Security Directory

L

Laval Mayenne Aménagements

groupement-lma.fr

61

Laval Mayenne Aménagements (LMA) is a regional real estate and urban development facilitator based in Laval, France. The company supports both public entities and private enterprises in managing and executing real estate and urban planning projects, offering services ranging from project management to assistance in construction and urban services. Their market position is focused on the Mayenne region, with a medium-sized organizational footprint and a professional digital presence. The website reflects a clear business model centered on project facilitation and urban development services, targeting local governments and businesses. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Matomo Analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit cookie consent mechanisms. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness from a domain registration perspective. Security-wise, the site shows no immediate vulnerabilities or exposed sensitive data, but improvements are recommended in security headers and incident response disclosures. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent. Overall, the risk level is moderate with recommendations to enhance security and compliance to strengthen trust and regulatory adherence. Strategically, LMA should focus on verifying domain registration legitimacy, implementing cookie consent, and enhancing security headers to improve their digital trust and compliance posture.

V

Ville de Laval

laval.fr

64

The website www.laval.fr is the official digital presence of the city of Laval, France, serving as a comprehensive portal for municipal information, public services, cultural activities, and citizen engagement. It targets residents, visitors, and local businesses, providing a broad range of services and information relevant to the community. The site is well-structured with clear navigation and professional design, reflecting the city's commitment to accessibility and transparency. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including jQuery, Google Fonts, and a robust cookie consent management system (Tarteaucitron.js). Analytics are handled via Matomo, respecting user privacy and Do Not Track settings. The site demonstrates good mobile optimization and accessibility features, although some security headers are not explicitly detected in the provided data. From a security perspective, the site enforces HTTPS and employs a comprehensive cookie consent mechanism, indicating a mature approach to privacy compliance. However, the absence of WHOIS data limits domain registration transparency, though this is likely due to AFNIC policies rather than malicious intent. No critical vulnerabilities or suspicious content were identified. Overall, the site presents a low-risk profile with strong business credibility as a government entity. Strategic recommendations include enhancing security headers, publishing explicit security policies, and providing clearer contact information for privacy and security concerns to further strengthen trust and compliance.

S

Spinkids.cz

spinkids.cz

47

Spinkids.cz is a Czech Republic-based e-commerce retailer specializing in creative and interactive children's toys, including popular brands such as Tlapková patrola, Bakugan, Rubik, Batman, and Harry Potter. The website targets parents and children seeking branded toys with fast delivery services. The business is relatively new, founded in 2023, and operates on the PrestaShop platform with a moderate digital maturity level. The site employs multiple analytics and marketing tools including Google Analytics, Matomo, Microsoft Clarity, and CJ.com affiliate tracking, indicating a focus on data-driven marketing and customer insights. Security posture is adequate with HTTPS enforced and tokenized forms, but lacks explicit security headers and published privacy or cookie policies, which are critical for GDPR compliance and user trust. No contact emails or phone numbers are directly available, which may impact customer support perception. Overall, the site is professionally designed, mobile-optimized, and safe for general audiences, but improvements in privacy compliance and security best practices are recommended.

Bouygues is a large French multinational conglomerate operating in diverse sectors including construction, telecommunications, media, and real estate. The website serves as a corporate portal and magazine to communicate news and updates about the group. The site is professionally designed, mobile-optimized, and uses modern web technologies such as WordPress, Google Tag Manager, Matomo Analytics, and Cookiebot for consent management. Security measures include HTTPS enforcement, reCAPTCHA integration, and comprehensive cookie consent mechanisms. However, the absence of publicly available WHOIS data and registrant information slightly reduces domain trustworthiness. No explicit security policy or incident response contact information is published, which could be improved to enhance transparency and compliance. Overall, the website reflects a mature digital presence consistent with a large enterprise.

T

Terres d'Argentan

terresdargentan.fr

50

Terres d'Argentan is a French local government community portal serving 49 communes with approximately 34,000 inhabitants. The website provides comprehensive information about community services, events, public announcements, and citizen resources. It positions itself as an essential public service platform for residents and stakeholders in the Argentan area. The site is well-branded and consistent with official government communications. Technically, the website is built on WordPress using a modern tech stack including Bootstrap, jQuery, Leaflet.js for maps, and integrates Google Fonts and Google reCAPTCHA for security. It employs Matomo for privacy-conscious analytics and uses the Complianz GDPR plugin to manage cookie consent, demonstrating a good level of digital maturity and compliance with European privacy regulations. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. Cookie consent is actively managed, and analytics cookies are disabled by default. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website is trustworthy, professionally maintained, and compliant with privacy laws. It serves its community audience effectively with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing a dedicated security policy, and continuing regular updates to maintain security posture.

