Security Directory

K

K-TEL Communications GmbH

ktel.cloud

43

K-TEL Communications GmbH is a medium-sized telecommunications company based in Germany, operating since 2016. The company provides telecommunications services and a cloud-based dashboard platform for customer account management. Their website serves primarily as a login portal for their cloud services, targeting business and individual customers in the German market. The company maintains a professional online presence with consistent branding and active social media channels. Technically, the website uses common web technologies such as jQuery, FontAwesome, and Leaflet.js for mapping features, hosted on infrastructure linked to their registrar and DNS providers. The site is mobile-optimized and provides a user-friendly experience with clear navigation and relevant content.

L

Landesregierung Nordrhein-Westfalen

land.nrw

67

The website www.land.nrw is the official online presence of the State Government of North Rhine-Westphalia, Germany. It serves as a comprehensive portal for government news, press releases, public service information, and event announcements targeted at residents, journalists, and government officials. The site demonstrates a high level of professionalism, consistent branding, and excellent content quality, reflecting its authoritative government status. Technically, the site is built on the Drupal CMS platform, utilizing modern web technologies including jQuery UI and a privacy-focused Matomo analytics implementation. The website is well-optimized for mobile devices and accessibility, with clear navigation and structured content. Privacy compliance is robust, featuring detailed privacy and cookie policies with user consent mechanisms aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie consent best practices. While explicit security headers are not fully visible in the provided data, the overall security posture is strong with no detected vulnerabilities or exposed sensitive information. The WHOIS data is privacy-protected, which is justified given the governmental nature of the domain, and no suspicious patterns are detected. Overall, the website presents a low risk profile with strong trust indicators and a mature digital infrastructure. Strategic recommendations include enhancing explicit security header implementation and ongoing monitoring of third-party scripts to maintain security integrity.

D

DIE UMWELTBERATUNG

umweltberatung.at

49

DIE UMWELTBERATUNG is a reputable Austrian non-profit organization specializing in environmental consulting, education, and community engagement. The website offers extensive resources including workshops, events, product databases, and educational materials aimed at promoting sustainable living and ecological awareness. Their market position is strong within Austria, supported by a consistent brand presence and recognized certifications such as the Umweltzeichen. Technically, the site uses a modern JavaScript stack with jQuery and related libraries, is mobile optimized, and integrates privacy-respecting analytics (Matomo) with cookie consent mechanisms. Security posture is solid with HTTPS and privacy-conscious tracking, though additional security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

I

Interreg Europe

interregeurope.eu

69

Interreg Europe is an established European regional cooperation programme that facilitates policy learning and sharing of sustainable solutions among regional and local governments. The website serves as a comprehensive platform providing access to programme documents, project information, and policy solutions, targeting government entities and policy makers. The digital infrastructure is built on Drupal 10 CMS with modern JavaScript libraries, ensuring a professional and responsive user experience. Security posture is strong with HTTPS enforcement and secure login forms, though some security headers could be enhanced. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Overall, the website presents a trustworthy and authoritative presence consistent with an official EU programme.

I

Institut de Recherches Economiques et Sociales sur les Télécommunications

irest.fr

36

IREST (Institut de Recherches Economiques et Sociales sur les Télécommunications) is a French non-profit research institute focused on economic and social aspects of telecommunications and digital technologies. The organization facilitates discussions, roundtables, and publishes bulletins to inform and engage a diverse audience of professionals and researchers. The website reflects a small, specialized entity with a clear mission and consistent branding. Technically, the site is built on WordPress using the Avada theme and several plugins, hosted by OVH, a reputable provider. The site is moderately performant, mobile-optimized, and accessible at a basic level. Security posture is adequate with HTTPS enforced but lacks advanced security headers and incident response disclosures. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

O

Oesterreichische Nationalbank (OeNB)

oenb.at

65

The Oesterreichische Nationalbank (OeNB) serves as Austria's central bank, playing a critical role in monetary policy, financial market stability, banking supervision, and statistical data provision. It operates as part of the Eurosystem, reflecting its integral position in European financial governance. The website targets a broad audience including the general public, financial institutions, researchers, and policymakers, offering extensive information on its functions, services, and educational resources. The OeNB's market position is that of a large, essential government financial institution with a long history dating back to 1925. Technically, the website employs a modern technology stack including jQuery, Highcharts for data visualization, and Matomo for privacy-conscious analytics. It uses a consent management platform to comply with cookie regulations and demonstrates good mobile optimization and accessibility features. The site is well-structured with clear navigation and professional design, supporting a positive user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. It uses a consent mechanism to control tracking scripts, enhancing privacy compliance. However, explicit privacy policies, terms of service, and incident response contacts are not found in the provided content, representing areas for improvement. No vulnerabilities or suspicious elements were detected, and the WHOIS data confirms the domain's legitimacy and consistency with the institution's identity. Overall, the OeNB website is a trustworthy, professional, and secure platform reflecting the stature of a national central bank. Strategic recommendations include publishing comprehensive privacy and security policies, providing clear incident response contacts, and establishing a vulnerability disclosure program to further enhance transparency and trust.

