Security Directory

F

Fundación Estatal para la Formación en el Empleo - Fundae

fundae.es

64

Fundación Estatal para la Formación en el Empleo (Fundae) is a Spanish government-affiliated entity dedicated to supporting and collaborating with the public employment service (SEPE) in the area of workforce training. The organization provides a variety of services including training portals, subsidy management, statistical data publication, and digital competence evaluation aimed at workers and companies across Spain. The website reflects a mature digital presence with multiple language options and a clear focus on accessibility and user experience. Technically, the site is built on the Sitefinity CMS platform and leverages modern web technologies such as jQuery, Bootstrap, and Google Tag Manager. It implements cookie consent mechanisms and integrates third-party analytics and tracking tools like Metricool. The website is mobile-optimized and adheres to accessibility standards, providing a good user experience. From a security perspective, the site uses HTTPS and cookie consent but lacks visible advanced security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is unavailable due to query restrictions, but the website's official branding and government affiliation strongly support its legitimacy. Overall, Fundae's website is a professional, secure, and compliant platform that effectively serves its public service mission. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and maintaining regular audits of third-party scripts to further strengthen security posture.

D

DKV

dkv.es

10

DKV is a well-established health insurance provider in Spain offering a broad range of insurance products including health, dental, life, home, accident, and travel insurance. The website is professionally designed using Drupal 10 CMS and integrates multiple marketing and analytics tools such as Google Tag Manager, HubSpot, and Inbenta chatbot, reflecting a mature digital infrastructure. The site is fully accessible, mobile-optimized, and provides clear navigation and comprehensive content tailored to individuals and families seeking private health insurance in Spain. Security posture is good with HTTPS enforced and use of bot detection scripts, though explicit security headers and policies are not publicly visible. Privacy compliance is basic with cookie consent implemented but no visible privacy or terms of service pages in the provided content. WHOIS data is not publicly accessible due to privacy protection, which is justified for this business type. Overall, the website demonstrates high business credibility and trustworthiness with clear contact information and consistent branding.

The website www.zaragoza.es/sede/ is the official electronic headquarters of the Ayuntamiento de Zaragoza, serving as a comprehensive digital platform for municipal services, citizen information, and electronic administration. It offers a wide range of services including public employment offers, cultural agendas, citizen participation, and access to various municipal resources. The site targets residents and visitors of Zaragoza, providing a government-backed, authoritative source of information and services. Technically, the site employs modern web technologies such as HTML5, CSS3, JavaScript, jQuery, Bootstrap, and FontAwesome, with integrations for Google Tag Manager and Google Analytics, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. Security-wise, the site uses HTTPS and shows good security practices, though explicit security headers and a cookie consent mechanism could be improved. The WHOIS data is unavailable due to access restrictions, but the domain is a recognized official government domain, lending high legitimacy. Overall, the site is professional, trustworthy, and well-maintained, serving as a critical digital interface for Zaragoza's municipal government.

L

Les Echos Le Parisien Annonces

annonces-legales.fr

10

Les Echos Le Parisien Annonces operates an online platform dedicated to publishing legal announcements in France at competitive prices. The website offers access to over 600 authorized newspapers, providing customers with fast attestation of publication and comprehensive customer support via phone, chat, and email. The platform targets businesses and individuals needing to comply with French legal publication requirements. Technically, the site employs modern web technologies including Google Tag Manager, Hotjar, and a consent management platform (Didomi), ensuring a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data reduces domain trust slightly, but external trust signals such as Trustpilot reviews and clear contact information support the site's legitimacy. Overall, the website is professional, user-friendly, and compliant with privacy regulations, making it a reliable service for legal announcement publication in France.

E

ESSENS Restaurant

restaurantessens.cz

9

ESSENS Restaurant is a fine dining establishment located in the culturally significant Chateau de Frontiere in South Moravia, Czech Republic. It offers a high-end gastronomic experience focusing on multi-course tasting menus with locally sourced and seasonal ingredients. The restaurant targets discerning customers seeking Michelin-quality cuisine in a refined setting. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and various sliders, with tracking integrations including Google Tag Manager and Facebook Pixel. However, there is a lack of visible privacy and cookie policies, and WHOIS data is unavailable, which impacts trust and compliance. Security headers are not evident, suggesting room for improvement in security posture. Overall, the website is professionally designed and user-friendly but requires enhancements in privacy compliance and security transparency.

