Security Directory

O

Outseta

outseta.com

58

Outseta operates as a SaaS membership operating system designed to help businesses and creators monetize and grow their membership offerings. The platform integrates payments, authentication, protected content, CRM, email marketing, and help desk tools into a unified solution. The website presents a professional and modern interface with good content relevance and user experience, targeting businesses seeking an all-in-one membership management solution. Technically, the site employs modern web technologies including Google Fonts, Google Tag Manager, reCAPTCHA, and Plausible Analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and bot protection, but lacks explicit security headers and published security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and technology usage suggest a legitimate business. Privacy and cookie policies are not clearly presented, indicating room for compliance improvement.

G

Google Analytics Alternative

abralytics.com

44

Abralytics is a privacy-focused web analytics platform positioned as an alternative to Google Analytics (GA4), targeting web development agencies and businesses concerned with data privacy. The company offers cookie-free analytics, EU-based data storage, and white label branding, emphasizing user privacy and compliance. The website is built on WordPress with Elementor and integrates marketing and analytics tools such as HubSpot, Microsoft Clarity, and Google Tag Manager. While the site is professionally designed and mobile-optimized, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is generally good with HTTPS and domain protections, but DNSSEC and security headers are missing. Overall, the domain registration is consistent with the business profile, indicating legitimacy.

V

Visual Capitalist

visualcapitalist.com

65

Visual Capitalist is a media company specializing in delivering rich, visually engaging content focused on investment trends, business opportunities, and economic data. Their market position is strong within the niche of visual data journalism, supported by a subscription model (VC+), licensing, and advertising revenue streams. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and high-quality content. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and security headers, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. Overall, the site is trustworthy and well-maintained, though the lack of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security transparency and accessibility features.

PNORS Technology Group is an Australian-owned enterprise comprising a group of companies that provide integrated and complementary technology-based solutions aimed at helping Australian businesses grow. The company positions itself as a medium-sized technology group with subsidiaries such as Pacific Commerce, WilldooIT, and Netway, focusing on improving business productivity and efficiency through technology. The website is professionally designed using the Odoo CMS platform and incorporates modern web technologies including Google Tag Manager for analytics and tracking. Privacy and cookie policies are implemented with consent mechanisms, reflecting a commitment to user privacy and compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS data for the domain is a notable anomaly that impacts trustworthiness from a domain registration perspective. Overall, the website is safe, professional, and well-structured, targeting Australian businesses seeking technology solutions.

R

Ringhotels

ringhotels.de

58

Ringhotels is a German hospitality business specializing in hotel bookings, wellness weekends, and conference hosting across Germany. The website targets travelers seeking authentic HeimatGenuss experiences and offers a professional platform for vacation planning. Technically, the site employs modern JavaScript frameworks, integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and uses Cookiebot for cookie consent management. The site is mobile-optimized and has good SEO practices but lacks explicit privacy and terms of service pages in the provided content. Security posture is adequate with HTTPS and cookie consent but could be improved by adding security headers and incident response information. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

E

Edunation

edunation.cz

54

Edunation is a specialized Czech company providing digital services tailored for educational institutions, including school website creation, graphic design, and virtual tours. The website reflects a focused business model targeting schools and school founders, with a strong presence in the Czech education sector. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Nette, and Google APIs, indicating a mature digital infrastructure. Security measures include HTTPS and Google reCAPTCHA, but the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the site is professional and trustworthy, though it lacks some compliance documentation and direct contact details. Strategic enhancements in privacy compliance and security policies would strengthen its market position and trustworthiness.

B

Bright by Rivacom

bright-by-rivacom.fr

59

Bright by Rivacom is a newly established French marketing agency specializing in influencer marketing and talent management, primarily targeting businesses and e-commerce platforms. The company operates a professional website built on WordPress using the Divi theme, incorporating modern web technologies such as Google Fonts, Font Awesome, Yoast SEO, Cookiebot for cookie consent, and Google Tag Manager for analytics. The website demonstrates good design quality, mobile optimization, and SEO practices, although it lacks some compliance documents such as a privacy policy and terms of service. Security posture is adequate with HTTPS enabled and cookie consent implemented, but could be improved by adding security headers and explicit contact information. The domain registration is recent and consistent with the business founding date, registered through a reputable registrar OVH, indicating legitimacy. Overall, the website presents a professional image suitable for its niche market but should address compliance and security gaps to enhance trust and regulatory adherence.

1

14SEPTEMBRE

14septembre.com

55

14SEPTEMBRE is an international communications and reputation management agency, part of the extreme Group, with offices in major European cities and partner firms globally. They specialize in consulting, brand content, visual design, social media, PR, and events, targeting clients in design, architecture, food, hospitality, and social/environmental initiatives. The website is professionally designed using modern technologies like SvelteKit and includes integrations for cookie consent and analytics. Security posture is good with HTTPS enabled, but lacks some security headers and explicit privacy policy documentation. No WHOIS data was found, which limits domain trust verification but the business content and branding are consistent and professional. Overall, the site is well-structured, mobile-optimized, and trustworthy for its business domain.

