Security Directory

C

CCI Paris Ile-de-France

cci-paris-idf.fr

66

CCI Paris Ile-de-France is a major regional economic and educational institution supporting business creation, development, and training in the Ile-de-France region. The website offers comprehensive resources for entrepreneurs, students, companies, and local authorities, including business advice, educational programs, international development support, and event hosting. The site is built on a modern Drupal 10 CMS with integrated analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit privacy policies and incident response contacts are lacking. The absence of WHOIS data reduces domain registration trust but the website content and branding strongly indicate legitimacy. Overall, the site is professional, well-structured, and trustworthy for its target audience.

K

KPMG Česká republika, s.r.o.

otestovat.cx

57

The website otestovat.cx is a professionally developed online testing platform operated by KPMG Česká republika, s.r.o., a reputable global consulting firm. It offers a customer experience management test targeted at business owners and executives to assess their firm's capabilities in building long-term customer relationships. The site is well-branded, consistent with KPMG's corporate identity, and provides comprehensive privacy and cookie policies aligned with GDPR requirements. Technically, the site employs modern web technologies including Google Analytics and Tag Manager for tracking, and a cookie consent management system from Cookies Giant. The site is mobile-optimized with good navigation and user experience. However, explicit security headers are not detected in the provided data, and SSL configuration details are not confirmed but implied by HTTPS URLs. From a security perspective, the site shows good privacy compliance and no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data due to registry restrictions limits transparency but does not undermine the site's legitimacy given the strong KPMG branding and professional content. Overall, the site presents a moderate to high security posture with room for improvement in security headers and explicit incident response information. Strategically, the site serves as a digital engagement tool for KPMG to attract and assess potential clients in the Czech market, reinforcing their position as a trusted advisor in customer experience management.

V

VIGRES s.r.o.

vigres.cz

55

VIGRES s.r.o. operates an e-commerce website offering natural health products focused on detoxification, immune support, and vitality enhancement using vital mushrooms, medicinal herbs, and Czech honey. The company targets health-conscious consumers seeking natural supplements and wellness products. The website is professionally designed with clear navigation, mobile optimization, and comprehensive content including customer testimonials and media partnerships. Technically, the site uses the Shoptet e-commerce platform with integrations for Google Analytics GA4, Facebook Pixel, and live chat via Tawk.to. Security posture is good with HTTPS enforced and cookie consent mechanisms, though some security headers could be improved and the jQuery library is outdated. WHOIS data is missing, which reduces trust assessment confidence but the visible business information and contact details support legitimacy. Overall, the website is a well-maintained, professional retail platform with moderate technical maturity and good privacy compliance.

I

Institut pro TCIM/CAM, z. ú.

mkz2025praha.cz

59

The website www.mkz2025praha.cz represents the 4th International Health Congress 2025 in Prague, organized by the Institut pro TCIM/CAM, a non-profit entity focused on traditional, complementary, and integrative medicine. The site serves as an information hub for the event, providing program details, registration, partner information, and historical context. It targets healthcare professionals, researchers, and the general public interested in integrative health approaches. The business model is event-driven with sponsorship and partnership support, positioning itself as a key player in the TCIM/CAM community in Central Europe. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, Google reCAPTCHA, and embedded YouTube content. It is mobile-optimized with responsive design and good SEO practices. However, some security best practices such as security headers are missing, and there is no visible cookie consent mechanism despite GDPR policy presence. The site uses HTTPS with a good SSL configuration, enhancing user trust and data security. From a security perspective, the site shows a moderate security posture with HTTPS and reCAPTCHA protecting forms. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts trustworthiness. No incident response or vulnerability disclosure policies are evident, suggesting room for improvement in security governance. Overall, the website is professional, content-rich, and trustworthy for its intended audience but would benefit from enhanced security policies, transparency in domain registration, and improved privacy compliance mechanisms to strengthen its risk posture and user confidence.

P

Programme Équité

programme-equite.org

51

Programme Équité is a French non-profit initiative focused on accelerating ecological and social transition in West Africa through fair trade development. The program supports cooperatives and fair trade actors by fostering sustainable supply chains and capacity building. The website reflects a mature and consistent brand presence with clear messaging and trust indicators such as partner logos and testimonials. Technically, the site is built on WordPress with modern integrations including Mapbox, Google Tag Manager, and reCAPTCHA, providing a solid digital infrastructure. Security posture is adequate with HTTPS and form protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is basic but present, with cookie consent mechanisms and a privacy policy accessible via footer links. Overall, the domain registration and website content align well, indicating a legitimate and stable organization.

S

Savoir-faire & Découverte

lesavoirfaire.fr

55

Lesavoirfaire.fr is a French website dedicated to providing training within artisan workshops and environmentally conscious farms. The business operates in a niche market focused on artisan crafts and eco-friendly practices, targeting individuals interested in sustainable and traditional skills. The website is built on WordPress, leveraging common plugins such as Yoast SEO and Complianz for GDPR compliance, and integrates marketing tools like Google Tag Manager and Sendinblue Automation. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit privacy policies and security headers, which are recommended for improvement. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and stable online presence.

