Security Directory

P

Precious Plastic France

preciousplastic.fr

53

Precious Plastic France is a French non-profit association dedicated to advancing ecological and social transition in the plastic economy. It operates as a community network promoting open-source recycling solutions, training, and events such as an annual festival. The organization targets professionals and the general public interested in sustainable plastic recycling. Technically, the website is built on WordPress, hosted by Alwaysdata, and uses common plugins like Contact Form 7. The site is moderately performant, mobile-optimized, and has good content quality but lacks explicit privacy and cookie policies. Security posture is decent with HTTPS enforced but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the association.

O

One Army

projectkamp.com

56

Project Kamp is a small community-driven initiative based in Portugal focused on researching and prototyping sustainable living methods. The project emphasizes open source sharing of knowledge and community collaboration, positioning itself as a niche player in sustainability research. The website is built on modern web technologies using Webflow and integrates Google Analytics for user tracking. While the site is well-designed and content-rich, it lacks formal privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enabled but missing advanced security headers and DNSSEC. The domain registration is consistent and stable, supporting legitimacy. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

F

Ferme de Cagnolle

fermedecagnolle.fr

42

Ferme de Cagnolle is a small organic farm based in Dordogne, France, specializing in living soil market gardening and the production of organic vegetables, seeds, and legal CBD/CBG products. The farm also offers training programs and creates media content to share agroecological knowledge. Their business model combines direct product sales through an online boutique with educational services and participatory agricultural projects, targeting environmentally conscious consumers and learners in France and nearby European cities. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern web technologies including Google Analytics and cookie consent tools, but lacks some advanced security headers. The security posture is good with HTTPS enforced and no visible vulnerabilities. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and registration status, which should be addressed to improve trust. Overall, the site is professional and trustworthy, with good privacy compliance and clear contact information.

M

makesense

makesense.org

61

makesense is a French non-profit organization dedicated to creating tools and programs for collective mobilization to build an inclusive and sustainable society. With over 10 years of experience and an international presence, it supports citizens, entrepreneurs, and organizations in social impact initiatives. The website is professionally designed, multilingual, and provides clear information about its vision, missions, values, and impact. The technical infrastructure is based on WordPress, hosted by DreamHost, and uses common analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is basic with a cookie consent banner and a privacy policy page, but lacks detailed security or incident response policies. Overall, the website is trustworthy, safe, and well-positioned in its sector.

F

Free

free.fr

58

Free is a major French telecommunications provider offering fiber internet, Wi-Fi 7, TV, fixed phone lines, and 5G mobile plans without contractual commitment. The website presents a professional and modern digital presence, leveraging Next.js and React frameworks, with excellent mobile optimization and user experience. Security posture is strong with HTTPS enforcement, security headers, and a consent management platform for GDPR compliance. However, the absence of WHOIS data and explicit contact or security policy pages slightly reduces trust from a domain registration and transparency perspective. Overall, the site is trustworthy and well-maintained, serving a large customer base in France with competitive telecom services.

J

Joanna Macy & Her Work

joannamacy.net

57

The website 'Joanna Macy & Her Work' appears to be a small-scale, non-profit or personal site hosted on the Squarespace platform. It presents minimal content with no descriptive business information or contact details. The technical infrastructure is standard for a Squarespace site, with HTTPS enabled and basic mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate due to HTTPS but lacks security headers and privacy policies. Overall, the site is accessible and safe but lacks comprehensive business and compliance information.

T

TotalEnergies

totalenergies.com

72

TotalEnergies is a global integrated energy company specializing in oil, biofuels, natural gas, green gases, renewables, and electricity. The company positions itself as a leader in the energy transition, emphasizing sustainability and innovation. The website reflects a mature digital presence with comprehensive corporate content, including press releases, sustainability reports, and investor information. The technical infrastructure is modern, leveraging Drupal CMS, Tealium for tag management, and Cloudflare for hosting and performance optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is robust, with clear privacy and cookie policies and GDPR consent management. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

C

Conservatoire national des arts et métiers

cnam.fr

53

The Conservatoire national des arts et métiers (Cnam) is a well-established French public higher education institution dedicated to lifelong learning, scientific and technical culture dissemination, and research. The website reflects a mature digital presence with extensive content covering education, research, culture, and regional and international activities. The institution targets students, professionals, and researchers, offering a broad range of services including micro-certifications, MOOCs, and cultural exhibitions. Technically, the site uses modern JavaScript libraries and a custom CMS, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies could be improved. The absence of WHOIS data limits domain registration trust analysis, but the website's branding, certifications, and content strongly support its legitimacy. Overall, the site is professional, trustworthy, and well-suited for its educational mission.

