Security Directory

M

M6 Unlimited

m6pub.fr

59

M6 Unlimited is a prominent French multimedia advertising agency specializing in TV, radio, and digital advertising. As part of the Groupe M6, it offers integrated advertising solutions including an online platform (My6) for purchasing ad spaces. The website reflects a mature, professional business with a strong market position in the French media advertising sector. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Tag Manager, Matomo, and Hotjar, ensuring good digital maturity and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is well-designed, accessible, and compliant with GDPR regulations, supporting a high level of trust and professionalism.

M

M6

m6.fr

68

M6.fr is the official website of the French media group M6, offering a comprehensive streaming and replay platform for TV shows, series, cinema, and podcasts. The site targets a broad general audience interested in entertainment content and operates as a major player in the French media landscape. The platform integrates modern web technologies including React and advanced monitoring tools such as New Relic, ensuring a performant and responsive user experience across devices. Privacy compliance is robust, with GDPR-aligned cookie consent managed via Didomi, reflecting a mature approach to user data protection. Security posture is strong with HTTPS enforcement and content security policies, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity suitable for a large media enterprise.

P

Porn Inspector Review — Guiding you to worthy porn

porninspector.com

59

PornInspector.com is an adult content review website specializing in providing detailed and impartial reviews of pornographic websites, including sample videos, galleries, and user opinions. The site targets an adult audience seeking trustworthy guidance in the chaotic online erotica market. It operates primarily as a content review and affiliate referral platform, offering discounts and curated recommendations. Technically, the site uses standard web technologies including Google Analytics, Google Tag Manager, AddThis social sharing, and Twitter widgets. The site is accessible, loads quickly, and has a basic mobile optimization level. Security posture is moderate with HTTPS enabled but lacks important security headers and explicit incident response or security policies. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism or GDPR indicators. Business credibility is limited by the absence of WHOIS registration data and lack of visible contact information, which reduces trustworthiness despite professional content presentation.

R

remspace

remspace.cz

52

remspace.cz is a professional Czech online magazine and communication platform focused on the real estate and construction sectors. It provides industry news, articles, and organizes conferences and discussion events, targeting professionals and stakeholders in urban planning, development, and real estate markets. The website is well-branded, content-rich, and maintains a consistent presence with partners and social media channels. Technically, the site is built on WordPress with modern performance optimizations and uses Google Tag Manager for analytics. Security posture is good with HTTPS and cookie consent mechanisms, though some HTTP security headers are missing. WHOIS data is unavailable, which slightly impacts trust but the overall professional presentation supports legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant.

S

Sunzil

sunzil.com

49

Sunzil is a well-established company specializing in photovoltaic solar energy solutions, with a 40-year presence in French overseas territories. The company develops, constructs, and operates solar power plants for both residential and professional clients, offering turnkey solutions and consulting services. The website reflects a mature digital presence with comprehensive content, customer testimonials, and recognized certifications such as ISO 9001 and ISO 14001, reinforcing its market credibility. Technically, the website is built on WordPress with WooCommerce and Gravity Forms, leveraging modern JavaScript libraries and analytics tools including Google Analytics and Facebook Pixel. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms, indicating a good level of digital maturity and privacy awareness. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks explicit security policies and incident response information. Some JavaScript errors related to WooCommerce payment gateway dependencies were noted, which could affect user experience. The absence of WHOIS domain registration data raises concerns about domain legitimacy, although the website content and certifications suggest a legitimate business. Overall, Sunzil presents a professional and trustworthy online presence with room for improvement in security transparency and domain registration clarity.

P

PerPetum Energy

perpetum.be

10

PerPetum Energy is a renewable energy company specializing in electrical decarbonization solutions including photovoltaic energy, wind power, EV charging, energy storage, and flexibilization services. The company targets industrial consumers, developers, infrastructure owners, public entities, and communities aiming to reduce CO2 emissions. The website is built on WordPress with modern plugins and tracking tools, offering a professional and content-rich user experience. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly visible. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the website content and business presence appear credible and professional.

T

Technique Solaire

techniquesolaire.com

64

Technique Solaire is an established French company specializing in renewable energy production, particularly photovoltaic roof solutions. Founded in 2008, it holds a leadership position in the French solar energy market. The website reflects a professional and consistent brand image, targeting a general audience interested in sustainable energy solutions. The business model appears to serve both B2B and B2C segments with a focus on clean energy technologies. Technically, the website is built on WordPress with modern tools such as Yoast SEO, Swiper.js, and integrated marketing and analytics platforms including HubSpot, Google Tag Manager, and Matomo. Hosting is provided by OVH sas, a reputable provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement. From a security perspective, the site uses HTTPS and domain locking mechanisms, but lacks DNSSEC and some recommended security headers. Cookie consent is managed via Cookiebot, indicating awareness of privacy compliance, though no privacy policy or terms of service pages were detected. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website is trustworthy and professionally managed, with a solid business foundation. Strategic recommendations include publishing comprehensive privacy and terms policies, enabling DNSSEC, adding security headers, and providing clear incident response contacts to strengthen security posture and regulatory compliance.

