Security Directory

The website jasmin.com is an adult-oriented social and dating platform, as indicated by its title and content cues. It targets an adult audience seeking to connect with others. The domain is well-established, having been registered since 1998, which supports the legitimacy of the business. However, the website lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Technically, the site uses modern marketing and analytics tools such as Google Tag Manager and Emarsys, and relies on multiple CDN domains for content delivery, indicating a moderate level of digital maturity. Security posture is basic, with HTTPS enabled but no DNSSEC or security headers detected, suggesting room for improvement in protecting user data and preventing attacks. Overall, the site is functional but requires enhancements in privacy compliance and security best practices to improve trustworthiness and regulatory adherence.

L

LiveJasmin

tpdwm.com

10

LiveJasmin is a leading adult entertainment platform specializing in live sex cams and adult chat services. The website offers a large selection of models with various filtering options, targeting an adults-only audience globally. It operates as an enterprise-level media business with a focus on live webcam shows, private chats, and video calls. The platform is well-branded and maintains consistent trust indicators such as age verification and industry certifications. Technically, the site employs modern JavaScript frameworks, tracking tools like Google Tag Manager and Hotjar, and uses hCaptcha for bot protection. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is strong with HTTPS enforcement and security headers, but lacks explicit published security policies or incident response contacts. Privacy compliance is good with clear cookie and privacy policies and consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which is common for adult sites. Overall, the site is professional and trustworthy within its industry niche.

G

GE-Data

ge-data.com

55

GE-Data is a specialized consulting firm focusing on geospatial technologies applied to agriculture, forestry, and water management. With offices in the United States and France, the company leverages over 30 years of expertise in remote sensing, GIS, and data science to deliver tailored, cost-effective solutions. Their services include land-use mapping, crop monitoring, production estimation, and disease detection, targeting both public and private sector clients. The website reflects a professional and consistent brand image with clear business messaging and client engagement features. Technically, the website is built using One.com Web Editor, incorporating modern JavaScript libraries such as Swiper.js for image sliders and Termly for cookie consent management. The site is hosted by One.com A/S and uses HTTPS with a good SSL configuration. However, there is room for improvement in security headers and mobile optimization. Analytics are implemented via SiteWit, with moderate user tracking and basic privacy compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies, incident response information, and vulnerability disclosure details. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, GE-Data presents a trustworthy and professional online presence with a solid foundation in technical and business aspects. Strategic enhancements in security policies, contact transparency, and mobile accessibility would further strengthen their digital maturity and compliance posture.

The website artisanlogiciel.net/yunohost/sso/login appears to be a login portal for a Single Sign-On (SSO) system, likely related to Yunohost services. The content is minimal, primarily consisting of technical assets and scripts with no visible business or contact information. The domain is registered with Gandi SAS since 2009, indicating a mature and legitimate registration. The technical infrastructure uses modern JavaScript frameworks such as Nuxt.js, but lacks visible security headers and privacy compliance documentation. The site does not present any advertising or analytics scripts, suggesting a focus on internal or limited user access rather than public marketing. Overall, the website's security posture is basic, with room for improvement in security headers and privacy policies. The lack of business information and policies limits trust and compliance assessment.

C

Clic & Cetera

clicetcetera.fr

51

Clic & Cetera is a small local business based in France providing IT assistance and mediation services primarily in the Lorient region. The company targets both professionals and private individuals, offering on-site and business IT support. The website is built on WordPress and demonstrates a good level of technical maturity with modern CMS usage and responsive design. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks important security headers and formal privacy or cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and trustworthy for its business scope but would benefit from improved compliance and security practices.

N

Numericatous

numericatous.fr

52

Numericatous is a French small business founded in 2019, specializing in education and training on Linux and free software with a strong ethical and sovereign digital focus. The website offers a comprehensive range of resources including tutorials, ebooks, and online courses aimed at individuals and professionals seeking autonomy in digital usage. The business positions itself as a niche player promoting digital sovereignty and ethical computing, supported by partnerships with local and ethical technology providers. Technically, the website is built on WordPress with WooCommerce for e-commerce, hosted by a French provider LRob, and uses Matomo for privacy-respecting analytics. The site is well-optimized for performance, mobile, and accessibility, with clear navigation and professional design. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, Numericatous presents a trustworthy, professional, and ethically aligned digital presence with a clear business model and solid technical foundation.

A

Association Electrocycle

electrocycle.co

55

Association Electrocycle is a French non-profit organization dedicated to promoting the reuse of electronic devices, particularly smartphones, through workshops and advocacy for free software. The website serves as a platform to share news, events, and educational content related to digital empowerment and ecological technology practices. The organization targets individuals and groups interested in sustainable technology and digital rights. Technically, the website is built on WordPress 6.8.3, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enabled and no exposed sensitive data, though it lacks some advanced security headers and explicit incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained, reflecting a small but active community-focused entity.