U

Université Populaire de Permaculture

permaculture-upp.org

54

Université Populaire de Permaculture is a French non-profit educational network dedicated to permaculture training, events, and community building. It operates a WordPress-based website providing rich content including webinars, training schedules, and partnerships with other permaculture organizations. The website targets individuals interested in permaculture education and practice, offering courses and networking opportunities. Technically, the site uses common WordPress plugins and is hosted by OVH sas, with a moderate performance profile and basic SEO and accessibility features. Security posture is adequate with HTTPS and domain locking but lacks advanced security headers and published security policies. Privacy compliance is partial due to absence of cookie consent mechanisms. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

T

Terre Vivante

terrevivante.org

65

Terre Vivante is a French organization focused on promoting organic gardening, permaculture, ecological housing, and healthy cooking. It operates a content-rich website offering advice, books, and a magazine called Les 4 Saisons. The organization targets environmentally conscious individuals and gardeners interested in sustainable living. The website uses WordPress with WooCommerce for e-commerce and integrates multiple marketing and analytics tools to support its business model. Technically, the site is well-structured, mobile-optimized, and SEO-friendly, though performance is moderate due to numerous third-party scripts. Security posture is good with HTTPS and captcha protections, but could be improved by adding explicit security headers and publishing a security policy. Privacy compliance is strong with cookie consent and GDPR-aligned policies. The absence of WHOIS registration data reduces domain trust slightly, but overall the site appears legitimate and professional.

P

Post Carbon Institute

resilience.org

61

Resilience.org is a non-profit program under the Post Carbon Institute focused on supporting community resilience in response to ecological and social challenges. The website offers editorial content, podcasts, events, and subscription-based deep dives to educate and engage its audience. The organization positions itself as a thought leader in sustainability and resilience, targeting a general audience interested in these topics. Technically, the site is built on WordPress with modern plugins and tracking tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and no obvious vulnerabilities, though security headers could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich, but would benefit from enhanced privacy transparency and WHOIS data availability for improved domain trust.

A

Association Française de Science Politique

afsp.info

60

The Association Française de Science Politique (AFSP) operates as a prominent non-profit academic association dedicated to political science in France. The website serves as a comprehensive portal offering information on congresses, research groups, professional activities, and resources for political science scholars and practitioners. The organization maintains a strong market position within the French academic community, providing key services such as event organization, publications, and professional networking. Technically, the website is built on WordPress with Bootstrap and jQuery frameworks, integrating modern web technologies including Google Tag Manager and social media embeds. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be improved. Performance is moderate, with a professional design and clear navigation enhancing user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible security headers and explicit privacy policy documentation. WHOIS data is unavailable, likely due to privacy protection, which is justifiable for this type of non-profit entity. No vulnerabilities or suspicious content were detected, and the site is safe for general audiences. Overall, the AFSP website is a credible and professionally maintained platform with room for improvement in privacy transparency and security hardening to enhance trust and compliance.

A

American Legal Publishing

amlegal.com

61

American Legal Publishing is a well-established company specializing in codification services for municipalities and local governments, with over 90 years of experience. Their website reflects a professional and trustworthy business with a clear focus on legal publishing and related services. The company is positioned as a trusted partner in the government sector, supported by its affiliation with the International Code Council. Technically, the website is built on modern web technologies including Webflow CMS, GSAP animations, and integrates analytics tools such as Google Tag Manager and Metricool. The site is fast, mobile-optimized, and accessible, providing a positive user experience. Security posture is generally good with HTTPS enforced and domain registration consistent with a legitimate business; however, some improvements are needed such as enabling DNSSEC and fixing the disabled reCAPTCHA on the contact form. Privacy compliance is basic, lacking cookie consent mechanisms and explicit GDPR indicators. Overall, the website is professional and credible but could enhance its security and privacy transparency to better align with best practices.

D

Dorik, Inc.

dorik.io

70

Dorik, Inc. operates an AI-powered website building platform designed to enable users without design or coding experience to create websites quickly and affordably. The company positions itself as a flexible and user-friendly SaaS provider in the technology sector, targeting individuals and small to medium businesses. The website demonstrates a modern technical infrastructure with extensive use of JavaScript analytics and marketing tools, hosted and registered through reputable providers such as Cloudflare. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks published security policies and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security disclosures.

