Security Directory

D

DRiV Incorporated

driv.com

59

DRiV Incorporated is a large, established global supplier specializing in innovative commercial vehicle products and aftermarket automotive parts. The company operates with a strong brand portfolio and a global footprint of over 80 locations, targeting automotive aftermarket customers and commercial vehicle industry professionals. Their website reflects a professional and modern digital presence, leveraging contemporary technologies such as React and Tailwind CSS, and integrates marketing and analytics tools like Google Analytics and Facebook Pixel. The site is well-structured, mobile-optimized, and provides comprehensive business information including privacy and terms policies. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not outweigh the professional presentation and content quality. Overall, the website demonstrates a mature digital infrastructure suitable for a large enterprise in the transportation sector.

E

Eberspächer Gruppe GmbH & Co. KG

eberspaecher-karriere.de

66

Eberspächer Gruppe GmbH & Co. KG is a well-established international family-owned company in the automotive industry, founded in 1865 and headquartered in Germany. The company operates as a leading system developer and supplier, focusing on innovation and sustainable mobility solutions. Their career website targets a broad audience including students, experienced professionals, and leadership candidates, offering diverse career paths in engineering, IT, sales, production, logistics, and management. The site emphasizes corporate values such as diversity, inclusion, and social engagement, reinforcing their market position and employer brand. Technically, the website is built on TYPO3 CMS with modern web technologies including jQuery, Bootstrap, and Flexslider. It is hosted on Microsoft Azure DNS infrastructure, ensuring reliable performance and scalability. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured navigation. Consent management is implemented via Usercentrics, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed, and no public security policy or incident response contacts are provided. The WHOIS data aligns with the business claims, showing a consistent and transparent domain registration without privacy protection, appropriate for an enterprise entity. Overall, the website demonstrates a strong digital maturity with excellent content quality, good technical implementation, and solid privacy compliance. Strategic improvements could focus on enhancing security headers, publishing security policies, and establishing vulnerability disclosure channels to further strengthen trust and security posture.

E

Eberspächer Gruppe GmbH & Co. KG

eberspaecher.com

69

Eberspächer Gruppe GmbH & Co. KG is a well-established German automotive supplier specializing in exhaust technology, climate control systems, and automotive electronics. With a history spanning over 160 years, the company positions itself as a key player in clean and smart mobility solutions for the automotive industry. Their website reflects a professional and comprehensive corporate presence targeting automotive industry professionals and partners worldwide. The business model focuses on manufacturing and supplying components and systems to automotive OEMs and related sectors. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Bootstrap for responsive design and user experience. The site incorporates consent management via Usercentrics and Google Tag Manager for analytics and marketing. Performance and accessibility are good, with mobile optimization and SEO best practices implemented. However, some security headers are missing, and no explicit security policy or incident response information is publicly available. From a security perspective, the site enforces HTTPS and uses consent management, indicating a good baseline for privacy compliance. The absence of WHOIS data transparency is a notable concern, although the website content and branding strongly support legitimacy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is solid but could be improved with additional headers and published policies. The overall risk assessment is moderate-low, with recommendations to enhance domain registration transparency, publish security policies, and implement a vulnerability disclosure program. These steps would strengthen trust and compliance, aligning with the company's professional image and industry standards.

M

Mubea U-Mobility

mubea-umobility.com

37

Mubea U-Mobility is a German-based company specializing in the manufacture and sale of robust electric cargo bikes targeted at B2B customers such as parcel delivery services, campus logistics, advertising platforms, and service providers. The website presents a professional image with consistent branding and clear business focus on transportation solutions. The technical infrastructure is built on Drupal 10 CMS, utilizing modern web technologies including Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and provides a good user experience with relevant content and SEO optimizations. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and explicit privacy and terms of service pages. The WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional website presence. Overall, the website scores well on business credibility and content quality but should address privacy compliance and security best practices to improve trust and compliance.

S

SmartAddons.Com

smartaddons.com

45

SmartAddons.Com is a well-established provider of Joomla templates, extensions, and themes for multiple CMS platforms including Joomla, OpenCart, Shopify, and WordPress. The company targets web developers and site owners seeking premium and free templates with a business model based on membership clubs and direct sales. Their market position is supported by over 10 years of experience and a large member base. Technically, the website is built on Joomla CMS with integration of popular libraries such as MooTools, jQuery, Bootstrap, and Font Awesome, and uses modern tools like Google Tag Manager and reCAPTCHA Enterprise. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The absence of WHOIS data is a notable concern, impacting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

F

Foire de Metz

foiredemetz.com

61

Foire de Metz is a regional event organizer hosting a prominent fair in Metz, France, providing exhibition spaces and entertainment to a broad public audience. The website is professionally designed using Drupal 10, integrating modern analytics and marketing tools such as Matomo and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, supporting a positive user experience. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. The WHOIS data is notably absent or unregistered in the queried database, which raises concerns about domain legitimacy despite the professional appearance and content of the website. Overall, the site is safe, trustworthy, and compliant with GDPR, but the domain registration inconsistency warrants further verification.

