Security Directory

H

Handwerkskammer Dresden

hwk-dresden.de

53

Handwerkskammer Dresden is a regional chamber of crafts serving the Dresden area, providing a broad range of services including vocational training, continuing education, business consulting, legal advice, and political representation for the handcraft sector. The organization targets handcraft businesses, apprentices, trainers, and educational institutions within its jurisdiction. The website is professionally designed, content-rich, and well-structured, supporting multiple languages and offering extensive resources and event information. Technically, the site is built on TYPO3 CMS with modern libraries such as jQuery and Bootstrap, hosted likely by Deutsche Telekom, ensuring reliable infrastructure and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. Overall, the site demonstrates high business credibility and trustworthiness with clear contact information and active social media presence.

D

Deutscher Gutachter und Sachverständigen Verband e. V.

dgusv.de

47

DGuSV is a well-established professional association serving experts and appraisers primarily in Germany and the German-speaking region. The organization offers membership benefits including certifications, training seminars, networking opportunities, and access to specialized products and services. The website reflects a mature digital presence with a professional design, clear navigation, and GDPR-compliant consent management. Technically, the site uses a variety of modern JavaScript libraries and frameworks to enhance user experience, including sliders and consent platforms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of explicit incident response or security policy pages suggests room for enhancement in transparency. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

F

FIPE - Federazione Italiana Pubblici Esercizi

fipe.it

58

FIPE - Federazione Italiana Pubblici Esercizi is a leading Italian federation representing over 300,000 businesses in the hospitality, entertainment, and tourism sectors. The organization supports a wide range of public establishments including bars, restaurants, pizzerias, gelaterias, and more, serving approximately one million employees and generating significant economic value. The website reflects a mature digital presence with comprehensive content tailored to its target audience of hospitality businesses in Italy. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user engagement, demonstrating good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its sector.

F

Federalberghi

federalberghi.it

58

Federalberghi is the leading Italian federation representing the hospitality and tourism sector, advocating for over 20,000 member enterprises. The organization provides services including advocacy, training, publishing industry reports, and organizing events. The website is built on Microsoft SharePoint and uses a variety of JavaScript libraries and frameworks to deliver a professional user experience. While the site is secure with HTTPS and basic security practices, it lacks advanced security headers and explicit GDPR compliance mechanisms such as cookie consent banners. Contact information and organizational transparency are strong, supporting trustworthiness. The site links to numerous partner and affiliated domains, reinforcing its position in the industry.

G

GWA Gesamtverband Kommunikationsagenturen

gwa.de

64

The GWA website represents the Gesamtverband Kommunikationsagenturen, a leading German association for communications agencies. It provides comprehensive information about its services, including marketing effectiveness awards, networking, events, and educational resources. The site targets agencies, marketing professionals, and related stakeholders, positioning itself as a central industry hub. Technically, the site is built on WordPress with modern plugins and scripts, optimized for mobile and accessibility, and uses Cloudflare for DNS and CDN services. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with room for improvement in security transparency and terms of service availability.

T

Thomas Mohn

thomasmohn.de

41

Thomas Mohn is a professional photographer and videographer based in Münster, Germany, specializing in business photography, image films, drone footage, advertising films, and event videos. The website presents a well-established small business with a strong regional presence and a focus on authentic visual storytelling for corporate and private clients. The site features positive customer testimonials and showcases client logos, reinforcing trust and credibility. Technically, the website is built on WordPress using Elementor, with modern plugins for enhanced user experience and cookie consent management. Hosting is provided by kasserver.com, and the site is well-optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

N

Nemzeti Kulturális Alap

nka.hu

54

Nemzeti Kulturális Alap is a Hungarian government entity focused on supporting cultural projects through grant funding. The website serves as an information and service portal for artists, cultural institutions, and the public interested in cultural funding opportunities. It has a well-structured design with clear navigation and is optimized for mobile devices. The technical infrastructure is based on WordPress CMS with common plugins and integrations such as Google Analytics and Google Custom Search Engine, hosted likely on government infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive data protection notice and GDPR cookie consent. Business credibility is high given the domain age, WHOIS consistency, and government affiliation. Overall, the website is professional, trustworthy, and serves its purpose effectively.

P

Pro Hockey GmbH

hockeyshop.it

40

Pro Hockey GmbH operates a specialized e-commerce platform focused on professional hockey sports equipment, including ice hockey, inline hockey, and floorball products. The company targets athletes and enthusiasts in the hockey sports niche primarily in Italy, offering a wide range of products such as sticks, protective gear, apparel, and accessories. The website is well-structured with clear navigation and product categorization, supporting a positive user experience. The business maintains a credible market position with physical locations and verified contact information.