G

Groupe INP

groupe-inp.fr

53

Groupe INP is a consortium of public engineering and management schools in France, offering high-quality education and research opportunities across multiple regions including Brittany, Bordeaux, Clermont-Ferrand, Grenoble, Nancy, and Toulouse. The group emphasizes professional training, scientific excellence, and strong ties with industry and international partners. The website reflects a well-structured educational institution with clear branding and a focus on student engagement and admissions. Technically, the site uses a custom CMS (K-Sup), modern web technologies, and Matomo analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced, though some security headers and explicit policies could be improved. WHOIS data is unavailable, which slightly impacts domain trust but the site content and branding strongly indicate legitimacy. Overall, the site is professional, accessible, and trustworthy for its target audience.

AST Partner Connect is a professional platform operated by the American Society of Transplantation, providing transplant healthcare professionals with access to educational content, clinical trials, career opportunities, and partner resources. The platform serves as a bridge between healthcare professionals and industry partners, facilitating knowledge sharing and professional development in transplantation. The website is well-branded, consistent, and targets a specialized audience in the healthcare sector. Technically, the site uses common web technologies such as jQuery, Vimeo API, and Select2, hosted likely on AWS infrastructure. The design is professional and mobile-optimized, though accessibility and SEO could be improved. Security posture is moderate with no evident critical vulnerabilities, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a clear privacy policy but no cookie consent mechanism. WHOIS data is transparent and consistent with the organization's profile, enhancing trustworthiness. Overall, the site is a credible and useful resource for its target audience.

S

Somfy

somfy.at

71

Somfy is a well-established company specializing in motorized shading solutions and smart home automation products. The website www.somfy.at serves the Austrian market with a comprehensive product catalog, e-commerce integration, and extensive customer support resources. The company targets private customers, professional partners, and technical planners, positioning itself as a leader in smart home technology and automation. The site is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the website employs modern web technologies including responsive images, SVG icons, JSON-LD structured data, and uses Akamai CDN for performance optimization. The platform appears custom-built with a focus on user experience and SEO best practices. Security measures such as HTTPS, security headers, and privacy compliance mechanisms are well implemented, although explicit security policy and incident response pages are not found. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms aligned with GDPR. The absence of WHOIS data is noted but likely due to privacy protection, which is justified for a commercial brand site. Trust indicators such as Trusted Shops certification and active social media presence further enhance credibility. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Recommendations include publishing explicit security policies and vulnerability disclosure information to further enhance transparency and trust.

P

Près de chez nous

presdecheznous.fr

55

Près de chez nous is a French collaborative platform focused on ecological and solidarity initiatives, providing a map-based directory to connect users with local sustainable resources. The website is designed with a consistent and professional aesthetic, optimized for mobile devices, and includes SEO-friendly metadata. The technical infrastructure relies on standard web technologies including HTML5, CSS3, JavaScript, and jQuery, hosted by OVH, a reputable provider. User analytics are tracked via Matomo, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is provided, limiting transparency and user trust. Overall, the site is functional and trustworthy but would benefit from enhanced privacy and security practices.

A

Association Colibris

colibris-lafabrique.org

46

La Fabrique des colibris is a French non-profit platform affiliated with the Association Colibris, dedicated to supporting collective projects aligned with ecological and social values. The platform offers free services to project initiators including visibility, volunteer recruitment, and resource sharing, funded primarily through donations. The website is well-branded, consistent, and targets a community of socially conscious individuals and groups in France. Technically, the site runs on Drupal 7 with embedded multimedia and uses Matomo for analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained but could improve in security and privacy transparency.

M

Mouvement Colibris

colibris-universite.org

46

The Université des Colibris is a French non-profit educational platform operated by the Mouvement Colibris, focused on empowering individuals and organizations to engage in ecological and social transition. The website offers a variety of MOOCs and training programs targeting citizens and professionals interested in sustainable development, governance, and community projects. The organization is well-established with a domain registered since 2016 and holds the Qualiopi certification, reinforcing its credibility in the education sector. Technically, the website is built on Drupal 7, utilizing JavaScript and Matomo analytics for user tracking. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data enhancing search visibility. Hosting is provided by Gandi SAS, a reputable registrar and hosting provider. However, some security enhancements such as enabling DNSSEC and adding security headers could improve the overall security posture. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit security policies or incident response contacts. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism was detected. The site tracks users moderately via Matomo, a privacy-friendly analytics tool. No vulnerabilities or exposed sensitive data were identified. Overall, the website presents a trustworthy and professional front for the educational services it offers, with room for improvement in security and privacy compliance to align with best practices and regulatory requirements.

