Security Directory

E

European University Association

eua-solutions.org

53

EUA Solutions is a consultancy service operated under the European University Association, providing expert advice and tailored services to higher education institutions and stakeholders across Europe. The organization leverages its extensive network of over 750 institutions to offer specialized consultancy in quality assurance, doctoral education evaluation, internationalization, and strategic studies. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at universities, national authorities, and decision-making bodies in the education sector. Technically, the site is built on Joomla CMS with modern JavaScript libraries such as jQuery and Bootstrap, supported by Google Analytics and HubSpot for marketing and analytics. Hosting is managed via Combell, with domain registration dating back to 2017, consistent with the business timeline. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements are recommended in security headers and incident response transparency. Overall, the site demonstrates a solid digital presence with moderate performance and good mobile optimization.

E

EUA Council for Doctoral Education

eua-cde.org

57

The EUA Council for Doctoral Education (EUA-CDE) operates as the largest European network dedicated to doctoral education, uniting academic leaders and professionals across more than 30 countries. The organization focuses on community building, hosting thematic workshops and events, publishing reports, and advocating for doctoral education policies at the European level. The website reflects a mature and professional academic network with consistent branding and a clear mission to enhance doctoral education and research training in Europe. Technically, the website is built on Joomla CMS, leveraging Bootstrap for responsive design and jQuery for interactivity. It integrates multiple third-party services including Google Analytics, Google Tag Manager, HubSpot marketing and analytics tools, ShareThis social sharing, and Google reCAPTCHA Enterprise for form security. Hosting is provided by Combell, a reputable European hosting provider. The site demonstrates good mobile optimization, SEO practices, and moderate performance. From a security perspective, the site enforces HTTPS with appropriate security headers and uses reCAPTCHA to protect forms. However, DNSSEC is not enabled, and there is no publicly available security policy or incident response contact information. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for an academic network, with room for improvement in privacy transparency and security disclosures. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, and enhancing accessibility features to further strengthen trust and compliance.

Y

yawave

yawave.com

70

yawave is a German technology company founded in 2013, specializing in providing a Customer Experience Suite targeted primarily at marketing and HR teams. Their SaaS platform helps businesses optimize contact management and customer interactions to drive success. The company positions itself as a niche player in the customer experience and marketing automation space, offering tailored solutions for B2B clients. The website is professionally designed, well-branded, and provides clear information about their services and business focus. Technically, the site is built on WordPress with the Divi theme, leveraging modern web technologies and third-party services such as Google Analytics, Google Tag Manager, and Cookiebot for analytics and compliance. Hosting and DNS services are managed through reputable providers including InterNetX GmbH and Cloudflare. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements such as enabling DNSSEC and adding security.txt files are recommended. Privacy compliance is strong with comprehensive privacy and cookie policies and explicit consent mechanisms. Overall, the website reflects a mature digital presence with good business credibility and moderate technical sophistication.

E

evenito AG

evenito.com

68

evenito AG operates a decentralized event management software platform designed to empower enterprises to scale their event planning efforts while maintaining central control. The platform offers a comprehensive suite of features including guest management, event registration and ticketing, virtual and hybrid event support, automated communication, and analytics. The company targets a broad audience including corporates, SMEs, agencies, and conference organizers, positioning itself as a leading event management solution with strong trust signals such as ISO 27001 certification and GDPR compliance. Technically, the website is built on modern web technologies including Webflow CMS, Google Analytics, Microsoft Clarity, Hotjar, and Leadfeeder for analytics and user behavior tracking. The site is well-optimized for performance, mobile responsiveness, and SEO, with a professional and consistent branding approach. Hosting appears to be via Webflow's CDN, ensuring fast content delivery. From a security perspective, the site enforces HTTPS and demonstrates compliance with key standards such as ISO 27001 and GDPR. However, explicit security headers are not detected, and there is no publicly available vulnerability disclosure or incident response contact information. The absence of WHOIS registration data for the domain is a notable concern, potentially indicating an unregistered or expired domain, which should be verified to ensure legitimacy. Overall, the website presents a professional and trustworthy front with strong business and technical maturity. The main risk lies in the missing WHOIS data, which impacts domain legitimacy assessment. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and clarifying domain registration status to improve trust and security posture.

H

Hackaudit

hackaudit.fr

54

Hackaudit.fr is the official website for the Hackathon de l'Audit organized by the CNCC, targeting students, audit professionals, and educational institutions. The site promotes an annual innovation competition focused on the integration of AI agents in the auditing profession. The platform provides detailed information about participation, prizes, past editions, and event logistics, positioning itself as a niche educational event organizer within the French audit sector. Technically, the website is built on WordPress with Elementor and includes modern SEO and privacy tools such as Yoast SEO and cookie consent mechanisms. Security posture is strong with HTTPS and security headers in place, though the absence of explicit privacy and terms policies is a gap. WHOIS data is not publicly available, which slightly reduces domain trust but the website content and branding are professional and consistent. Overall, the site is well-structured, accessible, and serves its educational and promotional purpose effectively.