F

Accueil | Foire St-Etienne

foiredesaintetienne.com

56

The website www.foiredesaintetienne.com represents the Foire de Saint-Etienne, an event held at Parc Expo from September 19 to 29, 2025. The site is built on Drupal 10 and uses modern web technologies including FontAwesome, Leaflet for maps, Slick Carousel for UI elements, and Matomo for analytics. It is targeted primarily at a French-speaking audience interested in attending the event. The website is professionally designed with good mobile optimization and accessibility features, providing a positive user experience. However, the absence of WHOIS data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks comprehensive security headers and published security policies. Privacy compliance is basic, with no explicit privacy or terms of service pages found. Overall, the site is functional and informative but would benefit from enhanced transparency and security documentation.

F

Accueil | Foire Européenne de Strasbourg

foireurop.com

59

The website www.foireurop.com represents the Foire Européenne de Strasbourg, a European fair event held in Strasbourg, France. The site provides information about the event, targeting visitors and exhibitors interested in attending. The business model revolves around event organization and promotion, catering primarily to the general public and regional visitors. The website is built on Drupal 10, leveraging modern web technologies such as FontAwesome, Leaflet.js for maps, and Slick Carousel for UI components. Analytics are handled via Matomo and Google Tag Manager, with cookie consent managed through tarteaucitron.io, indicating some level of GDPR compliance awareness. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit privacy or terms of service pages in the provided content. No contact information or incident response channels are clearly presented, which may hinder user trust and compliance. The WHOIS data is unavailable, raising concerns about domain registration legitimacy and reducing overall trustworthiness. No WAF or blocking mechanisms were detected, and the site content is accessible and safe for general audiences. Overall, the website demonstrates moderate digital maturity with good technical implementation and content quality but requires improvements in transparency, security best practices, and business credibility to enhance trust and compliance. Strategic recommendations include publishing clear privacy and terms policies, adding contact and security incident information, and improving security headers and monitoring of third-party scripts.

F

Foire aux Vins d'Alsace : Festival et foire gastronomique internationale

foire-colmar.com

50

The website www.foire-colmar.com represents the Foire aux Vins d’Alsace, a well-established regional event combining a gastronomic wine fair, commercial exhibition, and music festival. It targets a broad audience including families, wine enthusiasts, and visitors to the Alsace region. The event is notable for its long history (77 editions) and diverse offerings including over 1500 wines, 350 exhibitors, and international artists. Technically, the site is built on Joomla CMS, uses modern web technologies, and implements GDPR-compliant privacy and cookie policies with consent mechanisms. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and rich multimedia content. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though security headers are not evident and no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the professional presentation and external ticketing partnership support trust. Overall, the site is a credible and professional digital presence for a major cultural event in France.

M

Mégacité Amiens

megacite.fr

57

Mégacité Amiens is a regional event venue in France specializing in exhibitions, congresses, and various events. The website presents a professional image with clear branding and relevant content targeting event organizers and attendees. The business model revolves around venue rental and event hosting services, positioning itself as an important player in the hospitality sector within the Amiens region. The site is built on Drupal 10 and incorporates modern web technologies and analytics tools such as Google Tag Manager and Matomo, indicating a moderate level of digital maturity. Privacy compliance is addressed through cookie consent mechanisms and a privacy policy, reflecting awareness of GDPR requirements. Security posture is generally good with HTTPS enforced and some security best practices observed, though explicit security headers and incident response information are lacking. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and technical setup suggest a legitimate and trustworthy business. Overall, the site scores well in content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and contact information availability.

F

Foire Internationale de Bordeaux | 24 au 1er juin 2025

foiredebordeaux.com

57

The website www.foiredebordeaux.com represents the Bordeaux International Fair event scheduled for 2025. It serves as an informational and promotional platform targeting visitors and exhibitors in the Nouvelle-Aquitaine region of France. The site provides event details, exhibitor lists, programming, and visitor FAQs, positioning itself as a regional event organizer with a medium-sized digital presence. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses OneTrust for cookie consent management. The site is mobile optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and CAPTCHA protections, though explicit security headers and policies are not evident. The absence of WHOIS data for the domain is a notable concern, suggesting either a recent registration or privacy protection, which impacts trustworthiness. Overall, the website is professional and functional but would benefit from clearer business and privacy disclosures to enhance credibility and compliance.

T

Tours Événements

lafoiredetours.fr

49

La Foire de Tours is a prominent regional event organizer hosting the largest commercial fair in the Centre-Val de Loire region of France. The website provides comprehensive information about the event scheduled for May 2026, including exhibition universes, gastronomic village, artist participation, and sustainability initiatives. The organization, Tours Événements, appears to be well-established with multiple certifications and a strong social media presence. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and a cookie consent framework. The site is performant, mobile-optimized, and SEO-friendly, providing a good user experience. However, some security best practices like security headers and explicit incident response policies are missing. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned cookie consent and a privacy policy. Business credibility is supported by clear contact information, certifications, and consistent branding, although the absence of WHOIS data slightly reduces trust. Overall, the website is a professional and trustworthy digital presence for the event, with recommendations to enhance security headers and publish security policies to further strengthen trust and compliance.