W

Wikilibriste

wikilibriste.fr

61

Wikilibriste is a French-language educational website focused on digital freedom, privacy, and security. Founded in 2022, it offers tutorials and guides aimed at helping users improve their digital hygiene and regain control over their online lives. The site targets both beginners and experienced users interested in ethical and open-source digital tools. The business model appears to be content publishing with community engagement, without evident monetization through ads or affiliate marketing. Technically, the website is built on Ghost CMS 6.0, hosted by Infomaniak Network SA, and employs modern web technologies with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and modern font loading strategies but lacks visible security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

L

LikeBtn

likebtn.com

62

LikeBtn is a technology company specializing in providing embeddable like button widgets for websites, enabling user interaction through likes and dislikes with real-time statistics and insights. The company has been operating since 2013 and supports a wide range of CMS platforms through dedicated plugins, positioning itself as a versatile solution for website owners seeking to enhance user engagement. Technically, the website employs modern web technologies including asynchronous JavaScript loading, REST APIs, and Cloudflare for DNS and CDN services, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain registration protections in place, though there is room for improvement in DNSSEC adoption and explicit security policies. Privacy compliance is addressed with a comprehensive privacy policy and GDPR readiness, but lacks a cookie consent mechanism. Overall, LikeBtn presents a professional and trustworthy online presence with a mature product offering.

A

Atmo Normandie

atmonormandie.fr

55

Atmo Normandie is a regional environmental monitoring organization dedicated to providing air quality and pollen index data for the Normandy region in France. The website serves as a public information platform targeting residents and local authorities interested in environmental health indicators. The platform uses Drupal 9 CMS and integrates Matomo analytics, reflecting a modern and privacy-conscious technical infrastructure. The website is well-structured, mobile-optimized, and provides detailed environmental data visualization for numerous communes within the region. Security posture is moderate with HTTPS implied, but lacks explicit security headers and formal privacy or cookie policies. No WHOIS data is available, likely due to privacy protection, which is common for such public service domains. Overall, the website is professional, trustworthy, and safe for general audiences.

A

Atmo Hauts-de-France

atmo-hdf.fr

53

Atmo Hauts-de-France operates as a regional air quality observatory dedicated to monitoring atmospheric pollution and raising awareness among local authorities, businesses, and citizens in the Hauts-de-France region of France. The organization provides data, maps, and health advice related to air quality, positioning itself as a key environmental public service entity in the region. The website is professionally designed using Drupal 9 CMS and integrates modern analytics tools such as Matomo and Microsoft Clarity, indicating a moderate level of digital maturity and user engagement tracking. Security posture is adequate with HTTPS implied, but lacks explicit security headers and detailed privacy or cookie policies, which are areas for improvement. Overall, the domain appears legitimate and active, though WHOIS data is privacy-protected and unavailable. The site content is safe, relevant, and targeted at a general audience interested in environmental health.

A

AtmoSud

atmosud.org

64

AtmoSud operates as the regional observatory for air quality in the Provence-Alpes-Côte d'Azur region of France, providing comprehensive monitoring, public alerts, research, and educational services. The organization targets a broad audience including citizens, associations, local governments, enterprises, and research institutions. The website reflects a professional and well-structured digital presence, leveraging Drupal 9 CMS and integrating modern analytics and cookie management tools. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security policies and vulnerability disclosures. The WHOIS data is unavailable or malformed, which slightly impacts trust but the active and consistent website content supports legitimacy. Overall, AtmoSud presents a credible and authoritative resource in the environmental monitoring sector.

R

Roman Kunert - Váš Digitální Stratég

romankunert.com

50

Roman Kunert operates a professional digital services business focused on website and e-shop development, SEO, digital marketing, and AI training. The company has a strong presence in the Czech Republic with multiple related projects and brands, positioning itself as a comprehensive digital strategist and service provider. The website is well-structured, visually consistent, and integrates modern web technologies and analytics tools. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and privacy policies are missing. The absence of WHOIS registration data raises concerns about domain legitimacy, but the overall business presentation and multiple partner domains suggest a legitimate operation. Strategic recommendations include improving security headers, configuring third-party SDKs properly, and publishing clear privacy and security policies.

H

Herpain

herpain-urbis.be

51

Herpain Urbis is a Belgium-based real estate company with a domain registered since 2007, indicating a stable and established presence. The website provides basic information about the company, its projects, and corporate social responsibility initiatives, targeting a general audience interested in real estate services. The digital infrastructure is modest, relying on standard HTML, CSS, and JavaScript without advanced frameworks or CMS detected. The site is accessible and mobile responsive at a basic level but lacks advanced SEO and accessibility features. Security posture is limited, with no visible security headers or incident response policies, and no cookie consent mechanism, which may impact GDPR compliance. The WHOIS data aligns well with the business claims, supporting legitimacy. Social media presence on major platforms adds trust signals. Overall, the website is functional but could benefit from enhanced content, security, and compliance features.