D

Dorik, Inc.

dorik.com

61

Dorik, Inc. operates an AI-powered website building platform designed to enable users without design or coding experience to create professional websites quickly and affordably. Positioned as a flexible and user-friendly SaaS solution, Dorik targets individuals and businesses seeking efficient website creation tools. The company was founded in 2020 and maintains a professional online presence with consistent branding and active social media channels. Technically, the website employs modern JavaScript libraries and integrates multiple analytics and marketing tools such as Mixpanel, Microsoft Clarity, Facebook Pixel, and ProfitWell, indicating a mature digital infrastructure. Hosting and domain management are handled via Cloudflare, ensuring reliable performance and security. Security posture is generally good with HTTPS enabled and domain transfer protections in place; however, the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is currently weak due to missing privacy and cookie policies, which poses a risk for GDPR and other regulations. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

P

Partage des eaux

partagedeseaux.info

47

Partage des eaux is a French-language non-profit informational website focused on water management, sustainability, and environmental issues. The site operated actively from 2010 to 2020, publishing analyses and resources, and now serves as an archive with new content redirected to the Ritimo network. The website uses the SPIP CMS platform with standard web technologies and integrates Google Analytics and Google Tag Manager for tracking. While the site is well-structured and content-rich, it lacks explicit privacy and cookie policies and does not display security headers, which are areas for improvement. WHOIS data is unavailable due to TLD restrictions, but the domain appears legitimate and privacy protection is justified given the site's nature. Overall, the site is a valuable resource with moderate technical and security maturity.

O

OnlineStar

onlinestar.cz

54

OnlineStar is a Czech-based technology company offering a suite of AI-powered digital marketing tools designed to enhance local SEO, reputation management, social media management, and website development. Launched in 2021 as a new brand under the experienced Mediatel group, OnlineStar targets small and medium businesses seeking to automate and optimize their marketing efforts through innovative AI solutions. Their platform includes AI chat assistants, local data management, review monitoring, social media content planning, and comprehensive reporting tools. The company maintains a professional web presence with consistent branding and active social media engagement.

C

Centrum vzdělávání, informací a kultury p. o.

cvik.info

45

Centrum vzdělávání, informací a kultury Český Brod is a local public institution combining educational, informational, and cultural services including a municipal library, information center, and cultural house. The website serves as a portal for event calendars, ticket sales, photo galleries, and official communications targeting the local Czech community. The business model is focused on community engagement and cultural enrichment rather than commercial activities. Technically, the website employs a modern frontend stack with Bootstrap, jQuery, FontAwesome, and other libraries, ensuring a responsive and user-friendly experience. Google Tag Manager is used for analytics and marketing tracking, with a cookie consent mechanism implemented to comply with GDPR requirements. The site is well-structured with clear navigation and accessible contact options. From a security perspective, the site uses HTTPS and has implemented cookie consent controls, but lacks visible HTTP security headers and explicit security or incident response policies. The WHOIS data is incomplete and malformed, which reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with a public cultural institution. Overall, the website is functional, professional, and trustworthy for its intended audience, but improvements in security headers, WHOIS transparency, and explicit security policies would enhance its security posture and compliance.

Orbisius is a small technology company specializing in WordPress development services, custom plugin development, and SaaS applications. The website positions itself as a niche provider targeting WordPress users and businesses seeking tailored digital solutions. The business has been established since 2012, with a consistent domain registration and a professional online presence. Technically, the website is built on WordPress CMS using popular plugins and themes, integrating Google APIs and live chat for user engagement. SEO optimization is evident through the use of Yoast SEO and structured data. However, the website lacks explicit privacy and cookie policies, security headers, and incident response information, which are critical for compliance and trust. The domain is registered transparently without privacy protection, indicating legitimacy. Overall, the site demonstrates moderate technical maturity and business credibility but requires improvements in privacy compliance and security posture.

E

Elephant Orchestra, a.s.

pujcky.cz

63

Pujcky.cz is a Czech Republic-based loan comparison platform operated by Elephant Orchestra, a.s. The website aggregates loan offers from various bank and non-bank lenders, providing consumers with an easy way to compare and apply for loans. The platform leverages affiliate partnerships to redirect users to loan providers, facilitating lead generation. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Facebook Pixel for tracking and marketing purposes. The site is mobile-optimized and includes accessibility features, though lacks visible security headers and comprehensive privacy documentation. Security posture is moderate with HTTPS usage but missing advanced headers and incident response contacts. The absence of WHOIS data limits domain trust assessment, but the business appears legitimate based on content and partner links. Strategic improvements include publishing clear privacy and terms policies, enhancing security headers, and adding vulnerability disclosure mechanisms.

E

Elephant Orchestra s.r.o.

uspory.cz

67

Úspory.cz is a Czech financial comparison portal operated by Elephant Orchestra s.r.o., part of the Srovnejto.cz group. The website offers comprehensive comparison services for loans, insurance, mortgages, energy providers, and mobile tariffs, targeting Czech consumers seeking to save money and time. The platform is well-established with over 1.5 million households served since 2010, indicating a strong market presence. Technically, the site uses a modern JavaScript stack with analytics and marketing tools integrated, including Google Analytics, Facebook Pixel, Hotjar, and Inspectlet, all managed with user consent mechanisms. Security is robust with HTTPS and 256-bit SSL encryption, though some security headers are missing. Privacy and cookie policies are comprehensive and GDPR compliant. However, WHOIS data is unavailable, limiting domain registration trust verification. Overall, the site is professional, trustworthy, and safe for general audiences.

