Security Directory

S

Storck USA, L.P.

storck.us

65

Storck USA, L.P. operates as a confectionery company with a portfolio of well-known candy brands targeted at consumers in the United States. The website serves as a corporate and brand information portal, showcasing products, company vision, career opportunities, and latest news. The site is built on TYPO3 CMS and employs modern JavaScript libraries and Piwik PRO for analytics, indicating a moderate level of digital maturity. The presence of cookie consent and a comprehensive privacy policy reflects attention to privacy compliance. However, the absence of visible contact emails or phone numbers on the homepage suggests contact is managed through dedicated service pages. Security posture is moderate with no visible security headers and no explicit incident response or security policy information publicly available. The domain WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and brand consistency support its legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its intended audience.

S

Storck

storck.sg

63

Storck Singapore operates as the local corporate website for the international confectionery company Storck, presenting its brand portfolio, corporate vision, career opportunities, and consumer services. The website targets consumers, potential employees, and business partners within Singapore and the broader region. The business model focuses on manufacturing and retailing confectionery products with a strong brand presence. Technically, the site is built on TYPO3 CMS and employs modern JavaScript libraries, ensuring a responsive and accessible user experience. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities, though security headers and explicit incident response information are lacking. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration status, which should be monitored. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

S

Storck UK Limited

storck.co.uk

61

Storck UK Limited operates a corporate website focused on its confectionery business in the United Kingdom. The site provides detailed brand information, career opportunities, and consumer services, positioning Storck as a reputable confectionery manufacturer and retailer. The website is built on TYPO3 CMS with a modern JavaScript stack and includes multimedia content such as videos and image sliders. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting good compliance with GDPR standards. Security posture is solid with HTTPS enforced, though some security headers and incident response disclosures could be improved. The domain www.storck.co.uk itself is not registered according to WHOIS data, indicating the site may be served on a different domain or subdomain, which slightly impacts domain trustworthiness but does not detract from the professional presentation and legitimacy of the content.

A

AUGUST STORCK KG

storck.com

73

Storck is a well-established confectionery company presenting a professional corporate website with comprehensive information about its brands, sustainability initiatives, career opportunities, and consumer services. The website targets general consumers, potential employees, and business partners, reflecting a large enterprise operating primarily in the retail and manufacturing sectors. The digital infrastructure is built on TYPO3 CMS with modern JavaScript libraries, providing a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers are not detected in the provided data. The absence of WHOIS registration data is a notable anomaly that reduces domain trustworthiness, but the website content and branding strongly indicate legitimacy. Privacy compliance is well addressed with clear policies and GDPR adherence.

W

Weblate s.r.o.

weblate.org

71

Weblate s.r.o. operates a professional web-based continuous localization platform that serves over 2,500 libre software projects and companies worldwide. The company offers both self-hosted and premium cloud-hosted localization services, emphasizing open source principles and community collaboration. Their market position is strong within the niche of software localization, supported by a clear business model combining free libre software with paid hosting and support plans. Technically, the website is well-built with modern HTML5, CSS3, and JavaScript, optimized for mobile and SEO, and hosted via Cloudflare for performance and security. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is good with a clear privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

D

Dobré víly dětem | Úvod

dobrevily.cz

64

Dobré víly dětem is a Czech website focused on supporting children and families, aiming to help children believe they can be happy in life despite past experiences. The site appears to be a small-scale or non-profit initiative founded around 2015. The website is built using the Weblium CMS platform and incorporates standard tracking technologies such as Google Analytics and Facebook Pixel. The technical infrastructure is moderate with HTTPS enabled and service workers registered, but lacks advanced security headers and comprehensive privacy or cookie policies. No explicit contact or incident response information is provided, which limits transparency and user trust. Overall, the site is accessible and safe for general audiences, with content targeted at children and families.

E

enabl

enabl.fr

44

enabl is a French-based No Code and AI agency located in Nantes, targeting small and medium enterprises (TPE and PME). Founded in 2020, it operates as a hub and agency under the parent company Digital Korner. The company focuses on accelerating digital project delivery by leveraging No Code technologies and AI, offering services such as audit and consulting, production and deployment, and training and support. Their market position emphasizes rapid, cost-effective digital transformation solutions for SMEs. Technically, the website is built using modern front-end technologies including HTML5, CSS3, JavaScript, jQuery, Typed.js, and AOS for animations. It is hosted by Infomaniak Network SA and uses the Dorik CMS platform. The site is mobile-optimized with good SEO practices and moderate performance. Analytics are implemented via Google Tag Manager and Google Analytics, indicating moderate user tracking. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs basic anti-spam measures in its contact form. However, it lacks security headers and published security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Contact information is limited to a web form, with no direct emails or phone numbers provided. Overall, the website is professional and trustworthy with good content quality and technical implementation. The main risks relate to privacy compliance gaps and missing security best practices. Strategic improvements in these areas would enhance the site's security posture and regulatory compliance.