M

MĚSTO TŘEBÍČ

trebiczije.cz

47

The website trebiczije.cz serves as an official informational portal for the city of Třebíč, Czech Republic, targeting citizens, entrepreneurs, and tourists. It provides comprehensive information about living, business opportunities, tourism, and community events, supported by a dedicated incoming team. The site positions itself as a regional hub for local development and engagement, reflecting a medium-sized government entity with a focus on sustainable urban growth and community well-being. Technically, the site employs a modern JavaScript stack including jQuery, Swiper, Fancybox, and integrates analytics tools such as Google Analytics, Microsoft Clarity, and Google Tag Manager. It features responsive design and basic accessibility, with cookie consent mechanisms aligned with GDPR requirements. However, the absence of detected security headers and incomplete WHOIS data indicate areas for improvement in security and domain transparency. From a security perspective, the site benefits from HTTPS encryption and client-side form validation but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The missing WHOIS data raises concerns about domain registration legitimacy, although the website content and contact information strongly suggest it is an official municipal resource. Overall, the website is professionally designed and functional, with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and resolving WHOIS data visibility to improve trust and compliance. These steps will strengthen the site's security posture and business credibility while maintaining its role as a vital community resource.

Axess Groupe is a French technology company specializing in cloud sovereign hosting and IT infrastructure services. They provide secure, performant, and compliant cloud hosting solutions tailored for enterprises, including healthcare data hosting certified under HDS and ISO 27001 standards. The company targets a broad range of clients from SMEs to large public institutions within France, emphasizing data sovereignty and security. Their website demonstrates a mature digital presence with comprehensive content, professional design, and strong GDPR compliance. Technically, the site uses Drupal CMS with modern analytics and marketing tools, ensuring good performance and accessibility. Security posture is strong with certifications and secure hosting practices, though some improvements in security headers and incident response transparency are recommended. The absence of WHOIS registration data slightly impacts domain trust but does not overshadow the overall professionalism and legitimacy of the business. Strategic recommendations include enhancing security disclosures and verifying domain registration details to improve trust further.

M

MVE Sarl

mve.fr

46

MVE Sarl operates a website focused on the sale of used construction and public works equipment, targeting businesses and professionals in the construction sector primarily in France. The company has a long-standing domain registered since 1999, indicating an established presence in the market. The website uses WordPress with WooCommerce for e-commerce functionality and integrates SEO and analytics tools such as Yoast SEO and Google Tag Manager. The technical infrastructure is modern but lacks some advanced security headers and explicit privacy compliance documentation. Security posture is moderate with HTTPS enabled and reCAPTCHA implemented, but no published security or incident response policies were found. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

A

Amicus Therapeutics, Inc.

galafoldhcp.com

10

Galafoldhcp.com is the official healthcare professional website for Galafold® (migalastat), an FDA-approved oral medication for treating adults with Fabry disease and an amenable GLA gene variant. The site is operated by Amicus Therapeutics, Inc., a reputable pharmaceutical company specializing in rare diseases. The website provides comprehensive product information, safety data, prescribing information, patient referral forms, and access to support programs such as AMICUS ASSIST. The target audience is clearly defined as licensed U.S. healthcare professionals, with access gated by an entry confirmation. The site maintains consistent branding and professional content quality, reinforcing its market position as a specialized rare disease treatment provider.

C

Chiesi Global Rare Diseases

chiesirarediseases.com

10

Chiesi Global Rare Diseases is a family-owned biopharmaceutical company specializing in rare disease therapeutics. The company positions itself as a Certified B Corporation committed to providing innovative treatments and support to patients with rare diseases. Their market position is niche but well-established, supported by a clear business model focused on research, development, and patient advocacy. The website reflects a medium-sized enterprise with a global presence and a parent company, Chiesi Farmaceutici S.p.A., which recently acquired Amryt Pharma, expanding its portfolio. Technically, the website uses modern frameworks such as Bootstrap and integrates Google Tag Manager for analytics. Hosting is managed via EasyDNS, and the site is mobile-optimized with good SEO practices. Accessibility is basic but present. Security posture is adequate with HTTPS enforced, though some improvements like enabling DNSSEC and adding security headers are recommended. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the security posture is solid with no critical vulnerabilities detected, but the absence of a public security policy or incident response information is a gap. The domain WHOIS data is consistent with the business claims, showing transparency and legitimacy. The website content is safe for general audiences, focusing on healthcare and patient support without any adult or explicit content. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen trust and compliance.