J

Jungfreisinnige Schaffhausen

jfsh.ch

46

Jungfreisinnige Schaffhausen is a regional political youth organization in Switzerland focused on liberal values, digitalization, and civic engagement. The website serves as a platform for political campaigning, membership recruitment, and information dissemination targeted at young politically active individuals in the Schaffhausen canton. The organization maintains an active social media presence and provides clear navigation and content relevant to its mission. Technically, the website is built on WordPress using the Elementor page builder and several plugins including Google Analytics for traffic monitoring. The site is mobile optimized and demonstrates moderate performance. However, there is room for improvement in accessibility and SEO optimization. Security posture is adequate with HTTPS enabled but lacks explicit security headers and a formal security policy. Privacy compliance is partially addressed with a privacy policy present, but the absence of a cookie consent mechanism and detailed GDPR compliance indicators suggests gaps. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust. Overall, the website is professional and trustworthy with a good business credibility score. Strategic improvements in security headers, privacy compliance, and incident response transparency are recommended to strengthen the security posture and regulatory adherence.

F

FDP.Die Liberalen Beringen

fdp-beringen.ch

49

FDP.Die Liberalen Beringen is a local political party in Beringen, Switzerland, providing community-focused political information, event agendas, membership opportunities, and donation channels. The website serves as a hub for party supporters and residents interested in local governance and political engagement. It maintains a consistent brand identity aligned with the national FDP party and regional affiliates. Technically, the site is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Privacy compliance is well addressed with a GDPR-compliant cookie consent mechanism and a linked privacy policy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site is professional, trustworthy, and well-maintained, supporting the party's community engagement goals.

The Filmin Times is a niche media platform focused on presenting contemporary European history through cinema. The website offers curated historical film content, timelines, character profiles, and maps, targeting a general audience interested in cultural and historical media. The site is built using modern web technologies including React and Webpack, hosted by OVH sas, and integrates Google Analytics for user tracking. The technical infrastructure is modern and mobile-optimized, though performance is moderate and accessibility is basic. Security posture is adequate with HTTPS enforced and domain protections in place, but lacks advanced security headers and published security policies. Privacy compliance is basic with cookie consent and a privacy policy linked via a partner domain. Overall, the site is professional and trustworthy with moderate risk and room for security and compliance improvements.

S

SIX

six-group.com

80

SIX is a leading Swiss financial market infrastructure provider connecting financial markets with infrastructure, data, and services. The company operates multiple specialized platforms including the Swiss Stock Exchange, securities services, banking services, and financial information products. Their website reflects a mature enterprise with a broad service portfolio targeting financial institutions and market participants. The digital presence is professional, well-structured, and optimized for multiple languages and devices. Technically, the site uses modern web technologies including Adobe Experience Manager CMS, Google Analytics, and OneTrust for privacy compliance. Security posture is strong with HTTPS enforced and secure login portals, though explicit security policies and vulnerability disclosures are not publicly visible. WHOIS data is unavailable, which slightly reduces transparency but is not uncommon for large enterprises. Overall, SIX demonstrates a high level of digital maturity and business credibility.

HES-SO Valais-Wallis is a Swiss applied sciences university located in the Valais region, offering a wide range of Bachelor and ES diploma programs, continuing education, and applied research. The institution targets students, professionals, and partner organizations, positioning itself as a regional leader in education and innovation. The website is well-designed, multilingual, and provides comprehensive information about academic programs and research activities. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, with integration of popular analytics and marketing tools like Google Analytics, TikTok Pixel, and Facebook Pixel. Security posture is generally good with HTTPS enforced, but lacks visible security headers and published security policies. Privacy compliance is weak due to missing explicit privacy and cookie policies and absence of consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

E

European University Association

eua.eu

69

The European University Association (EUA) is a prominent non-profit organization representing over 900 universities across Europe. It serves as a collective voice advocating for higher education and research institutions, providing services such as advocacy, projects, events, and institutional evaluation. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content relevant to its audience of universities, researchers, and policymakers. Technically, the site is built on Joomla CMS with modern front-end frameworks and includes accessibility features and GDPR-compliant cookie management. Security posture is solid with HTTPS and consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected, and the domain registration aligns well with the organization's identity.