B

BayWa r.e.

baywa-re.fr

68

BayWa r.e. is a well-established international renewable energy company specializing in solar, wind, bioenergy, and energy trading. The company operates globally with a strong presence in France, offering comprehensive services from project development to operation and maintenance. Their website reflects a professional and consistent brand image, targeting businesses and stakeholders in the energy sector. The business model focuses on renewable energy solutions and energy trading, positioning BayWa r.e. as a key player in the sustainable energy market. Technically, the website is built on modern frameworks such as Nuxt.js and Tailwind CSS, ensuring good performance, mobile optimization, and accessibility. The use of Google Tag Manager and CookieFirst indicates a mature approach to analytics and privacy compliance. Security measures including HTTPS and security headers are properly implemented, contributing to a strong security posture. While the WHOIS data is not publicly available, likely due to privacy protection, the website's professionalism and comprehensive policies suggest legitimacy. However, the absence of a public security policy or incident response page indicates areas for improvement. Overall, the site is secure, compliant with GDPR, and trustworthy, with recommendations to enhance transparency around security and incident handling.

S

Solora

solora.fr

51

Solora is a renewable energy company specializing in the installation and maintenance of photovoltaic solar power plants for businesses, primarily operating in France and Belgium. Their services include photovoltaic installations, battery storage solutions, electric vehicle charging stations, and professional maintenance and supervision. The company positions itself as a market leader in Belgium for photovoltaic maintenance, targeting businesses aiming to transition to 100% renewable energy. The website is professionally designed, content-rich, and compliant with GDPR regulations, featuring clear service offerings and client references. Technically, the site is built on WordPress with the Divi theme, utilizing modern libraries and tracking tools such as Google Tag Manager and reCAPTCHA. Security posture is good with HTTPS enforced and security headers present, though there is room for improvement in publishing explicit security policies and incident response information. The absence of WHOIS data reduces domain trustworthiness and is a notable gap. Overall, the site presents a credible business front with moderate technical maturity and privacy compliance, but would benefit from enhanced transparency in domain registration and security disclosures.

I

IRISOLARIS : Promoteur de la transition énergétique

irisolaris.com

63

IRISOLARIS is a French company specializing in photovoltaic and renewable energy solutions, positioning itself as a major player in France's energy transition sector. The website reflects a mature business with a domain registered since 2008, consistent with its market presence. The company focuses on promoting renewable energy projects, particularly solar energy, targeting a general audience interested in sustainable energy solutions. Technically, the website is built on WordPress with modern plugins and integrates multiple analytics and marketing tools such as Google Analytics, Google Ads, Facebook Pixel, and HubSpot, indicating a digitally mature infrastructure. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features.

Y

YUMA FR

yuma.fr

65

YUMA FR is a French e-commerce company specializing in high-quality solar energy kits and plug & play solar panels. Founded in 2021, it operates a professionally designed Shopify store targeting residential and professional customers interested in renewable energy solutions. The website demonstrates a mature digital presence with integrated marketing and analytics tools, including Google Tag Manager, Klaviyo, and Analyzify, supported by a cookie consent mechanism ensuring GDPR compliance. Trust indicators such as Trustpilot reviews and secure payment logos enhance customer confidence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, YUMA FR presents a credible and trustworthy business with a solid technical infrastructure and good privacy practices.

G

GIRASOLE ENERGIES - Producteur indépendant d'électricité photovoltaïque

girasole-energies.com

64

GIRASOLE ENERGIES is an independent photovoltaic electricity producer operating primarily in France, offering a range of solar energy solutions including rooftop installations, parking canopies, agricultural hangars, and ground-mounted solar power plants. The company targets diverse audiences such as farmers, local communities, industrial and tertiary sectors, and real estate developers. Founded in 2022, GIRASOLE ENERGIES positions itself as a key player in the renewable energy transition with a growing portfolio of projects and developments. Technically, the website is built on WordPress using Elementor and Divi popup plugins, integrating multiple marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted under the registrar IONOS SE with standard domain protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Security posture is moderate with HTTPS enabled but missing some best practices. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is professional and informative but would benefit from improved privacy and security practices to enhance trust and compliance.

S

Sunforwatt

sunforwatt.com

62

Sunforwatt is a French photovoltaic energy solutions provider specializing in serving agricultural, industrial, and tertiary sectors. Established since 2008, the company offers comprehensive services from technical and financial studies to installation, compliance, commissioning, and ongoing maintenance of photovoltaic systems. Their market position is that of an experienced niche player with a growing footprint in renewable energy projects for businesses. Technically, the website is built on Webflow with modern front-end technologies and integrates Google Tag Manager for analytics. The site is well designed, mobile-optimized, and provides clear navigation and relevant content. Security posture is moderate; HTTPS is implied but no explicit security headers were detected, and the contact form relies on a third-party service without visible advanced protections. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy in content but requires improvements in security and compliance transparency.