M

Madmoizelle

madmoizelle.com

68

Madmoizelle is a French online magazine focused on feminist perspectives, culture, society, lifestyle, and pop culture. It targets French-speaking women interested in these topics and offers content through articles, podcasts, newsletters, and forums. The website is well-branded and maintains a consistent professional presence with active social media channels. Technically, the site is built on WordPress and integrates modern analytics and advertising technologies, including Google Tag Manager, Piano Analytics, and Didomi for consent management. The site is mobile-optimized and performs moderately well with good SEO practices. Security-wise, the site enforces HTTPS and uses security headers to some extent, but lacks explicit security policies or incident response information. Privacy compliance is strong with comprehensive cookie and privacy policies and a consent mechanism. However, the absence of WHOIS data for the domain reduces transparency and trust in domain registration details. Overall, the site is professional and trustworthy but could improve security transparency and domain registration clarity.

F

Flexity

flexitylife.eu

46

Flexity is a specialized e-commerce retailer focusing on Pilates reformers, chairs, Cadillac units, and related fitness and body-mind care products. The website targets Pilates and fitness enthusiasts across multiple European markets with localized versions and multiple language support. The business model is retail e-commerce with a niche focus, supported by professional product presentation and customer engagement tools such as Trustpilot reviews and loyalty programs. Technically, the site is built on the Shoptet platform, leveraging common web technologies like jQuery, Google Tag Manager, and Facebook SDK for marketing and analytics. The site is mobile optimized and provides a good user experience with clear navigation and product categorization. Security posture is solid with HTTPS enforced and CSRF protection on forms, though some security headers could be improved. Privacy compliance is evident with a cookie consent mechanism and a privacy policy that aligns with GDPR requirements. No WHOIS registrant data is publicly available due to privacy protection, which is typical for commercial e-commerce sites. Overall, the site presents a trustworthy and professional front with moderate technical sophistication and good compliance practices.

P

pressrelations GmbH

pressrelations.com

49

pressrelations GmbH is a well-established media monitoring and intelligence company founded in 2001, offering AI-supported platforms and consulting services to marketing and PR professionals worldwide. Their flagship product, NewsRadar®, provides cross-media monitoring and analysis, supporting over 1000 clients globally with a team of 250 employees across 12 locations. The company emphasizes a blend of technology and human expertise to deliver comprehensive media insights in real time. Technically, the website is built on TYPO3 CMS and integrates modern analytics and tracking tools such as Google Tag Manager, Hotjar, and social media pixels, with a strong focus on user privacy and consent management. Security posture is good with HTTPS enforced and secure forms, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a strong business credibility despite missing WHOIS data. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure mechanisms to further strengthen trust and security.

A

ABOUT YOU

aboutyou.cz

62

ABOUT YOU is a large online fashion retail platform operating in the Czech Republic, offering over 1500 brands with services including free delivery and a 30-day return policy. The website demonstrates a mature e-commerce business model with a strong market position in the regional fashion retail sector. Technically, the site employs modern JavaScript frameworks, integrates advanced consent management via Usercentrics, and uses Datadog for logging and monitoring, indicating a high level of digital maturity. Security posture is solid with HTTPS enforcement and security best practices, although explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, user-friendly, and trustworthy, with good privacy compliance and no detected vulnerabilities or suspicious content.

A

AIA7

aia7.fr

50

AIA7 is a French online community platform dedicated to members of ENSIACET, including students, alumni, teachers, and recruiters. It offers networking, career services, event management, and news updates to foster engagement within the academic and professional community. The platform supports multiple OAuth login providers and integrates social media for broader connectivity. Technically, the site uses modern web technologies such as Vue.js, Google Analytics, Google Maps API, and Leaflet.js, providing a responsive and user-friendly experience. Security is reasonably well implemented with HTTPS and OAuth authentication, though some security headers could be improved. Privacy compliance is addressed with clear privacy and cookie policies, including GDPR considerations. The absence of WHOIS data reduces domain trust slightly, but the website content and structure indicate a legitimate and professional organization.

A

Amorino

amorino.com

52

Amorino is a premium artisanal Italian gelato brand offering a wide range of products including gelato flavors, waffles, crepes, hot drinks, gelato macarons, and cakes. The company operates through retail shops and franchises, targeting general consumers and franchise/job seekers. The website is professionally designed using modern web technologies such as Nuxt.js and integrates analytics and consent management tools. Security posture is moderate with no visible security headers and no explicit privacy policy, but the site uses HTTPS and cookie consent mechanisms. WHOIS data is unavailable from the provided raw output, which slightly impacts trust but the overall digital presence is consistent and professional. Recommendations include publishing clear privacy and security policies and enhancing security headers.