D

Département du Nord

lenord.fr

65

The Département du Nord operates an official government website providing comprehensive information about its policies, services, institutional structure, and news relevant to residents and stakeholders in the Nord department of France. The site serves as a central hub for public service information, cultural and tourism activities, and contact points for the department's administration. It maintains a strong market position as the authoritative source for regional government information. Technically, the website employs a modern tech stack including jQuery, Matomo analytics for privacy-conscious tracking, and Cloudflare for DNS and CDN services. The site is well-structured with good SEO practices, accessibility features, and mobile optimization, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses secure external libraries but lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data confirms domain legitimacy and consistency with the governmental nature of the site. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in privacy compliance and security headers would further enhance its posture.

T

Talents des Cités

talentsdescites.com

72

Talents des Cités is a French government-supported non-profit competition that annually rewards and supports young entrepreneurs and creators located in priority urban neighborhoods (QPV). The website is professionally designed using Drupal 11 and integrates modern web technologies and analytics tools such as Matomo and TagCommander. The site provides detailed information about the competition, its partners, laureates, and events, targeting entrepreneurs and stakeholders in the French entrepreneurial ecosystem. Security posture is good with HTTPS enabled and no exposed sensitive data, though security headers could be improved. Privacy compliance is basic with cookie consent implemented but no explicit privacy or terms pages found. WHOIS data is unavailable, which slightly reduces transparency but the website's professional presentation and government partnerships support its legitimacy.

A

Acquirente Unico S.p.A.

ilportaleofferte.it

63

The website www.ilportaleofferte.it is an official Italian public service portal operated by Acquirente Unico S.p.A., designed to provide consumers with a reliable and simple platform to compare electricity and gas tariffs as mandated by Italian energy law. It offers comprehensive information on energy market options including free market offers, PLACET offers, and protection services. The portal integrates secure user authentication via SPID and CIE, enhancing user data protection and personalized service access. The site is well-branded with official logos and legal references, targeting Italian consumers seeking energy supply information and comparisons.

E

European Cluster Collaboration Platform

clustercollaboration.eu

63

The European Cluster Collaboration Platform (ECCP) serves as a comprehensive online hub connecting over 50,000 European experts, businesses, and policymakers to foster collaboration and innovation across various industry clusters. The platform offers directories, funding information, expertise publications, news, events, and matchmaking services, positioning itself as a leading European government/non-profit initiative to strengthen industrial ecosystems and strategic autonomy. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies including jQuery UI, Font Awesome 6, Matomo Analytics, and Facebook Pixel for tracking and marketing. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a professional and consistent design that enhances user experience. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. While explicit security headers are not fully confirmed, the overall posture is strong with no detected vulnerabilities. The absence of WHOIS registrant data is due to privacy protection, which is justified for this type of EU platform. Overall, the ECCP website is a trustworthy, well-maintained, and professionally managed platform with a clear focus on European cluster collaboration. Strategic recommendations include enhancing security header implementation, publishing a formal security policy and incident response contacts, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

B

Bpifrance Création

prediagentreprise.fr

64

Bpifrance Création is a French government-backed institution providing resources and tools to support entrepreneurs in creating or taking over businesses. The website offers informational content and a prediagnostic tool for business transmission and takeover, currently under redevelopment. The site targets French entrepreneurs and provides access to the Pass Créa platform for project construction. Technically, the site is built on Drupal 10 with modern JavaScript libraries and includes a chatbot for user assistance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy and cookie policies are present and GDPR compliant, though explicit security and incident response policies are not found. Overall, the website is professional, trustworthy, and well-structured, serving as a reliable resource for its audience.

I

ISARA

isaranet.fr

54

ISARA operates an educational digital platform accessible via the isaranet.fr domain, primarily serving students and staff. The website provides login access to various internal authentication domains, indicating segmented user roles such as external users and tutors. The platform is built on JavaServer Faces technology with IceFaces components and jQuery, reflecting a moderately modern but somewhat traditional web stack. Social media presence is established across major platforms, supporting community engagement. However, the website lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security measures such as HTTP security headers are not evident, and no incident response or vulnerability disclosure information is provided, indicating room for improvement in security posture. Overall, the site is functional and safe but would benefit from enhanced privacy and security practices.

A

AutoFrame-FM

kia.md

42

AutoFrame-FM operates as the official distributor of KIA automobiles in Moldova, providing a comprehensive online platform for vehicle sales, service bookings, and customer engagement. The website targets consumers in Moldova interested in KIA vehicles, offering detailed model information, pricing, and promotional offers. The business is positioned as a key player in the Moldovan automotive retail sector with a medium-sized operation founded in 2021. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and various JavaScript libraries. It employs SEO best practices and is optimized for mobile devices, delivering a good user experience. Hosting is provided by a Moldovan hosting provider, consistent with the business location. Analytics tools such as Google Analytics and Ahrefs are used for performance and marketing insights. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks visible security headers and formal security policies. There is no evidence of privacy or cookie policies, which impacts compliance with GDPR and related regulations. Contact information is primarily via web forms, with no explicit emails or phone numbers displayed. No incident response or vulnerability disclosure mechanisms are present. Overall, the website is professional and functional with moderate security posture and compliance gaps. Strategic improvements in privacy policy publication, security headers, and incident response transparency would enhance trust and regulatory adherence.