A

ARP-GAN Bruxelles-Propreté

arp-gan.be

68

ARP-GAN Bruxelles-Propreté is a well-established public agency founded in 2004, responsible for waste management and urban cleanliness in the Brussels region. The website serves as an informative and service-oriented platform targeting both citizens and professionals, offering waste sorting guides, collection schedules, recycling park information, and citizen engagement initiatives. The agency holds ISO 9001 and ISO 14001 certifications, reinforcing its commitment to quality and environmental management. Technically, the site is built on Drupal 10, employs modern cookie consent tools, and integrates analytics and tracking services responsibly. Security posture is strong with HTTPS and cookie consent, though explicit security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the website is professional, trustworthy, and well-aligned with its public service mission.

C

cropmark

everythingisfun.eu

55

The website everythingisfun.com serves as a transitional landing page announcing the rebranding of 'Everything is Fun' to 'cropmark'. The business operates as a creative agency specializing in digital and branding design, with offices in Brussels and Luxembourg. The site emphasizes continuity of the team and services under the new brand identity. Technically, the site employs modern web technologies including GSAP for animations and Vimeo for video content, delivering a visually appealing and responsive experience. However, the site lacks critical compliance elements such as privacy and cookie policies, and no contact information is provided, which may impact user trust and regulatory compliance. Security posture is moderate with HTTPS implied but no explicit security headers detected. Overall, the site is professional but could improve in transparency and security best practices.

The website www.artyfarty-gallery.com is currently inaccessible to normal users due to a Cloudflare Turnstile security challenge page. This challenge blocks access to the actual website content, preventing any meaningful analysis of the business, services, or detailed technical infrastructure. The domain WHOIS data is unavailable, indicating the domain may not be registered or is newly created and not propagated in the registry. No privacy, cookie, or terms of service policies are present, nor is there any contact or business information visible on the page. The technical infrastructure relies on Cloudflare's security services, but no further technologies or CMS platforms are detectable. The security posture cannot be fully assessed due to the lack of accessible content, but the presence of a WAF challenge indicates some level of security protection. Overall, the website's legitimacy and business credibility are questionable due to the absence of WHOIS data and content access.

P

Pornhub

modelhub.com

66

Pornhub is a globally recognized adult entertainment platform offering free and premium pornographic video content. It holds a leading market position in the adult media industry, providing a wide range of services including video streaming, user-generated content, and live cam shows. The website demonstrates a mature digital infrastructure with modern technologies such as JavaScript frameworks, Google Tag Manager, and ad networks like TrafficJunky. Security measures include HTTPS enforcement, age verification modals, and cookie consent mechanisms, reflecting a strong commitment to user privacy and compliance with regulations such as GDPR. However, the absence of publicly available WHOIS data and explicit contact information for security or business inquiries slightly impacts its business credibility score.

C

Color Library

colorlibrary.ch

44

Color Library is a specialized technology service provider focused on automated color separation for printing devices. The website presents a professional and consistent brand image, targeting printing professionals and businesses requiring advanced color profiles. The business operates primarily in Switzerland and leverages WordPress CMS with integrated payment processing via Stripe. The technical infrastructure includes modern JavaScript libraries and tracking tools such as Google Analytics and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no exposed sensitive data; however, the absence of security headers and published security policies suggests room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which could pose regulatory risks. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

Cukrárna a kavárna U tří císařů s.r.o. operates a local confectionery and café business in Slavkov u Brna, Czech Republic, specializing in homemade cakes, pastries, and specialty coffee. The business emphasizes quality and local production, offering custom cakes and a pleasant café environment with daily opening hours. The website reflects a small hospitality business with clear contact details and company registration information, targeting local customers. Technically, the website uses standard HTML, CSS, and JavaScript technologies including jQuery 1.12.0 and a cookie consent library. The site is moderately optimized for performance and mobile use but lacks advanced frameworks or CMS. Security measures are basic, with no visible security headers and use of an outdated JavaScript library posing potential risks. The cookie consent mechanism and privacy policy link indicate awareness of privacy compliance. Security posture is moderate with no critical vulnerabilities detected in the visible content, but improvements are needed in updating libraries, adding security headers, and enhancing form protections. The site is fully accessible without WAF or blocking mechanisms, and no suspicious or malicious content was found. Overall, the website is professional and trustworthy for its business scope but would benefit from technical and security enhancements to improve resilience and compliance.

K

Kozlovna Alfa

kozlovnaalfa.cz

46

Kozlovna Alfa is a small hospitality business located in Třebíč, Czechia, specializing in traditional Czech cuisine, quality tank beer, and accommodation services. The website presents a professional image with clear descriptions of their offerings, including food, beverages, and lodging. The business targets local residents and tourists seeking authentic Czech pub experiences. Technically, the site is built on WordPress with modern web technologies and is mobile optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy policies, which could be improved to enhance compliance and trust. The absence of WHOIS data is a notable gap in domain legitimacy verification. Overall, the site is functional and trustworthy but would benefit from enhanced privacy and security measures.