M

Moore Global

moore-global.com

71

Moore Global is a prominent international network of independent accounting and advisory firms, offering a broad range of professional services including audit, consulting, risk advisory, and tax services. With over 34,000 professionals across more than 228 firms in 112 countries, Moore Global positions itself as a major player in the global finance and advisory sector. The website reflects this stature with a professional design, comprehensive content, and strong branding consistency. Technically, the website is built on WordPress and leverages modern technologies such as jQuery, Yoast SEO, Google Tag Manager, and Hotjar for analytics and user experience enhancement. The site is well-optimized for SEO, mobile responsiveness, and accessibility, indicating a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site employs HTTPS with strong SSL configuration and includes multiple security headers, demonstrating adherence to best practices. However, there is no publicly available security policy or incident response information, which could be improved to enhance transparency and trust. The absence of WHOIS data is a notable anomaly, potentially indicating privacy protection or a recent domain registration, which slightly impacts the trust score. Overall, Moore Global's website presents a high level of professionalism and security maturity suitable for an enterprise-level financial services network. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further strengthen trust and compliance.

W

WS Interactive

ws-interactive.net

59

WS Interactive is a small, established web agency based in Toulouse, France, with 25 years of experience providing tailored web development, mobile app creation, SEO, UX/UI design, and digital marketing services. The company targets businesses seeking professional digital solutions and positions itself as a high-quality service provider in the local market. Technically, the website is built on WordPress with modern JavaScript libraries and includes analytics and optimization tools, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses CAPTCHA on contact forms, and implements cookie consent with Google Consent Mode, but lacks explicit security policies and incident response information. The absence of WHOIS domain registration data reduces trust in domain legitimacy, though the website content and branding are professional and consistent. Overall, the site scores well on content quality, technical implementation, and security posture, with room for improvement in business credibility and transparency.

C

Coodoeil

coodoeil.fr

45

Coodoeil.fr is a French-language free and independent web directory established since 2005, offering categorized listings of websites across multiple sectors with geolocation features and SEO-focused natural referencing. The site targets French-speaking users seeking a comprehensive directory of businesses and services. Technically, the website uses common web technologies including jQuery, Google Tag Manager, Google Adsense, and Didomi for cookie consent management. The site is moderately optimized for performance and mobile use, with good SEO practices evident in metadata and structured content. Security-wise, HTTPS is enforced, and cookie consent mechanisms are in place, but explicit security headers and a privacy policy page are missing, which are recommended for enhanced compliance and trust. The WHOIS data is unavailable, which limits domain registration trust assessment, but the website content and technical setup appear legitimate and professional. Overall, the site is safe for general audiences and does not contain adult or explicit content.

G

Gérontopôle Autonomie Longévité des Pays de la Loire

gerontopole-paysdelaloire.fr

57

The Gérontopôle Autonomie Longévité des Pays de la Loire is a regional non-profit organization dedicated to improving the quality of life for elderly people in the Pays de la Loire region of France. It acts as a network of stakeholders focused on aging well, offering services such as training, research, economic development in the silver economy, and support for territorial policies. The website is professionally designed using Drupal CMS and integrates modern technologies including Google Analytics, Google Tag Manager, and reCAPTCHA for security. Privacy and cookie consent mechanisms are well implemented, reflecting GDPR compliance. However, the absence of WHOIS data raises concerns about domain registration status, which should be verified to ensure legitimacy. Security posture is generally good with HTTPS and secure forms, but could be improved by adding security headers and publishing incident response policies. Overall, the site presents a trustworthy and professional digital presence for a specialized healthcare non-profit.

L

Le Comptoir des Solutions

comptoirdessolutions.org

47

Le Comptoir des Solutions is a French non-profit association dedicated to cataloging and promoting innovations that assist people with disabilities. The organization operates a free and accessible web platform that regularly updates with new innovations, news, and interviews related to disability support technologies and solutions. Their target audience includes individuals with disabilities, caregivers, professionals, and partner organizations. The platform is supported by notable partners such as Crédit Agricole, Microsoft, and IFP Energies nouvelles, enhancing its credibility within the niche market of disability innovation. Technically, the website is built on WordPress and leverages modern web technologies including Bootstrap for responsive design, Swiper.js for interactive sliders, and multiple analytics tools such as Google Analytics, Google Tag Manager, and Plausible Analytics. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience and effective content delivery. From a security perspective, the site enforces HTTPS and uses secure forms for data collection. However, it lacks several recommended security headers and does not provide a cookie consent mechanism, which may impact GDPR compliance. The absence of WHOIS data limits domain trust analysis, but the presence of partner endorsements and consistent branding supports legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for its mission, with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing security headers, adding cookie consent, publishing a security policy, and establishing a vulnerability disclosure process to enhance trust and compliance.

L

La Cantine X La French Tech Nantes

lacantine.co

50

La Cantine X La French Tech Nantes is a well-established non-profit association founded in 2008, focused on fostering innovation and entrepreneurship within the Nantes tech ecosystem. The organization provides a comprehensive range of services including networking opportunities, coworking spaces, events, and business support programs tailored to startups, SMEs, freelancers, and entrepreneurs in the region. Their market position is strong as a key regional player with numerous partnerships and a sizable member base. Technically, the website is built on WordPress with modern plugins and integrations such as Yoast SEO, Google Tag Manager, and Brevo for email marketing. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with good user experience and clear navigation. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for form protection, and implements GDPR-compliant cookie consent. However, explicit security headers like CSP or X-Frame-Options were not detected in the provided data, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and continuing transparent privacy practices.