P

PROFI CREDIT Czech, a. s.

proficredit.cz

53

PROFI CREDIT Czech, a. s. is a well-established financial services company based in the Czech Republic, specializing in non-bank insured loans up to 250,000 CZK. The company targets individuals and small business clients seeking flexible loan options with insurance for repayment capability. With a domain age dating back to 2006, PROFI CREDIT has a solid market presence and a good reputation, supported by positive customer ratings and professional branding. The website reflects a mature digital infrastructure built on WordPress, integrating modern tools such as Cookiebot for privacy compliance, Google Tag Manager, Hotjar for analytics, and a chat system for customer support. The site is mobile-optimized and SEO-friendly, providing a good user experience.

ePojisteni.cz is an established online insurance platform based in the Czech Republic, specializing in vehicle liability insurance and travel insurance. The company targets Czech vehicle owners and travelers seeking affordable and convenient insurance solutions. The website demonstrates a professional and consistent brand presence with a clear focus on its core services. Technically, the site leverages modern frontend frameworks such as Nuxt.js and Vue.js, and integrates common marketing and analytics tools like Google Tag Manager and Cookiebot, ensuring a moderate level of digital maturity. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policies and incident response contacts, which could be improved to enhance trust and compliance. Overall, the site is accessible, well-structured, and compliant with GDPR, but the absence of WHOIS data limits full domain trust assessment.

S

Superprof

superprof.fr

58

Superprof is a leading French online platform that connects students with private tutors across a wide range of subjects, offering both in-person and online lessons. The website is professionally designed, mobile-optimized, and provides comprehensive content including tutor profiles, reviews, and educational resources. The platform targets learners in France and positions itself as a major player in the private tutoring market. Technically, the website employs modern web technologies such as Vue.js, integrates multiple analytics and advertising tools including TikTok Analytics, Bing Ads, and Google Tag Manager, and uses security measures like HTTPS and Google reCAPTCHA to protect against bots. The site demonstrates good SEO and accessibility practices, ensuring a positive user experience. From a security perspective, the site has a solid posture with appropriate security headers and encrypted connections. However, it lacks explicit security policies and incident response contact information, which could be improved to enhance transparency and trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the professional web presence and social media links support its credibility. Overall, Superprof presents a trustworthy and well-maintained educational service platform with room for improvement in security transparency and domain registration visibility.

Elephant Orchestra, a.s. is a Czech Republic-based digital marketing company specializing in lead generation, email marketing, mobile marketing, telemarketing, affiliate programs, and discount portals. With over 12 years of market presence and recognition such as Deloitte's Technology Fast 50 CE Rising Star in 2011, the company serves a broad range of business clients aiming to enhance their online customer acquisition and marketing effectiveness. The company operates multiple projects and is part of the Klik.cz & ePojisteni.cz s.r.o group, indicating a strong partnership ecosystem. Technically, the website employs a modern technology stack including Google Analytics, Google Tag Manager, Bootstrap, and various JavaScript libraries for UI and performance enhancements. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. However, some security headers are missing, and WHOIS data is unavailable, which raises concerns about domain registration transparency. Security posture is moderate with HTTPS enabled and no visible vulnerabilities in the content. Privacy compliance is good with clear policies and consent banners. The absence of WHOIS registration data is a notable risk factor, but the website content and business information suggest legitimacy. Overall, the site is professional and trustworthy but would benefit from improved security headers and domain registration transparency. Strategic recommendations include enhancing security headers, conducting regular security audits of third-party scripts, improving accessibility, and verifying domain registration details to strengthen trust and compliance.

M

Medaprex, s.r.o.

medaprex.cz

58

The website www.annabrandejs.cz operates as a professional e-commerce platform specializing in cosmetic and health products, particularly focused on anti-aging, skincare, and hair care solutions. The business has a strong market presence in the Czech Republic with over two decades of experience, positioning itself as a trusted distributor of multiple well-known brands. The site offers a comprehensive product catalog, customer support via online chat, and clear contact information, enhancing customer trust and engagement. Technically, the website is built using modern web technologies including React and Google Tag Manager, with good mobile optimization and SEO practices. The site enforces HTTPS and includes cookie consent mechanisms, reflecting a good level of privacy compliance. However, some security headers are not explicitly detected, and no dedicated security or incident response pages are found, indicating room for improvement in security posture. From a security perspective, the site shows no signs of blocking or WAF interference, and no vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data reduces the domain trustworthiness score, but the professional presentation and verified customer reviews mitigate some concerns. Overall, the website demonstrates a solid security and privacy foundation suitable for its business model. Strategically, the company should focus on enhancing transparency by publishing explicit security policies and incident response procedures, improving WHOIS data availability, and implementing additional security headers. These steps will strengthen customer confidence and regulatory compliance, supporting sustainable growth in the competitive e-commerce cosmetics market.

L

Matmut Stadium : Le stade mythique au coeur de Lyon | Lyon events

louevents.fr

64

The website www.gl-lyonevents.com presents information about the Matmut Stadium, a historic and iconic stadium located in Lyon, France. The site appears to serve as an event and venue information platform, targeting visitors and event organizers interested in the stadium and related events. The business model is focused on event promotion and providing venue details, catering primarily to a general audience interested in sports and cultural events in Lyon. The website is built on Drupal 10, leveraging modern web technologies such as lazy loading for images, Matomo for analytics, and Google Tag Manager for marketing. The site is mobile optimized and includes accessibility features, contributing to a good user experience and SEO optimization. However, the absence of visible privacy policies, terms of service, and contact information limits the site's transparency and trustworthiness. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks visible security headers and detailed security policies. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about the legitimacy and ownership of the domain. Overall, the website is functional and professionally designed but would benefit from improved transparency and security practices to enhance trust and compliance.