S

Somfy Digital

somfydigital.com

66

Somfy Digital operates a specialized B2B product catalog platform focused on Somfy products, primarily targeting the Polish market. The website provides a structured catalog with product categories and filtering options, supporting business customers in discovering and ordering Somfy smart home and automation products. The platform demonstrates moderate digital maturity with a modern tech stack including Google Tag Manager and Elastic Behavioral Analytics for user tracking and analytics. The website is mobile-optimized and offers a good user experience with clear navigation and consistent branding. Security posture is adequate with HTTPS enabled and domain registration protections in place, though DNSSEC is not enabled and security headers are not evident. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Contact information and incident response details are not publicly available, limiting transparency and trust. Overall, the site is safe and professional but would benefit from enhanced privacy compliance and security best practices.

Y

YMAG

ymag.fr

63

YMAG is a French company specializing in innovative and scalable software solutions designed to simplify and digitalize administrative and operational management for training organizations such as CFA, OFA, and OF. Their key offerings include the ORYZEA SaaS software and the modular ERP YPAREO, targeting complex organizational needs. The website demonstrates a professional digital presence with a focus on education sector clients in France. The technical infrastructure leverages modern web technologies including Webflow CMS, Google Tag Manager, HubSpot marketing and analytics tools, and a GDPR-compliant cookie consent mechanism. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though explicit security headers and privacy policies are missing. The absence of WHOIS data from the AFNIC server is a concern but the website content and branding suggest a legitimate business. Strategic recommendations include adding explicit privacy and security policies, improving security headers, and publishing vulnerability disclosure information to enhance trust and compliance.

D

Dendreo

dendreo.com

55

Dendreo is a French SaaS company providing a comprehensive management software solution tailored for professional training centers. The platform covers administrative, commercial, financial, pedagogical, and quality management aspects, including compliance with the Qualiopi certification. The website demonstrates a mature digital presence with detailed product features, client testimonials, and integration of modern web technologies such as Webflow, Google Tag Manager, and HubSpot. The inclusion of an AI assistant and e-learning integrations highlights a focus on innovation and user experience. Security posture is generally good with HTTPS and deferred script loading, but lacks explicit security headers and visible privacy policies. The absence of WHOIS data is a notable concern for domain legitimacy, though the website content and client references suggest a legitimate and established business. Overall, the site is professional, well-branded, and targeted at training organizations in France.

S

Septeo

septeo.be

57

Septeo Belgium operates as a specialized technology provider delivering software solutions tailored for legal professionals such as lawyers and notaries. Their offerings focus on simplifying legal practice management through cloud-based, AI-enhanced tools that improve productivity and data security. The website reflects a mature digital presence with modern technologies and compliance with GDPR through clear privacy and cookie policies. Security posture is strong with HTTPS and consent management, though some security headers could be improved. The WHOIS data is restricted, which is common for privacy protection and does not detract from the site's legitimacy given the professional branding and content. Overall, Septeo presents as a credible and established player in the Belgian legal tech market.

E

Expertise France

expertisefrance.fr

62

Expertise France is a French public agency specializing in international technical cooperation, operating as a subsidiary of the Agence française de développement. The agency holds a strong market position as the second largest technical cooperation entity in Europe, delivering projects across governance, security, climate, health, education, and cultural sectors in over 140 countries. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, it leverages Drupal CMS, the French government design system (DSFR), and integrates modern analytics and consent management tools, ensuring compliance with privacy regulations. Security posture is robust with HTTPS enforcement and consent mechanisms, though some security headers could be explicitly confirmed. Overall, the site demonstrates high professionalism and trustworthiness, though WHOIS data is unavailable, which slightly impacts domain legitimacy assessment.

A

Association L214 – Éthique & Animaux

l214.com

68

L214 is a French non-profit organization dedicated to animal ethics and welfare, focusing on exposing conditions of animal life, transport, and slaughter through filmed investigations and sourced information. The organization advocates for ethical questions and proposes political and individual solutions. The website is professionally designed, well-structured, and optimized for SEO and accessibility, reflecting a mature digital presence. Technically, it is built on WordPress with Elementor and uses modern web technologies and analytics tools such as Google Tag Manager. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. The WHOIS data is unavailable, which slightly reduces trust but is common for privacy reasons. Overall, the site is trustworthy, content-rich, and serves a general audience interested in animal rights and veganism.