C

Comexposium

foiredeparis.fr

66

Foire de Paris is a prominent and historic French trade fair event organized by Comexposium, attracting over 400,000 visitors annually. The website provides comprehensive information about the event, including ticketing, exhibitors, and cultural programming. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Sitecore CMS, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, likely due to privacy protection, but the site shows strong trust signals and professional branding. Overall, the website is well-designed, user-friendly, and trustworthy for its audience.

F

Foire de Toulouse

foiredetoulouse.com

60

Foire de Toulouse is a regional event organizer focused on the International Fair of Toulouse, providing event information and services to visitors and exhibitors. The website is built on Drupal 10 and integrates modern web technologies such as Matomo analytics, Google Tag Manager, and accessibility tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks visible security headers and formal privacy or incident response policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and branding appear professional and consistent with a legitimate event. Strategic improvements in security headers, privacy disclosures, and domain registration transparency are recommended to enhance trust and compliance.

F

Foire de printemps de Montpellier

foiredeprintemps-montpellier.com

46

The website www.foiredeprintemps-montpellier.com represents a professionally managed event platform for the Foire de Printemps in Montpellier, France. It serves as an information hub for visitors and exhibitors, offering details on event schedules, exhibitor lists, ticketing, and various contests and animations. The site targets a general audience including families and local businesses. Technically, it is built on WordPress using Elementor and several modern plugins, ensuring good performance, mobile responsiveness, and SEO optimization. Security measures include HTTPS, reCAPTCHA, and a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness. Contact information is provided primarily via forms, with no explicit emails or phone numbers visible. Overall, the site is well-structured and trustworthy from a content and technical perspective but would benefit from clearer domain registration transparency and enhanced security policy disclosures.

F

Foire de Lyon 2026 - du 20 au 30 mars - Lyon Eurexpo

foiredelyon.com

61

Foire de Lyon is a regional event organizer hosting a major fair in Lyon, France, scheduled for March 20-30, 2026. The website provides comprehensive information about the event, including exhibitor details, visitor guides, and partner information. The digital infrastructure is built on Drupal 10 with integrations for video content, analytics, and cookie consent management, reflecting a modern and mature web presence. Security posture is generally good with HTTPS enforced and privacy compliance mechanisms in place, though some improvements in security headers and incident response transparency are recommended. The absence of WHOIS data introduces some uncertainty about domain legitimacy, but the professional content and strong social media presence support trustworthiness. Overall, the site is well-positioned to serve its audience effectively with moderate risk factors to monitor.

F

Page d'accueil | Foire Orléans

foirexpo-orleans.fr

58

The website www.foirexpo-orleans.fr represents an event or expo based in Orléans, France, likely targeting a general audience interested in local exhibitions or fairs. The site is built on Drupal 10, indicating a modern CMS infrastructure, and integrates common web technologies such as FontAwesome for icons, YouTube iframe API for video content, Matomo for analytics, and Google Tag Manager for marketing tags. The presence of a cookie consent mechanism via Tarteaucitron shows some attention to privacy compliance, although no explicit privacy or terms of service pages were detected. Security posture is moderate but lacks visible security headers and detailed policies, and WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the site is functional and accessible but would benefit from enhanced transparency and security practices.

D

Dijon Bourgogne Events

dijonbourgogne-events.com

55

Dijon Bourgogne Events operates the Parc des Expositions et Congrès de Dijon, providing venue services for fairs, congresses, and exhibitions in the Dijon and Bourgogne region of France. The company appears to be a regional event venue operator founded recently in 2023, with a medium-sized business profile. The website is built on WordPress using the Divi theme and incorporates SEO and user experience best practices such as Yoast SEO and Google Fonts. The site is mobile optimized and includes social media integration with LinkedIn, Facebook, and Instagram. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information such as emails and phone numbers are not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website is professional and relevant to its business domain but could benefit from enhanced security and compliance documentation.

F

Foire Internationale de Montpellier

foire-montpellier.com

45

The Foire Internationale de Montpellier website represents a regional event organizer hosting an annual international fair in Montpellier, France. The site provides comprehensive information about the event, including exhibitor services, visitor information, ticketing, and event programming. The business is positioned as a key regional player with partnerships from local government and commercial entities. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO, performance, and GDPR compliance. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms aligned with GDPR. Security posture is good with HTTPS enforced and anti-spam measures, though some security headers and explicit policies are missing. The absence of WHOIS data for the domain is a concern for domain legitimacy, but the professional content and consistent branding mitigate this risk. Overall, the site is trustworthy and serves its audience effectively.

