media portal dedicated to providing news, updates, and information about concerts, festivals, and the music scene in the Czech Republic. The website offers a variety of articles covering upcoming events, festival news, and concert reviews, targeting music enthusiasts and festival goers primarily in the Czech region. The business model revolves around content publication and advertising revenue, leveraging Google AdSense and Jetpack analytics for monetization and user insights. Technically, the website is built on the WordPress CMS platform, utilizing common web technologies such as jQuery, Slick Carousel, and FontAwesome for UI enhancements. The site is served over HTTPS with a good SSL configuration, ensuring secure data transmission. However, it lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. The website is mobile optimized with a responsive design and moderate performance. From a security perspective, the site demonstrates basic good practices such as HTTPS usage but misses critical security headers and formalized privacy compliance mechanisms. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is not publicly available, indicating privacy protection or registry restrictions, but the website content and structure suggest a legitimate and professional media portal. Overall, NaKoncerty.cz presents a well-structured and content-rich platform for music event information in the Czech Republic. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance. These steps will strengthen the site's security posture and business credibility while maintaining its role as a valuable resource for its audience.

R

Ready for Boarding

readyforboarding.cz

10

Ready for Boarding is a travel-focused website offering content and e-commerce services related to travel, primarily targeting Czech and Polish speaking audiences. The site provides travel guides, tips, and sells travel-related products through WooCommerce. It maintains a professional online presence with multilingual support and integrates multiple marketing and analytics tools such as Google Analytics, Meta Pixel, and PixelYourSite. The technical infrastructure is based on WordPress CMS with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is common for small businesses. Overall, the website is legitimate, well-maintained, and compliant with GDPR requirements.

B

Bwin Casino Oostende

casinooostende.be

40

Bwin Casino Oostende operates as a casino and entertainment venue in Belgium, offering casino gaming, events, jackpots, and restaurant services. The website is professionally designed using WordPress and Elementor, with modern web technologies and a cookie consent mechanism in place. Security posture is good with HTTPS and bot protection via Google reCAPTCHA, though explicit security headers and privacy policies are missing. The domain WHOIS data is restricted, which is common for privacy but reduces transparency. Overall, the site targets adult casino customers and maintains a moderate trust level.

N

Nadační fond Eduzměna

cpv-kh.cz

55

The website cpv-kh.cz represents the Nadační fond Eduzměna, a regional educational support center focused on the Kutnohorsko region in the Czech Republic. It provides information about the Eduzměna project, aiming to enhance educational opportunities and wellbeing for children, parents, teachers, and school leadership. The site offers resources such as workshops, mental health initiatives, and community support, positioning itself as a key regional educational partner. Technically, the site is built on WordPress using Elementor, with modern libraries like Bootstrap and FontAwesome, and integrates marketing and analytics tools including Google Analytics and Facebook Pixel. The site is hosted likely by WEDOS, a Czech hosting provider, and uses HTTPS with a good SSL configuration. Security posture is solid with no visible vulnerabilities, though explicit security headers and policies are not fully implemented. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information includes a clear phone number and social media links, but no verified company email was found. Overall, the site is professional, well-branded, and trustworthy, serving a non-profit educational mission. Strategic improvements include publishing privacy and security policies, adding incident response contacts, and enhancing security headers to strengthen trust and compliance.

V

vaClavinek s.r.o.

imrvere.com

43

Imrvére is a small hospitality business based in Frýdlant nad Ostravicí, Czech Republic, offering restaurant dining, catering, and food delivery services. The company operates a professionally designed WordPress website using the Divi theme and WooCommerce for e-commerce capabilities. The site is well-structured with good SEO practices and mobile optimization, targeting a general audience interested in unique gastronomic experiences. Technically, the website leverages modern web technologies and integrates Google Analytics for user tracking. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though it lacks some security headers and published security policies. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the website presents a credible and professional business presence with room for improvement in privacy compliance and security transparency.