D

DACTYLO communication design

dactylocommunication.com

54

DACTYLO communication design is a small Canadian agency specializing in web design, graphic design, and communication strategy services. The website is built on WordPress using the Salient theme and integrates common analytics and tracking tools such as Google Analytics, Google Tag Manager, Abralytics, and VisitorTracking. The site is primarily in French and targets businesses seeking professional communication design solutions. Technically, the website is moderately optimized with good mobile responsiveness and basic SEO features. Security posture is solid with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and published security policies. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website presents a professional image but could improve transparency and security documentation.

A

Association de l'aluminium du Canada

veritesurlalu.quebec

47

The website 'La vérité sur l'alu' is operated by the Association de l'aluminium du Canada, an industry association representing Canadian primary aluminium producers. The site focuses on promoting sustainable aluminium production in Quebec and Canada, highlighting the industry's low carbon footprint and economic contributions. It serves as an educational platform with interactive content such as quizzes to dispel myths about the aluminium industry. Technically, the website is built on WordPress using the Salient theme and WPBakery page builder, incorporating modern JavaScript libraries and SEO tools like Yoast. The site is hosted likely via GoDaddy, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

A

Association de l'aluminium du Canada

aluminium.ca

57

The Association de l'aluminium du Canada (AAC) is a well-established industry association representing the Canadian primary aluminium sector, with a history spanning over 100 years. The organization focuses on promoting sustainable prosperity within the aluminium industry, advocating for decarbonization efforts in North America, and supporting member alumineries. The website is professionally designed, bilingual (French primary with English option), and targets industry stakeholders, government entities, and the general public interested in aluminium and sustainability topics. AAC's market position is strong as a key national industry association with a medium-sized organizational footprint.

E

Event Online Registration

eventsonlineregister.com

59

Event Online Registration operates a WordPress-based platform focused on listing and facilitating online registration for various events. The website showcases multiple upcoming events with detailed information including dates, titles, and images, targeting event attendees and organizers. The business model centers on providing an accessible online event registration service, positioning itself as a niche player in the event management space. Technically, the site leverages WordPress CMS with plugins such as Tickera for ticketing, integrates Google Analytics, HubSpot, and Permutive for marketing and analytics, and employs Google Tag Manager for tag management. The site is moderately optimized for performance and mobile devices, with basic accessibility features and good SEO practices.

M

MapTiler AG

openmaptiles.org

53

OpenMapTiles is an open-source mapping project operated by MapTiler AG, providing vector tiles and map hosting solutions primarily for developers and GIS professionals seeking self-hosted map infrastructure. The website demonstrates a solid market position with trusted partnerships and a strong community presence on GitHub. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and SEO practices, though some accessibility features could be improved. Security posture is moderate with HTTPS implied but lacking explicit security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

S

Stamen Design LLC

stamen.com

57

Stamen Design LLC is a specialized data visualization and cartography studio with over 20 years of experience delivering award-winning visualizations and custom data products. The company serves organizations seeking sophisticated data storytelling and interactive mapping solutions, positioning itself as a niche leader in the technology and design space. Their website reflects a professional and consistent brand with clear service offerings including data storytelling, interactive experiences, workshops, and open-source tools. Technically, the site is built on WordPress with modern JavaScript libraries such as D3.js and Vue.js, and integrates analytics and marketing tools like Google Analytics, LinkedIn Insight, and Crazy Egg. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and privacy compliance evidenced by comprehensive privacy and cookie policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and well-maintained digital presence.

O

Old Stories Presse

oldyssey.org

58

Oldyssey is a French media platform dedicated to bridging generations by sharing stories and knowledge from elderly individuals aged 70 and above. The platform offers video and audio content series that highlight the experiences and skills of older generations, aiming to foster intergenerational understanding and transmission. Supported by partnerships and donations, Oldyssey positions itself as a niche media outlet with a strong community focus. Technically, the website is built on Webflow CMS, leveraging modern web technologies such as jQuery and Slick Carousel, and is hosted on Webflow's CDN. The site demonstrates good mobile optimization, SEO practices, and a professional design, providing a positive user experience. Security-wise, the site enforces HTTPS, uses a GDPR-compliant cookie consent mechanism via Axeptio, and shows no signs of exposed sensitive data or vulnerabilities. However, it lacks explicit security headers and published incident response or vulnerability disclosure policies. Overall, Oldyssey presents a trustworthy and professional online presence with room for improvement in formal security and compliance documentation.