A

Ach@t Solutions

achatsolutions.fr

65

Ach@t Solutions is a French software group specializing in digital solutions for public procurement and transport management, serving a large client base of public and private sector entities. The company operates through six expert subsidiaries and offers innovative digital services including AI and data management. The website is professionally designed using Drupal 8 and modern web technologies, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies are missing. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and certifications. The site is free of adult or questionable content and complies with GDPR requirements.

B

BAD AACHEN

bad-aachen.net

59

BAD AACHEN is a regional city magazine focused on the Aachen area, providing local news, cultural insights, event information, and lifestyle content. The business operates primarily through print and digital magazine editions, including an ePaper and a mobile app, targeting residents and visitors interested in the regional scene. The website is professionally designed using the Weblication CMS platform and integrates several JavaScript libraries such as jQuery and Fancybox for UI enhancements. Hosting and domain registration are managed by IONOS SE, a reputable provider, with the domain established since 2004, indicating a stable market presence. Technically, the website demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and structured navigation. Security posture is moderate; while HTTPS is presumably enabled (not explicitly stated), no DNSSEC is configured, and security headers are absent, which could expose the site to certain risks. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism, which is a GDPR compliance gap. Overall, the site is safe with no adult or questionable content detected. The business credibility is supported by consistent branding, a long domain age, and active social media channels. However, improvements in security practices and privacy compliance are recommended to enhance trust and regulatory adherence.

E

ECOBAT Technologies Ltd.

ecobatgroup.com

46

ECOBAT Technologies Ltd. is a leading global company specializing in the production and recycling of lead, particularly from lead-acid batteries. They operate a closed recycling loop, ensuring sustainable and environmentally responsible lead production. The company holds multiple ISO and EMAS certifications, underscoring their commitment to quality and environmental standards. Their market position as the world's largest producer and recycler of lead highlights their industry leadership and extensive operational footprint across Europe and beyond. Technically, the website is built on the Weblication CMS platform using legacy JavaScript libraries such as jQuery and jQuery UI. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Hosting details are limited, but the domain is registered with NameCheap and has a stable history since 2011. From a security perspective, the site uses HTTPS and has domain transfer protections enabled but lacks DNSSEC and visible security headers. There is no cookie consent mechanism or explicit privacy compliance features, which may pose regulatory risks. Contact information is primarily via web forms, with no direct emails or phone numbers visible. No incident response or vulnerability disclosure policies are published. Overall, the website is professional and trustworthy with good business credibility but could improve in privacy compliance and security best practices. Strategic enhancements in security headers, cookie consent, and transparency around incident response would strengthen their security posture and regulatory compliance.

M

Mairie de Saint-Andiol

saint-andiol.fr

56

The website www.saint-andiol.fr serves as the official municipal portal for the commune of Saint-Andiol in France. It provides residents and visitors with access to local government services, public information, urban planning resources, and community event details. The site positions itself as a trusted local authority with clear contact information and links to regional partner organizations. Technically, the site is built on the WebSee CMS platform and utilizes common JavaScript libraries such as jQuery and Jssor Slider for interactive elements. While the site is accessible and mobile-optimized, some technical improvements could enhance performance and security. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and uses an older jQuery version that may pose vulnerabilities. Privacy compliance is partial, with no explicit privacy policy found but a cookie management page present. Overall, the site is trustworthy and professionally maintained, suitable for its governmental role.

C

Commune de Châlo-Saint-Mars

chalosaintmars.fr

58

The website www.chalosaintmars.fr serves as the official digital presence for the commune of Châlo-Saint-Mars, a small municipality in the Essonne department of France. It provides residents and visitors with comprehensive information about municipal services, local news, cultural activities, urban planning, and community events. The site is well-structured, user-friendly, and targets local citizens and tourists interested in the commune's heritage and services. Technically, the site leverages a combination of jQuery, jQuery UI, Jssor Slider, and Fancybox libraries, managed through the WebSee CMS platform. It is served over HTTPS, ensuring encrypted communication, and includes a cookie consent mechanism compliant with basic GDPR requirements. The site is moderately optimized for performance and mobile devices, with good navigation clarity and accessibility features, though some improvements could be made. From a security perspective, the site enforces HTTPS but lacks visible security headers and does not provide explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data for the domain reduces the overall trust score, though the official nature of the site and consistent branding support its legitimacy. Overall, the website is a reliable and professional municipal portal with good content quality and user experience. Strategic improvements in security headers, privacy policy transparency, and domain registration verification would enhance trust and compliance.

V

Connexion Visimodif

visimodif.fr

37

The website visimodif.fr serves primarily as an administration login portal for Visimodif, likely related to Visicod.com. The site is minimalistic, focusing on user authentication for internal or administrative users, with no public-facing business descriptions or contact information. The domain is well-established, registered since 2010 with OVH, a reputable French registrar, indicating a stable presence. Technically, the site uses standard web technologies including HTML5, CSS, and JavaScript with jQuery and validation plugins, hosted on OVH infrastructure. Mobile optimization is adequate, but accessibility and SEO features are basic. Security posture is moderate; while client-side validation is implemented, there is no visible HTTPS enforcement or security headers in the provided HTML content, and no advanced security policies or incident response information is available. Privacy and cookie policies are absent, which is a compliance gap. Overall, the site is functional but lacks comprehensive security and privacy measures, and public business information is minimal.