E

An embeddable Events Calendar for any website

eventscalendar.co

59

The website www.eventscalendar.co offers a feature-rich embeddable events calendar solution designed for integration with multiple platforms such as Shopify, Wix, Webflow, Wordpress, and others. It targets website owners and event organizers seeking to manage and display events seamlessly, with syncing capabilities to popular services like Eventbrite, Zoom, Google Calendar, and Outlook. The business operates as a small SaaS provider within the technology sector, focusing on event management tools. Technically, the site is built on Webflow CMS and leverages modern analytics and tracking technologies including Google Tag Manager, Mixpanel, and FullStory, indicating a moderate level of digital maturity. The site is mobile optimized and presents a professional design with good user experience, though accessibility and SEO optimizations are basic. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. No direct contact or incident response information is provided, which limits trust and transparency. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

A

Additi Multimédia

maville.com

64

Maville.com is a well-established French regional news portal founded in 1998, owned by Additi Multimédia and associated with the parent company Ouest-France. It provides localized news, sports, entertainment, restaurant guides, classifieds, and deals across numerous French cities and regions. The website targets residents and visitors seeking local information and lifestyle content. Technically, the site employs a modern JavaScript stack with jQuery, Google Tag Manager, Facebook Pixel, and a GDPR-compliant consent management platform (Didomi). The site is mobile-optimized and uses HTTPS with a good security posture, though DNSSEC is not enabled and some security headers like CSP are missing. Privacy compliance is strong with clear cookie and privacy policies and active consent mechanisms. No direct contact information or security incident response details are published, which is a minor gap. Overall, the site is professional, trustworthy, and serves its audience well.

I

ID Meneo

id-meneo.com

55

ID Meneo is a Paris-based digital agency specializing in bespoke web development, digital marketing, and strategy consulting with over 13 years of experience. The company offers a comprehensive range of services including WordPress and Prestashop site creation, Laravel application development, SEO/SEA, and maintenance services. Their market position is that of a small, specialized agency focused on delivering tailored digital solutions to businesses seeking to differentiate themselves online. Technically, the website is built on WordPress with modern technologies such as jQuery and Google Tag Manager, and it demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and some security best practices in place, though explicit security headers and policies are not evident. The WHOIS data is missing, which raises some legitimacy concerns, but the professional presentation and active social media presence support credibility. Overall, the site is well-designed and functional but would benefit from enhanced privacy compliance and clearer domain registration transparency.

The Odoo Community Association (OCA) is a well-established non-profit organization founded in 2014 that supports the Odoo open source ERP ecosystem by fostering collaboration among developers, integrators, consultants, and users. The organization provides access to high quality apps, open upgrades, and community-driven resources, positioning itself as a key player in the open source ERP community. The website reflects this mission with clear navigation, professional design, and active engagement with sponsors and partners. Technically, the site is built on the Odoo CMS platform, leveraging modern web technologies such as FontAwesome, Google Analytics, and reCAPTCHA for security and analytics. Hosting is provided by Gandi SAS, with HTTPS enabled ensuring secure communications. However, some security best practices such as DNSSEC and security headers are not implemented, and no explicit cookie consent mechanism is present, which may impact GDPR compliance. Contact information is primarily via web forms, with no direct email or phone numbers visible. Overall, the site demonstrates good digital maturity and community trust but could improve in security and privacy compliance areas.

Coop Formations is a French cooperative organization specializing in professional training aimed at transforming work, organizations, and society. Founded in 2020, it operates as a small, human-scale entity focused on delivering accessible, high-quality educational sessions and courses. The cooperative emphasizes combining critical thinking with practical action, supported by passionate trainers and personalized learner support. The website reflects a clear mission and strong trust signals such as the Qualiopi certification and a 100% learner recommendation rate. Technically, the website is built on the Odoo CMS platform, hosted via Infomaniak, and employs modern web technologies including Bootstrap, FontAwesome, and Chart.js. It demonstrates good mobile optimization, accessibility, and SEO practices. Analytics are implemented with privacy-conscious tools like Plausible alongside Google Analytics, with a cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled and no explicit security policies or incident response contacts are published, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The overall risk assessment is low, with the site presenting a professional, trustworthy, and compliant digital presence. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing security headers to further strengthen trust and resilience.

P

permaculture formation

permaculturefrance.org

7

The website permaculture-formation.org is a Wix-hosted site focused on permaculture education and training. It targets individuals interested in sustainable agriculture and permaculture practices. The site leverages Wix's Thunderbolt framework and integrates multiple Wix apps for enhanced functionality. While the technical infrastructure is modern and mobile-optimized, the site lacks critical privacy and security documentation, such as privacy policies and cookie consent mechanisms. No contact information or business registration details are provided, limiting business credibility. The absence of WHOIS data further complicates trust assessment. Security posture is basic with no evident security headers or incident response policies. Overall, the site serves its educational purpose but requires improvements in compliance and security to enhance trust and professionalism.