SRAE Sensoriel is a regional support and expertise structure focused on sensory disabilities (auditory and visual) in the Pays de la Loire region of France. It aims to improve the quality of life and care pathways for people with sensory impairments. The organization is mandated by the regional health agency (ARS) and operated by the Vyv3 group, positioning it as a trusted non-profit/governmental resource. The website offers resources, news, events, and professional tools targeting both individuals and professionals concerned with sensory disabilities. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Tarteaucitron.js for cookie consent management. It uses Google Tag Manager for analytics and tracking. The site is mobile-optimized, accessible, and well-structured with good SEO practices. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, no explicit security headers were detected in the provided data, and no incident response or security policy information is publicly available. No vulnerabilities or exposed sensitive data were found. The lack of WHOIS data limits domain trust verification, but the professional content and contact information support legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving a specialized regional audience. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular updates to WordPress and plugins to ensure ongoing security and compliance.

The website www.aidants44.fr serves as an informational and support portal for family caregivers in the Loire-Atlantique region of France, operated by the UDAF de Loire-Atlantique. It provides comprehensive resources including rights information, support services, event calendars, and contact options tailored to caregivers' needs. The site is well-branded with regional government logos and maintains a professional and accessible design. Technically, it is built on the Jalios JCMS platform, integrates Google Tag Manager for analytics, and uses modern UI components such as carousels and date pickers. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. The absence of WHOIS data is a notable concern, impacting domain trustworthiness, but the website content and branding strongly indicate legitimacy as a government/non-profit resource. Overall, the site is a valuable regional resource with good technical and privacy compliance maturity.

Artilect FabLab is a collaborative maker space and coworking hub located in Toulouse, France. It offers a variety of services including access to digital fabrication machines such as 3D printers and laser cutters, professional and hobbyist training courses, coworking spaces, and event hosting including team building activities. The website is built on the Odoo CMS platform and integrates modern web technologies and analytics tools such as Google Tag Manager and Plausible Analytics. The site is well-structured, mobile-optimized, and provides clear navigation and contact information. However, it lacks a publicly accessible privacy policy and terms of service, which are important for compliance and user trust. Security headers are not detected, indicating room for improvement in security posture. WHOIS data for the domain is unavailable, limiting the ability to fully verify domain legitimacy. Overall, the website presents a professional and trustworthy image for its target audience of makers, entrepreneurs, and creatives.

C

Centreon

centreon.com

72

Centreon is a well-established company specializing in IT infrastructure monitoring software, offering scalable and cost-effective observability solutions including log management and digital experience monitoring. The company targets enterprises, managed service providers, and IT teams seeking comprehensive monitoring capabilities. Their market position is strong, supported by a large user base and partner network. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating digital maturity and good performance. Security posture is robust with HTTPS, security headers, and consent management, though explicit security policies and incident response details are lacking. Overall, the website presents a professional and trustworthy digital presence with minor gaps in transparency around domain registration and security contact information.

D

Dorint.cz

dorint.cz

44

Dorint.cz is a well-established Czech company specializing in luxury interior design and wellness solutions, including premium kitchens, interiors, and private wellness and SPA installations. With over 30 years of experience, the company positions itself as a premium service provider targeting individuals and families seeking high-end, bespoke home environments. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern analytics and marketing tools such as Google Tag Manager, Google Analytics, and Smartlook. Security practices are robust, featuring HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates professionalism, compliance with GDPR, and a strong market position in the luxury real estate and hospitality sector.

D

Dorsen

dorsen.cz

33

Dorsen is a Czech-based company specializing in the handcrafted production of high-quality pocket spring mattresses and beds, emphasizing natural materials and traditional craftsmanship rooted in the Jizerské Mountains region. The company targets both retail customers seeking premium sleep products and B2B clients such as hotels and interior designers. The website reflects a modern digital presence built on WordPress with Elementor, integrating marketing and analytics tools like Google Tag Manager and Smartsupp live chat, ensuring good user experience and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be enhanced. Overall, the domain registration aligns well with the business launch, supporting legitimacy and trustworthiness.

N

National Eczema Association

nationaleczema.org

11

The National Eczema Association is a well-established non-profit organization founded in 2002, dedicated to providing education, support, advocacy, and research funding for individuals affected by eczema. The website serves a broad audience including patients, caregivers, healthcare providers, and researchers, positioning itself as a leading resource in the eczema healthcare sector in the United States. The organization demonstrates strong market presence through comprehensive services such as educational resources, community stories, advocacy campaigns, and digital tools like the EczemaWise app. Technically, the website is built on a modern WordPress platform with integrations including Gravity Forms for data collection, Yoast SEO for search optimization, and Google Tag Manager for analytics. Hosting is managed via Amazon AWS infrastructure, ensuring reliable performance and scalability. The site exhibits excellent mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with domain status locks to prevent unauthorized changes. While no advanced security headers were detected, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted as an area for improvement. Privacy compliance is strong, with clear privacy and cookie policies and GDPR considerations. The organization displays multiple trust certifications and maintains transparent contact information, enhancing credibility. Overall, the website is professional, trustworthy, and well-maintained, with a strong focus on user engagement and community support. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture and trust.