Der Deutsche Arbeitsschutzpreis ist eine etablierte Initiative, die alle zwei Jahre Unternehmen auszeichnet, die sich besonders für die Sicherheit und Gesundheit ihrer Beschäftigten engagieren. Die Ausrichtung erfolgt durch namhafte deutsche Institutionen wie das Bundesministerium für Arbeit und Soziales (BMAS), den Länderausschuss für Arbeitsschutz und Sicherheitstechnik (LASI) sowie die Deutsche Gesetzliche Unfallversicherung (DGUV). Die Website dient als zentrale Informationsplattform für Bewerbungen, Preisverleihungen und aktuelle Nachrichten rund um den Arbeitsschutzpreis. Die Zielgruppe sind Unternehmen, Organisationen und Einzelpersonen in Deutschland, die im Bereich Arbeitsschutz tätig sind oder sich engagieren möchten.

G

GERMAX Gerli GmbH

germax.net

50

GERMAX media is a well-established marketing and advertising agency based in Aachen, Germany, founded in 2000. The company offers a broad range of services including web design, corporate design, consulting, and campaign management, targeting businesses and public institutions. Their website reflects a professional and consistent brand image with a comprehensive portfolio and client testimonials, indicating a strong market position in the regional media sector. Technically, the site uses a variety of JavaScript libraries and plugins to deliver a responsive and visually appealing experience, though it appears to be custom-built rather than relying on a popular CMS. Security-wise, the site lacks DNSSEC and explicit security headers, and no cookie consent mechanism is implemented despite a detailed privacy policy. The domain registration is consistent with the business claims, showing a mature and legitimate online presence.

N

Net 15

websee.fr

63

Websee is a French CMS platform developed by Net 15, specializing in creating professional, administrable websites for businesses, artisans, associations, and web agencies. The company emphasizes personalized service, responsive design, and compliance with modern web standards including GDPR and cookie consent. The website is well-structured, visually consistent, and provides clear contact channels and client testimonials, positioning itself as a trusted regional player in the web development market. Technically, the site uses a proprietary CMS with common JavaScript libraries and Matomo analytics, indicating a privacy-conscious approach. Security posture is adequate with HTTPS and cookie consent but lacks advanced HTTP security headers and explicit incident response policies. WHOIS data is unavailable, which slightly reduces domain trust assessment, but the overall business presence and content quality support legitimacy.

T

TPF Consultores

tpf.pt

51

TPF Consultores is a well-established Portuguese consulting company specializing in project design and supervision, primarily in the energy and transportation sectors. With over 45 years of experience and a significant workforce, the company positions itself as a leader in infrastructure consulting and project management. Their website reflects a professional and consistent brand image, targeting business and public sector clients internationally. Technically, the website employs modern web technologies and tracking tools, including Google Analytics and reCAPTCHA, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies and some recommended security headers, suggesting room for improvement in security posture. Overall, the domain registration data aligns well with the business claims, supporting the site's legitimacy. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and improving contact information visibility to strengthen trust and compliance.

Domstocks is a small Spanish-based technology company specializing in the sale of expired quality domains for SEO and branding purposes. Their website offers a professional and user-friendly platform targeting SEO professionals, domain investors, and digital marketers. The business model focuses on providing fixed-price expired domains with clean histories and SEO metrics, supported by alert services and domain selection assistance. Technically, the website uses legacy JavaScript libraries such as jQuery 1.8.3 and Owl Carousel, with moderate performance and good mobile optimization. Security posture is limited due to lack of security headers, outdated libraries, and absence of privacy and cookie policies. Analytics is minimal, relying on Statcounter. Overall, the site is professional but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Domstocks is a small technology-focused business specializing in the sale of expired quality domains with SEO value, brandable domains, and exact match domains. The company targets SEO professionals, domain investors, and digital marketers, offering fixed-price domain sales and domain selection services. The website is hosted on DreamHost and uses a basic technology stack including jQuery and Owl Carousel. While the site is accessible and well-structured with good content quality, it lacks key privacy and cookie policies and uses outdated JavaScript libraries, which may pose security risks. No security headers or incident response information are present, and SSL configuration details are not confirmed. Overall, the domain registration data is consistent and legitimate, supporting the business claims. The site uses minimal tracking via Statcounter and does not contain adult or questionable content.

Domstocks.es is a Spanish-based small business specializing in the sale of expired domains with strong SEO metrics, brandable names, and exact match domains (EMD). The company targets digital marketers, SEO professionals, and domain investors seeking quality domains for website creation, PBNs, or link selling. The business model focuses on fixed-price sales without auctions, providing alerts and personalized domain selection services. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technical infrastructure includes legacy JavaScript libraries such as jQuery 1.8.3 and Owl Carousel, with Google Fonts for typography. While the site is mobile-optimized and SEO-friendly, some modernization is recommended.