Rezo.net is a French-language media portal established in 1996, focusing on social, political, and cultural news aggregation and commentary. It curates content from various reputable sources and targets French-speaking audiences interested in these topics. The website uses the SPIP CMS and is hosted by OVH sas, a reputable French hosting provider. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, indicating compliance gaps with GDPR. Contact and incident response information are not provided, limiting transparency. Overall, the website is accessible without WAF or blocking mechanisms and contains safe content suitable for general audiences.

The website at minirezo.net/lander is a minimal landing or parking page with very limited content. It primarily loads a Google Adsense script and static resources from wsimg.com, indicating it is used for advertising revenue rather than active business engagement. The domain is registered with GoDaddy.com, LLC since 2004, which suggests a long-standing registration, but the website itself does not reflect an active or professional business presence. There are no privacy policies, contact information, or business descriptions available on the page. Technically, the site uses basic JavaScript and CSS resources but lacks modern SEO, accessibility, and security features. There is no evidence of HTTPS enforcement or security headers, and DNSSEC is not enabled on the domain. The site is mobile responsive at a basic level but overall design and user experience are poor. From a security perspective, the absence of security headers, privacy policies, and contact information for incident response reduces trustworthiness. The domain registration is consistent and not privacy protected, but the lack of content and business information lowers legitimacy. No WAF or blocking mechanisms were detected, and the site is accessible but minimal. Overall, the website poses low risk but also offers minimal value or trust signals to visitors. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, improving content quality, and implementing security best practices to enhance trust and compliance.

V

Vercel

vercel.live

65

Vercel is a leading technology company providing a developer experience platform that enables teams to develop, preview, and ship web applications efficiently. Their platform is widely adopted by frontend developers and enterprises seeking fast iteration and deployment capabilities. The website reflects a mature digital presence with a focus on performance, usability, and developer-centric features. Technically, the site leverages modern frameworks such as Next.js and React, hosted on Vercel's own platform, ensuring fast load times and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and client-side protections, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism and trustworthiness, supporting Vercel's market position as a premier web development platform.

F

Flickr

flic.kr

71

Flickr is a well-established online photography community platform that offers users the ability to share, organize, and showcase their photos. It operates a freemium business model with a paid Pro subscription that unlocks additional features such as unlimited storage and advanced statistics. The platform targets photographers and creative enthusiasts globally and maintains a strong market position as one of the largest photo-sharing services. The website demonstrates consistent branding, excellent content quality, and a professional user experience. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, Cloudflare Turnstile CAPTCHA, and Weglot for multilingual support. The infrastructure is optimized for performance and mobile responsiveness, with good SEO and accessibility practices. Security measures include HTTPS enforcement, Content Security Policy, CAPTCHA on forms, and GDPR-compliant consent management. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the site could improve by publishing explicit security policies and incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies. Business credibility is supported by transparent WHOIS data, certifications, and active social media presence. Overall, Flickr presents a low-risk profile with a mature digital presence and robust security and privacy practices. Strategic recommendations include enhancing security transparency and formalizing vulnerability disclosure mechanisms.

K

KPMG Česká republika

kpmg.cz

69

KPMG Česká republika is a leading professional services firm providing audit, tax, advisory, and legal services in the Czech Republic. As part of the global KPMG network, it holds a strong market position with a comprehensive portfolio of services tailored to business clients and professionals. The website reflects a mature digital presence with professional design, clear navigation, and relevant content targeting business audiences. Technically, the site leverages modern frameworks such as Bootstrap 5 and RequireJS, hosted on Akamai CDN, and managed via Adobe Experience Manager CMS, ensuring good performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although DNSSEC is not enabled and explicit security policies could be more visible. Overall, the domain's WHOIS data confirms legitimacy with a long registration history and proper domain management. The site integrates marketing and analytics tools like Demandbase and OneTrust, balancing user tracking with privacy compliance. No adult or questionable content is present, making it safe for general audiences.

S

SPORTISIMO s. r. o.

sportisimo.cz

66

SPORTISIMO s. r. o. operates a leading Czech sports goods e-commerce platform and retail chain, offering over 10 million items including shoes, clothing, and sports equipment. The website targets general consumers interested in sports and leisure products, with a strong market presence in the Czech Republic supported by over 100 physical stores. The business model is primarily retail-focused, leveraging both online and offline channels to serve customers. The website is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence.