L

Lymphatic Education & Research Network

lymphaticnetwork.org

50

The Lymphatic Education & Research Network (LE&RN) is a well-established nonprofit organization dedicated to fighting lymphedema and lymphatic diseases through education, research funding, advocacy, and community support. The website serves as a comprehensive resource hub for patients, researchers, and healthcare professionals, offering access to educational materials, research grants, clinical trial information, and community engagement opportunities. LE&RN holds a strong market position as a trusted leader in lymphatic disease awareness and research advocacy within the healthcare nonprofit sector. Technically, the website employs a mature technology stack including jQuery, Modernizr, Font Awesome, Google Analytics, and Google Tag Manager, hosted via GoDaddy with domain control nameservers. The site is mobile optimized with good SEO practices and moderate performance. However, it lacks some modern security headers and a cookie consent mechanism, which are recommended for enhanced privacy compliance and security. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. It integrates third-party analytics and fundraising tools responsibly but could improve by implementing additional security headers and publishing formal security policies. The WHOIS data confirms domain legitimacy and consistency with the organization's history, supporting a high trustworthiness rating. Overall, LE&RN's website is professional, content-rich, and trustworthy, serving its audience effectively. Strategic improvements in privacy compliance and security posture would further strengthen its digital maturity and user trust.

B

Bone Marrow & Cancer Foundation

bonemarrow.org

60

The Bone Marrow & Cancer Foundation is a well-established non-profit organization dedicated to supporting cancer and transplant patients through a variety of services including financial assistance, patient navigation, clinical counseling, housing support, and peer connection via their CancerBuddy™ app. The organization has a strong market position with over three decades of experience, a recognized medical advisory board, and partnerships with hospitals across the United States. Their business model relies on private donations and corporate sponsorships, with no government funding, emphasizing community-driven support and fundraising events. Technically, the website is built on WordPress using modern plugins such as GiveWP for donations and Events Manager for event handling. It employs Bootstrap for responsive design and integrates Stripe for payment processing. The site demonstrates good digital maturity with SEO optimization, mobile responsiveness, and moderate performance. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and has domain registration protections in place, but lacks DNSSEC and explicit security headers. There is no visible security or incident response policy, and cookie consent mechanisms are absent, which may impact GDPR compliance. The WHOIS data confirms the domain's legitimacy with a long registration history and consistent registration details. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic improvements in security policies, cookie consent, and DNS security would enhance its compliance and trustworthiness further.

G

GBS/CIDP Foundation International

gbs-cidp.org

60

GBS/CIDP Foundation International is a well-established non-profit organization dedicated to supporting individuals and families affected by Guillain-Barré syndrome, chronic inflammatory demyelinating polyneuropathy, and related neurological conditions. The foundation provides educational resources, funds research grants, advocates for patient needs, and fosters community engagement through events and volunteer programs. It holds a strong market position as a leading global non-profit in its healthcare niche, supported by trust indicators such as a Charity Navigator Four Star rating and membership in the National Health Council. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates multiple third-party analytics and marketing tools including Google Analytics, Facebook Pixel, and ShareThis. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks a visible cookie consent mechanism and dedicated security or incident response policies, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic enhancements in privacy compliance and security transparency would further strengthen its posture and user trust.

The US Hereditary Angioedema Association (HAEA) is a specialized non-profit organization dedicated to supporting individuals affected by Hereditary Angioedema (HAE), a rare genetic condition. The organization provides education, advocacy, research support, and access to treatment resources, positioning itself as a leading voice in the HAE community within the United States. Their website reflects a strong commitment to patient and caregiver engagement through comprehensive resources, community stories, and advocacy opportunities. Technically, the website employs a modern and stable technology stack including Bootstrap, jQuery, Handlebars.js, and Google Analytics for tracking. Hosting utilizes Amazon S3 for media assets, indicating a reliable infrastructure. The site is mobile-optimized with good navigation and SEO practices, though accessibility features could be enhanced. Security is solid with HTTPS enforced, but the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and protection. From a security perspective, the site shows no signs of vulnerabilities or malicious content. However, the lack of visible security policies, incident response contacts, and vulnerability disclosure mechanisms indicates a moderate maturity level in security governance. The WHOIS data is unavailable due to query failure or privacy protection, but the website content and domain usage strongly support legitimacy and trustworthiness. Overall, the HAEA website is a professional, trustworthy, and well-maintained platform serving a niche healthcare advocacy role. Strategic improvements in privacy compliance, security headers, and transparency around security policies would further enhance its risk posture and user trust.

A

American Lung Association

lung.org

69

The American Lung Association is a leading non-profit organization dedicated to improving lung health and preventing lung disease through education, advocacy, research funding, and community support. The website reflects a mature and professional digital presence with comprehensive content targeting patients, caregivers, healthcare professionals, and advocates. It offers multiple engagement channels including donations, events, and support services. Technically, the site employs modern web technologies and analytics tools, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement and use of CAPTCHA for form protection, though explicit security headers and a published security policy are absent. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is trustworthy and authoritative in its domain, though WHOIS data is unavailable due to query issues, which slightly impacts domain legitimacy assessment.