A

A.U.M. Films & Media

cowspiracy.com

9

The website www.cowspiracy.com represents a non-profit environmental documentary project focused on exposing the environmental impact of animal agriculture. The site is professionally designed using Squarespace, featuring multimedia content, calls to action, and social media integration. The business operates primarily through film distribution, educational licensing, and advocacy, targeting environmentally conscious audiences. Technically, the site uses modern web technologies and third-party analytics but lacks some security headers and privacy policies, which are areas for improvement. The absence of WHOIS data reduces transparency and trust, though the site content and social presence support legitimacy. Overall, the site is functional and informative but should enhance privacy compliance and security posture to strengthen trust and compliance.

V

VegOresto Pro

vegoresto.fr

10

VegOresto Pro is a French non-profit initiative under the animal defense association L214, dedicated to supporting professionals in the restaurant and agro-food sectors to develop plant-based offerings. The website is well-designed, professionally maintained, and leverages modern web technologies such as WordPress with Elementor, Google Tag Manager, and reCAPTCHA for security. The site demonstrates a strong market position with over 3,000 partners and a clear focus on sustainable gastronomy. Security posture is solid with HTTPS and form protections, though explicit security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, linked to the parent association's policies. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the site's credibility given the professional content and association backing.

H

HappyCow

happycow.net

10

HappyCow is a well-established online platform dedicated to providing comprehensive listings and reviews of vegan and vegetarian restaurants worldwide. It serves a global community of vegans, vegetarians, and health-conscious consumers by offering restaurant directories, user-generated reviews, recipes, travel guides, and community forums. The platform also supports mobile applications, enhancing accessibility and user engagement. The website demonstrates a professional design with consistent branding and a clear focus on its niche market. Technically, HappyCow employs modern web technologies including JavaScript modules, lazy loading, and integrates with major advertising and analytics services such as Google Analytics and Mediavine. The site is hosted on a reliable CDN infrastructure (AWS Cloudfront), ensuring good performance and availability. Security-wise, the site enforces HTTPS, uses CSRF tokens in forms, and integrates Google reCAPTCHA for bot mitigation. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly present and could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, reflecting GDPR awareness. The absence of WHOIS data for the domain is a notable concern, reducing transparency and trustworthiness from a domain registration perspective. Overall, HappyCow presents a secure, user-friendly, and content-rich platform with minor areas for security and transparency enhancement.

V

Vegan Pratique

vegan-pratique.fr

51

Vegan Pratique is a French non-profit informational website dedicated to promoting veganism and plant-based nutrition. It offers educational content, recipes, and a 21-day Veggie Challenge subscription to help users transition to a vegan lifestyle. The website is affiliated with L214, a recognized animal rights organization, enhancing its credibility and trustworthiness. The platform targets individuals interested in veganism, health, and environmental sustainability, providing practical advice and community engagement. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and optimized for mobile devices. Security posture is good with HTTPS enforced and no exposed sensitive data, although some security headers and policies could be improved. Privacy compliance is basic, with a cookie consent mechanism present but lacking explicit privacy and terms of service pages. Overall, Vegan Pratique presents a professional, trustworthy, and content-rich platform with room for enhancements in privacy and security documentation.

O

One Army

projectkamp.com

56

Project Kamp is a small community-driven initiative based in Portugal focused on researching and prototyping sustainable living methods. The project emphasizes open source sharing of knowledge and community collaboration, positioning itself as a niche player in sustainability research. The website is built on modern web technologies using Webflow and integrates Google Analytics for user tracking. While the site is well-designed and content-rich, it lacks formal privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enabled but missing advanced security headers and DNSSEC. The domain registration is consistent and stable, supporting legitimacy. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

F

Ferme de Cagnolle

fermedecagnolle.fr

42

Ferme de Cagnolle is a small organic farm based in Dordogne, France, specializing in living soil market gardening and the production of organic vegetables, seeds, and legal CBD/CBG products. The farm also offers training programs and creates media content to share agroecological knowledge. Their business model combines direct product sales through an online boutique with educational services and participatory agricultural projects, targeting environmentally conscious consumers and learners in France and nearby European cities. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern web technologies including Google Analytics and cookie consent tools, but lacks some advanced security headers. The security posture is good with HTTPS enforced and no visible vulnerabilities. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and registration status, which should be addressed to improve trust. Overall, the site is professional and trustworthy, with good privacy compliance and clear contact information.