U

UNITA - Universitas Montium

univ-unita.eu

55

UNITA - Universitas Montium is a collaborative alliance of six research universities across five countries, serving a large academic community with over 160,000 students and 13,000 staff. The alliance focuses on cross-border cooperation, research, and educational mobility, supported by European Union funding. The website serves as a portal for students, researchers, and partners, providing news, events, program details, and virtual campus access. Technically, the site uses a modern tech stack including Bootstrap, jQuery, Owl Carousel, and Google Analytics, hosted by OVH SAS. The site is mobile-optimized with good navigation and consistent branding. However, it lacks explicit privacy and terms of service pages and does not implement advanced security headers, which are areas for improvement. Security posture is moderate with basic protections like email obfuscation and cookie consent but missing HTTP security headers and explicit security policies. No WAF or blocking mechanisms were detected, and the domain registration is consistent and legitimate. Overall, the site is professional and trustworthy but would benefit from enhanced security measures, privacy compliance documentation, and improved accessibility to strengthen its risk profile and user trust.

L

Letras de Autor

letrasdeautor.com

64

Letras de Autor is a specialized editorial service based in Madrid, Spain, focusing on book editing, publishing, and distribution services for authors. The website presents a professional and well-structured digital presence built on Joomla CMS, integrating modern web technologies and third-party services such as Google Analytics and Facebook Pixel for analytics and marketing. The company emphasizes personalized service and quality, supported by testimonials from authors. However, the absence of WHOIS registration data raises concerns about domain legitimacy and registration transparency. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. Overall, the website is functional and trustworthy from a user perspective but requires improvements in compliance and domain registration transparency.

Bubok is an international self-publishing platform focused on providing authors and publishers with unlimited publishing capabilities, including print-on-demand and digital distribution. The website demonstrates a moderate digital maturity with usage of legacy technologies such as jQuery 1.4.2 and integration of analytics tools like Google Analytics and Matomo. The site is accessible and links to multiple country-specific domains, indicating a broad market presence primarily in Spanish and other European language markets. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate but weakened by outdated libraries and lack of visible security headers or privacy policies. Overall, the website is functional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user confidence.

H

Hôtel Beau-Rivage Palace

brp.ch

51

Hôtel Beau-Rivage Palace is a prestigious 5-star luxury hotel located in Lausanne, Switzerland, offering high-end accommodation, Michelin-starred dining, spa services, and event hosting. The website reflects a strong market position with comprehensive service offerings targeting luxury travelers and business clients. The digital infrastructure is built on TYPO3 CMS with modern front-end technologies, providing a responsive and visually appealing user experience. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, though explicit security headers and incident response information are absent. Overall, the website demonstrates professionalism, trustworthiness, and compliance with privacy regulations, supporting the hotel's brand and business objectives effectively.

Cailler is Switzerland's oldest chocolate brand, operating under the Nestlé group, with a strong market position in retail chocolate products and visitor experiences at Maison Cailler. The website reflects a mature digital presence built on Drupal CMS, leveraging modern analytics and tracking tools such as Google Tag Manager and Google Analytics. Hosting is likely provided via Akamai CDN, ensuring good performance and availability. Security posture is solid with HTTPS enforced, but lacks some advanced security headers and visible privacy compliance mechanisms. No signs of WAF blocking or content restrictions were detected, allowing full content accessibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

M

Morges Région Tourisme

morges-tourisme.ch

71

Morges Région Tourisme operates as a regional tourism information portal for the Morges district in Switzerland, offering comprehensive details on accommodation, dining, activities, events, and group services. The website targets tourists and visitors seeking travel and leisure information in the region. It maintains a consistent brand presence with professional design and structured navigation, supporting multiple languages to cater to international visitors. Technically, the site uses a specialized tourism CMS (MyCity Tourism Information System) and integrates several analytics and tracking tools including Google Analytics, Matomo, and Facebook Pixel, alongside a cookie consent mechanism. The site is mobile-optimized and performs moderately well, though accessibility features could be enhanced. Security-wise, the site enforces HTTPS with good SSL configuration but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. No blocking or WAF mechanisms were detected, and the domain registration details align well with the business purpose, indicating legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Alpes Vaudoises is a regional tourism promotion website focused on the Vaud Alps area in Switzerland, showcasing eight destinations including Aigle, Bex, Gryon, and others. The site targets tourists and visitors seeking travel inspiration and destination information. It operates primarily as a destination marketing platform with content in French and language alternatives for English and German. The website uses modern web technologies such as Nuxt.js and Tailwind CSS, indicating a contemporary technical infrastructure. Integration with Google Tag Manager and advertising networks like AppNexus suggests active marketing and analytics efforts. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy but could improve transparency and security documentation.