I

Institut Européen de Coopération et de Développement

iecd.org

54

The Institut Européen de Coopération et de Développement (IECD) is a French non-profit organization established in 1988, focused on international solidarity and development projects across 18 countries. Their core mission involves supporting human, economic, and social development through education, entrepreneurship, and professional training. The organization holds public utility recognition and maintains a professional web presence with comprehensive content and clear navigation. IECD targets development partners, donors, and beneficiaries globally, positioning itself as a reputable NGO with a medium organizational size. Technically, the website is built on WordPress 6.8.3 using the Enfold theme and integrates modern plugins such as Yoast SEO and Complianz GDPR for compliance. The site employs Google Analytics and Tag Manager for analytics and tracking, with cookie consent mechanisms in place. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v2 on forms, alongside cookie consent management. However, explicit security headers like CSP and X-Frame-Options are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website demonstrates a strong compliance posture with GDPR and cookie regulations, a trustworthy business profile, and a solid technical foundation. Recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the security and compliance posture.

F

Fédération Française du Bâtiment

ffbatiment.fr

56

The Fédération Française du Bâtiment (FFB) is a leading French federation representing artisans and entrepreneurs in the building and construction sector. The organization provides technical knowledge, business management support, regulatory guidance, and environmental performance advice to its members. The website reflects a professional and well-structured digital presence, targeting building professionals and stakeholders in France. The content is relevant and tailored to the industry, with clear navigation and comprehensive information about various building techniques and business management topics. Technically, the website is built on the Sitecore CMS platform, utilizing modern web technologies such as jQuery, Bootstrap 4, and Google Tag Manager for analytics. The presence of OneTrust cookie consent demonstrates a mature approach to privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but could improve by adding explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the organization's identity, supporting legitimacy and trustworthiness. Overall, the website presents a low-risk profile with strong compliance and professional standards. Strategic improvements in security headers and accessibility would further enhance its posture.

C

Comité de concertation et de coordination de l'apprentissage du bâtiment et des travaux publics

ccca-btp.fr

56

CCCA-BTP is a French non-profit organization focused on accelerating innovation in training and apprenticeship for the building and public works sector. It serves as a key national coordinator providing resources, strategic support, and certification services to training organizations and industry stakeholders. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and active social media engagement. Technically, the site is built on Drupal 11, uses modern fonts and icons, and integrates Google Analytics and a cookie consent manager to comply with privacy regulations. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and explicit security policies are absent. The lack of WHOIS data is a notable gap in domain legitimacy verification, but the overall site professionalism and content quality support trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen trust.

C

Coinmate s.r.o

coinmate.io

60

Coinmate s.r.o operates a well-established European cryptocurrency exchange platform, primarily targeting European crypto traders and investors. Founded in 2014, it positions itself as the largest Czech crypto exchange with a focus on fair fees and customer trust. The platform offers services for buying and selling cryptocurrencies safely and easily. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site leverages modern web technologies including Angular framework, Google Tag Manager, Cookiebot for consent management, and Microsoft Clarity for analytics, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response details are not published. WHOIS data confirms the legitimacy of the business with consistent registration details matching the website claims. Overall, the site is safe, professional, and trustworthy, with room for improvement in privacy and security transparency.

H

HelloWork

magnet.work

57

Magnet.work is a French B2B technology website offering a career site solution developed by HelloWork. The platform targets recruiters and companies aiming to enhance their employer branding and candidate experience through a turnkey career site integrated with ATS and advanced job matching algorithms. The website is professionally designed using HubSpot CMS, featuring video content, client testimonials, and a clear call to action for demos and contact. Technically, the site employs modern web technologies, robust SSL configuration, and multiple marketing and analytics tools, including Facebook Pixel, LinkedIn Insight, and Google Tag Manager. Consent management is implemented via Axeptio, supporting GDPR compliance. However, explicit privacy and terms of service pages are not found, and direct contact emails or phone numbers are absent, which slightly impacts privacy compliance and business credibility scores. The WHOIS data is consistent with the business claims, showing no privacy protection and appropriate domain age. Overall, the site demonstrates a strong market position in the recruitment technology sector with good security posture and digital maturity.

H

Hellowork

stori.work

58

Stori by Hellowork is a French technology company specializing in recruitment marketing solutions that leverage social media platforms to optimize hiring processes. Their service focuses on creating impactful visual content targeted at specific audiences on popular social networks, aiming to increase qualified job applications. The website is professionally designed, hosted on HubSpot CMS, and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Piano Analytics. While the site lacks explicit privacy and terms of service pages, it implements a cookie consent mechanism via Axeptio, indicating a baseline GDPR compliance effort. Contact is primarily facilitated through a dedicated contact form, with no direct email or phone contacts visible on the main site. The WHOIS data confirms the domain's legitimacy and consistency with the business identity, reinforcing trustworthiness.