S

Solarbrother

solarbrother.com

50

Solarbrother is a French company specializing in the design and sale of solar-powered products including lighters, ovens, barbecues, dryers, and chargers. The company operates a niche e-commerce platform targeting environmentally conscious consumers interested in renewable energy solutions. The website is built on WordPress with WooCommerce, enhanced by SEO and performance plugins, and supports multiple languages. The technical infrastructure is modern and optimized for good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and headers could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks clear privacy and terms of service pages. Overall, the domain registration and business information are consistent and legitimate, supporting a moderate to high trust level.

U

University of California, Davis

ucdavis.edu

70

University of California, Davis (UC Davis) is a large, top-tier public university located in California, USA. The institution focuses on education, research, and community engagement, with nationally recognized programs in agriculture, veterinary medicine, and graduate financial success. The website serves prospective and current students, faculty, staff, alumni, and visitors, providing comprehensive information about admissions, academics, campus life, and research. The digital presence reflects a mature and professional organization with consistent branding and rich content.

C

Cerema

cerema.fr

48

Cerema is a French public entity specializing in climate adaptation and territorial planning, serving government bodies, local authorities, and enterprises. It holds a strong market position as a referent public organization providing tailored solutions for environmental and infrastructural challenges. The website reflects a mature digital presence with a modern Drupal 10 CMS, integrated analytics tools, and a professional design that supports user engagement and accessibility. Security posture is solid with HTTPS and privacy-conscious analytics configurations, though explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates high business credibility and technical maturity, aligned with its governmental role.

A

Agence Bio

agencebio.org

60

Agence Bio is the official French agency dedicated to the development and promotion of organic agriculture. It serves as a governmental and non-profit entity focused on raising awareness, providing data, funding projects, and communicating the benefits of organic farming to various stakeholders including consumers, producers, distributors, and the general public in France. The agency maintains a strong market position as the authoritative source for organic agriculture information and support in France. Technically, the website is built on a modern WordPress CMS platform with Elementor page builder and enhanced SEO via Yoast. It integrates multiple marketing and analytics tools such as Google Tag Manager, Matomo, and Sendinblue, indicating a mature digital infrastructure. The site is well-optimized for mobile and accessibility, with good performance and clear navigation. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks visible advanced security headers and a published security.txt file. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data limits domain trust verification, though the website content and official tone strongly suggest legitimacy. Overall, Agence Bio presents a professional, trustworthy, and content-rich platform supporting organic agriculture in France. Strategic improvements in security headers, privacy policy transparency, and incident response disclosures would enhance its security posture and compliance.

W

Washington University in St. Louis

washu.edu

55

Washington University in St. Louis (WashU) is a prominent private research university offering a wide range of academic degrees and programs, supporting extensive research and innovation activities, and providing comprehensive student life services. The website reflects a mature digital presence with strong branding, clear navigation, and rich content targeting prospective and current students, faculty, staff, alumni, and researchers. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, although privacy compliance could be improved by adding cookie consent mechanisms and explicit terms of service. Overall, the domain registration and WHOIS data confirm legitimacy and consistency with the university's identity.

S

salon Marjolaine - Parc Floral de Paris

salon-marjolaine.com

49

Salon Marjolaine is a well-established French event focused on organic agriculture, ecology, and sustainable living, operating since 2006. It serves as a major marketplace and meeting point for organic producers, consumers, and enthusiasts. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content about the event, exhibitors, and program. Technically, it is built on WordPress with modern plugins and tracking tools, hosted likely by Infomaniak, and uses HTTPS with basic security measures. Privacy compliance is well addressed with GDPR-aligned cookie consent and a detailed privacy policy. However, explicit security policies and vulnerability disclosures are absent, and some security headers could be improved. Overall, the site is trustworthy and professionally managed, with no signs of malicious activity or content safety concerns.

K

Kalélia

johndoe-et-fils.com

54

Kalélia is a French digital agency based in Nantes, specializing in web communication, digital marketing, and web development services primarily for SMEs and mid-sized companies. Established since 2010, the agency offers a comprehensive suite of services including consulting, web design, SEO, SEA, social media management, and training. The website reflects a professional and consistent brand image with a strong focus on user experience and conversion optimization. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and HubSpot Analytics. Security practices include HTTPS enforcement and use of reCAPTCHA, though some security headers are not visibly configured. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional presentation and business transparency.