M

ManpowerGroup

manpowergroup.fr

55

ManpowerGroup is a leading global human resources services company with a strong presence in France and worldwide. The company offers comprehensive HR solutions including recruitment, training, career management, and outsourcing services. Their website reflects a professional and enterprise-grade digital presence, leveraging WordPress and Elementor with modern tracking and consent tools. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly available. The absence of WHOIS data slightly impacts domain trust but is mitigated by the company's established brand and certifications such as Top Employer 2024 and CyberVadis. Overall, the website is well-designed, accessible, and compliant with GDPR requirements.

Multilanguage for Weebly is a small technology business specializing in providing a SaaS application that enables Weebly website owners to add multiple languages and translate their websites easily. The company targets Weebly users who want to internationalize their online presence and increase traffic and sales by offering multilanguage support and translation services, including store product and checkout translation. The business maintains a niche market position with a focused service offering and positive user testimonials, supported by a clear contact presence and social media engagement. Technically, the website is built on the Weebly platform, utilizing jQuery 1.8.3, Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics, marketing, and security. Hosting is provided via EditMySite CDN, likely part of Weebly's infrastructure. The site demonstrates moderate performance and good mobile optimization but uses an outdated jQuery version and lacks some modern security headers. SEO practices are adequate with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but it lacks visible security headers and explicit security or incident response policies. Privacy compliance is partial, with a GDPR info page but no cookie consent banner or terms of service page. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and safe for general audiences. The risk level is moderate due to missing cookie consent and outdated libraries. Strategic improvements in privacy compliance, security headers, and updated libraries would enhance the security posture and user trust.

C

CNP Assurances

cnp.fr

75

CNP Assurances is a leading French insurance company specializing in life insurance, health coverage, retirement planning, and savings products for individual customers. The website reflects a mature digital presence with comprehensive content tailored to its target audience of individuals seeking insurance solutions. The company maintains a consistent brand image and provides extensive regulated information, demonstrating transparency and compliance with French and EU regulations. Technically, the website employs modern JavaScript libraries, privacy management tools, and tracking services such as Google Tag Manager and TrustCommander, indicating a well-maintained infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, supporting a positive user experience. From a security perspective, the site enforces HTTPS and includes standard security practices, though explicit security headers and a dedicated security policy page are absent. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website presents a low-risk profile with high trustworthiness, suitable for a major financial institution. Recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen security posture.

M

Mister EV

mister-ev.com

71

Mister EV operates as a specialized e-commerce retailer focused on electric vehicle charging solutions, including cables, charging stations, plugs, and accessories. The website targets electric vehicle owners and businesses primarily in France, offering a broad product catalog with a professional and user-friendly online shopping experience. The company leverages Shopify's robust e-commerce platform, integrating multiple third-party services for customer reviews, marketing automation, live chat support, and analytics, reflecting a mature digital infrastructure. Technically, the website is well-constructed with modern technologies, including Shopify Liquid templates, JavaScript frameworks, and integrations with Google Tag Manager, Trustpilot, Judge.me, Klaviyo, and Plausible Analytics. The site demonstrates good performance, mobile responsiveness, and SEO optimization, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements essential security headers. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. The absence of WHOIS registration data raises concerns about domain legitimacy, although the live and functional website mitigates immediate risk. Overall, Mister EV presents a trustworthy and professional online presence in the EV charging market, with room for improvement in transparency around security policies and domain registration details. Strategic recommendations include publishing security and incident response information, verifying domain registration, and continuous monitoring of third-party integrations for vulnerabilities.

C

CUT BY FRED

cutbyfred.com

69

CUT BY FRED is a French e-commerce business specializing in natural, vegan hair care products designed by hairdresser Frédéric Birault. The website positions itself as an expert in natural hair care, targeting consumers seeking clean and locally made hair products. The brand emphasizes product quality, ethical manufacturing, and caters to diverse hair types. Technically, the website is built on Shopify, leveraging modern JavaScript frameworks and multiple marketing and analytics integrations such as Klaviyo, Yotpo, and Google Tag Manager. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is strong with clear cookie consent and privacy policies in French, aligned with GDPR requirements. No direct contact information or explicit security policies were found, which could be improved. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

S

Shop Super Natural Club

supernaturalclub.ch

69

Shop Super Natural Club is a Swiss-based e-commerce business specializing in organic kombucha, lemonades, and other soft drinks. The company positions itself as a niche organic beverage brand with a focus on authentic Swiss craft products. Their online presence is built on the Shopify platform, leveraging modern web technologies and marketing tools such as Klaviyo and Facebook Pixel to engage customers and drive sales. The website is well-designed, mobile-optimized, and provides a smooth user experience with clear navigation and relevant content. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, direct contact information such as emails or phone numbers is not publicly listed, which may impact customer trust and support accessibility. Security posture is strong with HTTPS, security headers, and form protection via hCaptcha, but lacks a dedicated security policy or incident response information. Overall, the site is legitimate, secure, and professionally maintained, suitable for its target market.