V

Vorwerk

vorwerk.de

73

Vorwerk is a well-established German company specializing in premium household appliances, notably the Thermomix® kitchen appliance and Kobold vacuum cleaners. The website reflects a strong market position with comprehensive product offerings, customer engagement through product demonstrations, and a dedicated recipe portal. The brand targets consumers seeking innovative and high-quality home appliances. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries and analytics tools such as Google Tag Manager and Adobe Helix RUM. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not publicly disclosed. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the website demonstrates a mature digital presence with strong branding and trust indicators, though WHOIS data is unavailable, which slightly limits domain registration trust analysis.

V

Vorwerk

thermomix.de

73

Vorwerk is a well-established company specializing in kitchen appliances, prominently featuring the Thermomix product line. The website demonstrates a mature digital presence with a professional design, clear navigation, and integration of modern web technologies such as Adobe Experience Manager and Google Tag Manager. The content is focused on product sales, demonstrations, and customer engagement through recipe portals and accessories. Security posture is moderate with HTTPS usage and no visible vulnerabilities, though explicit security headers and privacy policies are not clearly presented on the analyzed page. The absence of WHOIS data limits domain trust verification but the website's branding and content quality suggest legitimacy. Strategic recommendations include enhancing privacy compliance, adding clear contact and security policies, and improving security headers to strengthen trust and compliance.

L

Léo Chiron

leochiron.fr

57

Léo Chiron is a freelance full-stack web developer and webmaster based in France, with over 8 years of experience. The website serves as a professional portfolio showcasing his expertise in web development, SEO, WordPress, and site maintenance. The business targets clients needing custom website creation, e-commerce platforms, and ongoing site support. Technically, the site uses a modern tech stack including PHP, JavaScript, SQL Server, and integrates Google services such as Maps, reCAPTCHA, and Tag Manager. The hosting is provided by o2switch, a French hosting provider. Security posture is solid with HTTPS and reCAPTCHA protection on forms, but lacks explicit security headers and published privacy or cookie policies, which are compliance gaps. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

V

Vorwerk UK

vorwerkcommunitystars.com

64

Vorwerk Community Stars is a dedicated online platform designed to engage Thermomix customers and culinary enthusiasts through a global community program. The website facilitates recipe sharing, product testing, and community challenges, fostering brand loyalty and customer interaction. It targets passionate Thermomix users primarily in the UK and several European countries, leveraging a niche community model to enhance customer experience and product feedback. Technically, the website is built on the Telligent Community platform, utilizing jQuery and Google Tag Manager for analytics and user interaction. The site is mobile-optimized with a moderate performance profile and basic accessibility features. Hosting and domain registration are consistent with the brand's UK presence, though DNSSEC is not enabled, representing a minor security improvement opportunity. From a security perspective, the site enforces HTTPS and employs domain transfer protections. However, it lacks visible security policies and incident response contacts, which could be enhanced to improve transparency and trust. Privacy compliance is well addressed with clear cookie consent mechanisms and privacy policies aligned with GDPR requirements. Overall, the website presents a professional, trustworthy, and user-friendly experience for its target audience. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing security headers to strengthen the security posture further.

KPMG Business Institute, operated by KPMG Česká republika, s.r.o., is a professional educational platform specializing in finance, accounting, compliance, and management training. The website offers a broad catalog of courses targeting professionals and companies in the Czech Republic, leveraging the strong global KPMG brand. The business model focuses on B2B and B2C training services with a well-established market position supported by client testimonials and ACCA accreditation. Technically, the website employs modern JavaScript libraries such as jQuery and Owl Carousel, integrates Google Tag Manager and Google Analytics for tracking, and uses HTTPS with good SSL configuration. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be improved. No CMS or hosting provider details are explicitly detected. From a security perspective, the site enforces HTTPS and uses secure form submissions but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanism, and GDPR alignment. Overall, the website presents a low-risk profile with strong business credibility and professional content. Recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

A

Association On passe à l'acte

onpassealacte.fr

47

On passe à l'acte is a French non-profit media platform dedicated to showcasing positive social and environmental initiatives through documentaries, interviews, and educational content. Founded in 2010, it operates with a cooperative business model and relies on donations and community support. The website targets a general audience interested in social innovation and sustainability. Technically, the site uses modern web technologies including the Foundation CSS framework, jQuery, and integrates Google Analytics and Facebook Pixel for tracking. Hosting is provided by Infomaniak Network SA, a reputable Swiss provider. Security posture is moderate with HTTPS enforced but lacks some recommended security headers and explicit privacy compliance mechanisms such as cookie consent banners. The WHOIS data is transparent and consistent with the business profile, indicating legitimacy. Overall, the website is professional, content-rich, and trustworthy but could improve in privacy compliance and security best practices.