F

FDP.Die Liberalen Schaffhausen

fdp-sh.ch

49

FDP.Die Liberalen Schaffhausen is a regional political party in Switzerland serving the Canton of Schaffhausen. The website provides comprehensive political news, event agendas, membership enrollment, and donation options, targeting local residents and voters interested in liberal political content. The site is well-branded and maintains a consistent professional appearance with clear navigation and social media integration. Technically, it is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, and it employs GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website is trustworthy and serves its informational and engagement purposes effectively.

F

FDP.Die Liberalen Luzern

fdp-lu.ch

53

FDP.Die Liberalen Luzern is a regional political party in the canton of Luzern, Switzerland, providing political news, event information, and membership engagement through their website. The site targets Swiss citizens interested in liberal politics and offers donation and campaign support options. Technically, the website is built on TYPO3 CMS with Bootstrap and jQuery, integrating modern web technologies and multimedia content such as embedded YouTube videos. The site is mobile-optimized and includes cookie consent mechanisms with high privacy settings. Security-wise, the website uses HTTPS with good SSL configuration but lacks some security headers and dedicated security or incident response policies. Privacy compliance is basic, with a privacy policy linked externally but no terms of service or vulnerability disclosure information. Overall, the website is professional, trustworthy, and well-maintained, suitable for its non-profit political purpose.

F

FDP.Die Liberalen Appenzell Ausserrhoden

fdp-ar.ch

52

FDP.Die Liberalen Appenzell Ausserrhoden operates a regional political party website serving the canton of Appenzell Ausserrhoden in Switzerland. The site provides news, political agendas, membership information, and contact details, targeting local residents and voters interested in FDP activities. The website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, and includes cookie consent management via tarteaucitron.js and Google Analytics tracking with user consent. The site is well-branded, professionally designed, and mobile-optimized, offering a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security policies and incident response information are not publicly disclosed. WHOIS data aligns with the website's identity, confirming legitimacy. Overall, the site is trustworthy, compliant with GDPR, and suitable for its audience.

C

Campagne « Non à l’initiative des Jeunes Socialistes » c/o PLR.Les Libéraux-Radicaux

initiative-js-non.ch

50

The website 'initiative-js-non.ch' is a political campaign platform opposing the Young Socialists' initiative in Switzerland. It provides detailed information about the initiative, arguments against it, and encourages public engagement through newsletter subscriptions, committee membership, testimonials, and donations. The campaign is affiliated with the PLR.Les Libéraux-Radicaux party, as evidenced by contact details and social media links. The site targets Swiss voters and political stakeholders, aiming to influence public opinion and voting outcomes. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for forms and testimonials. It uses Google Analytics and Facebook Pixel for tracking, and implements Google reCAPTCHA for form security. The site is mobile-optimized and has a good user experience with clear navigation and consistent branding. From a security perspective, the site enforces HTTPS and uses anti-bot measures on forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the campaign's legitimacy, showing consistent registration details. Overall, the website is professional, trustworthy, and serves its political advocacy purpose effectively. Strategic improvements in privacy compliance and security headers would enhance its posture and user trust.

C

Clair et Net.

clair-et-net.com

45

Clair et Net. is a Paris-based independent digital agency established since 1998, specializing in digital transformation, website and mobile application development, and AI project consulting. The company targets businesses and organizations seeking to modernize and leverage digital technologies. Their market position is that of a specialized boutique agency with a strong focus on human-to-human digital intelligence and innovation. Technically, the website is built on WordPress with modern SEO practices, uses Google Analytics and Matomo for analytics, and integrates Google Fonts and Font Awesome for design. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, the website scores well on content quality and business credibility but needs enhancements in privacy compliance and security posture.

L

Laterza

laterza.it

52

Laterza is an established Italian publishing house focused on providing book catalogs, updates, and event information through its website. The site targets a general audience interested in literary and cultural content. The business operates primarily in the media sector with a medium-sized footprint in Italy. Technically, the website is built on WordPress, leveraging common web technologies such as jQuery, Font Awesome, and Google Analytics for tracking. The site includes a comprehensive cookie consent mechanism powered by Cookiebot, ensuring GDPR compliance and user privacy awareness. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, although additional security headers and explicit security policies could enhance protection. Overall, the website is professional, well-branded, and trustworthy, with good SEO and mobile optimization.

S

Shareaholic

openshareweb.com

62

Shareaholic is a well-established content marketing platform offering a comprehensive suite of tools designed to help businesses and content creators engage audiences, increase traffic, and monetize content. The website demonstrates a professional digital presence with strong branding, extensive marketing integrations, and a user-friendly interface. The platform is trusted by over 300,000 users and is featured in major media outlets, indicating a solid market position. Technically, the website employs modern web technologies including JavaScript frameworks, Google Analytics, HubSpot, Drift chat, and New Relic monitoring, supported by AWS Cloudfront CDN for performance. The site is mobile-optimized and SEO-friendly, with good loading speeds and accessibility features, though some accessibility improvements could be made. From a security perspective, the site uses HTTPS and includes monitoring scripts but lacks explicit public security policies or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, likely due to privacy protection, which is common for businesses but slightly reduces transparency. Overall, Shareaholic presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure policies, and improving accessibility compliance to further strengthen trust and compliance.