R

Rivedroite Paris

rivedroite-paris.com

63

Rivedroite Paris operates an e-commerce website specializing in sustainable bags and accessories crafted by formerly unemployed designers using recycled and upcycled materials. The brand targets environmentally conscious consumers seeking unique fashion items. The website is built on the Shopify platform using the Impulse theme, integrating multiple marketing and analytics tools such as TikTok Pixel, Microsoft Clarity, Klaviyo, and Google Tag Manager, indicating a moderate level of digital maturity and marketing sophistication. The site is mobile-optimized and presents a professional design with clear navigation and relevant content.

E

Elie Top

elietop.com

67

Elie Top is a French luxury jewelry brand operating an e-commerce platform built on Shopify. The website showcases various collections and high-end jewelry creations targeting consumers interested in artisanal and creative luxury products. The brand maintains a consistent and professional online presence with multilingual support and active social media channels. Technically, the site leverages modern e-commerce technologies including Shopify's Dawn theme, Google Tag Manager, Facebook Pixel, and consent management frameworks, ensuring good performance, mobile optimization, and SEO. Security posture is solid with HTTPS enforced and form protection via hCaptcha, although explicit security headers and incident response information are not publicly documented. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. The absence of WHOIS data is a concern but the overall digital maturity and trust indicators suggest a legitimate business. Strategic recommendations include enhancing security transparency and publishing vulnerability disclosure policies.

C

Château de Berne

chateauberne-vin.com

62

Château de Berne operates a premium e-commerce platform specializing in the sale of wines from the Côtes de Provence region. The website targets mature wine consumers primarily in France and the European Union, offering a range of rosé, red, and white wines under AOP certification. The business model is focused on direct-to-consumer online sales, supported by loyalty programs and professional partnerships. The company appears to be medium-sized, founded around 2020, and maintains a consistent brand presence with professional design and clear navigation. Technically, the website is built on the Shopify platform, leveraging a modern tech stack including JavaScript, jQuery, and various third-party marketing and analytics tools such as Klaviyo, Smile.io, and Gorgias. The site is mobile-optimized, accessible, and performs moderately well. Security practices include HTTPS enforcement and domain transfer protection, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with visible cookie consent mechanisms and comprehensive privacy policies. The security posture is solid but could benefit from enhancements such as explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or blocking WAFs were detected. The site uses extensive tracking and marketing pixels, indicating a mature digital marketing strategy but requiring ongoing privacy vigilance. Overall, Château de Berne presents a trustworthy and professional online presence with good business credibility and technical implementation. Strategic improvements in security transparency and DNS security would further strengthen its posture.

F

FELCO SA

felco.com

67

FELCO SA is a Swiss precision manufacturing company specializing in pruning shears and cutting tools, targeting gardeners and professionals who require high-quality cutting solutions. The company maintains a strong market position as a reputable Swiss brand with a focus on innovation and sustainability. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations with marketing and analytics tools such as Google Tag Manager, Klaviyo, and Rakuten Advertising. The technical infrastructure is robust, with good performance, mobile optimization, and basic accessibility features. Security posture is strong with HTTPS enforcement, security headers, and use of CAPTCHA for forms, though explicit privacy and cookie policies are not detected in the provided content. The absence of WHOIS data raises some concerns about domain registration transparency, but the professional website and consistent branding support legitimacy. Overall, the site presents a trustworthy and professional front for FELCO's business operations.

P

Patrick Roger

patrickroger.com

68

Patrick Roger operates a premium chocolatier e-commerce website based in France, offering a variety of chocolate products and merchandising items. The website is professionally designed and hosted on Shopify, featuring rich content, clear navigation, and strong branding consistency. The company targets general consumers interested in luxury chocolates and related products. Technically, the site leverages modern e-commerce technologies including Shopify's platform, Cloudfront CDN, and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security measures include HTTPS enforcement and hCaptcha for form protection, contributing to a solid security posture. However, the absence of WHOIS registration data for the domain introduces some uncertainty regarding domain legitimacy, though the overall site professionalism mitigates immediate concerns. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms.

O

ODEN

oden.fr

58

ODEN is a French e-commerce brand specializing in natural cosmetic oils and skincare products sourced from French farmers. The website is built on the Shopify platform using the Symmetry theme and integrates multiple marketing and subscription services such as Klaviyo, Facebook Pixel, and Seal Subscriptions. The brand positions itself as a natural cosmetics provider with a focus on local sourcing and quality. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with a reputable hosting provider (OVH). However, explicit privacy policies and terms of service pages are not found in the provided content, which is a compliance gap. The site employs extensive tracking and marketing scripts, indicating a moderate to extensive user tracking level. Security posture is good with HTTPS and consent management, but could be improved by adding explicit security headers and policies. Overall, the site is professional and trustworthy but should enhance privacy and security transparency.