C

Conseil National des Villes et Villages Fleuris (CNVVF)

villes-et-villages-fleuris.com

52

The website represents the Conseil National des Villes et Villages Fleuris (CNVVF), a well-established French national label promoting sustainable urban development and quality of life in municipalities. It supports nearly 4,700 communes with certification and expert guidance, emphasizing environmental preservation and citizen well-being. The site is professionally designed, mobile-optimized, and uses a modern technology stack including Bootstrap, jQuery, and various UI libraries. Security posture is adequate with HTTPS and reCAPTCHA, but lacks advanced security headers and published policies. Privacy compliance is basic with cookie consent but no explicit privacy policy page found. Overall, the domain is legitimate and stable, hosted by OVH with consistent WHOIS data.

N

Net15

websee-mairie.fr

60

Websee Mairie, operated by Net15, is a specialized service provider offering turnkey website creation solutions for French local governments including town halls, collectivités, EPCI, and syndicates. With nearly 30 years of experience and over 700 sites delivered, they provide custom design, SEO optimization, accessibility compliance, and comprehensive training for autonomous site management. The company positions itself as a trusted partner for public sector digital presence, emphasizing proximity and personalized support from their base in Aurillac, France. Technically, the website is powered by the WebSee CMS platform, leveraging jQuery and Fancybox libraries, and hosted by Net15. The site is well-optimized for mobile and accessibility standards, with good SEO practices and a moderate performance profile. Security posture is strong, featuring SSL certificates with A+ ratings, robust security headers, and regular third-party audits. However, the absence of a publicly accessible privacy policy page and WHOIS data transparency slightly reduce trust scores. Overall, the website is professional, secure, and compliant with cookie consent regulations, serving a clear government sector niche.

N

Net15

net15.fr

57

Net15 is a well-established French web agency based in Cantal since 1997, specializing in website creation, hosting, SEO, and digital communication services. The company targets SMEs, artisans, local authorities, and associations, offering tailored digital solutions including websites, e-commerce platforms, and collaborative tools. Their market position is that of a trusted regional digital partner with over 25 years of experience. Technically, the website is powered by the WebSee CMS platform and uses stable JavaScript libraries such as jQuery and Fancybox. The site is mobile-optimized, accessible, and SEO-friendly, though some modernization of libraries and addition of security headers could improve the technical posture. Performance is moderate with good user experience and navigation clarity. Security-wise, the site uses HTTPS and shows no obvious vulnerabilities or exposed sensitive data. However, the absence of HTTP security headers and public security policies indicates room for improvement. The WHOIS data is missing, which raises some concerns about domain registration transparency, though the website content and business presence suggest legitimacy. Overall, the website presents a professional and trustworthy digital presence with solid business credibility but would benefit from enhanced security practices and verification of domain registration details.

Aluminerie Alouette Inc. is a well-established Canadian company specializing in the production of primary aluminum with a strong emphasis on efficiency, innovation, and sustainable development. The company positions itself as one of the most efficient primary aluminum producers globally, targeting industry professionals, partners, and community stakeholders. Their business model focuses on manufacturing with a commitment to environmental and social governance principles. Technically, the website employs common web technologies such as jQuery, Google Analytics, and Facebook Pixel, indicating a moderate level of digital maturity. The site is accessible, with basic mobile optimization and SEO practices, though there is room for improvement in accessibility and performance optimization. From a security perspective, the website uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy policies and cookie consent mechanisms exist but are basic and could be improved to better align with GDPR requirements. No incident response or vulnerability disclosure information is provided. Overall, the website presents a professional and trustworthy image with clear contact information and corporate branding. The domain registration data supports the legitimacy and long-standing presence of the business. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance the security posture and trustworthiness further.

S

Sellcodes

sellcodes.com

67

Sellcodes is an online marketplace specializing in the buying and selling of software codes, including themes, plugins, scripts, and software licenses. Founded in 2016, the platform currently operates in a limited capacity, processing payments exclusively for digital products licensed by its partner Inisev. The website targets software developers and digital product creators seeking a marketplace to monetize or acquire code assets. Technically, Sellcodes employs a modern tech stack including jQuery, Bootstrap, and various JavaScript libraries, with integrations for payment processing via Paddle and analytics through Google services. The site is hosted with a reputable registrar and uses Cloudflare DNS, ensuring stable domain management and HTTPS security. Security posture is moderate, with HTTPS enforced and CSRF protections in place, but lacks DNSSEC and explicit security headers. Privacy compliance is basic, with privacy and terms pages present but no cookie consent mechanism or detailed GDPR indicators. Overall, the website is professionally designed, user-friendly, and safe for general audiences, though improvements in security policies and privacy compliance are recommended.

A

Anses - Agence nationale de sécurité sanitaire de l’alimentation, de l’environnement et du travail

anses.fr

52

Anses is the French national agency responsible for health safety in food, environment, and work sectors. It provides scientific expertise, risk assessment, regulatory decisions, and public communication. The agency holds a strong market position as a government authority with a large organizational size and a comprehensive digital presence. The website is built on Drupal 10 with modern frontend technologies and includes multilingual support. Privacy and cookie consent mechanisms are implemented effectively. However, WHOIS data is missing, which slightly impacts domain trustworthiness. The site demonstrates good security practices but lacks explicit security policy and incident response information.