A

Agence Française de Développement

afd.fr

61

The Agence Française de Développement (AFD) is a prominent French public development bank dedicated to financing and supporting sustainable development projects worldwide. The website reflects a mature, well-established organization with a clear mission to promote social and environmental transitions. The site targets a diverse audience including governments, investors, civil society, and enterprises. Technically, the website is built on Drupal CMS with modern frameworks and analytics tools, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS and consent management, though explicit security headers should be verified. The absence of WHOIS data is due to AFNIC privacy policies, which is typical for French government domains. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

T

TechArk Solutions

gotechark.com

68

TechArk Solutions is a well-established digital solutions agency based in Norfolk, Virginia, specializing in website design, digital marketing, custom software development, branding, and automation services. The company targets businesses seeking digital innovation primarily in the Virginia region and offers a comprehensive suite of services including hosting, ecommerce, AI automation, and fractional CTO/CIO expertise. Their market position is strong, supported by multiple recognitions such as being named to the Inc. 5000 fastest-growing companies list for five consecutive years. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses performance optimization tools such as WP Rocket. It integrates common marketing and analytics tools including Google Tag Manager and Facebook Pixel. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and domain registration is transparent and consistent with the business claims. However, there is room for improvement in security headers, DNSSEC implementation, and publishing explicit security and privacy policies. No incident response or vulnerability disclosure information is available, which could be enhanced to improve trust and compliance. Overall, the website demonstrates a high level of professionalism and business credibility with minor gaps in privacy compliance and security best practices. Strategic improvements in these areas would strengthen the company’s security posture and regulatory adherence.

S

Somfy

somfybiznes.pl

72

Somfybiznes.pl is a professional B2B website serving as the Polish portal for Somfy, a global leader in smart home and building automation systems. The site targets architects, designers, and business customers, providing product catalogs, training, support, and marketing materials. The platform is built on the Liferay CMS and integrates modern web technologies and analytics tools, demonstrating a mature digital infrastructure. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of public WHOIS data suggests privacy protection, which is reasonable for this business type. Overall, the site is trustworthy, professional, and well-maintained, supporting Somfy's market position in Poland.

S

Somfy

somfy-profissional.pt

66

Somfy-profissional.pt is a professional B2B website dedicated to Somfy's automation and smart home solutions targeted at professional installers and partners in Portugal. The site offers product catalogs, training, assistance, and documentation to support its business customers. The company is well-established with a consistent brand presence and a comprehensive privacy and cookie policy, reflecting GDPR compliance. Technically, the site is built on the Liferay CMS platform, using modern JavaScript libraries and performance monitoring tools, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. No contact emails or phone numbers are explicitly presented on the homepage, which may limit direct customer contact. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

S

Somfy d.o.o.

somfypro.rs

67

Somfy d.o.o. operates a professional B2B website targeting partners and customers in Serbia and the Balkan region, offering window and door automation products and home automation solutions. The company recently consolidated its regional presence by merging its distributor Migro d.o.o. into Somfy d.o.o., reinforcing its market leadership. The website is built on a modern Liferay CMS platform with integrated analytics and marketing tools, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and secure login forms, though security headers and incident response information could be improved. Privacy compliance is basic but includes cookie consent mechanisms and a privacy policy. Overall, the site reflects a credible and established business with consistent branding and professional content.

T

Team TotalEnergies Pro Cycling

teamtotalenergies.com

56

Team TotalEnergies Pro Cycling operates a professional cycling team website presenting team members, race calendars, news, photos, and videos. The site targets cycling enthusiasts and sponsors, leveraging a WordPress CMS with modern plugins and integrations such as Yoast SEO and social media feeds. The technical infrastructure is solid, hosted on Azure DNS with HTTPS and Google Tag Manager for analytics. Security posture is good with no visible vulnerabilities, though DNSSEC is not enabled and some security headers could be improved. Privacy and cookie policies are present and GDPR compliant with consent mechanisms. No direct contact emails or phone numbers are published, which may limit direct communication. Overall, the site is professional, well-branded, and trustworthy with a strong social media presence.

T

TotalEnergies

totalenergies.com

72

TotalEnergies is a global integrated energy company specializing in oil, biofuels, natural gas, green gases, renewables, and electricity. The company positions itself as a leader in the energy transition, emphasizing sustainability and innovation. The website reflects a mature digital presence with comprehensive corporate content, including press releases, sustainability reports, and investor information. The technical infrastructure is modern, leveraging Drupal CMS, Tealium for tag management, and Cloudflare for hosting and performance optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is robust, with clear privacy and cookie policies and GDPR consent management. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

T

TotalEnergies

totalenergies.be

60

TotalEnergies Belgium operates a professional and comprehensive website offering electricity and natural gas supply services to individuals, SMEs, and large enterprises. The company positions itself as a major energy supplier with a focus on competitive pricing, renewable energy options, and customer-centric services including mobile app management and expert support. The website is well-structured, multilingual, and integrates modern web technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident through detailed policies and cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected, indicating a trustworthy and reliable online presence.