H

Hellowork

basile.io

58

Basile by Hellowork is a French technology company offering a SaaS platform focused on recruitment optimization through cooptation and internal mobility. The website targets recruiters and HR professionals seeking efficient talent acquisition solutions. The platform is positioned as a trusted recruitment tool with a solid client base and partner ecosystem. Technically, the site is built on HubSpot CMS with modern marketing and analytics integrations, including Google Tag Manager, Facebook Pixel, and Axeptio for consent management. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response information are not published. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service. Overall, the site is professional, well-branded, and trustworthy, with room for improvement in transparency and security documentation.

J

Jobijoba

jobijoba.com

63

Jobijoba is a French-based job search aggregator that consolidates employment offers from hundreds of different job sites, providing an intelligent search engine to accelerate job seekers' search process. The website targets primarily job seekers in France and offers services such as job alerts, CV management, and salary estimation. The platform is well-positioned in the French employment market with a medium-sized business footprint and consistent branding. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a consent management platform (Didomi) to ensure GDPR compliance. The site is mobile-optimized and implements good SEO practices. Security-wise, the site enforces HTTPS, uses standard security headers, and offers a cookie consent mechanism, though explicit security and incident response policies are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with room for improvement in contact transparency and security policy disclosures.

H

Helloworkplace

helloworkplace.fr

58

Helloworkplace is a French media platform specializing in employment, recruitment, and human resources content. It serves HR professionals, recruiters, and job market participants by providing news articles, podcasts, newsletters, and event information. The site is part of the larger Hellowork group, a recognized player in the French recruitment and employment media sector. The website demonstrates a mature digital infrastructure built on WordPress with modern performance and SEO optimizations, including the use of WP Rocket, Bootstrap 5, and analytics tools such as Microsoft Clarity and Google Tag Manager. Security posture is strong with HTTPS enforcement and security headers, although there is room for improvement in publishing dedicated security policies and incident response information. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies. Overall, the site is professional, trustworthy, and well-positioned in its market niche.

B

BDM

blogdumoderateur.com

61

BDM is a French digital media platform focused on delivering news, insights, and resources for professionals in digital marketing, social media, AI, SEO, product design, and technology. It operates under the HelloWork group, offering a comprehensive suite of content including articles, newsletters, guides, and event listings. The website demonstrates a mature digital infrastructure with modern technologies such as WordPress CMS, Bootstrap framework, and advanced performance optimizations including lazy loading and caching via WP Rocket. Analytics and marketing tools like Google Tag Manager, Microsoft Clarity, and Abtasty are integrated for user behavior tracking and optimization. Security posture is strong with HTTPS enforced and partial content security policies, though explicit security policy and incident response pages are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the site presents a professional, trustworthy, and content-rich experience for its target audience of digital professionals and marketers.

R

Rivacom

rivacom.fr

50

Rivacom is a regional communication agency operating primarily in Brittany, France, with offices in Brest and Rennes. The company offers a comprehensive suite of communication services including press relations, event management, digital marketing, branding, and audiovisual production. Positioned as a 360° communication agency, Rivacom targets businesses and organizations seeking professional marketing and communication support within the regional market. The website reflects a professional and consistent brand image, supported by active social media channels and modern web technologies. Technically, the website is built on WordPress using the Elementor page builder, leveraging popular libraries such as jQuery and Slick Carousel. It integrates Google Tag Manager, Google Analytics, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and demonstrates good SEO practices with appropriate meta tags and structured data. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. Cookie consent mechanisms are implemented, indicating awareness of GDPR requirements. However, the absence of additional security headers and lack of visible privacy policy or terms of service pages suggest areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, but the website content and social presence support legitimacy. Overall, Rivacom presents a trustworthy and professional online presence suitable for its business domain. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and improving contact information visibility to strengthen trust and compliance.

G

Groupe Télégramme

groupe-telegramme.com

10

Groupe Télégramme is a French media and services group engaged in three main sectors: Media & Communication, Employment, Recruitment & Training, and Sports & Culture. The website presents a professional image with clear branding and structured content targeting a general audience interested in these sectors. The business model focuses on providing media content, recruitment services, and cultural/sports event organization, positioning itself as a regional leader in these areas. Technically, the website is built on WordPress, leveraging modern plugins such as Slider Revolution and WPBakery Page Builder, and integrates analytics tools like Piano Analytics and Google Tag Manager. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms, indicating a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and includes standard security headers, but lacks publicly available security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected, suggesting a moderate security posture. Overall, the website is trustworthy and professionally maintained, with room for improvement in privacy transparency and security documentation. Strategic recommendations include publishing clear privacy and security policies, establishing incident response contacts, and implementing a vulnerability disclosure policy to enhance trust and compliance.