F

FCC Environment CEE

fcc-group.eu

60

FCC Environment CEE is a prominent waste management company operating in Central and South East Europe, offering a wide range of services including municipal, business, household, and environmental waste solutions. The company emphasizes sustainability and resource efficiency, supported by ISO certifications and a clear mission statement. The website demonstrates a mature digital presence with multimedia content, social media integration, and comprehensive cookie consent mechanisms. Technically, the site uses modern JavaScript libraries and tracking tools, though some security headers and explicit security policies are not publicly visible. The absence of WHOIS registrant data suggests privacy protection, which is justified for this business type. Overall, the site is professional, trustworthy, and well-positioned in its market.

Š

Škoda Group

skoda.cz

58

Škoda Group's website is accessible and presents basic corporate branding but lacks substantive business information, contact details, and legal disclosures. The absence of WHOIS registration data raises concerns about the domain's legitimacy. Technically, the site uses JavaScript and a cookie consent tool (CookieYes) but lacks advanced security headers and privacy policies. The security posture is weak due to missing HTTPS verification and security best practices. Overall, the site appears to be in an early or incomplete stage of deployment, with limited digital maturity and business credibility.

Colruyt Group is a large Belgian retail group with a significant employee base and operations in multiple countries. The website presents a professional and consistent brand image, targeting a general audience interested in retail services. The technical infrastructure includes modern web technologies such as Adobe Experience Manager CMS, Dynatrace Real User Monitoring, and Tealium tag management, indicating a mature digital presence. Security posture is good with HTTPS enforced and some cookie security practices observed, though explicit security headers and policies are not evident. The absence of WHOIS data limits domain registration trust but is likely due to privacy protection common in corporate domains. Overall, the website is well-designed, performant, and trustworthy with room for improvement in privacy and security disclosures.

M

Městská část Praha 15

praha15.cz

44

Městská část Praha 15 operates as the official municipal government authority for the Praha 15 district in the Czech Republic. The website serves as a comprehensive portal for residents and visitors, offering information on public administration, social services, cultural events, and community engagement. It targets local citizens and stakeholders, providing essential government services and communication channels. The business model is typical of a public sector entity focused on local governance and citizen services. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for multilingual support. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The absence of advanced security headers and a dedicated security policy indicates room for improvement in security maturity. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, reducing risk of automated abuse. No critical vulnerabilities or exposed sensitive data were detected. However, the lack of published security policies, incident response contacts, and vulnerability disclosure mechanisms suggests limited formal security governance. The missing WHOIS data for the domain is a concern for domain legitimacy verification but does not detract from the website's apparent authenticity as a government portal. Overall, the website presents a trustworthy and professional digital presence for the municipal district, with good content quality and user experience. Strategic enhancements in security policy transparency, domain registration clarity, and security header implementation would strengthen its security posture and trustworthiness.

MyQ is a professional provider of print management software solutions designed to optimize printing processes, reduce costs, and promote eco-friendly practices. The company targets businesses and organizations seeking efficient print management and control. The website reflects a mature digital presence with multi-language support, comprehensive product information, and clear calls to action. Technically, the site employs modern JavaScript libraries and frameworks, integrates analytics tools, and demonstrates good performance and accessibility standards. Security posture is strong with HTTPS enforcement and security headers, although the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trustworthiness. Strategic recommendations include enhancing transparency around security practices and verifying domain registration details to bolster credibility.

The website programprazskychkin.cz serves as an informational portal providing cinema program listings primarily for Prague and other locations in the Czech Republic. It aggregates schedules and links to multiple cinema websites, offering users a centralized resource for movie showtimes and related contests. The site targets general audiences interested in cinema and cultural events. Technically, the site uses basic HTML, CSS, and JavaScript with jQuery 1.10.2, alongside Google Analytics and Google Tag Manager for tracking. The design and user experience are functional but basic, with limited mobile optimization and accessibility features. Security posture is moderate to low, with no visible HTTPS enforcement in metadata, outdated JavaScript libraries, and lack of security headers. Privacy compliance is poor, with no visible privacy or cookie policies or consent mechanisms. Contact information is provided in the form of multiple cinema addresses and phone numbers, but no company emails or social media links are present. Overall, the site is a small-scale media information portal with moderate trustworthiness but requires improvements in security and privacy compliance.

D

DAKACOM.CZ s.r.o.

dakacom.cz

58

DAKACOM.CZ s.r.o. is a Czech Republic-based market leader specializing in comprehensive marketing campaigns and instore solutions, leveraging advanced printing and 3D technologies with a strong emphasis on sustainability. The company serves a broad B2B audience including businesses and institutions across the EMEA region. Their service portfolio includes high-quality printing, 3D printing, plastic and plexi work, and carton packaging, supported by a robust technological infrastructure and a skilled workforce. The website reflects a professional and modern digital presence with multilingual support and multimedia content.