R

Réseau de Villes et Villages Numériques

rvvn.org

69

Réseau de Villes et Villages Numériques (RVVN) is a French non-profit association that supports local government entities such as EPCI, communes, and intercommunal syndicates in mutualizing their digital communication and dematerialization needs. The organization offers a suite of services including TYPO3-based website development, accessibility audits, collaborative platforms using Zimbra, participative democracy tools via Decidim, and resource management solutions. RVVN positions itself as a regional to national digital services provider for public administrations, expanding its reach since 2023. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content in French.

S

Südtiroler Jugendring (SJR)

jugendring.it

38

The Südtiroler Jugendring (SJR) is a well-established non-profit umbrella organization representing children's and youth associations in South Tyrol, Italy. Founded in 1977, it provides advocacy, participation opportunities, youth counseling, and various services to support youth engagement. The website reflects a professional and consistent brand image with clear communication channels and relevant content tailored to its target audience of youth and youth organizations in the region. Technically, the site is built on TYPO3 CMS with modern frontend technologies, offering good mobile optimization and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or malicious content.

C

Communauté de Communes du Coeur de l'Avesnois

coeur-avesnois.fr

60

The website www.coeur-avesnois.fr serves as the official digital presence of the Communauté de Communes du Coeur de l'Avesnois, a French local government entity. It provides comprehensive information and services related to community life, local governance, public services, cultural activities, and citizen engagement. The site targets residents and stakeholders within the Avesnois region, offering resources such as news updates, event agendas, and administrative contacts. The business model is that of a public sector service provider, focusing on community support and information dissemination. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including Bootstrap, jQuery, FontAwesome, and Leaflet for mapping. It employs Matomo analytics for privacy-conscious visitor tracking and implements cookie consent mechanisms compliant with GDPR. The site is mobile-optimized with good navigation and accessibility features, though some accessibility aspects could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent tools but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data is consistent with AFNIC's privacy policies and does not detract from the site's legitimacy. Overall, the website demonstrates a solid digital infrastructure suitable for a government entity, with good content quality and privacy compliance. Strategic improvements in security headers, accessibility, and incident response transparency would further strengthen its posture.

A

AH Lasereinsatztechnik GmbH

ah-laser.de

57

AH Lasereinsatztechnik GmbH is a German manufacturing company specializing in advanced laser processing technologies including 2D and 3D laser cutting, water jet cutting, CNC bending, and welding. Founded in 1991, the company operates from Hardthausen am Kocher and serves industrial clients requiring precision manufacturing and integrated logistics. The website reflects a mature business with a broad service portfolio and a strong partner network. Technically, the site is built on the Neos CMS platform using modern JavaScript libraries and frameworks, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

komptech.com

komptech.com

53

Komptech.com is a professional website representing a company specializing in environmental technology, particularly in waste management and biomass processing machinery. The company targets business clients in the transportation and energy sectors, offering industrial equipment and technology solutions. The website demonstrates a good level of digital maturity with a modern WordPress CMS, optimized performance, and SEO best practices. However, the absence of explicit privacy and cookie policies and lack of visible contact information limit its privacy compliance and user trust. Security posture is generally good with HTTPS and some security headers, but could be enhanced by adding more explicit security policies and incident response contacts. The WHOIS data is missing or protected, which reduces domain trustworthiness and suggests a need for further verification of domain registration details. Overall, the website is professional and safe, but improvements in privacy compliance and transparency are recommended.

C

Communauté d'Agglomération de Cambrai

agglo-cambrai.fr

59

The Communauté d'Agglomération de Cambrai is a local government entity serving the Cambrai region in France. The website provides comprehensive information about its public services including economic development, transport, environmental management, cultural activities, and administrative resources. It targets residents and stakeholders within the agglomeration area, offering accessible and structured content to support community engagement and service delivery. Technically, the website is built on TYPO3 CMS with modern web technologies such as Bootstrap and jQuery, ensuring a responsive and user-friendly experience. The site includes cookie consent mechanisms and complies with GDPR requirements, reflecting a mature approach to privacy and data protection. However, some accessibility features are basic and could be enhanced. From a security perspective, the site uses HTTPS and implements cookie consent but lacks explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces the trust score slightly, but the presence of official partner logos and consistent branding supports legitimacy. Overall, the website is professional, trustworthy, and well-suited for its public sector role. Strategic improvements in security transparency, accessibility, and WHOIS data availability would further strengthen its posture.

A

Austrian Society for Environment and Technology

oegut.at

51

The Austrian Society for Environment and Technology (ÖGUT) is a well-established non-profit organization based in Austria, focusing on sustainable development, environmental protection, and technology. Their website highlights various projects and initiatives related to sustainable finance, energy, biodiversity, mobility, and circular economy, targeting professionals, companies, and institutions interested in sustainability. The organization provides consulting, training, and networking services to promote sustainable practices. Technically, the website uses a modern JavaScript stack including jQuery, Slick Carousel, and Matomo for analytics, indicating a moderate to good level of digital maturity. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security-wise, the site uses HTTPS and includes security tokens in forms, but lacks visible security headers and published security policies, which could be improved. Privacy compliance is partial, with no visible privacy or cookie policies, though the use of Matomo suggests some privacy-conscious analytics. Overall, the website is trustworthy and professional, with a strong business credibility score but room for improvement in security and privacy transparency.