N

National Alopecia Areata Foundation

naaf.org

51

The National Alopecia Areata Foundation (NAAF) is a well-established non-profit organization dedicated to supporting individuals affected by alopecia areata, a common autoimmune disease causing hair loss. The foundation provides a comprehensive range of services including education, support groups, research funding, advocacy, and awareness campaigns. Their website reflects a strong market position as a leading resource in the alopecia community, targeting patients, families, medical professionals, and researchers. The organization leverages digital platforms effectively to engage its audience and facilitate donations and community involvement. Technically, the website is built on WordPress with modern plugins and frameworks such as Visual Composer, Gravity Forms, and Swiper.js. It integrates key marketing and analytics tools including Google Tag Manager and Facebook Pixel, enabling moderate user tracking and data collection. The site demonstrates good performance, mobile optimization, and accessibility, with a professional design and clear navigation enhancing user experience. From a security perspective, the site employs HTTPS with good SSL configuration and standard security headers, indicating a solid security posture. However, there is no publicly available security policy or vulnerability disclosure program, which could be improved to enhance transparency and incident response readiness. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR considerations. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure channel, and enhancing incident response contact visibility to further strengthen trust and security culture.

A

American Liver Foundation

liverfoundation.org

71

The American Liver Foundation is a well-established nonprofit organization dedicated to education, advocacy, support services, and research funding for liver disease prevention and treatment. With a domain age dating back to 1996 and a strong market position as the largest liver disease-focused nonprofit in the U.S., ALF serves a broad audience including patients, caregivers, and healthcare professionals. Their website offers comprehensive resources, clinical trial information, and multiple signature programs and events to engage the community. Technically, the website is built on WordPress with modern integrations such as Oxygen Builder, Google Tag Manager, Facebook Pixel, and live chat via PureChat. The site is mobile optimized, well-structured, and SEO-friendly, reflecting a mature digital presence. Hosting and DNS are managed via Cloudflare, enhancing performance and security. Security posture is good with HTTPS enforced and domain transfer locked, but improvements are recommended such as enabling DNSSEC and publishing explicit security policies and incident response contacts. Privacy compliance is partial; while a comprehensive privacy policy exists, no cookie consent mechanism was detected, which may impact GDPR compliance. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing privacy compliance, improving DNS security, and formalizing security incident response information to further strengthen trust and security posture.

C

Chronically Capable

wearecapable.org

51

Chronically Capable is a specialized online platform dedicated to connecting over 133 million Americans with chronic illnesses to employers offering flexible, remote work opportunities. The platform emphasizes inclusivity, community support, and employer partnerships to facilitate meaningful employment for individuals with disabilities. Its market position is niche but impactful, supported by testimonials and press coverage from reputable sources such as Forbes and Fast Company. Technically, the website leverages modern web technologies including Webflow CMS, Google Analytics, Facebook Pixel, and other marketing and analytics tools, ensuring a robust digital presence. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website demonstrates a professional, trustworthy, and user-friendly environment tailored to its target audience.

N

National Breast Cancer Foundation, Inc.

nationalbreastcancer.org

77

The National Breast Cancer Foundation, Inc. is a well-established non-profit organization dedicated to providing help and hope to those affected by breast cancer through early detection, education, and support services. The website positions the organization as a top-rated breast cancer charity with strong trust signals including high charity ratings and corporate partnerships. Their target audience includes breast cancer patients, survivors, donors, volunteers, and the general public seeking breast health information. The business model focuses on fundraising, awareness campaigns, and community support programs. Technically, the website is built on WordPress with a modern tech stack including jQuery, HubSpot analytics, Google Tag Manager, and other marketing tools. It is well-optimized for SEO, mobile responsiveness, and accessibility. The site uses HTTPS with good SSL configuration and implements security best practices such as reCAPTCHA and cookie consent mechanisms. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. From a security posture perspective, the site shows a mature approach with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies and GDPR indicators. The WHOIS data is unavailable due to a malformed response, likely indicating privacy protection, which is justified for this type of non-profit organization. Overall, the domain and website content align well, supporting legitimacy. The overall risk assessment is low with no critical issues detected. Strategic recommendations include enhancing security headers, maintaining regular audits of third-party scripts, and improving transparency around incident response policies. The website demonstrates a high level of professionalism, trustworthiness, and technical maturity suitable for its mission and audience.

A

AiVision, s.r.o.

ai-shop.cz

46

AiVision, s.r.o. operates the website www.ai-shop.cz offering advanced e-shop solutions with ERP system integrations such as Pohoda, Helios, Money, Cezar, Premier, and SAP. The company targets small to medium-sized businesses seeking customizable e-commerce platforms with B2B and B2C capabilities. With over 20 years of experience and more than 1100 satisfied clients, AiVision positions itself as a reliable technology provider in the Czech Republic's e-commerce sector. The website showcases a modern, responsive design with comprehensive content, client references, and integration options, reflecting a mature digital presence. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Google Tag Manager, and reCAPTCHA, ensuring good performance and security basics. However, explicit security headers and incident response policies are not published, indicating areas for improvement. The site is GDPR compliant with a clear privacy and cookie policy, and contact information is readily available. WHOIS data is missing or privacy protected, which slightly reduces trustworthiness but does not negate the evident business legitimacy. Overall, the website demonstrates a strong business and technical foundation with moderate security posture and good privacy compliance.