C

Commerce Équitable France

commercequitable.org

59

Commerce Équitable France is a French non-profit collective representing actors in the fair trade sector. The organization focuses on advocacy, education, campaigns, and member services to promote fair trade practices nationally. The website is well-structured, professionally designed, and targets both fair trade stakeholders and the general public interested in ethical commerce. The digital infrastructure is based on WordPress with modern plugins and analytics tools, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies. However, some security headers are missing and WHOIS data is privacy-protected, which slightly reduces transparency. Overall, the website is trustworthy and professionally maintained, supporting the organization's mission effectively.

T

Terre de Liens

terredeliens.org

63

Terre de Liens is a well-established French non-profit organization dedicated to preserving agricultural land and supporting sustainable farming practices. The organization operates through a network of associations, an investment solidarity enterprise, and a public utility foundation. Their website reflects a mature digital presence with good content quality, clear navigation, and a focus on community engagement and transparency. Technically, the site uses modern JavaScript frameworks and analytics tools, hosted under reputable providers with HTTPS enabled. However, explicit privacy policies and terms of service are not readily found, and security headers are not visibly implemented, indicating areas for improvement in compliance and security posture. Overall, the domain registration data supports the legitimacy and trustworthiness of the organization.

M

mairie-me

mairie-me.org

64

The website mairie-me.org appears to be a community engagement platform aimed at inhabitants of a commune or municipality, encouraging them to propose ideas and act collectively to improve local living conditions. The business model focuses on local governance participation, targeting residents as the primary audience. The website is built on the Bubble.io platform, utilizing modern JavaScript libraries and Google Fonts, with hosting provided by OVH sas. The technical infrastructure is moderate in performance and basic in mobile optimization and accessibility. Security posture is basic with HTTPS enabled and a cookie consent mechanism in place, but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. The WHOIS data raises concerns due to a domain creation date set in the future, which questions the legitimacy and operational status of the domain. Overall, the website content is safe and suitable for a general audience with no adult or explicit content detected.

Edisun Power Europe AG is a Swiss-based publicly listed company specializing in the financing and operation of solar power plants across Europe. Established in 1997, it has grown to become a pioneer in medium to large-scale photovoltaic projects, contributing significantly to the renewable energy sector and the energy transition. The company targets investors and stakeholders interested in sustainable energy solutions, leveraging its broad European presence and expertise. Technically, the website is built on Concrete CMS with modern frontend technologies such as Vue.js and Bootstrap, providing a good user experience with mobile optimization and basic accessibility features. The site employs Google Tag Manager for analytics and includes a GDPR-compliant cookie consent mechanism. Security-wise, the website enforces HTTPS and uses cookie consent but lacks explicit security headers and detailed security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the business information and public listing support its credibility. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and clearer domain registration transparency.

V

Vendée Energie

vendee-energie.fr

44

Vendée Energie is a medium-sized Société d'Economie Mixte (SEM) operating in the renewable energy sector in France, specifically in the Vendée region. The company focuses on producing and distributing renewable energies such as wind, photovoltaic, methanisation, green hydrogen, and BioGNV, serving local communities, economic actors, and transport companies. The website reflects a professional and consistent brand presence with clear business information and contact details. Technically, the site uses a modern tech stack including jQuery, Google Tag Manager, and Google Analytics, hosted by OVH, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or malicious content.

Groupe Sorégies is a French energy company focused on accelerating the energy transition through renewable energy production, distribution, supply, and clean mobility services. The company operates primarily in France with a strong regional presence and a diversified portfolio including subsidiaries specializing in electricity and gas distribution, renewable energy aggregation, and innovative mobility solutions. The website demonstrates a mature digital infrastructure built on WordPress with React components and SEO optimization, reflecting a professional and modern online presence. Security posture is adequate with HTTPS and no visible critical vulnerabilities, though improvements in security headers and explicit privacy policies are recommended. Overall, the site is trustworthy and well-aligned with the company's business objectives, though privacy compliance could be enhanced.

E

Emmaüs

label-emmaus.co

62

Label Emmaüs is an ethical and solidarity-driven e-commerce platform affiliated with the Emmaüs association in France. The website offers a variety of second-hand and vintage products including clothing, books, vinyls, reconditioned smartphones, and artisan goods, targeting consumers interested in responsible consumption and social causes. The platform positions itself as a militant e-shop, emphasizing sustainability and social impact. Technically, the site employs modern JavaScript frameworks such as Alpine.js and HTMX, along with Tailwind CSS for styling, and integrates advanced monitoring and analytics tools like New Relic and Klaviyo. The website is well-optimized for mobile devices and includes comprehensive privacy and cookie policies with active consent management, reflecting good GDPR compliance. Security-wise, the site uses HTTPS with appropriate security headers and content security policies, though it lacks a publicly available security policy or incident response information. Overall, the domain registration data aligns with the website's claims, supporting its legitimacy and trustworthiness.