D

Dijon métropole

metropole-dijon.fr

50

Dijon métropole is the official metropolitan government entity serving Dijon and its 23 associated communes in France. The website provides comprehensive information and services related to urban planning, environmental quality, transportation, housing, social services, and citizen participation. It positions itself as a high-quality environmental metropolitan authority with a focus on community engagement and sustainable development. The site targets residents, local businesses, and stakeholders within the metropolitan area. Technically, the website is built on WordPress with a modern technology stack including Yoast SEO for optimization, Matomo for privacy-conscious analytics, and various JavaScript libraries for enhanced user experience such as Leaflet for mapping and AOS for animations. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism that complies with GDPR requirements. From a security perspective, the site enforces HTTPS and uses cookie consent tools to manage user privacy. However, it lacks explicit security headers and does not publish a security policy or incident response contact information. The WHOIS data is not publicly available, which reduces transparency but is not uncommon for government domains. No vulnerabilities or suspicious content were detected. Overall, Dijon métropole's website demonstrates a solid digital presence with good content quality and technical implementation. Strategic improvements in transparency around privacy policies, security disclosures, and WHOIS data would enhance trust and compliance further.

P

Phönix FM

phoenix-fm.de

43

Phönix FM is a medium-sized German facility and property management company, part of the CLEES Unternehmensgruppe. They provide comprehensive building technology, maintenance, and property management services primarily in residential and commercial real estate sectors. The website is built on TYPO3 CMS and uses standard web technologies such as jQuery and Bootstrap. While the site is professionally designed and content-rich, it lacks explicit privacy, cookie, and security policies, which are critical for GDPR compliance and user trust. No security headers or incident response information were found, indicating room for improvement in security posture. The domain WHOIS data is minimal but consistent with a legitimate business operation. Overall, the website is functional and business-focused but would benefit from enhanced privacy and security features.

V

VEXO Lichttechnik GmbH & Co. KG

vexo-licht.de

42

VEXO Lichttechnik GmbH & Co. KG is a German company specializing in manufacturing and designing outdoor lighting solutions, including object lighting, park and square lighting, and municipal lighting concepts. The company targets public and municipal sectors primarily within Germany, positioning itself as a regional and national supplier of high-quality outdoor lighting products. The website content is primarily in German and focuses on showcasing their lighting products and services with a basic but functional design. Technically, the website employs older JavaScript libraries such as jQuery 1.10.0, along with Slick Carousel and Fancybox for UI elements. The site shows basic mobile optimization and moderate performance but lacks modern CMS identification or advanced frameworks. There is no evidence of analytics or tracking tools, and no social media integration is visible. The hosting appears to be managed via servers indicated by the domain's nameservers. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which lowers its security posture. The use of outdated JavaScript libraries may expose it to vulnerabilities. Privacy compliance is minimal, with a privacy policy page present but no cookie consent mechanism or terms of service found. Contact information is not directly visible on the homepage, which may affect user trust and compliance. Overall, the website is functional but basic, with moderate business credibility but room for improvement in security, privacy compliance, and technical modernization. Strategic recommendations include implementing HTTPS, updating libraries, adding cookie consent, and improving contact transparency to enhance trust and compliance.

M

mesrdv.com

mesrdv.com

54

mesrdv.com is a French-based online appointment scheduling platform established in 2014, offering professionals a SaaS solution to optimize their appointment management and client interactions. The website promotes its mobile applications for iOS and Android, targeting professionals and their clients seeking efficient scheduling tools. The business operates in the technology sector with a small company size and a clear focus on user-friendly, real-time appointment management. Technically, the website uses a combination of jQuery, AOS for animations, and tarteaucitron.js for cookie consent management. The site is moderately optimized for mobile devices and performance, with basic SEO and accessibility features. Hosting and domain registration are consistent and transparent, though DNSSEC is not enabled, and no advanced security headers were detected. From a security perspective, the site implements basic protections such as captcha on contact forms and cookie consent mechanisms. However, it lacks published security policies, incident response contacts, and vulnerability disclosure information. The absence of DNSSEC and security headers suggests room for improvement in hardening the site against attacks. No critical vulnerabilities or blocking mechanisms were detected. Overall, mesrdv.com presents a professional and trustworthy online presence with moderate technical maturity and security posture. Strategic improvements in security policies, DNS security, and enhanced privacy compliance would strengthen its risk profile and user trust.