Z

Zoznam s.r.o.

sportky.sk

58

Športky.sk is a Slovak-language sports news portal operated by Zoznam s.r.o., providing comprehensive coverage of sports such as football, hockey, tennis, and cycling. The site targets Slovak sports fans with up-to-date results, event calendars, and multimedia content. It holds a solid market position as part of the established Zoznam media brand. Technically, the website employs modern JavaScript frameworks including Vue.js and jQuery, integrates Google Analytics and Tag Manager for tracking, and uses Didomi for GDPR-compliant cookie consent management. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, HTTPS is enforced and basic security headers are present, though some headers like HSTS and X-Content-Type-Options should be confirmed or added. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear cookie policy and consent mechanism. However, explicit contact details and terms of service pages are not directly found on the site, which could be improved for transparency. Overall, the website is professional, trustworthy, and well-maintained, suitable for its audience and business model.

C

Commune de Vincelles

vincelles.fr

63

The website www.vincelles.fr serves as the official municipal portal for the Commune de Vincelles, a small local government entity in the Yonne department of France. It provides residents and visitors with information about municipal services, local news, events, and community resources. The site is well-structured and targets local citizens and tourists interested in the region. The business model is typical of a government website, focusing on public service and community engagement rather than commercial activities. Technically, the site uses a WebSee CMS platform with common JavaScript libraries such as jQuery, jssor slider, and fancybox for UI enhancements. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, there is room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected, but the absence of WHOIS data and security policies reduces overall trustworthiness. The site does not appear to use analytics or tracking services, which aligns with privacy-conscious public sector practices. Overall, the website is a functional and trustworthy municipal portal but would benefit from enhanced privacy compliance, security hardening, and transparency regarding domain registration and data protection policies.

C

Commune de Villefargeau

villefargeau.fr

63

The website www.villefargeau.fr serves as the official online presence for the commune of Villefargeau in the Yonne department of France. It provides municipal information, local news, event calendars, administrative procedures, and contact details aimed primarily at residents and visitors. The site is positioned as a local government portal with a focus on community engagement and public service. Technically, the site uses a variety of JavaScript libraries including jQuery, Leaflet for mapping, and Jssor Slider for image slideshows, all managed via the WebSee CMS platform. The site is mobile-optimized and accessible, with a clear navigation structure and cookie consent mechanisms in place. Security-wise, the site enforces HTTPS but lacks visible HTTP security headers and formal incident response or vulnerability disclosure information. The absence of WHOIS data reduces domain trustworthiness, though the official nature of the site and consistent branding mitigate concerns. Overall, the site is functional and professional but could improve security posture and transparency.

C

CM Control, s.r.o.

cmcontrol.sk

50

CM Control, s.r.o. is a Slovakian company specializing in vehicle technical inspections, emission controls, and originality checks. Established in 2007, it serves both individual vehicle owners and large fleets, offering convenient services including an interactive booking system and customer amenities. The company holds ISO 37001 certification, demonstrating commitment to anti-corruption standards, which enhances its market credibility. Technically, the website employs common JavaScript libraries such as jQuery and jQuery UI, with a moderate performance profile and basic mobile optimization. The site lacks a CMS and advanced SEO or accessibility features but maintains a consistent and professional design. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the domain is well-registered with DNSSEC enabled and a long registration history, supporting legitimacy. However, the website lacks visible HTTPS enforcement and security headers, and no privacy policy or terms of service are published, representing compliance and security gaps. The cookie consent mechanism is implemented, but overall privacy compliance could be improved. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced security measures, privacy documentation, and technical improvements to strengthen compliance and user trust.

E

e-BAAN Internet s.r.o.

ostravski.cz

40

e-BAAN Internet s.r.o., operating under the brand 'Ostravski', is a Czech Republic-based small technology company specializing in web design, e-commerce solutions, and related digital services. With over 20 years of experience and a customer base exceeding 500 clients, the company offers comprehensive web development services including domain registration, hosting, SEO, graphic design, and content management. Their market position is focused on small businesses, freelancers, schools, and municipalities primarily within the Moravian-Silesian region and broader Czech Republic. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs a variety of modern web technologies such as jQuery, Bootstrap modals, Owl Carousel, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search engine visibility. However, some technical improvements are recommended, including the implementation of security headers and enhanced accessibility features. From a security perspective, the site uses HTTPS and has a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS data raises concerns about domain registration transparency. No explicit security or incident response policies are published, and security headers are missing, which could expose the site to certain risks. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is moderate but could be improved with best practices. The overall risk assessment suggests the website is legitimate and professionally maintained but would benefit from enhanced transparency in domain registration and improved security practices. Strategic recommendations include adding security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

Z

ZOO JH s.r.o.

zoonahradecku.cz

46

ZOO Na Hrádečku is a private zoological garden located in the Czech Republic, operating since 2014 with a focus on conservation, education, and public engagement. The zoo hosts over 200 animal species, including endangered ones, and offers various visitor experiences such as guided tours, animal adoptions, and educational programs. It operates without subsidies, relying on ticket sales, merchandise, and donations. The website reflects a well-established regional institution with strong community and conservation partnerships. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery libraries, hosted by a reputable Czech registrar and hosting provider. The site is mobile-optimized with good SEO practices and clear navigation, though some advanced security headers and explicit security policies are not evident. Cookie consent and privacy policies are implemented, indicating awareness of GDPR compliance. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks visible advanced security headers or incident response information. No vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site presents a trustworthy, professional online presence for a medium-sized private zoo with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security controls are recommended to enhance the security posture and trust further.