A

AWO Nordhessen

awo-nordhessen.de

54

AWO Nordhessen is a regional non-profit organization focused on social services and community support in the Nordhessen region of Germany. The website serves as an informational and membership platform, emphasizing core social values such as freedom, justice, tolerance, and solidarity. The organization holds an important position in the regional social service sector, providing economic and societal contributions as a member-based association. The website is built on TYPO3 CMS, indicating a mature and stable technical infrastructure. The presence of Cookiebot for cookie consent management and integration of Google Analytics and Meta Pixel demonstrate a moderate digital maturity with attention to privacy compliance, although no explicit privacy policy or terms of service pages were detected in the provided content. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and well-branded, targeting a general audience interested in social welfare and community engagement.

Frölich Reisen is a German travel agency specializing in a variety of travel services including bus tours, flights, cruises, and premium travel packages. The website targets German-speaking travelers seeking well-organized and comfortable travel experiences. The company appears to be a medium-sized regional player in the transportation sector with a diversified portfolio of travel offerings. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is hosted by webgo.de and uses HTTPS with good SSL configuration. Security posture is solid with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit privacy or terms of service pages. No contact emails or phone numbers are explicitly found, which may affect user trust and compliance. Overall, the website is professional and well-branded with good SEO and mobile optimization but could improve privacy compliance and security practices.

T

The Digital Distillery

the-digital-distillery.com

54

The Digital Distillery is a specialized event and content platform targeting global experts and leaders in the digital media industry. It organizes exclusive summits and produces podcasts that focus on key industry topics including diversity and inclusion. The company is part of the ShowHeroes Group, enhancing its market credibility. Technically, the website is built on WordPress with modern plugins and technologies, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA protections, though improvements such as enabling DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the website reflects a professional and trustworthy digital media brand with moderate technical maturity and security awareness.

R

Rainforest Trust

rainforesttrust.org

62

Rainforest Trust is a well-established non-profit organization dedicated to the purchase and protection of threatened tropical rainforests worldwide. With over 30 years of experience, it has protected millions of acres and thousands of species through strategic partnerships and community engagement. The website reflects a mature digital presence with strong branding, comprehensive content, and clear calls to action for donations and involvement. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security posture is strong with HTTPS, cookie consent mechanisms, and use of CAPTCHA for forms, though explicit security headers could be further confirmed. The absence of WHOIS data is likely due to privacy protection, which is common and justified for non-profits. Overall, the site is trustworthy, professional, and compliant with privacy regulations.

F

Fondation Tara Océan

fondationtaraocean.org

68

Fondation Tara Océan is a reputable non-profit organization focused on ocean exploration and environmental awareness. Established in 2019, it conducts scientific expeditions and educational outreach to promote ocean conservation. The website reflects a professional and consistent brand image, targeting a broad audience including the general public, scientists, and educators. The foundation operates primarily in France and maintains a medium organizational size. Technically, the website is built on WordPress, leveraging modern analytics and tracking tools such as Google Analytics, Hotjar, and Google Tag Manager, with appropriate consent mechanisms in place. Hosting is provided by OVH sas, a well-known provider, and the site uses HTTPS with a good SSL configuration.

Pixelworks creative studio is a Greek digital agency established in 2003, specializing in web development, e-commerce solutions, online contests, online marketing, corporate identity, and social media management. The company targets businesses and organizations seeking comprehensive digital presence and marketing services. Their website showcases a broad portfolio of clients, indicating a stable market position within the Greek digital services sector. Technically, the website employs modern web technologies including HTML5, CSS, JavaScript with jQuery, Fancybox for galleries, and Adobe Typekit fonts, alongside Google Analytics for visitor tracking. The site is mobile-optimized with good design and navigation, though accessibility features are basic. Security posture is moderate; HTTPS is implied but no explicit security headers or policies are present, and no privacy or cookie policies are published. Contact information is clearly provided, but no incident response or data protection officer contacts are available. Overall, the site is professional but lacks some compliance and security best practices.

Α

ΑΜΚΕ ΙΑΣΙΣ

iasismed.eu

47

The website www.iasismed.eu represents ΑΜΚΕ ΙΑΣΙΣ, a small non-profit organization founded in 2005 in Greece, focused on providing psychosocial rehabilitation and counseling services to individuals in need. The organization emphasizes therapeutic and community support services, including food provision and training sessions. The website content is primarily in Greek with English language support, reflecting a localized target audience. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and formal privacy or terms of service documents, which are areas for improvement. Overall, the site is accessible without WAF or blocking, and the domain WHOIS data is privacy protected as per EURid policies, which is typical for European domains. The absence of direct contact information and formal policies slightly reduces trust but does not critically impair the site's credibility.