L

La Maison du Bien-Être

bien-etre-massages.be

10

La Maison du Bien-Être is a small, recently founded wellness center located in Namur, Belgium, specializing in a variety of massage therapies including relaxing, therapeutic, sports, and aromatherapy massages. The business also offers private cabin rentals for wellness professionals. The website presents a professional and comprehensive digital presence with clear service descriptions, customer testimonials, and multiple contact channels. The company holds relevant certifications such as IFAPME, enhancing its credibility in the local market. Technically, the website uses modern web technologies including jQuery, Google Tag Manager, and service workers for PWA capabilities. It is mobile-optimized with good SEO practices and accessibility features, although some security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS transparency and security.txt reduces trust. The WHOIS data is restricted by the registry, showing a 'NOT ALLOWED' status, which is common for .be domains but impacts domain legitimacy assessment. Overall, the website is trustworthy and professional, serving its target audience effectively. Strategic improvements in security headers and transparency would further enhance trust and compliance.

C

CONSTRUCTS SOLUTIONS

construct-solutions-renovation.be

57

CONSTRUCTS SOLUTIONS is a small, established construction and renovation company based in Belgium, serving Brussels and surrounding areas. With over 30 years of experience, it offers a comprehensive range of services including new construction, complete renovation, electrical work, plumbing, and exterior and interior works. The company emphasizes quality, compliance with standards, and customer satisfaction. The website is professionally designed, mobile-optimized, and includes structured data for local business identification. Technically, it uses modern web technologies such as jQuery, Google Tag Manager, and reCAPTCHA to enhance user experience and security. Security posture is good with HTTPS and CAPTCHA protections, though some security headers and explicit policies are missing. Privacy and cookie policies are present and GDPR compliant. WHOIS data is unavailable due to registry restrictions, which slightly impacts trust but the website content and business information appear legitimate and professional.

H

Healthyfit Be Free

healthyfitbefree.com

57

Healthyfit Be Free is a small French healthcare business specializing in personalized sports coaching and nutritional guidance primarily serving the Paris 8 and 16 arrondissements and nearby areas. Founded in 2021 by Éric Capel, the company offers in-home and corporate coaching services, complemented by a line of nutritional products under the Beautysané brand. The website demonstrates a professional and consistent brand presence with strong customer trust signals such as positive Google reviews and active social media profiles. Technically, the site uses modern web technologies including Google Tag Manager, jQuery, and cookie consent management, and is optimized for mobile and accessibility. Security posture is good with HTTPS and cookie consent but lacks published security policies or incident response contacts. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency and legitimacy. Overall, the site is well-built and trustworthy from a user perspective but would benefit from improved domain registration transparency and enhanced security disclosures.

C

Clees Unternehmensgruppe

clees.net

21

Clees Unternehmensgruppe is a medium-sized, owner-managed real estate company specializing in the construction, development, rental, and management of residential and commercial properties across Germany. The company has a long-standing market presence of approximately 50 years, offering a portfolio of well-maintained apartments, houses, commercial spaces, and land. Their business model focuses on both new developments and revitalization of existing properties, targeting tenants, property owners, and business partners. The website is professionally designed using TYPO3 CMS and modern frontend libraries, providing good user experience and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy policy and terms of service are present, indicating basic GDPR compliance. Contact information is clearly provided, enhancing business credibility.

F

Fairtrade Deutschland e.V.

fairtrade-kampagnen.de

47

Fairtrade Deutschland e.V. operates as a non-profit organization dedicated to promoting fair trade campaigns across Germany. The website serves as a hub for information and coordination of local initiatives such as Fairtrade-Towns, Fairtrade-Schools, and Fairtrade-Universities, supporting producers in developing countries. The organization maintains a strong market position within the fair trade advocacy sector in Germany, leveraging a network of over 1,800 local groups and providing resources, news, and event information to its audience. Technically, the website is built on TYPO3 CMS with a modern and well-maintained technology stack including jQuery, Bootstrap, and various UI libraries. The site demonstrates good mobile optimization, clear navigation, and a professional design. Hosting is provided by Timme Hosting, inferred from the nameservers. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism with granular user controls. However, it lacks explicit security headers and does not publish a security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is strong, with a clear privacy policy and cookie banner aligned with GDPR requirements. Overall, the website is trustworthy, professionally managed, and compliant with privacy standards. Strategic improvements could include adding security headers, publishing a security policy, and providing a vulnerability disclosure channel to enhance security posture and user trust.

P

Pfeifer & Langen

liz-online.de

57

LIZ-Online is a specialized agricultural information platform operated under the parent company Pfeifer & Langen, focusing on sugar beet cultivation. The website provides a range of services including advisory tools, news updates, decision support programs, and access to a dedicated business portal (Rübenportal). The target audience primarily consists of farmers, agricultural advisors, and stakeholders involved in sugar beet production. The platform maintains a consistent brand presence and offers multilingual support in German, Dutch, and French. Technically, the website is built on TYPO3 CMS and leverages modern front-end technologies such as jQuery, Bootstrap, and FriendlyCaptcha for security and user interaction.