J

Jiří Káš

handpanista.cz

55

The website handpanista.cz is a professionally designed personal business site dedicated to the handpan musical instrument activities of Jiří Káš. It focuses on the production of NEO handpans, handpan courses, workshops, and performances. The site targets handpan enthusiasts and musicians interested in learning and purchasing handpans. The business operates in a niche artisanal musical instrument sector within the Czech Republic and is relatively small in scale, founded in 2019. Technically, the site is built on WordPress 6.8.3 with a custom theme and hosted on cesky-hosting.eu. The site shows good mobile optimization and SEO practices but lacks some advanced accessibility features. Performance is moderate, and the site uses modern web technologies including JavaScript and SVG icons. From a security perspective, HTTPS is enabled ensuring encrypted communication. However, the site lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could improve its security posture. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. No contact emails or phone numbers are explicitly provided, which may affect user trust and business credibility. Overall, the site is safe with no adult or questionable content detected. The domain registration data is consistent with the website content and business claims, supporting legitimacy. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing clear contact information to enhance compliance and trust.

J

Jiří Káš

handpan-kurz.cz

55

The website handpan-kurz.cz is a small-scale educational platform focused on teaching handpan music, primarily through in-person courses and workshops led by Jiří Káš, a recognized handpan player in the Czech Republic. The site offers rich content including detailed explanations, images, and links to related handpan resources and artists, targeting individuals interested in learning and mastering the handpan instrument. Technically, the site is built on WordPress using the Donovan theme, hosted by a Czech hosting provider, and employs modern web technologies such as JavaScript and SVG icons. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks security headers and formal privacy or cookie policies, which limits its compliance posture. No contact emails or phone numbers are explicitly provided, which may affect user trust and business credibility. Overall, the site is legitimate and consistent with its domain registration data, but improvements in privacy compliance and security best practices are recommended.

B

Bici.cz

bici.cz

55

Bici.cz is a Czech Republic based e-commerce and retail business specializing in drums, percussion instruments, and related musical accessories. Established since 1996, it serves professional, amateur, and beginner musicians with a broad product catalog and a physical store located in Prague. The website demonstrates a mature digital presence with modern web technologies and integration of popular analytics and marketing tools such as Google Analytics and Facebook Pixel. However, the absence of WHOIS data and privacy/cookie policies indicates areas for improvement in transparency and compliance. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit security policies. Overall, the business appears legitimate and well-positioned in its niche, but should enhance privacy compliance and security disclosures to strengthen trust and regulatory adherence.

H

Handpan s.r.o.

handpan.cz

55

Handpan s.r.o., operating the website handpan.cz, is a Czech Republic based small business specializing in the manufacturing, sale, and education of handpan musical instruments. The company offers handpan production under the NEO handpan brand, organizes workshops and courses primarily for beginners and enthusiasts, and provides rich content about handpan history and playing techniques. The website reflects a niche market position with a focus on quality and community engagement. Technically, the site is built on WordPress with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Contact information is limited but includes a phone number and physical address in Říčany near Prague. Social media presence on Facebook and YouTube supports brand trust and outreach. Overall, the website is professional, content-rich, and trustworthy, though it would benefit from enhanced privacy compliance and security practices.

A

American Society of Transplantation

myast.org

30

The American Society of Transplantation (AST) operates a professional membership website dedicated to advancing transplantation science, education, and patient care. The site serves a global audience of transplant professionals, including physicians, pharmacists, researchers, and patients. AST offers a comprehensive range of services including educational events, communities of practice, research grants, advocacy, and patient resources. The organization is well-established with a domain age of over 11 years and a consistent brand presence across multiple digital channels. Technically, the website is built on a modern stack with Craft CMS, uses Foundation CSS framework, and integrates multiple third-party services such as Google Tag Manager, Facebook Pixel, and Adzerk for advertising. The site is mobile optimized, accessible, and SEO friendly, providing a professional user experience. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a good SSL configuration and does not expose sensitive data. The lack of DNSSEC and security headers are notable gaps. No explicit security policies or incident response information is publicly available, which could be enhanced to improve trust and compliance. Privacy compliance is adequate with a clear privacy policy, but cookie consent is missing despite tracking technologies. Overall, the website is trustworthy, professional, and well-maintained with a strong focus on its healthcare and non-profit mission. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and enabling DNSSEC to strengthen the security posture and privacy compliance.

S

Somfy

somfyprojects.me

65

Somfy Projects is a specialized division of the Cross - Groupe Micropole, focusing on the manufacturing and automation of solar shading solutions for buildings. Their offerings include motors, building controls, and local control systems designed to improve energy efficiency and occupant comfort. The company targets building professionals and owners seeking dynamic solar shading solutions, positioning itself as a market leader in this niche. The website reflects a mature digital presence with multilingual support and regional sites, indicating a global footprint primarily focused in the Middle East and Europe. Technically, the website is built on a ColdFusion backend with modern JavaScript libraries and performance monitoring tools such as Boomerang and TagCommander. The site is hosted likely behind Akamai CDN, ensuring good performance and availability. The site is mobile optimized and SEO friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site enforces HTTPS and uses captcha on its contact forms to prevent spam. However, it lacks explicit security headers and a visible cookie consent mechanism, which are areas for improvement. The WHOIS data is unavailable due to privacy protection or query failure, but the website content and external references indicate a legitimate and professional business. Overall, Somfy Projects presents a solid business and technical profile with room for enhancement in privacy compliance and security best practices to further strengthen trust and regulatory adherence.