F

Ferrino

ferrino.sk

51

Ferrino is a well-established outdoor equipment retailer with a rich history dating back to 1870. The company offers a comprehensive range of products including backpacks, sleeping bags, tents, clothing, and accessories for outdoor enthusiasts. Their market position is strong in Slovakia and the Czech Republic, supported by a professional e-commerce platform and physical store pickup options. The website demonstrates a good level of digital maturity with modern technologies and responsive design, catering well to their target audience of hikers, climbers, and outdoor lovers. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

E

EastBiz.com, Inc.

incparadise.com

59

EastBiz.com, Inc., operating the IncParadise website, is a specialized service provider focusing on business incorporation and registered agent services primarily in Nevada and Wyoming. The company offers a comprehensive suite of services including corporation and LLC formation, registered agent services, mail forwarding, and compliance support. Their market position is that of an established niche player with over a decade of experience, targeting entrepreneurs and small to medium-sized businesses seeking incorporation in the United States. Technically, the website is built on WordPress and leverages a modern technology stack including jQuery, Google Tag Manager, and various marketing and analytics tools such as Facebook Pixel and Hotjar. The site is hosted with reputable providers and uses Cloudflare DNS, ensuring good performance and availability. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with a strong SSL configuration and employs reCAPTCHA for form protection. However, it lacks some security headers and DNSSEC is not enabled, which are areas for improvement. The presence of multiple tracking scripts without a visible cookie consent mechanism indicates partial privacy compliance. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website presents a professional and trustworthy front for its business services, with good technical and security foundations but room for enhancement in privacy compliance and security hardening.

D

DesignPlanet

designplanet.ua

66

DesignPlanet is a Ukrainian web development and branding agency with over 14 years of experience and a portfolio of more than 300 projects. The company offers comprehensive digital services including web development, branding, UX/UI design, and mobile app development targeting businesses seeking professional digital solutions. The website is well-designed, mobile-optimized, and presents a professional image with strong client trust indicators such as notable client logos and social media presence on Behance and Clutch. Technically, the site is built on WordPress with modern JavaScript libraries including Three.js and uses Google Tag Manager and reCAPTCHA for analytics and security. However, the site lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is good with HTTPS and form protections but could be improved by adding security headers and a vulnerability disclosure policy.

F

Fresh Food Ventures Group BV

crisp.app

71

Crisp is an online fresh grocery delivery service operating primarily in Belgium (Vlaanderen). The company offers a mobile app and website platform where consumers can order quality fresh products sourced directly from small producers and have them delivered to their homes. The business model emphasizes freshness, sustainability, and convenience, with delivery available seven days a week and payment options including meal vouchers. The website is professionally designed, mobile-optimized, and provides clear customer support channels including WhatsApp. The company holds a B Corporation certification, indicating commitment to social and environmental responsibility. Technically, the website uses modern web technologies and Google Tag Manager for analytics and marketing, with a fast and accessible user experience. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, Crisp presents a trustworthy and mature online grocery platform with strong business credibility and compliance with privacy regulations.

C

Cité du design – Esad Saint-Étienne

citedudesign.com

66

Cité du design – Esad Saint-Étienne is a well-established cultural and educational institution based in France, specializing in design and art education, exhibitions, and research. The website reflects a mature organization with a strong regional presence and partnerships with governmental and cultural bodies. Their services cater to students, researchers, and the general public interested in design. Technically, the website employs modern JavaScript libraries and multimedia content, hosted by a reputable registrar OVH sas, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is strong, featuring a comprehensive privacy policy and a robust cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

D

Diverto

diverto.tv

67

Diverto is a French media platform specializing in entertainment news, focusing on television, streaming platforms, and pop culture. The website provides TV program schedules and news related to streaming services, targeting a general audience interested in media and entertainment. The platform positions itself as a niche media outlet within the French market, offering curated content relevant to TV and streaming enthusiasts. Technically, Diverto employs a modern web stack including JavaScript frameworks like Stimulus and Symfony UX Live Component, along with Tailwind CSS for styling. It integrates multiple third-party services for analytics, advertising, and consent management, demonstrating a mature digital infrastructure. Security-wise, the website enforces HTTPS and uses a consent management platform (Didomi) to comply with privacy regulations. However, explicit security headers and incident response policies are not clearly published, and WHOIS data is unavailable, which slightly impacts trust. Overall, Diverto presents a professional and functional media website with good privacy compliance but could improve transparency and security documentation.

T

Ticket for Change

ticketforchange.org

50

Ticket for Change is a French non-profit organization focused on fostering social entrepreneurship and leadership development. Established in 2013, it offers educational programs, community support, and resources to entrepreneurs, young adults, and corporate leaders aiming to create positive social and environmental impact. The organization positions itself as a pioneering school for changemakers, leveraging innovative pedagogies and a strong community network. Technically, the website is built on WordPress with modern SEO and analytics tools, hosted behind Cloudflare for performance and security. The site features comprehensive cookie consent mechanisms and privacy policies aligned with GDPR requirements. Security posture is solid with HTTPS and domain protections, though improvements in security headers and incident response transparency are recommended. Overall, the website reflects a professional, trustworthy, and well-established entity with a clear mission and audience.