S

SuperOffice

superoffice.de

47

SuperOffice is a well-established European CRM software provider offering cloud-based customer relationship management solutions aimed at helping businesses convert relationships into revenue. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools such as HubSpot, Google Tag Manager, and Microsoft Application Insights. Hosting and infrastructure leverage Microsoft Azure and Cloudflare, ensuring robust performance and security. The security posture is strong with HTTPS enforcement, reCAPTCHA protection, and comprehensive cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the site reflects a mature digital presence with good privacy compliance and trustworthy domain registration.

A

Agence Parisienne du Climat

apc-paris.com

62

Agence Parisienne du Climat is a key local agency dedicated to accelerating ecological transition in Paris and the Greater Paris area. It supports the implementation of climate plans through advisory services, public engagement, and partnerships with governmental and professional entities. The website is professionally designed, mobile-optimized, and rich in relevant content targeting residents, professionals, and institutions. Technically, it uses modern web technologies including WordPress CMS, Google Tag Manager, and Plausible Analytics, ensuring good performance and SEO. Security posture is solid with HTTPS and secure forms, though explicit security headers and privacy policies are lacking. WHOIS data is missing, which raises concerns about domain legitimacy, but the website's content and partnerships suggest a legitimate organization. Overall, the site is trustworthy but would benefit from improved transparency in privacy and domain registration.

L

Libra Memoria : les avis de décès parus dans la presse française

libramemoria.com

71

Libra Memoria is a French media platform specializing in the aggregation and publication of obituary notices from various regional newspapers and funeral homes. It offers users the ability to search for death notices, subscribe to alerts, and access related funeral services such as flower delivery and funeral home directories. The platform targets French-speaking individuals seeking to honor and remember deceased loved ones. Technically, the website employs modern JavaScript libraries, integrates Google Tag Manager and Facebook SDK for analytics and social media, and uses a GDPR-compliant consent management platform (Didomi). While the site is mobile-optimized and well-structured, it lacks explicit privacy and terms of service pages and does not expose contact information clearly. Security-wise, HTTPS is implied but no security headers were detected in the provided data, and no WHOIS information is available for the domain, which raises concerns about domain legitimacy. Overall, the website is functional and professional but would benefit from enhanced transparency and security measures.

S

Slinger.cz

slinger.cz

46

Slinger.cz operates as a specialized retailer offering a unique multi-functional tennis bag that doubles as a ball launcher, targeting tennis players of all skill levels from beginners to professionals. The website presents a clear market position emphasizing product uniqueness, affordability, and portability. The business model centers on direct sales supported by informational resources such as FAQs, test centers, and maintenance guides. The company appears to be a small-sized entity founded in 2020, operating primarily within the Czech Republic retail sector. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Nette Framework components, ensuring responsive design and moderate performance. The site integrates Google Analytics and Tag Manager for user tracking and marketing insights but lacks a visible cookie consent mechanism. Hosting is managed by a Czech registrar and hosting provider, consistent with the domain's WHOIS data. From a security perspective, the site uses HTTPS but lacks explicit security headers in the provided data, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a privacy policy and terms of service present, though cookie consent and incident response information are missing. Contact information is limited to an email address, with no phone or physical address provided. Overall, the website is professional, content-rich, and trustworthy with moderate security posture. Strategic improvements in security headers, cookie consent, and incident response disclosures would enhance compliance and user trust.

V

VICTOR Europe GmbH

victor-europe.com

64

VICTOR Europe GmbH operates as a specialist retailer focused on indoor sports equipment, particularly badminton, squash, and tennis products. The company targets sports enthusiasts in Europe, offering rackets, shoes, apparel, and accessories. The website is professionally designed using the Wix platform, providing a good user experience and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. The site lacks critical privacy and cookie policies, which impacts compliance with GDPR and related regulations. Security posture is moderate with HTTPS enabled but missing advanced security headers and policies. Overall, the business appears credible with a clear market focus but would benefit from enhanced transparency and compliance documentation.

V

VKÚ Harmanec s.r.o.

vku.sk

56

VKÚ Harmanec s.r.o. is a well-established Slovak cartographic company with a legacy dating back to 1948. The company specializes in producing detailed and precise maps for a variety of audiences including tourists, cyclists, municipalities, and educational institutions. Their product portfolio includes tourist maps, comparative maps, custom wall maps, and licensing services. The website reflects a strong market position with a professional design, clear navigation, and comprehensive content tailored to their niche audience. Technically, the site is built on WordPress using modern themes and plugins, optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is robust, with clear policies and GDPR-aligned consent management. Overall, the website and business demonstrate high credibility and trustworthiness.