R

Route du Rhum - Destination Guadeloupe

routedurhum.com

4

The website www.routedurhum.com appears to be built on the Wix platform but lacks substantive business content, contact information, and privacy or cookie policies. The WHOIS data is unavailable, indicating the domain may not be registered or WHOIS information is blocked, which raises significant trust and legitimacy concerns. The site uses common analytics and tracking technologies such as Microsoft Clarity, Google Tag Manager, and LinkedIn Insight Tag, but does not provide transparency on data privacy or user consent. Overall, the site’s technical infrastructure is standard for Wix-hosted sites but lacks advanced security configurations and compliance features. The absence of business and contact details, combined with missing WHOIS data, results in a low trustworthiness and business credibility score.

R

Régions Annonces Légales : publiez et trouvez vos annonces, c'est simple, rapide et efficace

regions-annonceslegales.com

10

The website regions-annonceslegales.com operates as a professional online platform facilitating the publication and search of legal announcements in France. It targets entrepreneurs, individuals, and professionals in legal and financial sectors, offering services such as publishing legal notices, real estate transfer announcements, and providing attestations of publication. The platform is positioned as a trusted intermediary linked to authorized legal journals and regional departments. Technically, the site employs modern web technologies including jQuery, Bootstrap, Symfony Stimulus, and integrates advanced consent management via Didomi, alongside analytics tools like Piano Analytics and Google Tag Manager. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, HTTPS is enforced and consent mechanisms are robust, though explicit security headers could be improved. The absence of WHOIS data for the domain is a notable concern, suggesting either a recent registration or privacy protection, which slightly reduces trust in domain legitimacy. Overall, the site presents a professional and trustworthy front with room for enhancement in security transparency and domain registration clarity.

V

Viamédia

bretagne-marchespublics.com

53

Bretagne Marchés Publics is a regional public procurement portal serving Brittany and broader France, operated by Viamédia since 2011. The platform facilitates the publication and consultation of public tenders, targeting both public buyers and enterprises. It holds a strong market position as a trusted regional resource with clear business identity and affiliations to reputable media groups. Technically, the website employs modern JavaScript frameworks, consent management via Didomi, and analytics tools like Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and secure login forms, although explicit security policies and incident response contacts are absent. Privacy compliance is well implemented with GDPR-aligned cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-optimized for users, with recommendations to enhance security transparency and accessibility.

B

Bretagne Magazine

bretagne-magazine.fr

56

Bretagne Magazine is a well-established regional media publication focused on the Brittany region of France, offering monthly and special edition magazines that cover maritime stories, local culture, gastronomy, and regional news. The website supports subscription sales and provides rich editorial content targeted at residents and enthusiasts of Brittany. The business operates under the Groupe Télégramme umbrella, indicating a solid corporate backing and market presence. Technically, the website employs modern JavaScript libraries, consent management via Didomi, and analytics tools such as Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent banner. No critical vulnerabilities or suspicious patterns were detected, and contact information is clearly provided. Overall, Bretagne Magazine presents a trustworthy and professional online presence consistent with its business model and market position.

M

Mer et Marine

meretmarine.com

10

Mer et Marine is a French maritime news media organization providing continuous updates on maritime defense, merchant marine, shipbuilding, cruises, fishing, ports, and energy sectors. The website targets maritime professionals and enthusiasts, offering news articles, interviews, and reports. The site uses Drupal 10 CMS and integrates modern digital marketing and consent management tools such as Google Tag Manager and Didomi. The technical infrastructure is modern and supports good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, but the website content and branding appear professional and trustworthy. Overall, the site is a reliable source of maritime news with good digital maturity but would benefit from clearer privacy policies and WHOIS transparency.

T

Tébéo & Tébésud

tebeo.bzh

60

Tébéo & Tébésud operate as regional television broadcasters serving the Brittany West and Morbihan regions in France, offering local TV programming, live streaming, and replay services. The website is well-structured, leveraging modern web technologies such as WordPress with Elementor, Yoast SEO, and analytics tools like Piano Analytics and Google Tag Manager. The site demonstrates a moderate to good level of digital maturity with mobile optimization and SEO best practices in place. Security posture is strong with HTTPS enforced, security headers present, and use of reCAPTCHA for form protection. However, the absence of a published privacy policy, terms of service, and explicit contact information for security or business inquiries represents a compliance and trust gap. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

L

Le Télégramme

letelegramme.fr

63

Le Télégramme is a prominent regional news media organization serving the Brittany region in France. The website provides comprehensive local news coverage, digital newspaper editions, and subscription services, targeting residents and readers interested in Brittany's current events. The business model relies on advertising and subscriptions, positioning it as a leading regional news provider with a strong brand presence and consistent content quality. Technically, the website employs modern web technologies including JavaScript, CSS, and privacy management SDKs, with a responsive design optimized for mobile devices. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, with no signs of blocking or malicious activity.