A

AutoFrame-FM

kia.md

42

AutoFrame-FM operates as the official distributor of KIA automobiles in Moldova, providing a comprehensive online platform for vehicle sales, service bookings, and customer engagement. The website targets consumers in Moldova interested in KIA vehicles, offering detailed model information, pricing, and promotional offers. The business is positioned as a key player in the Moldovan automotive retail sector with a medium-sized operation founded in 2021. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and various JavaScript libraries. It employs SEO best practices and is optimized for mobile devices, delivering a good user experience. Hosting is provided by a Moldovan hosting provider, consistent with the business location. Analytics tools such as Google Analytics and Ahrefs are used for performance and marketing insights. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks visible security headers and formal security policies. There is no evidence of privacy or cookie policies, which impacts compliance with GDPR and related regulations. Contact information is primarily via web forms, with no explicit emails or phone numbers displayed. No incident response or vulnerability disclosure mechanisms are present. Overall, the website is professional and functional with moderate security posture and compliance gaps. Strategic improvements in privacy policy publication, security headers, and incident response transparency would enhance trust and regulatory adherence.

C

Commune de Châlo-Saint-Mars

chalosaintmars.fr

58

The website www.chalosaintmars.fr serves as the official digital presence for the commune of Châlo-Saint-Mars, a small municipality in the Essonne department of France. It provides residents and visitors with comprehensive information about municipal services, local news, cultural activities, urban planning, and community events. The site is well-structured, user-friendly, and targets local citizens and tourists interested in the commune's heritage and services. Technically, the site leverages a combination of jQuery, jQuery UI, Jssor Slider, and Fancybox libraries, managed through the WebSee CMS platform. It is served over HTTPS, ensuring encrypted communication, and includes a cookie consent mechanism compliant with basic GDPR requirements. The site is moderately optimized for performance and mobile devices, with good navigation clarity and accessibility features, though some improvements could be made. From a security perspective, the site enforces HTTPS but lacks visible security headers and does not provide explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data for the domain reduces the overall trust score, though the official nature of the site and consistent branding support its legitimacy. Overall, the website is a reliable and professional municipal portal with good content quality and user experience. Strategic improvements in security headers, privacy policy transparency, and domain registration verification would enhance trust and compliance.

Z

Zákulisí, z.s.

venuse-ve-svehlovce.cz

51

Divadlo Venuše ve Švehlovce is a small, independent cultural venue and non-profit organization based in Prague, Czech Republic, focused on contemporary live art and theater with an emphasis on original artistic creation and social responsibility. The organization has been active since 2014 and offers a diverse program of theatrical performances, festivals, and community cultural events. The website is professionally designed using WordPress and modern web technologies, providing good user experience and mobile optimization. Privacy and cookie policies are implemented with GDPR compliance, and the site uses Google Analytics for visitor tracking. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks advanced security headers and explicit incident response information. The absence of WHOIS data reduces domain registration trust, but the website content and contact information support legitimacy. Overall, the site is a credible and well-maintained digital presence for a cultural non-profit.

MDDM Brandýs nad Labem - Stará Boleslav is a local educational and cultural institution providing courses, events, camps, and creative workshops primarily targeting children and youth in the Brandýs nad Labem-Stará Boleslav region of the Czech Republic. The organization operates as a non-profit entity with strong community ties and partnerships with local government and cultural organizations. The website reflects a well-maintained digital presence with clear navigation and relevant content for its audience. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and various UI libraries, and is mobile optimized with lazy loading for images. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and a formal privacy policy page. WHOIS data is missing, which raises some concerns about domain registration transparency, but the active and professional website presence mitigates this risk to some extent. Overall, the site is trustworthy and serves its community well, but could improve compliance and security practices.

M

Musée La Piscine de Roubaix

roubaix-lapiscine.com

55

Musée La Piscine de Roubaix is a cultural institution and museum located in France, dedicated to art and industry. It serves a broad audience including tourists, art enthusiasts, and local visitors, offering exhibitions, educational activities, and virtual tours. The museum is supported by the City of Roubaix and various partners, positioning it as an important regional cultural entity. The website reflects this with professional design, consistent branding, and clear navigation. Technically, the site is built on WordPress with common plugins and libraries, providing moderate performance and basic mobile optimization. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit security policies are published. The WHOIS data is missing, which reduces domain trust from a registration perspective, but the website content and partner affiliations strongly indicate legitimacy. Overall, the site is trustworthy, safe, and professionally maintained, with room for improvement in security transparency and accessibility.

T

TPF

tpfingenieria.com

50

TPF is a large, international multidisciplinary engineering consultancy headquartered in Spain, with a presence in over 45 countries through multiple subsidiaries. The company offers a broad range of engineering services including consultancy, design, asset management, project supervision, and quality control, targeting businesses and public sector clients. Their market position is strong, supported by a diversified portfolio and global reach. Technically, the website is built on Drupal 10, uses modern JavaScript libraries such as jQuery and GSAP, and integrates privacy-conscious analytics via Plausible. The site is mobile-optimized and accessible, with good SEO practices. However, some security best practices such as DNSSEC and security headers are missing. Security posture is moderate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security policies and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. Overall, the website is professional and trustworthy, but improvements in privacy compliance and security hardening are recommended to enhance user trust and regulatory adherence.