Ε

Επέκεινα Χώρα

epekeinahora.gr

56

Επέκεινα Χώρα is a Greek non-profit organization focused on education, culture, nature, and community engagement. The website serves as a portal for information about seminars, cultural events, volunteering opportunities, and hospitality services such as camping and youth centers. It targets individuals interested in sustainable development, cultural heritage, and community participation. The organization positions itself as a local cultural and educational hub with a strong community focus. Technically, the website employs a modern JavaScript stack including jQuery, Owl Carousel, TUI Calendar, and Google services such as Analytics and reCAPTCHA. The site is mobile-optimized with responsive design and moderate performance. SEO and accessibility are basic but functional. The site uses HTTPS and implements reCAPTCHA for form security but lacks advanced security headers and explicit incident response policies. From a security perspective, the site has a good SSL configuration and uses Google reCAPTCHA to protect forms. However, it lacks security headers like Content-Security-Policy and does not publish security or incident response policies. There is no vulnerability disclosure or security.txt file. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and professional with clear contact information and social media presence. It is safe for general audiences and does not contain adult or questionable content. Recommendations include enhancing security headers, implementing cookie consent, and publishing security policies to improve compliance and trust.

F

Fondation des hôtels Sandoz

sandoz-hotels.ch

49

Fondation des hôtels Sandoz operates a portfolio of luxury hotels in Switzerland, targeting affluent travelers and hospitality professionals. The website serves as a digital presence showcasing their hotel brands and career opportunities. The business is positioned as a reputable luxury hospitality group with a consistent brand image and professional presentation. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, delivering a good user experience with mobile optimization and cookie consent mechanisms. Security posture is adequate with HTTPS and cookie consent, but lacks visible security headers and published privacy or terms policies. Contact information is present but only in commented-out HTML, reducing accessibility. Overall, the domain registration aligns well with the business claims, indicating legitimacy. The site is safe with no adult or questionable content.

H

Hubvisor

hubvisor.io

56

Hubvisor is a European ad tech SaaS platform focused on helping publishers regain control over their advertising inventory, streamline operations, and foster sustainable business growth. The website positions itself as a leading ad tech suite in Europe, targeting publishers as its primary audience. The digital infrastructure is built using Framer, with Google Analytics integrated for user tracking. The site demonstrates good design quality and mobile optimization, though lacks visible advanced security configurations and privacy compliance mechanisms. The absence of WHOIS registrant data suggests privacy protection, which is typical for technology startups. Overall, the security posture is basic with room for improvement in security headers, privacy policies, and contact transparency.

Media Smart is a Swedish educational platform providing free media literacy resources targeted at children in compulsory school and their educators. The website is professionally designed and maintained, offering lesson plans, account registration, and newsletters to support teaching about advertising and media. It is supported by Sveriges Annonsörer, a recognized organization in Sweden. The technical infrastructure is based on WordPress with modern plugins such as Gravity Forms and CookieHub for consent management, and integrates Google Analytics via Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and privacy policies clearly linked, though some security headers and explicit security policies are absent. WHOIS data for the exact subdomain is unavailable, but the website's content and partner links support legitimacy. Overall, the site is safe, compliant with GDPR, and well-positioned as a trusted educational resource.

Elementskit.com is a recently established content website primarily targeting Hindi-speaking audiences interested in automobiles, trending news, and agricultural market prices. The site publishes articles and web stories covering vehicle launches, smartphone news, and mandi price updates. It operates on a WordPress CMS with Elementor and GeneratePress theme, leveraging Google Analytics and AdSense for monetization. The technical infrastructure is modern and moderately optimized for performance and mobile devices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Business credibility is moderate, with no direct company contact emails or phone numbers found, only a contact form. The domain is newly registered with a reputable registrar and hosting provider, consistent with the website's recent content timeline.

L

Land Rover Україна

landrover.ua

72

Land Rover Україна is a localized official website representing the Land Rover brand in Ukraine, focusing on luxury SUVs such as Range Rover, Discovery, and Defender. The site targets affluent customers interested in premium automotive products. The business model revolves around showcasing vehicles and facilitating customer engagement through dealer networks. The website demonstrates a good level of digital maturity, employing modern JavaScript frameworks like Nuxt.js and Vue.js, and leveraging CDNs for media and fonts to optimize performance. SEO and mobile responsiveness are well addressed, with extensive hreflang tags supporting internationalization. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and privacy policies are absent, indicating room for improvement in compliance and security transparency. Overall, the site is professional and trustworthy, but enhancing privacy compliance and security policies would strengthen its risk profile.