M

město Dobříš

mestodobris.cz

47

The website mestodobris.cz serves as the official online presence of the town of Dobříš, Czech Republic. It provides comprehensive information about the municipality, including local government activities, public services, events, and community resources. The site targets residents, visitors, and stakeholders interested in municipal affairs and local culture. The business model is that of a government entity providing public information and services digitally, with a well-established market position supported by a domain registered since 2003. Technically, the website employs a modern CMS platform (vismo), integrates Google Analytics and Google Tag Manager for analytics, and uses LimeTalk for live chat support. The site is mobile-optimized, accessible, and includes cookie consent mechanisms aligned with GDPR requirements. Hosting is provided by REG-ZONER, a reputable registrar and hosting provider. From a security perspective, the site enforces HTTPS and uses consent-based analytics tracking. However, explicit security headers are not clearly visible in the HTML source, and no published security policy or incident response contacts were found. No vulnerabilities or suspicious content were detected, and the WHOIS data confirms the domain's legitimacy and consistency with the municipal identity. Overall, the website demonstrates a solid digital presence with good privacy compliance and user engagement features. Strategic improvements could include publishing a formal security policy, enhancing security headers, and providing incident response contact information to strengthen trust and security posture further.

H

Helloworkplace

hellowork-group.com

60

Hellowork group is a well-established French company specializing in recruitment, education, and media services. Founded in 2000, it operates multiple platforms that connect job seekers, professionals, schools, and institutions. The company positions itself as a market leader in its sector, offering comprehensive solutions for human resources, education, and digital media. The website reflects a professional and consistent brand image with clear messaging targeting individuals and professionals seeking career and training opportunities. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses popular analytics tools such as Google Tag Manager and Piano Analytics. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with efficient use of preloading and caching techniques. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no public security or incident response policies are found. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy, professional, and compliant with privacy regulations, making it a reliable platform for its users. Strategic improvements in security headers and transparency around security policies would further strengthen its posture.

A

AB S.A.

ab.pl

58

AB S.A. is a prominent distributor of IT, household appliances, consumer electronics, GSM products, and toys operating primarily in Poland and the Central and Eastern European region. The company is publicly listed on the Warsaw Stock Exchange since 2006 and serves over 16,000 business partners with a vast portfolio of nearly 100,000 products from more than 800 global brands, including its own proprietary brands. AB S.A. holds a leading market position in IT distribution within the CEE region, supported by a strong logistics and financial solutions infrastructure for partners. Technically, the website is built on a modern WordPress CMS platform with a well-implemented tech stack including Yoast SEO, Google Tag Manager, MailerLite for marketing automation, and various plugins for enhanced user experience and compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional and user-friendly interface. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit HTTP security headers and a published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS domain registration data is a notable gap that slightly impacts trustworthiness but does not detract from the overall legitimacy supported by the company's public presence and awards. Overall, AB S.A. demonstrates a strong business and digital presence with good security and privacy practices. Strategic recommendations include enhancing HTTP security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

B

Bílý kruh bezpečí, z.s.

bkb.cz

46

Bílý kruh bezpečí, z.s. is a well-established Czech non-profit organization dedicated to providing professional, free, and confidential support to victims of crime and domestic violence. With over three decades of experience, it operates multiple regional offices across the Czech Republic and offers helpline services, counseling, and prevention projects. The website reflects a mature organization with a clear mission and target audience including victims, social workers, and law enforcement. Technically, the site uses modern web technologies such as jQuery, Foundation framework, and integrates Google Analytics with IP anonymization to respect user privacy. However, the absence of explicit privacy and terms of service pages and missing WHOIS data slightly reduce trustworthiness. Security posture is moderate with HTTPS enforced but lacks visible security headers. Overall, the site is accessible, professionally designed, and provides comprehensive contact information and social media presence, supporting its credibility.

C

Centrum pro rodinu a sociální péči z. s.

prorodiny.cz

54

Centrum pro rodinu a sociální péči z. s. is a well-established non-profit organization based in Ostrava, Czech Republic, dedicated to supporting families, relationships, individuals with disabilities, caregivers, and seniors. The organization offers a broad range of services including counseling, education, social support, and community engagement, with a strong focus on inclusivity and social welfare. Their website reflects a mature digital presence with rich content, active event calendars, and social media integration, positioning them as a trusted local entity in the social care sector. Technically, the website employs modern JavaScript libraries and Google Analytics with consent management, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and explicit privacy policies. The absence of WHOIS data for the domain is a notable concern that slightly impacts trustworthiness, though the website content and social presence strongly indicate legitimacy. Overall, the site is professional, content-rich, and user-friendly, serving its target audience effectively.

C

Centrum sociálních služeb Ostrava, o.p.s.

css-ostrava.cz

49

Centrum sociálních služeb Ostrava, o.p.s. is a well-established non-profit organization founded in 2006, providing a broad range of social services primarily in the Czech Republic. Their services focus on supporting families, children, and individuals in difficult social situations through shelters, crisis centers, family counseling, and social activation programs. The organization maintains a professional web presence with clear navigation and multiple physical locations integrated via Google Maps, enhancing accessibility for their target audience. The website encourages donations and donations with tax deduction benefits, indicating a transparent and community-focused business model. Technically, the website uses modern JavaScript libraries such as Swiper.js and Google Maps API, along with Google Tag Manager for analytics, reflecting a moderate level of digital maturity.