M

Maison Close

maison-close.com

65

Maison Close is a French-based high-end lingerie e-commerce brand established in 2005, specializing in luxury and sensual lingerie products. The website is professionally designed, leveraging the Shopify platform with regional subdomains to target European markets. It offers free delivery and returns, catering to a mature audience interested in premium lingerie. The technical infrastructure is modern, with extensive use of third-party marketing and analytics tools such as Klaviyo, Yotpo, and Google Tag Manager, ensuring robust digital marketing capabilities. Security posture is strong with HTTPS enforced and clientTransferProhibited domain status, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms in place. Overall, the website presents a trustworthy and professional e-commerce presence with room for improvement in security transparency and direct contact information.

P

Puressentiel France

puressentiel.com

69

Puressentiel France operates a professionally designed e-commerce website specializing in natural health and aromatherapy products, primarily essential oils. The website is built on the Shopify platform, leveraging modern web technologies and multiple marketing and analytics tools to optimize user experience and business insights. The brand positions itself as a trusted provider of natural and organic health products in the French market. Technically, the site demonstrates good performance, mobile optimization, and accessibility standards. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies in French. WHOIS data for the subdomain is unavailable, which is typical for subdomains, and does not raise legitimacy concerns given the consistent branding and content. Overall, the website is trustworthy, professional, and well-maintained, serving a general audience interested in natural health products.

M

Manucurist

manucurist.com

70

Manucurist is a French e-commerce retailer specializing in natural, vegan, and bio-sourced nail polish products. The company positions itself as a responsible and green alternative in the beauty industry, targeting consumers who prioritize ethical and eco-friendly personal care. The website is professionally designed, multilingual, and hosted on the Shopify platform, leveraging modern e-commerce technologies and marketing tools to reach a broad audience. The business model focuses on direct online sales with a strong emphasis on product quality and sustainability. Technically, the website demonstrates a mature digital infrastructure with extensive use of third-party analytics, marketing, and customer engagement tools such as Google Tag Manager, Facebook Pixel, TikTok Pixel, Klaviyo, and Yotpo. The site is optimized for performance, mobile responsiveness, and accessibility, ensuring a positive user experience. Security best practices are observed, including HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly disclosed. From a security perspective, the site maintains a strong posture with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. However, the lack of WHOIS transparency due to privacy protection limits domain registration insights, though the overall legitimacy of the business is supported by professional presentation and operational maturity. Overall, Manucurist presents a trustworthy and well-managed online retail presence with opportunities to enhance transparency around security policies and incident response. Strategic recommendations include publishing explicit security and vulnerability disclosure policies, improving contact channels for security matters, and continuous monitoring of third-party integrations to mitigate risks.

CNP Assurances Protection Sociale is a major French insurance provider specializing in complementary health and provident insurance products. The website targets individuals, professionals, and enterprises in France, offering tailored insurance solutions with an emphasis on ease of obtaining quotes online. The company is positioned as a trusted and established player in the social protection sector, supported by consistent branding and verified corporate information. Technically, the site is built on Drupal CMS and integrates modern analytics and marketing tools such as Google Tag Manager and New Relic, with a strong focus on user experience and mobile optimization. Security posture is good with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response information could be improved. Overall, the site presents a professional and trustworthy digital presence with minor gaps in domain registration transparency.

P

Peppa Pig Live Česko

peppapiglive.cz

57

Peppa Pig Live Česko is a localized entertainment website promoting live theatrical performances of the popular children's character Peppa Pig in the Czech Republic. The site targets families and children, offering ticket sales and multimedia content related to the live shows. The business operates on a small scale, focusing on event promotion and audience engagement through social media and online presence. Technically, the website is built on WordPress with modern front-end frameworks like Bootstrap and jQuery, and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile optimized and SEO friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. The domain registration is recent but consistent with the business localization and branding, indicating legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its family-friendly entertainment purpose.

T

TRADE CENTRE PRAHA a.s.

tcp-as.cz

45

TRADE CENTRE PRAHA a.s. is a municipal real estate company based in Prague, Czech Republic, focusing on property management and municipal real estate services. The website presents basic information about the company and its services, targeting local businesses and municipal clients. The digital infrastructure is built on WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. External integrations include YouTube and Google Tag Manager for analytics and media embedding. Security posture is minimal with no advanced headers or policies detected, and WHOIS data is unavailable, which limits trust assessment. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional but lacks comprehensive security and privacy features.

T

Taskize Limited

taskize.com

63

Taskize Limited operates a modern SaaS collaboration platform designed to streamline and modernize communications within the financial sector. Positioned as a Euroclear company, Taskize serves a global client base of over 600 firms across 88 countries, focusing on increasing operational capacity, reducing regulatory risk, and improving client satisfaction. Their platform offers solutions spanning communication, interoperability, business processes, data, and AI, targeting investment operations teams and financial market participants. The website reflects a professional and consistent brand with excellent content quality and user experience. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies and integrated analytics tools such as Google Analytics and HubSpot Analytics. The site is mobile-optimized and SEO-friendly, though there is room for improvement in accessibility and security header implementation. The presence of cookie consent mechanisms and a comprehensive privacy policy indicates good privacy compliance, including GDPR adherence. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. The WHOIS data for the domain is unavailable, which slightly impacts trustworthiness, but the strong corporate association with Euroclear and professional web presence mitigate concerns. Overall, Taskize presents a credible, well-positioned business with a mature digital presence. Strategic improvements in security transparency and WHOIS data availability would further strengthen their trust profile and compliance posture.