S

Somfy

somfynordic.dk

10

Somfypro.dk is a professional B2B website serving the Danish market with a comprehensive catalog of smart home and automation products under the Somfy brand. The site targets professional installers and businesses, offering product information, ordering capabilities, and customer support. The technical infrastructure is modern, leveraging JavaScript frameworks such as React and Front-Commerce, with integrations including Algolia search and Google Maps API. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. Privacy and cookie policies are present and GDPR compliant, supporting trust and compliance. Overall, the website presents a professional and trustworthy digital presence aligned with Somfy's global brand.

A

ACIAH

aciah.xyz

58

ACIAH is a French non-profit organization dedicated to digital inclusion and accessibility, primarily targeting seniors, people with disabilities, and those less familiar with digital technology. They offer a simplified Linux system (ACIAH-Linux), workshops, personalized support, and educational resources to foster autonomy and digital literacy. The website is professionally designed, mobile-optimized, and uses a mature technology stack including SPIP CMS and Bootstrap. The hosting is provided by OVH, a reputable registrar, with domain registration consistent with the organization's founding date and mission. Security posture is moderate with HTTPS enabled but lacking advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy, content-rich, and focused on social good but could improve in privacy and security transparency.

I

INRAE

inrae.fr

64

INRAE is a prominent French public research institute specializing in agriculture, food, and environmental sciences. The website reflects a mature digital presence with comprehensive content targeting researchers, students, policymakers, and the general public. It offers extensive resources including research dossiers, events, and collaboration opportunities. The site is multilingual and well-branded with official government logos and certifications, reinforcing its authoritative position. Technically, the website is built on Drupal 10, leveraging modern web standards and responsive design to ensure accessibility and usability across devices. The presence of cookie consent mechanisms and privacy policies indicates attention to regulatory compliance, particularly GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security headers could be improved. The WHOIS data is unavailable due to AFNIC policies, but the domain is active and updated, consistent with a legitimate public institution. No suspicious or malicious indicators were found. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a government research entity.

I

IRIT (Institut de Recherche en Informatique de Toulouse)

irit.fr

52

IRIT (Institut de Recherche en Informatique de Toulouse) is a prominent academic research institute specializing in computer science and information technology, affiliated with Toulouse universities in France. The website serves as an informational and academic portal targeting researchers, students, and industry partners. It offers insights into research activities, educational programs, and collaborations. The site is well-structured, professionally designed using modern web technologies such as Bootstrap, and supports multilingual content in French and English. The technical infrastructure reflects a mature digital presence with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled, though explicit security headers and policies are not clearly documented. Privacy compliance is lacking due to absence of privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the domain registration and WHOIS data align well with the institution's academic nature, indicating high legitimacy and trustworthiness.

T

Outlook

toulouse-tech-transfer.com

50

The website at toulouse-tech-transfer.com/owa/auth/logon.aspx is a Microsoft Outlook Web Access (OWA) login portal hosted on a custom domain registered with OVH sas since 2011. The site primarily serves as an authentication gateway for email access and does not provide business descriptive content, privacy policies, or contact information on the login page. The domain registration is consistent and legitimate, hosted by a reputable provider, but the website content is minimal and focused solely on login functionality. Technically, the site uses standard Microsoft OWA web technologies including JavaScript, HTML5, and CSS, with some legacy ActiveX references for S/MIME controls. The hosting provider is OVH sas, and the domain is not DNSSEC enabled. The site lacks modern security headers and privacy compliance disclosures, which limits its security posture and GDPR compliance. Mobile optimization and SEO are basic, and no analytics or advertising scripts are detected. From a security perspective, the site uses HTTPS (implied by URL), employs POST method for login form submission with autocomplete disabled, and includes client-side scripts for password visibility toggling. However, the absence of security headers and privacy policies reduces the overall security maturity. No vulnerabilities or malware indicators are detected in the provided data. Overall, the website functions as a secure login portal but lacks comprehensive privacy, security, and business transparency features. Strategic improvements in security headers, privacy compliance, and user experience would enhance trust and compliance.