K

KAFIRA o.p.s.

kafira.cz

41

KAFIRA o.p.s. is a Czech non-profit organization dedicated to assisting people with visual impairments, with a history of over 20 years. The website reflects this mission clearly, targeting individuals with visual disabilities and offering support and community services. The organization appears to be well-established within its niche, focusing on social assistance rather than commercial activities. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is mobile-optimized and has a good design quality, though accessibility features could be enhanced further to better serve its target audience. Security-wise, the site uses HTTPS and has a basic SSL configuration, but lacks important security headers and visible privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data limits transparency but is not uncommon for non-profit entities using privacy protection services. Overall, the website is functional and professional but would benefit from improved privacy compliance and security hardening.

S

Svépomocná společnost Mlýnek, z. s.

klubmlynek.cz

53

Svépomocná společnost Mlýnek, z. s. is a small non-profit organization based in Ostrava, Czech Republic, dedicated to supporting individuals with mental illness. The organization focuses on enabling these individuals to lead meaningful and active lives within their natural environment through various supportive activities and services. The website reflects this mission with clear, relevant content and a consistent brand presence. Technically, the site is built on the Webnode CMS platform, hosted via AWS Cloudfront CDN, and uses Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS and uses Google Tag Manager but lacks important security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain raises concerns about transparency and legitimacy, although the website content and hosting appear legitimate. Overall, the site scores moderately on content quality, technical implementation, security posture, privacy compliance, and business credibility, with room for improvement in transparency and security best practices.

C

Coinmate s.r.o

rr-moravskoslezsko.cz

43

Coinmate s.r.o operates a leading European cryptocurrency exchange platform, primarily serving the Czech and Slovak markets with unique EUR and CZK trading pairs. Founded in 2014, the company offers a range of services including quick buy, recurring buy via dollar-cost averaging, a professional trading platform integrated with TradingView, and API access for automated trading. The business positions itself as a secure and trusted exchange with a decade of operational history and a strong focus on compliance and customer support in English and Czech. Technically, the website is built on modern Angular framework with integrations for analytics and marketing tools, and it demonstrates good mobile optimization and SEO practices. Security-wise, Coinmate maintains an excellent posture with HTTPS enforcement, ISO 27001 certification, advanced custody infrastructure, and separation of client funds from operating expenses. However, explicit incident response and vulnerability disclosure policies are not publicly available, which could be improved. Overall, the website and business present a high level of professionalism, trustworthiness, and compliance suitable for a financial services provider in the cryptocurrency sector.

A

ANIMA VIVA z.s.

animaviva.cz

44

ANIMA VIVA z.s. is a Czech non-profit organization established in 2002, dedicated to providing social services and support to persons with disabilities, particularly those with mental and intellectual disabilities. The organization operates primarily in the Moravian-Silesian region and offers registered social services including social counseling, social rehabilitation, and employment opportunities through sheltered workplaces. Their mission focuses on social inclusion, improving quality of life, and destigmatizing disabilities. The website reflects this mission with relevant content and a clear target audience of disabled persons and their families. Technically, the website uses a modest technology stack including jQuery, bxSlider, lightbox, Google Analytics, and Google Tag Manager. It implements cookie consent mechanisms aligned with GDPR requirements and uses HTTPS for secure communication. However, the site lacks advanced security headers and accessibility features, and the performance and mobile optimization are basic. The absence of WHOIS data and explicit contact emails or phone numbers on the site slightly detracts from the overall trustworthiness. From a security perspective, the site shows good privacy compliance with GDPR statements and cookie consent but could improve by adding security headers and a vulnerability disclosure policy. No critical vulnerabilities or malware indicators were found. The missing WHOIS data is a concern and should be investigated to confirm domain legitimacy. Overall, ANIMA VIVA z.s. presents as a legitimate, mission-driven non-profit with a functional website that meets basic privacy and security standards. Strategic improvements in security posture, contact transparency, and technical modernization would enhance trust and user experience.

The Kraft Heinz Company website presents a comprehensive corporate presence for one of the world's largest food and beverage manufacturers. The company is positioned as a global leader with a strong portfolio of iconic brands, targeting consumers, investors, suppliers, and job seekers. The website content is professionally structured, providing detailed information about the company, its brands, investor relations, and career opportunities. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, Bootstrap, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and linked official domains appear legitimate. Overall, the site scores well on content quality, technical implementation, and security posture, with room for enhancement in transparency and security disclosures.