A

ArGe Medien GmbH im ZVEH

rein-in-die-innung.de

38

The website 'Rein in die Innung' serves as an informational and promotional platform for electrical trade guilds (Innungen) in Germany, operated by ArGe Medien GmbH within the Bundesinnungsverband (ZVEH). It targets electrical trade businesses, encouraging membership by highlighting benefits such as marketing support, technical and legal advice, training, and recruitment assistance. The site is well-branded and consistent with the trade association's mission. Technically, the site uses a modern JavaScript stack including jQuery, Raphaël for SVG maps, and integrates Google Analytics and Tag Manager for tracking, alongside Usercentrics for GDPR-compliant cookie consent. The site is hosted with domaincontrol.com DNS, indicating a professional hosting environment. Performance and mobile optimization are good, though accessibility is basic. From a security perspective, the site enforces HTTPS and uses a reputable cookie consent manager, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. Privacy compliance is strong with a comprehensive privacy policy linked. Overall, the website is trustworthy, professional, and safe, with no adult or questionable content. It effectively serves its business purpose but could improve security posture by adding security headers and incident response information.

F

forward

famab.de

55

Forward (fwd:) is a German non-profit association representing the event industry sector, focusing on political advocacy, community building, and sustainability initiatives. The organization positions itself as a key voice for the event industry in Germany, providing networking, knowledge transfer, and regional representation services. The website is professionally designed, content-rich, and targets industry members and stakeholders. Technically, the site is built on WordPress with Elementor and several plugins, showing a modern and well-maintained infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is privacy protected, consistent with GDPR regulations, and the domain appears legitimate with no suspicious indicators. Overall, the site demonstrates a mature digital presence with good compliance and trust signals.

B

Bobcat Company

bobcatdobris.cz

59

Bobcat Dobříš is a prominent manufacturing hub specializing in compact loaders, excavators, and related construction and agricultural machinery. Operating as part of the global Doosan group, the company serves the EMEA region and exports worldwide. The website reflects a mature business with a strong market position, comprehensive product offerings, and a commitment to innovation and social responsibility. Technically, the site employs modern web technologies, including Google Tag Manager and cookie consent tools, ensuring a good user experience and compliance with privacy regulations. Security posture is solid with HTTPS and cookie consent, though improvements in security headers and incident response transparency are recommended. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives.

A

Avant Tecno

avanttecno.com

53

Avant Tecno is a manufacturer specializing in articulated loaders and a wide range of attachments, targeting industrial and construction sectors. The website presents a professional image with a focus on product versatility and multi-functionality. The company appears to be established in Finland with a medium-sized business profile. Technically, the website is built on the concrete5 CMS platform and utilizes modern web technologies including jQuery, Google Tag Manager, and Cookiebot for cookie consent management. The site integrates Google Maps API and various marketing and analytics tools such as HubSpot and Hotjar, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. The absence of WHOIS data for the domain reduces trust slightly, though the website content and technology usage suggest a legitimate business. Overall, the site is functional, moderately optimized, and compliant with basic privacy requirements, but could improve transparency and security posture.

T

Tenneco

tenneco.com

72

Tenneco is a well-established enterprise specializing in the design, manufacture, and marketing of transportation industry products, including emissions control, suspension, powertrain, and performance solutions. The company positions itself as a global leader with a strong focus on innovation and customer-centric values. The website reflects a mature digital presence built on Adobe Experience Manager, featuring professional design, clear navigation, and mobile optimization. The technical infrastructure includes modern tracking and consent management tools such as Google Tag Manager and OneTrust, supporting compliance and analytics needs. Security posture is solid with HTTPS enforced and domain transfer protections in place, though there is room for improvement in DNS security and published security policies. Overall, the website and domain data indicate a trustworthy and credible business with a strong market position in the transportation sector.

P

Purem GmbH

purem.com

69

Purem GmbH, a subsidiary of the Eberspächer Group, specializes in exhaust gas cleaning and acoustic systems aimed at enabling clean and quiet mobility for passenger cars and commercial vehicles. The company positions itself as a key player in the automotive supplier sector, focusing on innovative solutions to improve air quality and reduce noise emissions globally. The website reflects a professional and consistent brand image aligned with its parent company, targeting automotive industry stakeholders and environmentally conscious customers. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes consent management tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and incident response information are absent. The missing WHOIS data for the domain is a notable concern but is mitigated by the strong brand presence and external references to the reputable parent company. Overall, the site demonstrates good business credibility and technical implementation with room for improvement in transparency and security disclosures.