P

Plzeň 2025

plzen2025.eu

56

Plzeň 2025 is a cultural event website promoting the city's program for the year 2025, celebrating the 10th anniversary of Plzeň as the European Capital of Culture 2015. The website is built on the Wix platform, leveraging modern web technologies and polyfills to ensure compatibility across browsers. The site presents a professional design with consistent branding and clear cultural messaging targeted at a general audience interested in cultural events and city heritage. Technically, the site uses Wix's Thunderbolt framework and includes performance and compatibility polyfills, but lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS and some JavaScript hardening techniques but lacks visible security headers and formal security policies. The absence of privacy, cookie, and terms of service pages, as well as contact information, limits privacy compliance and user trust. WHOIS data is not publicly available, indicating privacy protection, which is common for event sites but reduces transparency. Overall, the site is functional and professional but could improve in privacy compliance and security transparency.

M

Město Plzeň

plzen28rijen.eu

58

The website www.plzen28rijen.eu is an official municipal event site dedicated to the annual celebrations of the founding of the Czechoslovak Republic in Plzeň, Czech Republic. It provides detailed information about the event program, venues, accompanying activities, and photo galleries. The site targets local residents and visitors interested in cultural and historical events, positioning itself as a trusted source for event-related information organized by the city government. The business model is focused on public cultural engagement and event promotion without commercial sales or e-commerce components. Technically, the website uses modern web technologies including HTML5, CSS, JavaScript, and Google Analytics for visitor tracking. It is mobile optimized with good navigation and SEO practices. The site employs HTTPS with a valid SSL certificate ensuring secure communications. Cookie consent mechanisms are implemented to comply with EU regulations, although no explicit privacy policy or terms of service pages were found. No CMS or hosting provider details were identified from the content. From a security perspective, the site demonstrates a good baseline with HTTPS and cookie consent but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The absence of a privacy policy and incident response contact points are notable gaps. WHOIS data is unavailable due to EURid privacy protection, which is common and justified for this type of municipal website. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is professionally designed, trustworthy, and serves its purpose well. Strategic recommendations include adding a comprehensive privacy policy, implementing security headers, providing clear contact information for security incidents, and enhancing accessibility compliance to improve user experience and regulatory adherence.

T

THINline s.r.o.

thinline.cz

66

THINline s.r.o. is a Czech technology company specializing in providing comprehensive online solutions including web design, web hosting, e-marketing, and custom information systems. The company operates multiple subsidiary brands such as Cesky-Hosting.cz, Spolehlive-Servery.cz, and WebSynergy.cz, serving a client base of approximately 30,000 daily users. Their market position is that of a well-established medium-sized service provider in the Czech Republic, focusing on reliable and professional internet services for businesses. Technically, the website is built on a custom CMS platform (WebSynergy) and employs modern web technologies including Google Analytics and Google Tag Manager for tracking. The site is mobile-optimized with good SEO and accessibility features, though some improvements in security headers could enhance the technical posture. Performance is moderate with a professional design and clear navigation. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, no explicit security policy or incident response information is found, and WHOIS data is unavailable, which slightly reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website presents a professional and trustworthy business front with solid privacy compliance and user experience. The main risk lies in the lack of WHOIS transparency and missing security headers, which should be addressed to improve domain legitimacy and security posture.

N

NTC Hosting

ntchosting.com

59

NTC Hosting is an established web hosting and domain registration provider with over 21 years of experience. The company offers a range of services including domain registration, web hosting, VPS solutions, and a website builder, supported by 24/7/365 technical support. The website reflects a professional business presence targeting individuals and businesses seeking reliable hosting solutions. Technically, the site employs modern web technologies such as the Foundation framework and jQuery, with integration of Google Tag Manager for analytics. While HTTPS is enabled, the site lacks advanced security headers and DNSSEC, which could enhance its security posture. Privacy and cookie policies are not evident, indicating potential compliance gaps. Overall, the site is functional, professional, and trustworthy but would benefit from improved security and privacy disclosures.

D

Django Software Foundation

djangoproject.com

66

Django is a mature, open source Python web framework supported by the Django Software Foundation, a non-profit organization. The website serves developers and organizations seeking a robust, scalable, and secure web development framework. It offers extensive documentation, community forums, and active engagement channels such as Discord and GitHub. The business model is community-driven with funding through donations and sponsorships, positioning Django as a leading technology project in the web development ecosystem. Technically, the website employs modern JavaScript technologies including RequireJS and custom scripts, with a clean, responsive design optimized for mobile and accessibility. The site uses HTTPS exclusively, ensuring secure communications. SEO and social media metadata are well implemented, enhancing discoverability and sharing. However, some security best practices such as explicit security headers and cookie consent mechanisms are missing. From a security perspective, the site demonstrates a strong posture with no visible vulnerabilities or exposed sensitive data. The project maintains a documented vulnerability disclosure process, though no dedicated security.txt file was found. Privacy compliance is basic, with no explicit privacy or cookie policies prominently displayed, which could be improved to meet GDPR standards. WHOIS data is unavailable, which is unusual but likely due to privacy or registry policies, though this does not detract from the site's legitimacy given its foundation backing. Overall, the site is professional, trustworthy, and technically sound, with minor areas for improvement in privacy and security transparency. Strategic recommendations include adding explicit privacy and cookie policies, implementing security headers, and publishing a security.txt file to enhance trust and compliance.