Krmivo-pes.cz is a Czech Republic based e-commerce platform specializing in pet food and supplies for a wide range of animals including dogs, cats, horses, and exotic pets. The business operates under Servis.com, s.r.o., with a domain age consistent with its claimed operational history since 2010. The website offers a comprehensive product catalog, customer reviews, and multiple purchasing options including home delivery and in-store pickup. The site is well-branded and provides clear contact information, enhancing customer trust. Technically, the website employs common web technologies such as jQuery, Google Analytics, and Google Tag Manager, with DNS hosted via Cloudflare. The site is mobile-optimized and structured with SEO best practices including JSON-LD structured data. However, the CMS appears custom or proprietary, and no advanced frameworks are detected. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and explicit security or incident response policies. Privacy compliance is partial, with terms and conditions present but no dedicated privacy or cookie policy or consent mechanism. Customer trust is supported by verified reviews and a certification from Ověřeno zákazníky. Overall, the security posture is adequate but could be enhanced with better privacy and security disclosures. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy compliance, security headers, and incident response transparency would strengthen the site's security and regulatory posture, supporting continued business growth and customer confidence.

Technimax is a Czech-based e-commerce company specializing in the sale of refurbished IT hardware, primarily Dell and HP computers, notebooks, monitors, printers, and servers. The company targets small and medium-sized businesses seeking high-quality, cost-effective IT solutions with extended warranty options up to five years. Their website demonstrates a professional and well-structured online presence with detailed product categorization and clear contact information, supporting their market position as a specialist in refurbished IT equipment in the Czech Republic. Technimax emphasizes quality assurance with an A+ grading system for their products and offers professional servicing and rapid complaint handling.

L

LGC s.r.o.

lgshop.cz

65

LGshop.cz is an authorized e-commerce retailer specializing in LG electronics and home appliances, primarily serving the Czech Republic market. The website offers a broad catalog of LG products including TVs, audio systems, home appliances, and accessories, with a focus on express delivery and customer service. The company behind the site is LGC s.r.o., indicating a medium-sized retail operation with a clear brand alignment to LG. Technically, the website employs modern web technologies such as jQuery, Google Tag Manager, Microsoft Clarity, and CookieHub for analytics, marketing, and compliance. The site is well-structured with good SEO practices and mobile optimization, providing a positive user experience.

O

Online-textil.cz

online-textil.cz

60

Online-textil.cz is a well-established Czech e-commerce platform specializing in promotional textiles, including branded clothing such as t-shirts, polos, hoodies, and workwear. Founded in 2012, it serves both B2B and individual customers primarily in the Czech Republic and the broader EU market. The website offers a broad product catalog with detailed categories and supports bulk orders with custom printing and embroidery services. The company positions itself as one of the largest players in the Czech promotional textile market, emphasizing fast delivery and extensive stock availability. Technically, the website employs modern web technologies including jQuery, Owl Carousel, Google Tag Manager, and a cookie consent solution from cookie-script.com. It uses Cloudflare DNS services and enforces HTTPS, ensuring secure connections. The site is mobile-optimized with good navigation and SEO practices, though it appears to be custom-built without a common CMS. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site benefits from HTTPS and standard security practices but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service pages. Contact information is clearly provided, enhancing business credibility. Overall, Online-textil.cz presents a professional and trustworthy e-commerce presence with a solid market position. To enhance trust and compliance, it should publish comprehensive privacy and terms of service documents and improve transparency around security policies and incident response.

A

Auto Hotárek s.r.o.

autohotarek.cz

59

Auto Hotárek s.r.o. operates a specialized e-commerce platform and physical retail stores in the Czech Republic, focusing on automotive accessories and parts. The company targets vehicle owners seeking tailored and universal car accessories, offering a broad product catalog and expert services. Their market position is that of a trusted specialist with a strong local presence, supported by recognized certifications such as the Heureka Shop of the Year awards. Technically, the website employs modern JavaScript frameworks and integrates multiple marketing and analytics tools, including Google Tag Manager, Facebook SDK, and Adform, hosted behind Cloudflare infrastructure. The site is mobile-optimized with good SEO and accessibility features. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is addressed with cookie consent and detailed privacy policies, supporting GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security headers, publishing explicit security policies, and monitoring domain registration status to ensure continued legitimacy.

G

Goldea.cz

goldea.cz

59

Goldea.cz is a Czech-based e-commerce retailer specializing in high-quality home textiles including bedding, curtains, towels, and table linens. The company emphasizes Czech craftsmanship, custom tailoring, and natural materials, positioning itself as a trusted brand with a strong customer satisfaction record. Founded in 2016 and operated by MIONET s. r. o., Goldea.cz serves primarily the Czech market with localized content and regional language support. The website is professionally designed with excellent content quality and user experience, supporting clear navigation and mobile responsiveness. Technically, the site employs modern JavaScript frameworks and integrates multiple analytics and marketing tools with a compliant cookie consent mechanism. Security posture is good with HTTPS and error monitoring, though some HTTP security headers and explicit security policies are absent. The WHOIS data for the domain is unavailable, which reduces trustworthiness from a domain registration perspective but does not detract from the professional presentation and business legitimacy evident on the site. Overall, Goldea.cz is a well-established retail platform with solid digital maturity and privacy compliance, though domain registration transparency should be improved.