M

Krby a kamna

mojekrby.cz

60

The website www.mojekrby.cz is a Czech e-commerce platform specializing in the sale of fireplaces, stoves, and related accessories. It targets residential customers and craftsmen seeking heating solutions. The business operates a niche retail model with a clear product catalog and online shopping capabilities, including user registration and newsletter subscription. The site is professionally designed with good navigation and mobile optimization, leveraging modern web technologies such as jQuery, Swiper.js, and Google Analytics for tracking and marketing. Technically, the site uses the K2 e-shop system and integrates several third-party services including Google Tag Manager and Packeta for logistics. Performance is moderate with good SEO practices and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though no advanced security headers or explicit security policies are published. The absence of WHOIS registration data is a concern for domain legitimacy and trust. Overall, the site presents a professional and trustworthy front for its business, but the lack of publicly available domain registration details and direct contact information slightly reduces its credibility. There are no indications of malicious content or security vulnerabilities in the visible content. Strategic improvements in security transparency and contact information disclosure would enhance trust and compliance.

Tyvado is a Czech company specializing in modern shading technology products including awnings, blinds, pergolas, and insect screens. The company targets homeowners and investors seeking comfort, ecological solutions, and energy savings. With over 12 years of experience and more than 200 completed projects, Tyvado positions itself as a trusted provider in the local market. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options including a detailed contact form and physical address. Technically, the site uses common web technologies such as jQuery and Google Analytics, with HTTPS enforced and cookie consent implemented. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. Security headers are not detected, suggesting room for improvement in security posture. Overall, the website is safe, professional, and compliant with GDPR requirements, but would benefit from enhanced security policies and domain legitimacy verification.

Refaglass s.r.o. is a Czech-based manufacturer specializing in foam glass insulation products made from 100% recycled glass. The company targets construction professionals and distributors, offering thermal insulation materials suitable for various building applications. Their market position is niche, focusing on sustainable and innovative building materials within the Czech and Slovak markets. The website reflects a professional presence with clear product information, contact details, and social media engagement. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility could be improved. Security posture is fair with HTTPS enforced and cookie consent implemented; however, the absence of security headers and a privacy policy page are notable gaps. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and contact information support legitimacy. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and establishing a vulnerability disclosure process to improve overall trust and compliance.

O

OCRRUNNING.CZ

ocrrunning.cz

59

OCRRUNNING.CZ is a Czech Republic-based small e-commerce retailer specializing in running and outdoor sports footwear, clothing, and accessories. The website offers a broad catalog of products from well-known brands, targeting general consumers interested in running and outdoor activities. The business emphasizes real pricing without discount presentations and aims to provide optimal price-quality-performance balance along with customer advisory services. Technically, the site uses modern web technologies including Google Tag Manager, Google Analytics 4, Google Ads, and reCAPTCHA v3 for bot protection. The site is built on the Binargon EshopMaxi CMS platform and is mobile-optimized with good navigation and content relevance. Security posture is moderate with HTTPS enforced and bot protection in place, but lacks some security headers and visible privacy or cookie policies. WHOIS data is unavailable, which reduces domain trustworthiness. Overall, the site is professional and functional but could improve privacy compliance and security best practices.

B

BISTROOO

bistrooo.cz

45

Bistrooo is a small hospitality business based in Příbram, Czech Republic, offering breakfast, soups, hot meals, and daily menus. The website presents a clear business focus on local food service with reservation capabilities and business hours. The technical infrastructure is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN and Google Tag Manager for analytics. The site is accessible, mobile-optimized, and has a good user experience, though it lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing security headers and privacy compliance elements. The absence of WHOIS data limits domain legitimacy verification, which impacts trustworthiness. Overall, the site is functional and professional but requires improvements in privacy compliance and security best practices.

C

Contact’Mont-Blanc

contact-montblanc.com

67

Contact’Mont-Blanc is a French local business networking platform launched in 2022, focused on connecting professionals and consumers in the Haute-Savoie region. It offers a directory of local artisans, merchants, and service providers, along with marketing and networking services to boost local visibility. The platform emphasizes community, collaboration, and local economic development. Technically, the website uses modern frameworks like Bootstrap and jQuery, with Google Tag Manager for analytics. The site is mobile-optimized and well-structured, providing a good user experience. Security posture is adequate with HTTPS and domain transfer protection, though DNSSEC and security headers are missing. Privacy compliance is basic but present, with a privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professional, serving a niche local market effectively.

J

Jérémie Bottollier Curtet

bottweb.fr

56

Jérémie Bottollier Curtet operates as a freelance web and mobile application developer based in Haute-Savoie, France. The business specializes in creating custom digital solutions including websites (One Page, Vitrine, E-commerce, and bespoke), web and mobile applications, SaaS and Micro-SaaS platforms, site redesign, maintenance, and training services. The company targets local businesses, startups, and independent professionals primarily in the Rhône-Alpes region. The website demonstrates a professional market position with clear service offerings and a strong local focus. Technically, the website is built on WordPress using Elementor, enhanced with modern web technologies and analytics tools such as Google Tag Manager and Hotjar. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, employs security headers, and includes cookie consent mechanisms, indicating a good security posture. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement. The WHOIS data is missing, which slightly impacts domain trustworthiness but does not detract significantly from the overall legitimacy. Overall, the website and business present a low-risk profile with professional digital presence and sound security practices. Strategic recommendations include enhancing transparency with dedicated security and privacy policy pages, implementing vulnerability disclosure, and maintaining regular security audits to sustain trust and compliance.