The Pennsylvania Association of Nurse Anesthetists (PANA) is a professional membership organization representing over 3,500 certified registered nurse anesthetists and students in Pennsylvania. The association focuses on advocacy for patient safety, access to quality care, and the advancement of the nurse anesthesia profession. Their services include educational opportunities, professional development, events such as symposiums, and community giving campaigns. The website reflects a medium-sized, well-established healthcare association with a clear mission and target audience of healthcare professionals within the state. Technically, the website is built on the YourMembership CMS platform, utilizing a combination of Bootstrap, jQuery, YUI, and FontAwesome for UI and interactivity. It integrates Google Analytics, Google Tag Manager, and New Relic for performance monitoring and analytics. The site employs HTTPS with SSL encryption and includes bot protection via DataDome, indicating a moderate level of security maturity. However, some security best practices such as explicit security headers and cookie consent mechanisms are not evident. From a security perspective, the site demonstrates good baseline protections with encrypted login forms and bot mitigation. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data due to privacy protection is typical for organizations seeking to protect registrant information and does not detract from the site's legitimacy. Overall, the site maintains a professional and trustworthy presence suitable for its audience. Strategically, PANA should consider enhancing privacy compliance by implementing visible cookie consent banners and publishing detailed security and incident response policies. Improving security headers and accessibility compliance would further strengthen their security posture and user experience. These steps will help maintain trust and meet evolving regulatory requirements.

M

Mozilla

mozilla.com

72

Mozilla operates the Firefox web browser, a leading privacy-focused and open-source browser available across multiple platforms including Windows, Mac, Linux, Android, and iOS. The website serves as a central hub for downloading Firefox, learning about its features, and accessing support resources. Mozilla's non-profit status and commitment to internet health and privacy position Firefox as a trusted alternative to mainstream browsers. The site demonstrates a mature digital presence with excellent content quality, mobile optimization, and user experience. Technically, the site uses modern JavaScript frameworks, Sentry for error monitoring, and Google Tag Manager for analytics, reflecting a robust and well-maintained infrastructure. Security posture is strong with HTTPS enforced and privacy mechanisms like cookie consent banners implemented, though explicit security policies and incident response contacts are not published on the site. WHOIS data for the domain is unavailable, which is unusual but does not detract significantly from the site's legitimacy given Mozilla's global reputation and consistent branding. Overall, the site is professional, secure, and privacy-conscious, serving a broad audience effectively.

C

CV-Library LTD

cv-library.co.uk

64

CV-Library LTD operates one of the UK's largest independent job boards, offering a comprehensive platform for job seekers and recruiters. Founded in 2000, it provides services including job search, CV registration, job alerts, career advice, and a company directory. The website targets UK job seekers and recruitment professionals, maintaining a strong market position with over 123,000 live vacancies and more than 10,000 companies registered. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Amplitude analytics, and OneTrust for cookie consent management. It is well-optimized for mobile devices and accessibility, with structured data enhancing SEO. The site uses HTTPS with good SSL configuration, though some security headers could be improved. From a security perspective, the site follows best practices such as HTTPS enforcement and secure form handling. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, WHOIS data is unavailable due to domain naming rules errors, which slightly impacts trust but does not detract from the site's professionalism. Overall, CV-Library presents a secure, professional, and user-friendly platform with a solid business model and market presence. Strategic improvements in security headers and WHOIS transparency could further enhance trust and compliance.

A

ASP Events

asp.events

69

ASP Events is a specialized service provider focused on creating websites for conferences, shows, and exhibitions. Their market position is that of a niche event website specialist offering engaging, functional, and visually appealing online presences tailored for event organizers. The website demonstrates a good level of professionalism and targets event planners seeking dedicated web solutions. Technically, the site uses a modern technology stack including jQuery, Google Tag Manager, Cookiebot for consent management, and custom CMS technology named SHOWOFF by ASP.events. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured data. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, although explicit security headers and policies are not visible. Privacy compliance is partially addressed via Cookiebot, but no explicit privacy policy or terms of service pages were found in the provided content. WHOIS data is unavailable due to query failure or privacy protection, which is common for small service providers and does not raise immediate concerns. Overall, the website is professional and trustworthy but could improve transparency by publishing privacy and security policies and providing clear contact information.

M

Media Business Insight (MBI) Ltd

broadcastsportawards.co.uk

59

The Broadcast Sport Awards website represents a well-established event brand under Media Business Insight (MBI) Ltd, a subsidiary of GlobalData. The site focuses on celebrating excellence in sports broadcasting and production, targeting industry professionals such as broadcasters, production companies, and rights holders. It offers event information, sponsorship opportunities, and showcases past winners and shortlists, positioning itself as a leading UK and Ireland sports television awards event. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Google Tag Manager, and Permutive for tracking, built on the SHOWOFF CMS platform by ASP.events. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and consistent branding. However, some improvements could be made in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner or explicit GDPR compliance indicators. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic enhancements in privacy and security policies would further strengthen its compliance and user trust.