I

ICC NTA, LLC

icc-nta.org

58

ICC NTA, LLC operates as a specialized third-party service provider focusing on building product safety, certification, plan review, and off-site construction services. As a subsidiary of the International Code Council, it holds a strong market position within the building and construction industry, offering accredited testing and inspection services to manufacturers and regulatory bodies. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and performance optimizations to serve its target audience effectively. Security posture is robust with HTTPS and security headers implemented, though privacy compliance could be enhanced by adding explicit cookie consent mechanisms and security policies. Overall, ICC NTA demonstrates a mature digital infrastructure aligned with its business objectives and industry standards.

Odoo.sh is the official cloud platform for hosting and developing Odoo ERP applications, offering a comprehensive PaaS and IaaS solution tightly integrated with GitHub. The platform targets developers and businesses seeking streamlined deployment, staging, and production environments with automated testing and backup capabilities. The website demonstrates a high level of professionalism with excellent design, clear navigation, and consistent branding aligned with the Odoo ecosystem. Technically, the site leverages modern web technologies including the Odoo framework, Bootstrap, and integrates Google Analytics and Tag Manager for user insights. Security posture is solid with HTTPS and CSRF protections, though it lacks explicit security headers and detailed privacy or cookie policies, which are areas for improvement. WHOIS data is unavailable due to privacy protection, which is typical for commercial SaaS platforms and does not detract from the site's legitimacy. Overall, the site is trustworthy, well-structured, and serves its target audience effectively.

F

FAIR

finance-fair.org

64

FAIR is a French non-profit collective dedicated to promoting social impact finance through education, certification (Finansol label), and community engagement. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. It integrates multiple analytics tools including Matomo, Google Tag Manager, and Microsoft Clarity, alongside a robust cookie consent mechanism. Security posture is good with HTTPS enforced, though some security headers and policies could be improved. WHOIS data is unavailable, but the website's content and social presence strongly indicate legitimacy. Overall, FAIR presents a trustworthy and authoritative resource in the social finance sector.

R

REScoop.eu

rescoop.eu

42

REScoop.eu is a well-established European federation representing over 2,500 energy communities and 2 million citizens engaged in the energy transition. The organization operates primarily in the energy sector, focusing on cooperative principles and community-driven renewable energy projects. Their services include project support, networking, training, advocacy, financing, and coaching, positioning them as a key player in the European community energy landscape. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to their audience. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Mailchimp for newsletter management and Google Tag Manager for analytics. The site demonstrates good performance and accessibility standards, though explicit CMS or hosting details are not disclosed. Privacy compliance is robust with clear privacy and cookie policies and an active consent mechanism. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is unavailable due to privacy protection, which is common and justified for a non-profit federation in Europe. Overall, the site presents a low risk profile with a strong trustworthiness rating. Strategically, REScoop.eu should consider enhancing their security posture by publishing security policies, implementing security headers, and providing vulnerability disclosure information to further build trust and compliance. Continued focus on privacy and transparent data practices will support their community-oriented mission and regulatory adherence.

S

SNS Security

sns-security.fr

76

SNS Security is a French cybersecurity service company established in 2002, specializing in providing technical and technological security solutions. The company targets businesses and organizations seeking cybersecurity expertise and positions itself as a recognized service provider with solid technical know-how. The website is professionally designed, primarily in French, and offers clear information about the company's services and privacy practices. Technically, the site runs on WordPress with integrations such as Google Tag Manager, Cookiebot for cookie consent management, and HubSpot for marketing and analytics, indicating a mature digital infrastructure. Security-wise, the website enforces HTTPS, uses secure cookies, and implements a comprehensive cookie consent mechanism, although it lacks explicit security policy and incident response contact information. Overall, the site demonstrates good security hygiene and privacy compliance but could improve transparency by publishing terms of service and security policies. The domain's WHOIS data confirms a long-standing registration consistent with the company's business claims, enhancing trustworthiness.

K

KPMG Česká republika, s.r.o.

kpmg-eventy.cz

60

KPMG Česká republika, s.r.o. operates a professional website dedicated to conferences, seminars, and training events primarily in finance, tax, law, and HR sectors. The site serves as an event portal for KPMG's Czech branch, a subsidiary of the global KPMG International Limited. The business model focuses on professional services and educational offerings targeting corporate clients and professionals in the Czech Republic. The website content is well-structured, professionally branded, and provides clear event information and links to related KPMG resources. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Google Tag Manager, and LinkedIn Insight Tag, alongside a cookie consent management system ensuring GDPR compliance. The site is mobile-optimized with good SEO practices and moderate performance. However, no CMS or hosting provider details are explicitly detectable. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is due to CZ domain registry privacy policies and does not detract from the site's legitimacy. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements include enhancing security headers, publishing incident response contacts, and improving accessibility features to further strengthen the security posture and user trust.