Rzetelna Firma is a Polish business service provider specializing in offering trust and credibility certifications to companies. Established in 2006, it supports over 40,000 firms with services including reliability certificates, virtual business cards, and a catalog of trustworthy companies. The website is professionally designed, mobile-optimized, and provides clear information about the benefits of their certification services, targeting Polish entrepreneurs and businesses seeking to enhance their market reputation. Technically, the site uses a custom CMS (Arka), JavaScript, and SVG graphics, hosted by a reputable Polish provider with HTTPS enabled. Security posture is adequate with cookie consent implemented, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is basic, with no explicit privacy policy or terms of service found in the analyzed content. Overall, the domain age and WHOIS data support the legitimacy of the business. The site is safe, business-focused, and trustworthy.

O

Oferteo

oferteo.pl

66

Oferteo is a well-established Polish online marketplace founded in 2008 that connects customers with companies offering a wide range of services and products, including construction, finance, insurance, legal, and more. The platform enables users to post free requests for offers and compare bids from various firms, targeting businesses, institutions, and private individuals. Oferteo maintains a strong market position in Poland with a large user base and extensive service categories. Technically, the website employs modern web technologies such as JavaScript, Tailwind CSS, and integrates analytics and marketing tools like Google Tag Manager, Bing Ads, and TrustCommander. The platform is optimized for mobile and desktop, with good performance and accessibility features. It uses HTTPS with strong security headers, ensuring secure communication and protection against common web vulnerabilities. From a security perspective, Oferteo demonstrates good practices including encrypted connections, secure forms, and no visible exposure of sensitive data. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance transparency and trust. The absence of WHOIS data is likely due to privacy protection, which is justified for this business type. Overall, Oferteo presents a professional, secure, and user-friendly platform with comprehensive privacy and cookie policies, extensive business information, and strong branding. Strategic recommendations include publishing explicit security and incident response policies, and maintaining regular audits of third-party scripts to mitigate potential risks.

F

Fondation Free

fondation-free.fr

57

Fondation Free is a French non-profit organization established in 2006, affiliated with the Iliad group (Free). It focuses on promoting digital inclusion and supporting youth and social innovation projects through funding, mentorship, and educational programs. The website demonstrates a mature digital presence with modern technologies such as Next.js and React, optimized for performance and accessibility. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. The absence of WHOIS data is typical for French domains and does not detract from the legitimacy of the foundation, which is supported by partnerships with reputable organizations like école 42 and Fondation Mozaïk. Overall, the site is professional, trustworthy, and well-aligned with its mission.

P

Picasoft

picasoft.net

57

Picasoft is a small non-profit association founded in 2016 at the University of Technology of Compiègne, France. It promotes free software, digital autonomy, privacy, and solidarity through awareness, training, and hosting free services. The website serves as a portal to various self-hosted services and educational resources, targeting students, educators, and the free software community. The organization is a member of the CHATONS collective, reinforcing its commitment to open and transparent hosting. Technically, the website is built using SCENARI framework and integrates multiple open-source platforms such as Peertube, Mattermost, Etherpad, and others. The infrastructure is self-hosted with a reputable registrar and hosting provider. The site is mobile-optimized, accessible, and performs moderately well, though SEO could be improved. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and important security headers. No privacy or cookie policies are published, which is a compliance gap. No incident response or vulnerability disclosure policies are evident. The site does not use advertising or tracking technologies, enhancing user privacy. Overall, Picasoft presents a trustworthy and community-focused web presence with good technical foundations but could improve privacy compliance and security hardening to better protect users and meet regulatory requirements.

The website deslivresencommuns.org serves as a digital archive and publishing platform for the non-profit association Framasoft, focusing on open access books under the project "Des Livres en Communs". It provides access to previous publications under the "Framabook" label and aims to progressively release new editions. The site targets French-speaking audiences interested in libre culture and digital commons. Technically, the site is built using the Hugo static site generator, styled with Bootstrap and Fork Awesome, and hosted by OVH sas. It employs Matomo analytics for user tracking, favoring privacy over commercial trackers. The site is mobile-optimized and well-structured, though accessibility features are basic. Security posture is moderate with HTTPS enforced and domain protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is trustworthy and professional but could improve in privacy transparency and security hardening.

E

Evolution Host

evolution-host.com

72

Evolution Host is a specialized hosting provider established in 2015, offering VPS hosting, game servers, and advanced DDoS protection services. The company targets a broad audience from startups to enterprise clients, emphasizing reliability, security, and performance. Their market position is strengthened by multiple awards and positive customer testimonials, reflecting a strong reputation in the hosting industry. Technically, the website is well-implemented with modern web standards, mobile optimization, and integrated analytics, indicating a mature digital presence. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and published security policies could enhance trust further. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting a positive user experience and business credibility.