T

TPF

tpf.ro

46

TPF is a well-established global multidisciplinary engineering consultancy headquartered in Belgium, active in over 40 countries with a strong portfolio in environment and water, transport and mobility, and building and cities sectors. The company offers a broad range of services including consultancy, design, technical asset management, and project management. It holds a reputable market position, evidenced by its ENR Top 50 ranking and BREEAM Excellent certifications. The website reflects a mature digital presence built on Drupal 10 with modern JavaScript libraries and a privacy-conscious analytics approach using Plausible. However, explicit privacy and cookie policies are missing, representing a compliance gap. Security posture is moderate with no visible security headers and no incident response or vulnerability disclosure information published. Contact information is clearly provided, enhancing business credibility.

T

TPF Pyramide Ingénierie

tpfpyramide.ma

40

TPF Pyramide Ingénierie is a Moroccan engineering company specializing in multi-disciplinary project management and technical consulting services, including structural engineering, fluids, electricity, project economics, and diagnostics. The company is ISO 9001 certified and operates as part of the larger TPF Group, positioning itself as a trusted local engineering firm. Their website reflects a professional image with clear service offerings and contact information, targeting construction and real estate sectors. Technically, the website employs a modern tech stack with Bootstrap and various JavaScript libraries to enhance user experience. Hosting is provided by Heberjahiz, and the domain registration is consistent and transparent. The site is mobile-optimized and offers good navigation, though SEO and accessibility could be improved. From a security perspective, the site lacks visible security headers and formal privacy or cookie policies, which are compliance gaps. The domain uses HTTPS, but SSL configuration details are unknown. No forms or analytics scripts were detected, indicating minimal data collection and tracking. Incident response and vulnerability disclosure information are absent. Overall, the website is safe and professional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

T

TPF Engineering

tpfengineering.be

39

TPF Engineering is a large, established multidisciplinary engineering consultancy headquartered in Belgium, operating globally with subsidiaries in multiple countries. The company provides engineering design, construction, and operational services primarily targeting large public and private organizations. The website is built on Drupal 10 and hosted by OVH, featuring modern technologies such as jQuery, GSAP, and Fancybox. The site is professionally designed, mobile-optimized, and offers clear navigation and relevant content including news, projects, and company information. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal privacy/cookie policies. Analytics usage is minimal and privacy-friendly, but GDPR compliance could be improved by adding explicit policies and consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate presence.

iREPORT s.r.o. operates a Czech-language online music and style magazine providing news, concert photo reports, reviews, interviews, video and audio content, exclusive CD/DVD supplements, and contests. The website targets music enthusiasts primarily in the Czech Republic and offers a rich multimedia experience with frequent content updates and an active event calendar. The business model is focused on media publishing with advertising revenue streams and audience engagement through contests and social media. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, Google Fonts, and various tracking and advertising scripts such as Google Analytics, Hotjar, and Rubicon Project. The site is mobile optimized and uses HTTPS with a good SSL configuration. Consent management is implemented via Didomi and CPEX CMP, supporting GDPR compliance. However, the site lacks some advanced security headers and explicit contact or security policy information. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent but could improve by adding more comprehensive security headers and publishing incident response contacts. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional appearance and operation of the website. Overall, the website is well-designed, content-rich, and compliant with privacy regulations, but the missing domain registration data and limited security policy transparency present moderate risks. Strategic improvements in security posture and transparency would enhance trust and compliance.

N

Net15

websee-mairie.fr

60

Websee Mairie, operated by Net15, is a specialized service provider offering turnkey website creation solutions for French local governments including town halls, collectivités, EPCI, and syndicates. With nearly 30 years of experience and over 700 sites delivered, they provide custom design, SEO optimization, accessibility compliance, and comprehensive training for autonomous site management. The company positions itself as a trusted partner for public sector digital presence, emphasizing proximity and personalized support from their base in Aurillac, France. Technically, the website is powered by the WebSee CMS platform, leveraging jQuery and Fancybox libraries, and hosted by Net15. The site is well-optimized for mobile and accessibility standards, with good SEO practices and a moderate performance profile. Security posture is strong, featuring SSL certificates with A+ ratings, robust security headers, and regular third-party audits. However, the absence of a publicly accessible privacy policy page and WHOIS data transparency slightly reduce trust scores. Overall, the website is professional, secure, and compliant with cookie consent regulations, serving a clear government sector niche.