Q

QS Arab Forum 2025

qsarabforum.com

51

The website portal.qshesummits.com/event/qsarabforum2025/home serves as an online registration portal for the QS Arab Forum 2025 event. It is hosted on the Cvent event management platform, leveraging modern JavaScript frameworks such as React. The site targets professionals and attendees interested in the QS Arab Forum, providing event registration and management services. The business model centers on event facilitation rather than direct commercial sales. The website content is basic but functional, with moderate branding consistency and no explicit business entity information disclosed. Technically, the site uses a modern tech stack including React and integrates Google Analytics and Google Tag Manager for tracking. The performance is moderate with basic mobile optimization and accessibility features. The site uses HTTPS and nonce attributes on scripts, indicating some security awareness, but lacks visible security headers and explicit privacy or cookie policies. From a security perspective, the site shows moderate posture with no critical vulnerabilities detected in the provided data. However, the absence of privacy policies, contact information, and security headers reduces compliance and trustworthiness. The WHOIS data for the subdomain is unavailable, which is typical for subdomains but limits domain legitimacy verification. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site is a functional event registration portal with moderate technical maturity but limited transparency on privacy and security policies. Strategic improvements in privacy compliance, security headers, and contact information would enhance trust and security posture.

F

Flexity

flexity.hr

60

Flexity.hr is a specialized e-commerce platform focused on yoga, pilates, ayurveda, and wellness products. The website offers a broad range of related goods including mats, clothing, accessories, and natural cosmetics, targeting yoga practitioners and wellness enthusiasts primarily in the Croatian and regional markets. The business operates under a small-sized model with a recent founding date in 2021, supported by a consistent domain registration and hosting provider based in Slovakia. The site is part of a regional network of sister sites serving multiple Central European countries. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, and Facebook SDK for marketing and analytics. The site is mobile-optimized with good SEO and basic accessibility features. Security posture is solid with HTTPS enforcement, standard security headers, and cookie consent mechanisms, although it lacks a dedicated security policy or incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable online retail destination for its niche audience.

K

Knoppers

knoppers.ch

67

Knoppers is a well-established confectionery brand operating under the parent company Storck, targeting general consumers with a focus on product information and marketing for their wafers, bars, and goodies. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is trustworthy, compliant with GDPR, and free from suspicious content or vulnerabilities.

K

Knoppers

knoppers.pl

63

Knoppers is a confectionery brand website focused on promoting its wafer and bar products in Poland. The site is professionally designed using TYPO3 CMS and provides detailed product categories and promotional content. It is part of the Storck group, a well-known confectionery company, which enhances its market credibility. The website targets general consumers interested in confectionery snacks and offers a clean, navigable user experience with mobile optimization and structured data for SEO. Technically, the website employs modern web technologies including TYPO3 CMS, RequireJS, and Piwik analytics. It uses HTTPS with good SSL configuration, though lacks explicit security headers. The site includes cookie consent mechanisms and a privacy policy indicating GDPR compliance. However, no direct contact emails or phone numbers are published, and no explicit security or incident response policies are found. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but improvements could be made by adding security headers and incident response contacts. The WHOIS data is unavailable due to registry restrictions, which is common for .pl domains, but the website's professional presentation and linkage to the parent company Storck support its legitimacy. Overall, the website is a credible, well-maintained brand site with good content quality and privacy compliance, suitable for consumer engagement. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for improved trust and compliance.

K

Knoppers

knoppers.nl

65

Knoppers is a well-established confectionery brand operating under the parent company Storck, targeting general consumers primarily in the Netherlands and surrounding European markets. The website serves as a product showcase and promotional platform for Knoppers Wafel and Knoppers Bar products, providing ingredient information and customer engagement through a contact form. The brand maintains consistent and professional digital branding with a focus on product marketing and consumer interaction. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries such as RequireJS and AOS for enhanced user experience. The site is mobile-optimized and includes SEO best practices with structured data (JSON-LD) and Open Graph metadata. Analytics are handled via Piwik, indicating a moderate level of user tracking balanced with privacy compliance. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site enforces HTTPS with a strong SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No vulnerabilities or suspicious content were detected, and the WHOIS data confirms domain legitimacy and alignment with the brand's corporate identity. Overall, the website presents a secure, professional, and user-friendly platform for the Knoppers brand, with recommendations to enhance security transparency and accessibility to further strengthen trust and compliance.