M

Micropulse

micropulse.fr

35

Micropulse is a French web agency specializing in the creation of custom websites and management software, with a focus on car rental and e-commerce sectors. The company offers tailored solutions including online rental sites, e-commerce platforms, collaborative sites, and bespoke management tools. The website presents a moderate level of digital maturity, utilizing common JavaScript libraries and Google Analytics for tracking, but lacks modern security headers and visible privacy or cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and client references suggest a legitimate business operation. Security posture is basic with room for improvement in SSL configuration and security best practices. Overall, the website is functional but would benefit from enhanced compliance and security measures to improve trust and user confidence.

C

CENTROPOL ENERGY, a.s.

centropol.cz

56

CENTROPOL ENERGY, a.s. operates as a reliable energy supplier in the Czech Republic, providing gas and electricity to households and businesses for over two decades. The company emphasizes fair pricing and additional customer benefits, positioning itself as a trusted player in the energy sector. The website reflects a professional digital presence with clear branding and relevant content tailored to its target audience. Technically, the site is built on WordPress with a modern technology stack including Google Tag Manager, Cookiebot for consent management, and reCAPTCHA for bot protection. While the site is mobile-optimized and SEO-friendly, there is room for improvement in accessibility and security headers implementation. Security posture is solid with HTTPS enforced and consent mechanisms in place, but lacks explicit security policies and incident response information. The absence of WHOIS data raises concerns about domain registration transparency, which slightly impacts overall trust. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and verifying domain registration details to improve credibility and compliance.

Democratie Active, operated by MICROPULSE, provides specialized digital solutions for public inquiries and citizen engagement in France. Their offerings include dematerialized registers for public inquiries, digital debates, and private consultations, targeting government authorities and public officials. The website demonstrates a professional presence with user testimonials and a clear service portfolio, positioning them as a niche player in government digital services. Technically, the site uses modern JavaScript libraries such as jQuery, bxSlider, and AOS, with responsive design and Google Analytics integration, indicating a moderate to good digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are missing and no explicit incident response or security policy pages were found. The absence of WHOIS registration data is a concern for domain legitimacy, but the website content and trust signals mitigate this risk somewhat. Overall, the site is well-structured, privacy compliant, and trustworthy for its intended audience.

M

Magazín O webu

owebu.cz

59

Magazín O webu is a Czech-language online magazine specializing in web development, SEO, internet marketing, copywriting, social media, and e-commerce topics. It targets web developers, marketers, and small business owners seeking practical advice and tutorials. The website is hosted by BANAN.CZ and uses a custom CMS called Web Bez starosti. The technical infrastructure includes modern JavaScript libraries and frameworks such as jQuery, Bootstrap (modal only), and Google Tag Manager for analytics and marketing. The site is mobile responsive and well-structured, providing a good user experience with clear navigation and regularly updated content. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and incident response information. WHOIS data is missing, which reduces transparency and trust slightly, but the website content and contact information appear professional and legitimate. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a reliable resource in its niche.

C

Conseil Départemental de l'Hérault

herault.fr

63

The Conseil Départemental de l'Hérault website serves as the official digital presence for the Hérault department government in France. It provides comprehensive information about departmental services, news, events, and public initiatives targeting residents and stakeholders within the region. The site is well-structured with clear navigation and a focus on accessibility and user experience. The content is primarily in French and covers a broad range of topics including culture, environment, social services, and digital inclusion. Technically, the website employs a variety of established JavaScript libraries such as jQuery, Colorbox, Slick Carousel, and Matomo for analytics, indicating a mature and modern front-end infrastructure. The site uses HTTPS and cookie consent mechanisms compliant with GDPR, reflecting a good level of privacy awareness. However, no explicit security policies or incident response contacts are published, which could be improved. From a security perspective, the site benefits from HTTPS encryption and cookie management but lacks visible security headers and vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with a government entity. Overall, the website is professional, trustworthy, and serves its public service role effectively. Strategic improvements could include publishing explicit security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.

M

Medialibs

saytup.com

54

Medialibs is a French digital agency specializing in web development, integration, and maintenance services primarily targeting communication agencies and web designers. Their offerings include CMS-based website development (WordPress, e-majine, saytup), hosting, and open-source maintenance. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site uses a variety of JavaScript libraries and tracking tools, including Google Tag Manager and a cookie consent manager, indicating compliance with privacy regulations. However, the use of an outdated jQuery version and lack of explicit security headers suggest areas for technical improvement. The WHOIS data for the domain is missing or unavailable, which raises some concerns about domain registration transparency, though the website content and services appear legitimate and professional. Overall, the security posture is moderate with room for enhancement in security policies and technical safeguards.