The website ville-poussan.fr serves as the official online presence for the municipal government of Poussan, France. It provides residents and visitors with news, practical information, and community updates. The site is positioned as a small government entity's digital portal, focusing on local public service and information dissemination. The business model is typical of municipal websites, offering free access to public information and services. The website is well-branded and consistent with government standards, reflecting a trustworthy and official source.

I

Institut Technologique FCBA

fcba.fr

9

Institut Technologique FCBA is a French industrial technical center specializing in forestry, cellulose, wood construction, and furniture sectors. It provides a range of services including innovation support, environmental performance evaluation, training, laboratory testing, certification, and diagnostics. The organization targets professionals in these industries and holds recognized certifications such as Qualiopi, COFRAC, and ASI, positioning itself as a reputable technical institute in France. The website is built on WordPress with Elementor and uses modern web technologies including jQuery, Bootstrap, and various UI libraries. It features a cookie consent mechanism and is mobile-optimized with good navigation and content quality. However, some images have lazy loading errors, and explicit privacy and terms of service pages are not clearly found, indicating room for improvement in compliance and user experience. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks explicit security headers and a vulnerability disclosure mechanism. No WHOIS data was retrievable, limiting domain legitimacy verification, but the website content and structure suggest a legitimate and professional organization. Overall, the website is functional, professional, and trustworthy with recommendations to enhance privacy compliance, security headers, and user experience for improved trust and regulatory adherence.

Tourisme Hérault operates an official regional tourism website promoting the Hérault region in Southern France. The site offers rich multimedia content, multilingual support, and detailed information about natural and cultural attractions, targeting tourists and holidaymakers. The business model focuses on tourism promotion and visitor engagement through surveys, videos, and inspirational content. Technically, the website is built on WordPress with Elementor and integrates modern analytics and tracking tools such as Google Tag Manager and Matomo. The site is mobile-optimized and accessible with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are not detected and no explicit incident response contacts are provided. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the site is trustworthy and well-maintained but would benefit from improved transparency in domain registration and contact information.

C

Commune de Vincelles

vincelles.fr

63

The website www.vincelles.fr serves as the official municipal portal for the Commune de Vincelles, a small local government entity in the Yonne department of France. It provides residents and visitors with information about municipal services, local news, events, and community resources. The site is well-structured and targets local citizens and tourists interested in the region. The business model is typical of a government website, focusing on public service and community engagement rather than commercial activities. Technically, the site uses a WebSee CMS platform with common JavaScript libraries such as jQuery, jssor slider, and fancybox for UI enhancements. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, there is room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected, but the absence of WHOIS data and security policies reduces overall trustworthiness. The site does not appear to use analytics or tracking services, which aligns with privacy-conscious public sector practices. Overall, the website is a functional and trustworthy municipal portal but would benefit from enhanced privacy compliance, security hardening, and transparency regarding domain registration and data protection policies.

C

Commune de Villefargeau

villefargeau.fr

63

The website www.villefargeau.fr serves as the official online presence for the commune of Villefargeau in the Yonne department of France. It provides municipal information, local news, event calendars, administrative procedures, and contact details aimed primarily at residents and visitors. The site is positioned as a local government portal with a focus on community engagement and public service. Technically, the site uses a variety of JavaScript libraries including jQuery, Leaflet for mapping, and Jssor Slider for image slideshows, all managed via the WebSee CMS platform. The site is mobile-optimized and accessible, with a clear navigation structure and cookie consent mechanisms in place. Security-wise, the site enforces HTTPS but lacks visible HTTP security headers and formal incident response or vulnerability disclosure information. The absence of WHOIS data reduces domain trustworthiness, though the official nature of the site and consistent branding mitigate concerns. Overall, the site is functional and professional but could improve security posture and transparency.

O

Oprodent s.r.o.

oprodent.sk

48

Oprodent s.r.o. is a Slovak-based company specializing in providing professional e-learning courses focused on radiation protection for dental practitioners. The company offers two main courses: a basic 16-hour training and an 8-hour update training, both compliant with Slovak radiation protection legislation. Their market position is niche, targeting dental professionals who require mandatory certification for ionizing radiation use. The website reflects a small but professional business with clear branding and transparent contact and business information. Technically, the website employs a modern but straightforward technology stack including jQuery, Google reCAPTCHA v3 for bot protection, and Matomo for analytics, hosted on Websupport infrastructure. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with no critical technical debt observed. From a security perspective, the site uses HTTPS with DNSSEC enabled, integrates reCAPTCHA for form security, and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or security incidents are evident, but improvements in security headers and incident response transparency are recommended. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. The risk profile is low, with recommendations focusing on enhancing security headers and formalizing incident response channels to further strengthen the security posture.