Polymny Studio is a small cooperative society based in Toulouse, France, specializing in digital learning platforms, DevOps, and Artificial Intelligence solutions tailored for educational institutions and learners. Their key offerings include the proprietary Polymny Studio application for educational video creation, e-learning platform design and deployment, and AI-powered learning tools. The company emphasizes ethical, sustainable, and sovereign digital solutions, leveraging open source technologies such as Moodle, Big Blue Button, and Nextcloud. Technically, the website uses modern technologies including Rust, Python, and JavaScript frameworks, hosted by Infomaniak Network SA, with a responsive design and good user experience. Security posture is moderate with HTTPS enabled but lacking DNSSEC and explicit security headers. Privacy compliance is partial, with privacy and terms located on a related domain but no cookie consent mechanism on the main site. Overall, the business credibility is strong due to academic partnerships and cooperative structure, though improvements in security and privacy policies are recommended.

Tetaneutral.net is a French non-profit association providing internet access and hosting services primarily in the Toulouse region. It operates a radio network to serve local and rural communities, especially in underserved 'zones blanches'. The organization emphasizes network neutrality, free software advocacy, and community education. It also supports IoT projects and contributes to open source software. The website reflects a community-driven, transparent, and educational mission with a modest but consistent technical infrastructure hosted by Scaleway SAS. The site uses lightweight technologies such as PureCSS and minimal JavaScript, focusing on content clarity and accessibility. Security posture is moderate but lacks advanced protections such as DNSSEC and security headers, and no explicit HTTPS information was found. Privacy compliance is weak due to the absence of privacy and cookie policies. Business credibility is strong given the domain age, transparency, and community trust signals. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy practices.

L

L’Atelier Transmédia

lateliertransmedia.com

46

L’Atelier Transmédia is a small audiovisual production company based in Nantes, France, specializing in media content creation and transmedia storytelling. The website reflects a professional service provider targeting businesses and individuals seeking audiovisual production services. The technical infrastructure is built on WordPress with Elementor and optimized using WP Rocket, indicating a moderate level of digital maturity. The site loads moderately fast and is mobile optimized, though accessibility features are basic. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy but could improve in compliance and security transparency.

Libre en Fête is a French non-profit initiative coordinated by April that promotes free software and free culture through annual events across France. The website provides detailed information about the 2025 edition of the event, including dates, how to participate, and links to related free software projects. The site targets the general public interested in technology and free culture, positioning itself as a well-established community-driven event organizer with a history dating back to 2001. Technically, the website is built on the SPIP CMS platform and uses Matomo for analytics, reflecting a moderate level of digital maturity with a focus on privacy-conscious tracking. The site is mobile-optimized and has a clear navigation structure, although accessibility features are basic. Performance is moderate, and SEO optimization is basic but functional. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and Strict-Transport-Security. There are no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as incident response information, indicates gaps in compliance and security transparency. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen its security posture and user trust.

D

debian-fr.org - debian-fr.org forum

debian-fr.org

58

The website debian-fr.org is a French-language community forum dedicated to Debian GNU/Linux users and enthusiasts. It serves as a support and discussion platform, providing categorized forums for technical support, programming, announcements, and general community interaction. The site is powered by the Discourse forum software, indicating a modern and interactive technical infrastructure. The forum is active with recent posts and pinned official announcements, reflecting a well-maintained community resource. However, the absence of visible privacy, cookie, and terms of service policies suggests gaps in compliance and transparency. The WHOIS data is unavailable due to a malformed request, limiting the ability to verify domain registration details and reducing trust slightly. Overall, the site demonstrates good content quality and technical implementation but would benefit from enhanced privacy compliance and clearer business contact information.

T

TotalEnergies

totalenergies.fr

58

TotalEnergies is a major French energy supplier offering electricity and gas services with a strong focus on customer satisfaction and energy savings. The website presents a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern web technologies. It provides clear navigation, extensive product information, and customer engagement features including reviews and a mobile app. The security posture is solid with HTTPS and some security scripts, though explicit security policies are not publicly disclosed. WHOIS data is unavailable due to registry restrictions, which is common for .fr domains but slightly reduces transparency. Overall, the site is trustworthy, well-branded, and user-friendly, serving a broad audience from individual consumers to enterprises.

The website remspace.sk is a parked domain page primarily serving as a placeholder to advertise the domain for sale via Sedo's domain parking service. It does not represent an active business or service provider and lacks any substantive content beyond basic domain sale information. The site uses standard HTML and JavaScript with embedded Google Ads and Sedo advertising frameworks. There is a basic cookie consent mechanism but no privacy or security policies beyond a link to Sedo's privacy policy. No contact information or business identity is provided, and the WHOIS data is privacy protected, typical for parked domains. Security posture is minimal with no visible HTTPS enforcement or security headers. Overall, the site is low trust and low content quality, serving only as a domain sales landing page.