The website savana-hosting.cz appears to be a hosting or technical service provider based in the Czech Republic, with a domain registered since 2013. The site content is currently inaccessible due to a security challenge page powered by BitNinja.IO, which blocks direct access and limits content visibility. The visible content references outdated CMS platforms Joomla 1.5 and WordPress 2.5, indicating a legacy or unmaintained infrastructure. No privacy, cookie, or terms of service policies are present, and no contact information is available on the page. The technical infrastructure shows basic JavaScript usage for browser integrity checks and automatic redirects but lacks modern security headers or HTTPS enforcement visible in the HTML content.

Y

Your Hosting s.r.o.

vas-hosting.com

68

Your Hosting s.r.o. operates the website www.vas-hosting.com, providing a comprehensive range of hosting services including virtual private servers, dedicated servers, managed servers, web hosting, and domain registration. The company targets small to medium businesses and web professionals, emphasizing secure, high-performance hosting solutions with 15+ years of experience and a strong customer base. The website features extensive customer testimonials and references, reinforcing its market position as a trusted regional hosting provider. Technically, the website is well-constructed using modern web technologies such as Bootstrap, Google Tag Manager, and supports mobile responsiveness and accessibility. The site employs HTTPS and cookie consent mechanisms, indicating a good level of digital maturity and privacy compliance. However, no explicit security policy or incident response information is published, which could be improved. Security posture is generally strong with HTTPS and some security best practices observed, but the absence of security headers and vulnerability disclosure mechanisms suggests room for enhancement. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration transparency and slightly impacts trustworthiness. Overall, the website is professional, secure, and user-friendly, but the domain registration anomaly warrants further verification. Strategic recommendations include publishing security policies, improving WHOIS transparency, and enhancing security headers to strengthen trust and compliance.

L

LOCASTE s. r. o.

palacvina.cz

63

Palác vína, operated by LOCASTE s. r. o., is a specialized retailer focused on offering high-quality wines and delicacies primarily from small family wineries and farms across Europe and Chile. The company also supports charitable causes such as foster families through partnerships with non-profit organizations. The website presents a professional and well-structured digital presence with clear business information, contact details, and e-commerce capabilities. Technically, the site is built on the ByznysWeb.cz CMS platform, uses modern web technologies, and enforces HTTPS with basic security measures including captcha protection on forms and cookie consent mechanisms. However, the absence of WHOIS data for the domain reduces transparency and slightly impacts trust. Privacy policies and cookie consent are well implemented and GDPR compliant. The site targets mature audiences due to alcohol sales but contains no explicit adult content.

V

Vosges Matin

vosgesmatin.fr

67

Vosges Matin is a reputable regional news media organization serving the Vosges and Lorraine regions in France. The website offers continuous news coverage across various domains including local, national, and international news, sports, politics, economy, and environment. It operates on a subscription and advertising business model, supported by a professional digital presence including newsletters and mobile applications. The site is part of the EBRA Groupe, a known media group in France. Technically, the website employs modern web technologies such as Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security. The site is mobile-optimized and uses HTTPS with secure cookie practices. However, some security headers are not explicitly detected and could be improved. The site demonstrates good SEO practices and accessibility is basic but functional. From a security perspective, the site shows a mature approach to privacy compliance with GDPR-consistent cookie consent mechanisms and a clearly identified Data Protection Officer contact. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits domain registration verification, but the website content and business information strongly indicate legitimacy. Overall, Vosges Matin presents a trustworthy and professional digital news platform with solid privacy and security practices, though improvements in security headers and explicit security policies could enhance its posture further.

L

Le Progrès

leprogres.fr

67

Le Progrès is a well-established French regional news media outlet focusing on national and regional news for the Rhône-Alpes and surrounding regions. The website serves a broad general audience with digital news content and advertising as its primary business model. It holds a strong market position as a leading regional news provider in Eastern France. Technically, the site employs modern web technologies including Google Tag Manager, Didomi for consent management, and Prebid.js for advertising, indicating a mature digital infrastructure. The site is mobile optimized and uses HTTPS with strong security headers, reflecting a good security posture. However, explicit privacy policies and terms of service pages are not evident in the provided content, which slightly impacts privacy compliance. Overall, the website is professional, trustworthy, and safe for general audiences.

L

Le Républicain Lorrain

republicain-lorrain.fr

67

Le Républicain Lorrain is a prominent regional news media organization based in France, delivering continuous news coverage focused on Lorraine, France, and global events. The website offers a variety of services including news articles, videos, digital editions, and subscription models, targeting a general audience interested in regional and national news. It operates under the parent company EBRA Groupe, indicating a strong market position within the media sector. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, and a consent management platform (Didomi) to ensure compliance with privacy regulations. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Security-wise, the site enforces HTTPS, uses secure cookies, integrates Google reCAPTCHA for form protection, and manages user consent effectively. However, it lacks explicit security headers and a public security policy or vulnerability disclosure mechanism. Overall, the website is professional, trustworthy, and compliant with GDPR, with a solid security posture and a clear business model based on advertising and subscriptions.