C

CM CONTROL, s.r.o.

apresort.sk

53

Harmony AP Resort is a small hospitality business offering apartment and cottage accommodation in the Liptov region of Slovakia, near the Malinô Brdo ski resort. The website presents a clear business description, contact details, and highlights key services such as family vacations, corporate events, and outdoor activities including e-bike rentals. The domain is well established since 2013 and DNSSEC is enabled, indicating a legitimate and trustworthy online presence. Technically, the site uses older JavaScript libraries like jQuery 1.8.3, which may pose security risks, and lacks modern security headers and privacy policies. The website is accessible without any WAF or blocking mechanisms, and no adult or explicit content is present, making it safe for general audiences.

C

CM Control, s.r.o.

cmcontrol.sk

50

CM Control, s.r.o. is a Slovakian company specializing in vehicle technical inspections, emission controls, and originality checks. Established in 2007, it serves both individual vehicle owners and large fleets, offering convenient services including an interactive booking system and customer amenities. The company holds ISO 37001 certification, demonstrating commitment to anti-corruption standards, which enhances its market credibility. Technically, the website employs common JavaScript libraries such as jQuery and jQuery UI, with a moderate performance profile and basic mobile optimization. The site lacks a CMS and advanced SEO or accessibility features but maintains a consistent and professional design. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the domain is well-registered with DNSSEC enabled and a long registration history, supporting legitimacy. However, the website lacks visible HTTPS enforcement and security headers, and no privacy policy or terms of service are published, representing compliance and security gaps. The cookie consent mechanism is implemented, but overall privacy compliance could be improved. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced security measures, privacy documentation, and technical improvements to strengthen compliance and user trust.

G

GardenSpa s.r.o.

higold.hu

56

HIGOLD, operated by GardenSpa s.r.o., is a Slovak-based company specializing in the design, manufacture, and retail of luxury outdoor furniture. The company has a rich history dating back to 1989 and has expanded globally with a presence in over 150 countries. Their business model focuses on high-quality, modular outdoor furniture collections targeting discerning customers seeking premium products. The website supports multiple languages and offers an online showroom and catalog access, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, Google APIs, and the Nette framework, providing a responsive and user-friendly experience. Security measures include Google reCAPTCHA v3 integration on contact forms, but the absence of explicit security headers and privacy policy pages indicates room for improvement. The WHOIS data is unavailable due to EURid privacy policies, but the website content and contact information suggest a legitimate and professional business. Overall, the site scores well on content quality and business credibility but should enhance privacy compliance and security posture.

T

TPF

tpf.eu

46

TPF is a well-established global multidisciplinary engineering consultancy headquartered in Belgium, with a strong presence in over 40 countries through multiple subsidiaries. The company offers a broad range of engineering services including consultancy, design, technical asset management, and project management. Their market position is reinforced by recognitions such as BREEAM Excellent certifications and rankings in ENR's Top 50 International Design Firms. The website reflects a professional and consistent brand image targeting engineering clients and infrastructure projects worldwide. Technically, the site is built on Drupal 10 with modern JavaScript libraries and is optimized for mobile and accessibility. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security headers and policies are missing. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

M

Micropulse

micropulse.fr

35

Micropulse is a French web agency specializing in the creation of custom websites and management software, with a focus on car rental and e-commerce sectors. The company offers tailored solutions including online rental sites, e-commerce platforms, collaborative sites, and bespoke management tools. The website presents a moderate level of digital maturity, utilizing common JavaScript libraries and Google Analytics for tracking, but lacks modern security headers and visible privacy or cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and client references suggest a legitimate business operation. Security posture is basic with room for improvement in SSL configuration and security best practices. Overall, the website is functional but would benefit from enhanced compliance and security measures to improve trust and user confidence.

S

STEILMANN PRAHA spol. s r.o.

steilmann.cz

45

Steilmann Praha spol. s r.o. is a well-established fashion retail company operating since 1999, offering a portfolio of recognized fashion brands for men and women. The company operates both physical stores and an e-commerce platform, targeting fashion-conscious consumers primarily in the Czech Republic. The website reflects a professional and consistent brand image with clear navigation and relevant content about their products, loyalty programs, and corporate offerings. Technically, the site uses a combination of jQuery, Skel framework, and other JavaScript libraries to deliver a responsive and user-friendly experience, although the CMS is custom or not explicitly identified. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks advanced security headers and published security policies. Privacy compliance is partial due to absence of a privacy policy and terms of service pages. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Democratie Active, operated by MICROPULSE, provides specialized digital solutions for public inquiries and citizen engagement in France. Their offerings include dematerialized registers for public inquiries, digital debates, and private consultations, targeting government authorities and public officials. The website demonstrates a professional presence with user testimonials and a clear service portfolio, positioning them as a niche player in government digital services. Technically, the site uses modern JavaScript libraries such as jQuery, bxSlider, and AOS, with responsive design and Google Analytics integration, indicating a moderate to good digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are missing and no explicit incident response or security policy pages were found. The absence of WHOIS registration data is a concern for domain legitimacy, but the website content and trust signals mitigate this risk somewhat. Overall, the site is well-structured, privacy compliant, and trustworthy for its intended audience.