K

Knoppers

knoppers.hu

69

Knoppers.hu is the official Hungarian website for the Knoppers brand, a confectionery product line owned by the Storck company. The website serves primarily as a brand marketing and product information portal, targeting general consumers interested in Knoppers wafer and chocolate bars. It features multiple language versions and links to partner brand sites, indicating a well-established market presence in Hungary and the broader region. The business model focuses on product promotion and consumer engagement rather than direct e-commerce. Technically, the site is built on TYPO3 CMS with modern frontend technologies including RequireJS and AOS for animations. It supports progressive web app features and is mobile optimized with good SEO practices. The site loads moderately fast and provides a good user experience with clear navigation and professional design. Analytics are implemented via Piwik, respecting privacy compliance with a cookie consent mechanism. From a security perspective, the website enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data confirms domain legitimacy with consistent registrant information matching the brand owner, Storck, and no privacy protection masking. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. Strategic improvements could include adding security headers, publishing a security policy, and providing direct security incident contact information to enhance trust and security posture.

K

Knoppers

knoppers.de

72

Knoppers is a well-established German confectionery brand specializing in breakfast snack products such as Knoppers Schnitte, Riegel, and Goodies. The website serves as a product showcase and brand marketing platform, targeting general consumers interested in confectionery products. It is part of the larger Storck group, which is reflected in the branding and partner links. The website is built on TYPO3 CMS and incorporates modern web technologies including PWA features and JavaScript libraries for enhanced user experience. The site is mobile-optimized and uses structured data for SEO and social media integration. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not published. Overall, the site demonstrates a professional and trustworthy online presence consistent with a large retail brand.

S

Storck

mamba.pl

63

Mamba.pl is a professionally maintained website representing the Mamba brand of fruit-flavored dissolvable gums, owned by the well-known confectionery company Storck. The site targets a general audience including children and adults who enjoy sweet treats, offering product information, promotions, and limited edition releases. The website is built on TYPO3 CMS and uses modern JavaScript libraries, indicating a mature and stable technical infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner adhering to GDPR standards. However, the absence of WHOIS data for the domain reduces trust slightly, though the association with Storck mitigates this concern. Overall, the website is trustworthy, professional, and well-positioned in the retail confectionery market.

S

Storck

mamba.at

65

The website www.mamba.de is a professionally designed brand site for Mamba, a fruit-flavored chewy candy product under the Storck company umbrella. It targets a general German-speaking audience with product information, brand marketing, and consumer engagement content. The site uses TYPO3 CMS and modern JavaScript libraries, including RequireJS, Lodash, and jQuery, with Piwik PRO for analytics. The technical infrastructure is modern and mobile-optimized, though performance is moderate. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is strong with GDPR-aligned policies and consent banners. Business credibility is high due to consistent branding and linkage to the parent company Storck. Overall, the site is trustworthy and safe for general audiences.

H

Helexia

helexia.com.br

55

Helexia is a Brazilian company specializing in energy solutions with a focus on sustainable and renewable energy projects. The website is professionally designed using WordPress with Elementor and optimized with Yoast SEO, targeting business clients in the energy sector. The technical infrastructure is modern and mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the website presents a credible business presence but would benefit from enhanced security and compliance documentation.

M

Mission H

mission-h.org

56

Mission H is a French educational non-profit project focused on promoting social cohesion, anti-racism education, and cultural diversity awareness among youth. It operates through interactive exhibitions, thematic educational toolkits, and international collaborations such as the Erasmus+ program. The website content is rich, well-structured, and targeted primarily at educational institutions and youth audiences. Technically, the site uses basic web technologies hosted on Infomaniak servers, with moderate performance and basic mobile optimization. Security posture is average, with domain transfer protections but lacking DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is limited but includes a valid organizational email. Overall, the site is trustworthy and professional but could improve in security and compliance aspects.

I

Ifremer

monlopindemer.fr

58

Ifremer is a French public research institute specializing in marine science and technology. The analyzed webpage presents the 'Mon lopin de mer' educational project aimed at raising awareness about ocean ecosystems and encouraging preservation actions among students and the public. The website is professionally designed, well-structured, and mobile-optimized, reflecting a mature digital presence. Technically, it uses Drupal CMS with modern web standards and security best practices including HTTPS and security headers. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident with clear privacy and cookie policies and consent mechanisms. Business credibility is high due to official government branding, partnerships, and certifications. WHOIS data is unavailable, likely due to privacy or registry response, but this does not detract from the site's legitimacy given its governmental nature. Overall, the site is trustworthy, secure, and serves an important educational mission.