S

Smartweb s.r.o.

smartweb.sk

10

Smartweb s.r.o. is a Slovak-based technology company specializing in web development and internet marketing services. The company offers a comprehensive suite of services including website creation, SEO optimization, Google Ads campaign management, Google Business Profile management, social media profile management, and analytics integration. Positioned as a regional player with multilingual capabilities, Smartweb targets businesses seeking to enhance their online presence and marketing effectiveness. The website reflects a professional and consistent brand image with clear service offerings and contact information. From a technical perspective, the website employs a modern technology stack including jQuery, Google Tag Manager, and various UI libraries, built on the proprietary Smartweb CMS platform. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Analytics and marketing tools are integrated with transparent cookie consent mechanisms, supporting GDPR compliance. Security posture is solid with HTTPS enforced and a detailed cookie consent framework. However, the absence of a published security policy and incident response contacts indicates room for improvement in transparency and readiness. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, Smartweb s.r.o. presents a trustworthy and professional online presence with strong business credibility and privacy compliance. Strategic enhancements in security policy publication and incident response readiness would further strengthen their security posture and stakeholder trust.

K

Krajské listy.cz

krajskelisty.cz

41

Krajské listy.cz is a Czech regional news website delivering localized news and cultural content across various regions of the Czech Republic. The site targets Czech-speaking audiences interested in regional developments and cultural topics. It operates primarily as an online media publisher monetized through advertising networks such as Google Adsense and Performax. The website demonstrates a moderate level of digital maturity, employing modern web technologies including ASP.NET WebForms, Google Tag Manager, and Microsoft Clarity for analytics. The site is mobile optimized and provides a good user experience with clear navigation and structured content. Security posture is adequate with HTTPS enabled and asynchronous loading of scripts, but lacks advanced security headers and explicit privacy or cookie policies, which impacts compliance and trust. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and improved security practices.

W

World Media Partners, s.r.o.

ceskainspirace.cz

58

Česká inspirace is a Czech regional cultural and tourism portal operated by World Media Partners, s.r.o. The website provides news, event calendars, multimedia galleries, and virtual tours focused on several Czech cities. It targets a general audience interested in cultural events and city inspiration within the Czech Republic. The business model centers on content provision and regional promotion, positioning itself as a trusted media platform in its niche. Technically, the website employs a modern JavaScript stack including jQuery, Leaflet.js for maps, and analytics tools such as Google Analytics and Matomo. It uses HTTPS with a good SSL configuration and integrates Google reCAPTCHA Enterprise for bot protection. The site is mobile optimized and has a clear navigation structure, although some accessibility features are basic. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks visible security headers and explicit cookie consent mechanisms. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is not publicly available, indicating privacy protection, which slightly reduces transparency but is common for media portals. Overall, the website is professionally designed and functional with moderate security and privacy compliance. Strategic improvements in privacy transparency, security headers, and incident response policies would enhance trust and compliance.

E

Echologia/Aquaponia

aquaponia.com

48

Aquaponia, operating under Echologia, is a French-based company specializing in aquaponics education, installations, and event organization. Their website offers comprehensive information about aquaponics, training programs, project development, and guided visits at their Echologia site. The company targets individuals, professionals, and organizations interested in sustainable agriculture and aquaponics technology. Their market position is that of a niche educational and consulting provider with international participation in aquaponics events. Technically, the website is built on Joomla CMS with the Gantry 5 framework and uses modern JavaScript libraries such as jQuery and Google Tag Manager for analytics. The site is moderately optimized for mobile and SEO, with a good user experience and clear navigation. However, some technical improvements are possible, including adding security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS (implied by URL), but lacks visible security headers and explicit security policies. No incident response or vulnerability disclosure information is present. The absence of WHOIS data for the domain raises concerns about domain registration status, which impacts trustworthiness. Social media presence and event participation provide positive trust signals. Overall, the website is functional, informative, and professionally presented but would benefit from enhanced security practices and verification of domain registration to improve trust and compliance.

K

Roundcube Webmail :: Welcome to Roundcube Webmail

klubk4.org

49

The website mail.kersnikova.org/roundcube hosts a Roundcube Webmail client interface, providing users with web-based email access. It is a technical service platform rather than a commercial business site, targeting users who require email access for the kersnikova.org domain. The site is minimalistic, focusing solely on login functionality without additional business or marketing content. The technical infrastructure is based on well-known open-source technologies including Roundcube 1.6.6, jQuery, jQuery UI, and Bootstrap, indicating a standard modern webmail deployment. The site is mobile optimized and uses secure form practices such as CSRF tokens and autocomplete off for password fields. However, no explicit security headers or privacy policies are present in the HTML content, which limits the security posture and privacy compliance. The WHOIS data for the domain is unavailable due to a malformed query response, which reduces confidence in domain legitimacy and registration transparency. Overall, the site serves its functional purpose but lacks business transparency and comprehensive security controls.

C

Cinema Storck

cinemastorck.be

54

Cinema Storck is a small, Belgium-based cinema venue focused on providing film screenings, weekly programs, and cultural film events. The website is built on Drupal 9 and integrates modern web technologies including Google Analytics and a cookie consent mechanism, reflecting a moderate level of digital maturity. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its target audience of general cinema enthusiasts. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with accessible privacy and cookie policies. Overall, the business appears legitimate and well-positioned locally with strong cultural partnerships.