B

Bobcat Company

bobcat.com

72

Bobcat Company Europe is a leading manufacturer and distributor of compact construction machinery and attachments, serving primarily the European market. The company emphasizes performance, robustness, and versatility in its products, targeting construction professionals and industrial users. The website is professionally designed, localized in German, and provides comprehensive product and dealer information, reflecting a mature digital presence. Technically, the site leverages modern JavaScript frameworks like Vue.js and BootstrapVue, integrates advanced media hosting via Cloudinary, and employs consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall legitimacy given the brand's global recognition and consistent online presence. Strategic recommendations include publishing detailed security and incident response policies and improving transparency around vulnerability disclosures and data protection officer contacts.

D

DiscoverCars.com

discovercars.com

74

DiscoverCars.com is a global online car rental comparison and booking platform offering users the ability to save up to 70% by comparing deals from over 1000 suppliers across more than 10,000 locations worldwide. The website emphasizes free cancellation and 24/7 multilingual customer support, positioning itself as a trusted intermediary in the transportation sector. The platform targets travelers seeking convenient and cost-effective car rental options globally. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Bing Ads, reCAPTCHA Enterprise, and CookiePro for consent management. The site is well-optimized for desktop and mobile, with good SEO and accessibility features. Performance is moderate, with a professional and consistent design that enhances user experience. From a security perspective, the site uses HTTPS with strong SSL configuration and implements security best practices such as reCAPTCHA and cookie consent banners. However, explicit security policies, incident response contacts, and vulnerability disclosure programs are not publicly available, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a high level of professionalism and trustworthiness, though the absence of WHOIS data and domain registration details slightly reduces the confidence in domain legitimacy. Strategic recommendations include publishing detailed security policies, establishing incident response contacts, and enhancing transparency around vulnerability disclosures to further strengthen security posture and user trust.

B

bookingkit

bookingkit.net

69

bookingkit is a mature, medium-sized SaaS company specializing in booking, marketing, and administration software for the European tours, activities, and attractions industry. The company positions itself as a market leader in Europe, offering a comprehensive platform that integrates booking generation, channel management, and centralized administration to simplify operations and increase sales for its customers. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a high level of digital maturity. The technical infrastructure leverages WordPress CMS with modern marketing and analytics tools such as Facebook Pixel, Hotjar, and HubSpot, ensuring robust data collection and user engagement capabilities. Security posture is strong with HTTPS, domain locking, and no visible vulnerabilities, although DNSSEC is not enabled. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligned with GDPR requirements. Overall, bookingkit demonstrates a high level of business credibility and operational professionalism, making it a trustworthy platform in its niche.

C

Comvation AG

cubetech.ch

64

Comvation AG is a Swiss digital and web agency based in Bern and Thun, specializing in developing customized digital products including web applications, websites, online shops, SEO, and consulting services. The company positions itself as a passionate and human-centric digital partner, serving businesses seeking tailored digital solutions. Their website demonstrates a professional and modern design with rich content, customer testimonials, and client references, indicating a strong market presence in their regional niche. Technically, the site leverages modern frameworks such as Astro, integrates Google Tag Manager and reCAPTCHA for analytics and security, and employs cookie consent mechanisms to comply with privacy regulations. Security posture is generally good with HTTPS enforced and secure form handling, though explicit security headers and published security policies are absent. The absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the overall business credibility and digital maturity are solid. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to improve trust.

S

swipe GmbH

recycling-map.ch

60

Recycling Map is a Swiss-based digital platform operated by swipe GmbH that aggregates over 12,000 recycling collection points across Switzerland. It serves as an informational resource for residents and municipalities to locate recycling stations for various materials, providing detailed data such as location, opening hours, and accepted recyclable goods. The platform supports user engagement through feedback mechanisms and favorites management, positioning itself as a niche environmental service provider within the Swiss market. Technically, the website leverages modern web technologies including Laravel backend inferred from routing patterns, Font Awesome for icons, Cookiebot for consent management, and Google Tag Manager for analytics. The site is well-optimized for mobile devices, uses HTTPS with strong security headers, and integrates a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CSRF protection, and transparent cookie disclosures. However, it lacks a dedicated security policy or incident response contact information, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious activities were detected in the provided content. Overall, Recycling Map presents a professional, trustworthy, and privacy-conscious web presence with strong compliance to GDPR and cookie regulations. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen its security posture and user trust.

L

Leitmotiv Online Medien GmbH & Co. KG

backstagepro.de

48

Backstage PRO is a well-established German professional network platform dedicated to the music industry, connecting musicians, bands, event organizers, and related businesses. It offers a comprehensive suite of services including booking opportunities, a musician marketplace, industry news, and premium cooperation campaigns. The platform is supported by notable partners such as Musikhaus Thomann, enhancing its market credibility and reach. The website is professionally designed, content-rich, and targets music professionals seeking networking and business opportunities within the German music scene. Technically, the site employs modern web technologies including Google Analytics 4, Google Tag Manager, and cookie consent management, with a mobile-optimized experience and good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies and a consent mechanism. Overall, the platform demonstrates a mature digital presence with strong business credibility and user trust.