F

Faire Autrement

faire-autrement.fr

55

Faire Autrement is a French cultural festival and biennale focused on citizen and innovative ecological experiences, aiming to promote harmonious and sustainable living. The website is built on the Wix platform, leveraging Wix's hosting and standard JavaScript and CSS technologies. The site presents a professional design with good mobile optimization and basic SEO features. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and privacy compliance documentation. The absence of WHOIS data suggests privacy protection for the domain registration, which is common for event-based websites. Overall, the site is legitimate and safe but would benefit from enhanced privacy and security policies to improve trust and compliance.

P

Kurzy a školení PRVNÍ POMOCI

pomahej-kvalitne.cz

44

The website pomahej-kvalitne.cz represents a small Czech business specializing in first aid training courses and workshops. Their offerings include basic and extended first aid courses, specialized training for schools and families, and AED defibrillator usage training. The business targets firms, schools, and individuals, positioning itself as a niche educational provider in the Czech Republic. The website is built on WordPress and hosted by cesky-hosting.eu, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Contact information is minimal, limited to a Facebook social media link without explicit emails or phone numbers on the main page. The domain registration is consistent with the business profile and founded in 2022, indicating legitimacy. Overall, the site is professional and relevant but could improve compliance and security practices.

S

SPECTRUM

spectrumstore.com

74

SPECTRUM is an established Italian e-commerce retailer specializing in graffiti art supplies including spray paints, markers, and accessories. The website positions itself as a community supporter with over 20 years of experience, targeting graffiti artists and enthusiasts. The business operates on the Shopify platform, leveraging modern e-commerce technologies and Cloudflare DNS services. The website demonstrates good design quality, clear navigation, and mobile optimization, providing a professional user experience. Security posture is solid with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is basic with a cookie consent mechanism but lacks a published privacy policy or terms of service. Overall, the site is trustworthy and safe for general audiences, with no adult or explicit content detected.

České modelky s.r.o. is a Czech Republic based modeling and promotional services agency operating since 2006. The company specializes in providing hostesses, models, plus size models, live mannequins, and promotional staff for events and advertising campaigns. Their website reflects a well-established local business with a strong database of over 22,000 women and girls aged 16-40. The business targets companies and event organizers in the Czech Republic and Slovakia seeking professional promotional personnel. Technically, the website uses modern frontend technologies including Bootstrap and jQuery, with a responsive design and basic SEO optimizations. Security posture is moderate with HTTPS implied and a cookie consent mechanism implemented, but lacks advanced security headers and explicit security policies. No contact emails or phone numbers are directly provided on the main page, which slightly impacts user trust and contactability. Overall, the website is professional and trustworthy with room for improvement in security and privacy transparency.

The website renault.no is currently inaccessible due to a Vercel Security Checkpoint blocking content access. The page displays a message indicating failed browser verification and provides a link for the website owner to fix the issue. Due to this block, no business-related content, metadata, or contact information is available for analysis. The site appears to be hosted on Vercel and uses Astro framework technology. Without access to the actual website content, it is impossible to assess the business model, services, or market position. The security posture cannot be evaluated beyond the presence of the security checkpoint, which itself indicates some level of bot or threat mitigation. Overall, the site is currently non-functional for end users and requires resolution of the security checkpoint to enable further analysis.

V

Vorwerk Hellas

vorwerk.gr

62

Vorwerk Hellas operates as the official distributor and e-commerce platform for Thermomix® kitchen appliances in Greece. The website offers product information, live demonstrations, consultant recruitment, and direct sales, targeting Greek consumers interested in innovative kitchen technology. The business is positioned as a medium-sized retail entity under the global Vorwerk Group umbrella, with a consistent brand presence and active social media engagement. Technically, the website is built on the Shopify platform, leveraging modern JavaScript libraries and marketing pixels for analytics and advertising. It demonstrates good performance, mobile optimization, and accessibility features. The presence of structured data and comprehensive metadata supports SEO efforts. From a security perspective, the site enforces HTTPS and employs CAPTCHA for form protection. While explicit security headers are not evident in the HTML, no critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and indicate GDPR compliance, though incident response and security policy details are not publicly available. Overall, the website presents a professional, trustworthy, and secure online presence suitable for its retail business model. Strategic improvements in security header implementation and incident response transparency could further enhance its security posture.

K

Kalmoya.com

kalmoya.com

10

Kalmoya.com is a specialized service provider focused on Concrete5 CMS development and support, targeting entrepreneurs and small to medium businesses. The website presents a professional and consistent brand image, offering retainers, custom development, and support services tailored to business growth and website management. The technical infrastructure leverages modern web technologies including Concrete CMS, JavaScript APIs, and Google Analytics for performance and user insights. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and incident response information suggests room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet regulatory standards. The domain's WHOIS data is missing, raising concerns about registration legitimacy, but the website's professional appearance and client testimonials support its credibility. Overall, the site is well-designed and functional but would benefit from enhanced transparency and security practices.