M

Monzilla Media

m0n.co

50

m0n.co is a niche web utility site curated by Monzilla Media that provides a comprehensive collection of free online tools for web developers, IT professionals, and tech enthusiasts. The site aggregates links to various categories including search engines, HTTP tools, proxy services, PHP utilities, and .htaccess tools, positioning itself as a useful resource hub rather than a direct service provider. The business model is based on curation and aggregation, targeting a specialized audience seeking quick access to web-related tools. Technically, the website employs a simple but effective front-end stack using HTML5, CSS3, jQuery, and Isotope.js for dynamic filtering of tool categories. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features and SEO optimizations. There is no detected CMS or complex backend infrastructure, indicating a lightweight and static content approach. From a security perspective, the site lacks critical security headers and does not provide HTTPS enforcement details, which limits its security posture. No privacy or cookie policies are present, and no contact or incident response information is disclosed, which may impact user trust and compliance with data protection regulations. The absence of analytics and tracking scripts suggests minimal user data collection, reducing privacy risks but also limiting business intelligence. Overall, m0n.co is a functional and safe resource site with good content quality and user experience but requires improvements in security practices, privacy compliance, and transparency to enhance trustworthiness and regulatory adherence.

The website godefense.fr is currently inaccessible due to a Cloudflare Turnstile security challenge page, which blocks direct access to its content. As a result, no business descriptive content, contact information, or compliance documentation is available for analysis. The domain is registered since 2013 with Scaleway as registrar, indicating a legitimate and established registration. However, the lack of accessible content limits the ability to assess the company's market position, services, or technical maturity. The technical infrastructure includes Cloudflare security mechanisms but no visible CMS or analytics tools. Security posture is difficult to evaluate fully due to blocked content, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site scores low on content quality and privacy compliance due to inaccessibility, with recommendations to reduce blocking for better transparency and trust.

U

Unecuillerepourdoudou

unecuillerepourdoudou.com

48

Unecuillerepourdoudou is a French e-commerce retailer specializing in birth gifts, wooden toys, and organic comforters for babies. The website presents a well-structured, professionally designed platform built on the PrestaShop CMS, targeting parents and gift buyers in the baby products niche. The company offers a curated selection of high-quality products with a focus on originality and eco-friendly materials. Technically, the site uses modern web technologies including Google Fonts, FontAwesome, Facebook Pixel for marketing, and Piwik (Matomo) for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some recommended security headers and visible privacy or cookie policies, which are important for GDPR compliance. The WHOIS data for the domain is missing, which raises questions about domain registration legitimacy, though the website content and HTTPS presence suggest a legitimate business. Overall, the site scores well on content and technical implementation but needs improvements in privacy compliance and domain registration transparency.

S

Somfy

somfy.co.uk

67

Somfy is a well-established company specializing in motors, automation, controls, and smart home solutions primarily for roller shutters, blinds, awnings, curtains, gates, garage doors, and security systems. Founded in 1969 and operating under the Somfy Group, the company targets both consumers and professionals with a comprehensive product portfolio and a strong UK market presence. Their business model includes direct sales, dealer networks, and e-commerce through their dedicated shop site. The website reflects a mature digital infrastructure with modern technologies and good user experience.

S

Somfy

somfy.se

69

Somfy Sweden operates as a regional branch of the global Somfy Group, specializing in motorized sun protection and smart home automation solutions. The company targets both consumers and commercial clients, offering products such as motorized blinds, awnings, garage door motors, and home security systems. The website reflects a mature digital presence with comprehensive product information, support resources, and multimedia content, positioning Somfy as a trusted leader in its industry segment within Sweden. Technically, the website employs a modern technology stack including JavaScript frameworks, performance monitoring tools, and tag management systems. It uses HTTPS with good SSL configuration and integrates third-party services for social media, video content, and customer engagement. The site is mobile-optimized and SEO-friendly, though some security headers could be improved for enhanced protection. From a security perspective, the site demonstrates solid practices such as encrypted connections and cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly disclosed, which could be enhanced to improve transparency and trust. No critical vulnerabilities or suspicious activities were detected in the analyzed content. Overall, the website is professional, trustworthy, and compliant with privacy regulations like GDPR. The lack of WHOIS data for the queried subdomain is not concerning given the domain structure. Strategic recommendations include strengthening security headers, publishing clear security policies, and maintaining ongoing audits of third-party scripts to mitigate risks.

S

Somfy

somfy.rs

55

Somfy Serbia operates as a regional branch of the global Somfy Group, specializing in home automation products including motors, controls, and smart home solutions for shutters, blinds, gates, alarms, cameras, heating, and lighting. The website targets both consumers and professionals in Serbia, offering a comprehensive product catalog and support services. The brand is well-established with a mature domain and consistent business presence since 2009. Technically, the site uses modern JavaScript libraries, structured data, and performance monitoring tools, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and basic security headers, though improvements are recommended in DNSSEC and explicit security policies. Privacy compliance is mostly addressed with clear privacy and cookie policies, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and business credible.