E

Escuela de Negocios CEU Castilla y León (CEU-CyL)

ceucyl.com

64

Escuela de Negocios CEU Castilla y León (CEU-CyL) is a regional business school focused on providing business education and professional training in Castilla y León, Spain. The website presents a professional and well-structured digital presence built on WordPress, utilizing common SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy compliance is partial, with no visible privacy policy or terms of service pages. Contact information is not explicitly provided, limiting direct communication channels. Overall, the website is functional and safe but would benefit from enhanced transparency and security practices.

C

CEU Universities

ceuuniversities.com

61

CEU Universities is a prominent private non-profit educational group in Spain, operating four universities across major Spanish cities. The institution emphasizes Christian Humanism values, internationalization, and comprehensive academic offerings including undergraduate, postgraduate, and doctoral programs. The website is built on a modern WordPress platform with popular plugins and tracking tools, providing a good user experience and mobile optimization. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency. Security posture is generally good with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. The presence of unrelated hidden content about online bingo sites suggests a need for content audit. Overall, the site is professional and trustworthy but would benefit from improved compliance documentation and domain legitimacy verification.

F

Foster Europe for strong European Regions

foster-europe.org

65

Foster Europe for strong European Regions is a non-profit foundation focused on promoting discourse and development related to federalism, decentralization, and regional development in Europe, particularly Austria. The organization operates a professional website hosted on the Squarespace platform, offering information about its projects, conferences, publications, and journal. The site targets stakeholders such as policymakers, academics, and civil society interested in European regional issues. Technically, the website uses modern web technologies including Squarespace CMS, jQuery, Google Analytics, and Typekit fonts, providing a responsive and well-structured user experience. Security-wise, the site enforces HTTPS and implements a cookie consent banner but lacks several important security headers, which could be improved to enhance protection against common web threats. The WHOIS data is privacy protected, which is typical for non-profit organizations, and no suspicious patterns were detected. Overall, the website is trustworthy, professional, and compliant with basic privacy requirements, though it could benefit from publishing a privacy policy and terms of service to improve transparency.

F

Federalistes d’Esquerres

federalistesdesquerres.org

50

Federalistes d’Esquerres is a small non-profit political organization advocating for a federal and socially just Europe, primarily targeting Catalan and European left-wing audiences. The website serves as a platform for news, opinion articles, events, and educational resources related to federalism. It maintains a consistent brand presence and active social media engagement. Technically, the site is built on WordPress with a modern tech stack including popular plugins and themes, hosted likely by CDmon. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and reCAPTCHA usage, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy. Overall, the website is trustworthy and professional, with room for improvement in security and privacy transparency.

E

Euni Partners

eunipartners.com

49

Euni Partners is a Bulgarian non-governmental organization focused on education, training, sustainable development, and social integration of people with fewer opportunities. The organization collaborates with academia, business, and educational institutions, providing training and support across all age groups with a special emphasis on special education. The website reflects a well-established NGO with a clear mission and active partnerships, supported by over 80 members from diverse professional backgrounds. Technically, the website is built on WordPress with modern plugins and tools, including Elementor and Google Analytics, hosted on SuperHosting.bg. The site is mobile-optimized and SEO-friendly but lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled and domain transfer protection, but DNSSEC is not enabled and security headers are missing. Overall, the domain registration data aligns well with the business claims, indicating legitimacy. The site is accessible without WAF blocking or security challenges.

L

Lighthouse Relief

lighthouserelief.org

58

Lighthouse Relief is a small non-profit humanitarian organization focused on providing dignified emergency aid and psychosocial support to refugees and asylum seekers in Greece. The organization has been active for approximately 10 years, positioning itself as a trusted entity in the humanitarian aid sector. Their website is professionally designed using the Squarespace platform, featuring clear navigation, calls to action for donations and volunteering, and integration with social media channels to engage supporters. Technically, the site uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and YouTube embeds, ensuring a moderate level of digital maturity and user engagement. Security posture is adequate with HTTPS enforced and use of reCAPTCHA on forms; however, the absence of key security headers such as HSTS and CSP reduces defense in depth. Privacy compliance is limited as no explicit privacy or cookie policies were found, which is an area for improvement. Overall, the website is trustworthy and safe, with no adult or suspicious content detected. WHOIS data is unavailable due to malformed output, likely reflecting privacy protection, which is justified for this type of organization.