E

Expertises Climat

expertisesclimat.fr

11

Expertises Climat is a French non-profit association founded in 2022, dedicated to bridging scientific research and media to enhance public debate on ecological urgency. The organization federates over 200 researchers and experts, supporting journalists and promoting scientific expertise in media coverage of climate issues. Their partnerships with reputable institutions such as ADEME and CNRS reinforce their credibility and influence in the environmental sector. Technically, the website is built on WordPress with modern web technologies including Google Fonts, FontAwesome, and the Complianz GDPR plugin for privacy compliance. The site is well-optimized for mobile devices, has good SEO practices, and uses HTTPS with secure cookie consent mechanisms. Google Tag Manager is used for analytics, indicating moderate user tracking with privacy considerations. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the organization's profile, showing a consistent and legitimate domain registration. Overall, the website presents a professional, trustworthy, and privacy-conscious platform for its niche audience. Strategic improvements could include enhanced security headers and publicly available security policies to further strengthen trust and compliance.

C

Coop-médias SCIC SA

coop-medias.org

10

Coop-médias is a French citizen cooperative established in 2024 that supports, promotes, and defends independent media through citizen investment starting at 100 euros, offering tax benefits. Positioned as the first cooperative of its kind in France, it aims to finance independent media, increase their visibility, and defend media independence in public discourse. The website is professionally designed, mobile-optimized, and rich in relevant content targeting citizens interested in democratic and independent information. Technically, it is built on WordPress with modern plugins for GDPR compliance and tracking, including Facebook Pixel and Google Analytics, all integrated with user consent mechanisms. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. WHOIS data is incomplete, limiting domain trust verification, but the website's professionalism and transparency support its legitimacy. Overall, Coop-médias presents a credible and well-structured platform for cooperative investment in media independence.

A

Atelier Anamorphose / Agence Anamorphose

anamorpho.se

10

Anamorphose is a French hybrid social enterprise combining an artistic association and a social mission agency focused on inclusion, upcycling, and artistic rehabilitation of objects and spaces. The company targets artists, enterprises, local authorities, and associations, positioning itself as a niche player in the Lyon metropolitan area. The website is built on WordPress with a modern tech stack including Alpine.js and Leaflet.js, hosted by OVH.net. It features GDPR-compliant cookie consent and uses Matomo analytics for privacy-conscious tracking. Security posture is solid with HTTPS and cookie management, though DNSSEC is not enabled and some security headers are missing. No critical vulnerabilities or exposed sensitive data were found. The domain is newly registered but consistent with the business profile. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

S

Storck

mamba.de

65

The website www.mamba.de is a professionally maintained brand site for Mamba, a fruit-flavored chewy candy brand under the Storck company. It targets a general German-speaking audience with product information, brand marketing, and consumer engagement content. The site uses TYPO3 CMS and modern JavaScript libraries, including RequireJS, Lodash, and jQuery, and integrates Piwik PRO for analytics. The technical infrastructure is modern and mobile-optimized, with good SEO and accessibility basics. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and published security policies are absent. WHOIS data aligns with the brand, supporting legitimacy. Overall, the site is trustworthy and well-positioned in the retail confectionery market.

S

Storck

nimm2.at

74

The website www.nimm2.at represents the Austrian presence of the Storck brand 'nimm2', a well-established confectionery brand specializing in vitamin-enriched sweets and candies. The site serves as a consumer-facing platform providing product information, brand storytelling, and engagement through inspiration and ideas. It targets a general audience including families and consumers interested in vitamin candy products. The website is part of a larger corporate ecosystem under Storck, linking to multiple sister brand domains, indicating a strong market position in the confectionery retail sector in Austria. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as RequireJS, jQuery, and Lodash, and integrates Piwik PRO for analytics and tag management. The site is mobile-optimized with responsive design and good SEO practices. Performance is moderate, with asynchronous loading of scripts and media assets. Accessibility is basic but functional. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected in the HTML content, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the content. The WHOIS data for the domain is unavailable due to NIC.AT restrictions, limiting full verification of domain registration details, but the website's branding and content strongly indicate legitimacy. Overall, the site presents a professional, trustworthy brand presence with good privacy compliance and moderate security posture. Strategic improvements could include enhancing security headers, publishing explicit security policies, and providing direct contact information for incident response. These steps would strengthen trust and compliance further.