L

L'Est Républicain

estrepublicain.fr

63

L'Est Républicain is a well-established regional news media organization serving the Franche-Comté and Lorraine regions in France. The website offers continuous news updates, videos, digital editions, and subscription services, targeting a broad general audience interested in local and national news. It operates under the parent company EBRA Groupe, reflecting a strong market position in regional media. Technically, the website employs modern web technologies including Google Tag Manager, Didomi consent management, and Google reCAPTCHA to ensure user privacy and security. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and secure form handling, although some HTTP security headers could be improved. Privacy compliance is robust, with clear GDPR adherence and a visible Data Protection Officer contact. Overall, the website is trustworthy, professional, and safe for general audiences.

L

Les Dernières Nouvelles d'Alsace

dna.fr

67

Les Dernières Nouvelles d'Alsace (DNA) is a prominent regional news media organization serving Strasbourg, Alsace, and broader France. The website provides continuous live news updates covering local, national, and international events including politics, sports, economy, and environment. It holds a strong market position as a leading regional news source with a large audience base. The business model centers on digital news publishing supported by advertising revenue and mobile app distribution. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and a consent management platform to ensure GDPR compliance. The infrastructure supports mobile optimization and integrates multiple advertising and analytics services for monetization and user insights. Security posture is robust with HTTPS enforcement, security headers, and privacy policies in place, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with good content quality and compliance, suitable for its media industry role.

G

Gîtes de France®

gites-de-france.com

61

Gîtes de France® is a well-established French vacation rental platform offering a variety of accommodations including gîtes, chambres d'hôtes, camping, and citybreaks. The website targets families, couples, and groups seeking quality vacation rentals across France, leveraging a recognized quality label to build trust. The platform provides booking services, thematic stay inspirations, and gift cards, positioning itself as a leader in the French hospitality sector. Technically, the site is built on Drupal 10, employs modern JavaScript libraries, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, providing an excellent user experience. Security-wise, the site uses HTTPS and secure Drupal forms but lacks visible advanced security headers, suggesting room for improvement. The absence of WHOIS registration data is a concern but does not detract significantly from the site's legitimacy given the strong branding and content quality. Overall, the site presents a professional, trustworthy, and user-friendly platform for vacation rental bookings in France.

U

URW

urw.com

72

Unibail-Rodamco-Westfield (URW) is a leading European commercial real estate company specializing in owning, developing, and operating sustainable, high-quality real estate assets in major cities. The company focuses on creating destinations that foster community connections and meaningful experiences. Their website reflects a mature digital presence with comprehensive investor relations content, sustainability initiatives, and multimedia engagement. Technically, the site is built on modern frameworks such as Next.js and React, optimized for performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and standard security headers, though public security policies and incident response contacts are not prominently disclosed. The absence of WHOIS data is unusual but does not detract from the overall legitimacy and professionalism of the site. Strategic recommendations include publishing explicit security and incident response policies and enhancing transparency around vulnerability disclosures.

G

Groupe BPCE

groupebpce.com

77

Groupe BPCE is a major French banking and insurance group, operating through well-known brands such as Banque Populaire, Caisse d'Epargne, and Natixis. It holds the position of the second largest banking group in France, financing a significant portion of the national economy. The website reflects a mature digital presence with comprehensive content targeting customers, investors, journalists, and partners. The business model focuses on retail banking, insurance, investment management, and corporate banking services. The site is professionally designed, mobile-optimized, and SEO-friendly, indicating a high level of digital maturity. Technically, the website is built on WordPress, leveraging modern JavaScript libraries, SEO plugins, and tag management tools like Tealium. Security measures include HTTPS enforcement and bot protection via hCaptcha. Cookie consent and privacy policies are implemented in compliance with GDPR, demonstrating attention to privacy and regulatory requirements. However, explicit security policies and incident response contacts are not prominently available, which could be improved. The security posture is strong with no evident vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly but does not detract from the overall legitimacy given the extensive corporate branding and content. The site does not contain any adult or questionable content, making it safe for general audiences. Overall, Groupe BPCE's website is a robust, professional platform supporting its business operations and stakeholder communications. Strategic improvements could focus on enhancing transparency around security policies and incident response to further strengthen trust and compliance.

S

SUEZ

suez.com

68

SUEZ is a global enterprise specializing in water and waste management, offering circular economy solutions to local authorities and businesses. The company positions itself as an expert in environmental services, supporting sustainable development and resource management. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to a corporate audience. Technically, the site employs modern web standards, including HTTPS, security headers, and optimized fonts, ensuring a secure and performant user experience. Security posture is strong with no evident vulnerabilities or exposed sensitive data, though the absence of a public vulnerability disclosure policy and incident response contacts suggests room for improvement. Overall, the website is trustworthy and well-maintained, but the lack of WHOIS data raises questions that warrant further registrar-level verification.