T

Together for Better Days

betterdays.ngo

55

Together for Better Days is a non-profit organization focused on reimagining educational spaces for displaced young people, primarily operating in Greece with ambitions for global replication. Their mission centers on creating sustainable blueprints that guarantee access to quality education and life-changing opportunities for displaced children and young adults. The website reflects a professional and consistent brand presence, supported by active social media channels and a clear educational focus. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site includes cookie consent mechanisms with strict default denials for ad personalization and analytics storage, reflecting a strong privacy posture. Google Analytics is used responsibly with consent blocking. However, some security best practices such as security headers and explicit privacy policies are missing or not detected. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data limits full trust verification, but the privacy protection is justified for a non-profit NGO. No forms or direct contact information were found in the provided HTML, which may impact user engagement and trust. Overall, the website is safe, professional, and well-positioned for its target audience, but could improve in transparency and security hardening to enhance trust and compliance.

E

Eumans.eu

eumans.eu

53

Eumans.eu is a pan-European grassroots movement dedicated to promoting democracy, human rights, and sustainability through civic and nonviolent initiatives. The organization targets European citizens and activists interested in participatory democracy and social justice. The website serves as a platform for information dissemination, advocacy, and donation collection to support their initiatives. Technically, the site is built on WordPress using Elementor and integrates GiveWP for donations, with additional plugins for forms and multilingual support. The site is well-structured, mobile-optimized, and employs modern web technologies, including Google Analytics for tracking and a cookie consent mechanism for privacy compliance. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, though explicit security headers could be improved. The absence of a visible privacy policy and terms of service pages slightly impacts privacy compliance scores. WHOIS data is unavailable due to EURid privacy policies for .eu domains, but the domain appears legitimate based on website content and social media presence. Overall, the website is professional, trustworthy, and aligned with its non-profit mission.

O

Ogólnopolska Federacja Organizacji Pozarządowych

ofop.eu

59

Ogólnopolska Federacja Organizacji Pozarządowych (OFOP) is a Polish non-profit federation established in 2003 to represent and support NGOs at local, national, and European levels. The organization focuses on advocacy, monitoring European funds, capacity building, and fostering dialogue within the NGO sector. The website reflects a well-structured and professional digital presence, leveraging WordPress with modern plugins and tools to deliver content and services effectively. GDPR compliance is evident through a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Contact information is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, OFOP demonstrates a credible and trustworthy online presence aligned with its mission and audience.

M

Maison de l'Europe de Rennes et de Haute Bretagne

maison-europe-rennes.org

61

Maison de l'Europe de Rennes et de Haute Bretagne is a small non-profit association focused on promoting European citizenship, providing educational resources, and fostering connections between Europe and local citizens in the Rennes and Haute Bretagne region. The organization offers conferences, pedagogical animations, publications, and a network of local European relays to engage its target audience including educators, elected officials, youth, and enterprises. The website reflects a well-structured and professionally maintained digital presence with multilingual support via Weglot and SEO optimization through Yoast. The technical infrastructure is based on WordPress with modern plugins and hosted by OVH sas, a reputable provider. Security posture is adequate with HTTPS enforced and GDPR-compliant cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. Contact information is available primarily via phone and contact forms, with active social media channels enhancing trust and engagement. Overall, the site is safe, accessible, and aligned with its mission, though it lacks explicit security policies and incident response information.

R

Réseau Bretagne Solidaire

bretagne-solidaire.bzh

49

Réseau Bretagne Solidaire is a French non-profit regional multi-actor network established in 2018, dedicated to supporting organizations engaged in international cooperation and solidarity projects within the Brittany region. The website serves as a comprehensive platform offering project support, training, networking, and communication services to its members and partners. It holds a strong market position as the 12th RRMA in France, with a medium-sized membership base and active engagement in events, publications, and calls for projects. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential plugins for SEO, GDPR compliance, and user engagement. The site demonstrates good performance, mobile optimization, and accessibility, supported by a well-structured navigation system and rich content. Analytics and marketing tools such as Google Analytics, Google Tag Manager, and Mailjet are used responsibly with user consent mechanisms in place. From a security perspective, the site enforces HTTPS, employs security headers, and uses GDPR-compliant cookie consent banners. Forms include validation and explicit consent checkboxes, enhancing data protection. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact information, which could be improved. Overall, the website presents a professional, trustworthy, and user-friendly digital presence aligned with its non-profit mission. Strategic recommendations include publishing a formal security policy, adding incident response contacts, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

S

SOLIDARITÉS INTERNATIONAL

solidarites.org

49

SOLIDARITÉS INTERNATIONAL is a well-established French humanitarian NGO focused on providing emergency aid, particularly access to potable water, in conflict and disaster zones worldwide. With over 40 years of experience, it holds a strong market position in the non-profit humanitarian sector. The website reflects a mature digital presence with multilingual support, donation capabilities, and active social media engagement. Technically, the site is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the site is professional, trustworthy, and aligns well with the organization's mission and audience.