S

Storck

toffifay.us

66

Storck is a well-established confectionery company with a global presence, offering products such as Toffifay, a unique confection combining caramel, hazelnut, and chocolate. The website reflects a professional brand image with consistent branding and clear product information targeted at a general audience. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries, providing a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit incident response policies are absent. Overall, the site is trustworthy and compliant with privacy regulations, though WHOIS data is unavailable likely due to privacy protection.

P

Patriot Program

patriotprogram.cz

54

Patriot Program is a regional media platform focused on providing a comprehensive calendar and search engine for cultural, sports, and social events in the Moravskoslezský kraj region of the Czech Republic. The website offers event listings, articles, and a downloadable magazine, targeting a broad audience including families, seniors, and cultural enthusiasts. The platform supports user-generated event creation and maintains active social media channels on Facebook and YouTube. Technically, the website is built using modern web technologies including Next.js and React, hosted on DigitalOcean infrastructure, and optimized for mobile devices with good performance and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and privacy compliance pages indicates room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the professional presentation and content quality suggest a legitimate business. Overall, the site scores well on content and technical implementation but needs to enhance privacy compliance and transparency to improve trust and security posture.

G

Gab

gab.com

68

Gab is a social networking platform emphasizing free speech and individual liberty. It operates a subscription model with Gab PRO, which grants VPN and proxy access to its site. The website is moderately mature with a domain age dating back to 1998, hosted via Cloudflare, and uses modern web technologies including React and Matomo analytics. The VPN policy page clearly states restrictions on VPN/proxy usage to protect the community from malicious actors. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is limited as no privacy or cookie policies are present on this page. Overall, the site is functional and professional but could improve transparency and security practices.

T

theprotocol.it

theprotocol.it

67

theprotocol.it is a specialized online job portal focused on the IT sector in Poland, providing daily updated job offers and resources for both candidates and employers. The platform leverages modern web technologies such as React and Next.js to deliver a responsive and user-friendly experience. It maintains a strong security posture with HTTPS, DNSSEC, and security headers, ensuring safe browsing for users. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance, and does not provide explicit contact information, which may affect user trust and compliance. Overall, the site is professionally designed and well-positioned in its niche market but should enhance its privacy compliance and transparency to improve trust and legal adherence.

L

Latvijas Sabiedriskais medijs

lsm.lv

56

LSM.lv is the official Latvian public media news portal operated by Latvijas Sabiedriskais medijs. It provides trusted news content including video, audio, and written articles primarily in Latvian with multilingual support for Russian, English, Ukrainian, Belarusian, and Polish. The platform serves as a key information source for the Latvian public and covers a wide range of topics including national and international news, culture, sports, and weather. The website demonstrates a mature digital infrastructure leveraging modern JavaScript frameworks, analytics tools, and a cookie consent mechanism to comply with privacy regulations. Security posture is strong with HTTPS enforced and bot protection via Google reCAPTCHA, although explicit privacy and security policies are not found in the provided content. Overall, the site is professional, well-branded, and trustworthy, serving a large audience with high-quality content.

A

lift | Data-Driven iGaming Advertising Platform

admedo.com

64

The website lift.win presents a data-driven advertising platform tailored for the iGaming industry, focusing on player acquisition and lifetime value maximization through machine learning. The platform targets iGaming operators and positions itself as a niche solution within the advertising technology sector. Technically, the site employs modern frameworks such as Next.js and React, with integrations of HubSpot marketing and analytics tools, indicating a mature digital infrastructure. Security posture is moderate; HTTPS is implied, but no explicit security headers or policies are found, and WHOIS data is unavailable, which limits full trust assessment. Overall, the site is professional and functional but would benefit from enhanced privacy and security disclosures to improve compliance and trust.

U

U Mistra Mydláře

umistramydlare.cz

55

U Mistra Mydláře is a small family-owned business based in the Czech Republic specializing in handmade soaps, shampoos, shaving foams, and scented gifts. Established in 2012, the company emphasizes natural ingredients without chemical preservatives or dyes, targeting customers who value artisanal and natural skincare products. Their market position is that of a niche regional player with a loyal customer base, supported by certifications such as the regional product certificate and registration in the European Cosmetic Products Notification Portal (CPNP). Technically, the website is built on the Webnode CMS platform and utilizes modern web technologies including JavaScript, CSS, and HTML5. It leverages AWS Cloudfront CDN for hosting static assets and integrates Google Tag Manager for analytics and Smartsupp for live chat support. The site is mobile-optimized with a moderate performance profile and basic SEO and accessibility features. From a security perspective, the website enforces HTTPS with a good SSL configuration but lacks several important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible cookie consent mechanism, which may impact GDPR compliance. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, although the website content and business information appear legitimate and consistent. Overall, the website presents a professional and trustworthy front for a small artisanal business but would benefit from enhanced security headers, improved privacy compliance mechanisms, and transparency in domain registration details to strengthen its security posture and trust signals.