S

Somfy

somfy.ro

61

Somfy Romania operates as a regional branch of the global Somfy Group, specializing in smart home automation solutions including motorized blinds, security systems, and energy-efficient products. The website demonstrates a professional and consistent brand presence with a clear focus on residential customers and certified professional installers. The technical infrastructure leverages modern JavaScript libraries, structured data, and is hosted on a reputable CDN provider, ensuring moderate to good performance and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in security headers and incident response transparency. Privacy compliance is partially met with clear privacy and cookie policies, but lacks an explicit cookie consent mechanism. Overall, the site is trustworthy and well-maintained, supporting Somfy's market position as a leading smart home solutions provider in Romania.

S

Somfy

somfy.pt

65

Somfy Portugal operates as a localized branch of the global Somfy Group, specializing in motorized home automation products including blinds, shutters, gates, and smart home security and comfort solutions. The website targets both consumers and professionals, offering product catalogs, support, and installation services. The brand is well-established with a strong market presence and a comprehensive digital footprint. Technically, the website employs modern web technologies, including JavaScript frameworks, structured data, and performance monitoring tools, hosted likely on Akamai infrastructure. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, reflecting a mature digital presence for a large manufacturing and technology company.

S

Somfy

somfy.pl

68

Somfy Poland operates as a subsidiary of Somfy SA, specializing in home automation and smart home solutions. The company offers a broad range of products including drives for gates, garage doors, blinds, awnings, pergolas, and integrated smart home devices. Positioned as a leading brand in the home automation sector, Somfy Poland targets both consumers and professional installers, supported by an online store and extensive support resources. The website reflects a mature digital presence with comprehensive product information, support, and contact options. Technically, the site employs modern web technologies including JavaScript frameworks, Google reCAPTCHA for bot protection, and performance monitoring tools, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS enforcement and form validation, though some security headers could be improved. The absence of WHOIS data for the domain is a minor concern but does not detract significantly from overall trust given the brand's global reputation and transparent contact information. Overall, Somfy Poland presents a professional, secure, and well-maintained online presence aligned with its business objectives.

S

Somfy

somfy.no

68

Somfy Norway operates as a regional branch of the global Somfy Group, specializing in motorized shading solutions and smart home automation products. The website targets both consumers and professionals, offering a broad range of products including motors, controllers, sensors, and smart home integrations. The company has a strong market presence with a well-established brand dating back to 1969, supported by a comprehensive digital platform that includes product information, support resources, and multimedia content. The website demonstrates a professional design and consistent branding aligned with corporate standards. Technically, the site employs modern web technologies including JavaScript frameworks, structured data for SEO, and third-party integrations for social media and analytics. The platform appears to be custom-built or proprietary, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, including cookie consent banners and detailed privacy policies. However, explicit security policies and incident response information are not publicly disclosed. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns. The lack of WHOIS data is due to privacy protection by the Norwegian registry, which is justified for a corporate entity. Strategic recommendations include enhancing security headers, publishing security policies, and improving transparency around incident response to further strengthen trust and compliance.

S

Somfy

somfy.nl

69

Somfy is a well-established company specializing in smart home solutions, including electric window decoration, sun protection, and smart home security. The company operates both B2C and B2B channels, supported by a dealer network and an online shop. Their market position is strong, backed by decades of experience and a global parent company, Somfy Group. The website reflects a mature digital presence with comprehensive product information, support resources, and multimedia content tailored for consumers and professionals alike. Technically, the site employs a custom CMS with modern JavaScript libraries, integrates multiple marketing and analytics tools, and maintains good performance and accessibility standards. Security posture is solid with HTTPS, security headers, and consent management, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable platform for customers and partners.

S

Somfy

somfysystems.com

72

Somfy is a well-established company specializing in motorized window coverings and smart home automation solutions, serving both residential and commercial markets. The website reflects a strong market position with a comprehensive product portfolio including motorized blinds, shades, curtains, awnings, pergolas, rolling shutters, and smart home control systems. The company emphasizes integration with popular smart home platforms such as Amazon Alexa and Google Assistant, targeting tech-savvy consumers and professional installers. Technically, the website employs modern web technologies including Tailwind CSS, jQuery, and various third-party marketing and analytics tools like HubSpot, TikTok Pixel, and Bing UET. The site is mobile-optimized, fast-loading, and well-structured for SEO and accessibility. The use of a custom CMS and embedded video content enhances user engagement. From a security perspective, the site uses HTTPS and implements privacy and cookie consent mechanisms, but lacks some advanced security headers and publicly available security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a minor concern but does not significantly detract from the site's legitimacy given the strong branding and corporate presence. Overall, Somfy's website presents a professional, trustworthy, and user-friendly platform that supports its business objectives effectively. Strategic improvements in security transparency and WHOIS data availability could further enhance trust and compliance.