L

Linkila Technologies Inc.

linkila.com

10

Linkila Technologies Inc. operates a branded short URL service that enables businesses and marketers to create custom short URLs with their own domains, enhancing brand identity and click-through rates. The platform offers dynamic visitor routing, retargeting pixel integration, deep linking for mobile apps, and real-time analytics, positioning itself as a niche SaaS provider in the URL management and marketing analytics space. The website is professionally designed with clear navigation and good mobile optimization, targeting small to medium-sized businesses seeking advanced link management solutions. Technically, the website employs modern web technologies including JavaScript, Google Fonts, and integrates third-party services such as Trustpilot for reviews and Google Analytics alongside Ackee for visitor tracking. Hosting and DNS are managed via Cloudflare, providing reliable performance and security benefits. The site is custom-built without a common CMS, indicating a tailored solution. Performance and SEO are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized transfers or updates. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for improvement. No security policy or incident response information is publicly available, and cookie consent mechanisms are absent, indicating partial privacy compliance. The domain WHOIS data is consistent with the business profile, showing a legitimate registration since 2020. Overall, Linkila presents a trustworthy and professional online presence with a solid technical foundation and moderate security posture. Strategic enhancements in privacy compliance, security headers, and incident response transparency would further strengthen its risk profile and customer trust.

The website kopkatalogs.lv serves as a shared electronic catalog platform for nine national-level libraries in Latvia, leveraging the Ex Libris ALEPH integrated library system. It targets library users including students, researchers, and the general public seeking access to Latvian library resources. The platform is positioned as a key national service facilitating unified catalog access and user authentication. Technically, the site employs JavaScript, Matomo, and Google Analytics for tracking, and is hosted with DNS services on Microsoft Azure. The site uses HTTPS for secure login but lacks visible security headers and cookie consent mechanisms, indicating room for security and privacy improvements. The privacy policy is linked to an official government domain, supporting GDPR compliance, though cookie consent is absent. Overall, the site is functional with moderate technical maturity and basic content quality, suitable for its educational sector role.

F

FORTHEM Alliance

forthem-alliance.eu

65

FORTHEM Alliance is a European network of nine multidisciplinary public research universities focused on fostering cooperation across languages, borders, and disciplines to address societal challenges and skills shortages in Europe. The alliance provides various mobility programs, digital learning platforms, research innovation services, and collaborative labs targeting students, staff, researchers, and public organizations. The website reflects a well-structured and content-rich platform that supports the alliance's educational and research mission. Technically, the website leverages modern web technologies including React and Next.js, delivering a responsive and moderately performant user experience. The site is accessible and SEO optimized, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced, but lacks explicit security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. The domain WHOIS data is privacy protected by EURid, which is common for .eu domains and justified for this non-profit educational alliance. No suspicious patterns or vulnerabilities were detected. Overall, the website demonstrates a trustworthy and professional presence with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing security headers, adding a cookie consent banner, publishing a security policy and incident response information, and enhancing accessibility features to further strengthen the website's security and compliance posture.

The website indica.org.in/lander is currently a minimal placeholder or parking page with very limited content. It primarily loads a React-based frontend with no visible business information, contact details, or policies. The presence of Google Adsense scripts indicates an intent to monetize traffic, but no substantive content or services are offered. The technical infrastructure is basic, relying on React and hosted on WSImg's platform, with no detected CMS or advanced SEO features. Security posture is weak due to lack of HTTPS confirmation, missing security headers, and absence of privacy or cookie policies. No forms or user data collection mechanisms are present, reducing immediate privacy risks but also indicating low engagement. Overall, the site lacks credibility and trust signals, making it unsuitable for business or user interaction in its current state.

C

CentreForMuseums

centreformuseums.in

59

CentreForMuseums is a non-profit initiative focused on revitalizing the museum sector in India through research, management strategies, digital engagement, and sustainability planning. The organization targets museums, cultural institutions, and professionals seeking to modernize and enhance visitor experiences. The website is built on the Squarespace platform, featuring professional design and moderate performance with good mobile optimization. Security measures include HTTPS with HSTS, but the site lacks explicit privacy and cookie policies, which impacts compliance. Contact information is minimal, with only an Instagram social media link provided. Overall, the site presents a credible and focused cultural non-profit with room for improvement in privacy compliance and contact transparency.