V

Ville de Montreuil

montreuil.fr

11

The website www.montreuil.fr is the official digital presence of the city of Montreuil, France. It provides comprehensive municipal information, services, and citizen engagement tools. The site is well-branded, professionally designed, and targets a broad audience including residents, families, professionals, and associations. It offers multilingual support and a rich set of resources including news, events, and administrative procedures. Technically, the site is built on Drupal 11, leveraging modern web technologies and privacy-conscious analytics via Matomo. The site is mobile-optimized and accessible, with clear navigation and structured content. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data is typical for .fr domains managed by AFNIC and does not detract from the site's legitimacy. Overall, the site demonstrates a mature digital infrastructure suitable for a large municipal government entity. It balances user experience, privacy, and security effectively, though it could enhance transparency by publishing explicit security policies and incident response contacts.

B

Bouygues Immobilier Corporate

bouygues-immobilier-corporate.com

59

Bouygues Immobilier Corporate is a well-established real estate company with a strong presence in France and internationally. The website reflects a mature digital presence with comprehensive content about their activities, references, news, and corporate commitments. The technical infrastructure is modern, leveraging Drupal 10, Bootstrap 5, and privacy-focused analytics tools such as Matomo. The site implements GDPR-compliant cookie consent mechanisms and provides clear contact information and social media links. However, the WHOIS data for the domain is unavailable, which raises some concerns about domain registration legitimacy, though the website content and branding strongly support authenticity. Security posture is good with HTTPS and privacy SDKs, but explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for users.

L

L'Union sociale pour l'habitat

union-habitat.org

53

L'Union sociale pour l'habitat is a prominent French non-profit organization dedicated to supporting social housing entities (Hlm) and contributing to national housing policy development. The website serves as a comprehensive resource hub offering thematic content, publications, event information, and professional support to stakeholders in the social housing sector. The organization maintains a strong market position as a key actor in France's social housing ecosystem, with a large-scale presence and multiple affiliated entities. Technically, the website is built on Drupal CMS, employs modern web technologies such as lazy loading and Matomo analytics, and is optimized for mobile and accessibility. Security posture is strong with HTTPS enforcement and security headers, though explicit security and privacy policies are not prominently published. The absence of WHOIS data limits domain trust verification but does not detract significantly from the site's legitimacy given its professional presentation and content. Overall, the site is well-designed, content-rich, and trustworthy for its target audience.

VINCI is a global leader in concessions, energy services, and construction, operating in over 120 countries with a workforce of approximately 285,000 employees. The company focuses on sustainable development, energy transition, and social progress, positioning itself as a key player in infrastructure and mobility solutions. The website reflects a mature digital presence with comprehensive corporate information, investor relations, and newsroom updates, supporting transparency and stakeholder engagement. Technically, the site is built on Drupal 10, uses Matomo for privacy-conscious analytics, and includes cookie consent mechanisms, indicating good privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response details are absent. The WHOIS data is unavailable, which slightly reduces transparency but does not detract from the site's legitimacy given the strong corporate branding and content. Overall, VINCI's website demonstrates professionalism, good technical implementation, and a strong business credibility profile.

V

VALHOR

valhor.fr

51

VALHOR is a French interprofessional organization dedicated to supporting and representing professionals in the horticulture, floristry, and landscaping sectors. Established in 2005, it serves as a key industry body in France, providing accompaniment and support to horticulture professionals. The website reflects a professional and consistent brand image, targeting industry stakeholders with relevant content and services. Technically, the site leverages modern frameworks such as Nuxt.js and Vue.js, integrates Google Tag Manager and Matomo for analytics, and uses Axeptio for cookie consent management, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced, but lacks visible security headers and formal security policies, which could be improved. Privacy compliance is basic, with no explicit privacy or cookie policies detected in the provided content. Overall, the domain registration data aligns well with the organization's profile, supporting its legitimacy and trustworthiness.

A

Agence Nationale pour la Rénovation Urbaine

anru.fr

73

The Agence Nationale pour la Rénovation Urbaine (ANRU) is a French public agency dedicated to financing and supporting the transformation of urban neighborhoods under the national urban policy. The website serves as an authoritative resource hub offering detailed information on programs, recent projects, publications, and innovation initiatives related to urban renewal across France. It targets public sector stakeholders, journalists, startups, beneficiaries, and job candidates. Technically, the site is built on Drupal 10, employs Matomo for analytics, and uses a cookie consent mechanism compliant with GDPR. The site is well-structured, mobile-optimized, and professionally designed, reflecting its government agency status. Security posture is good with HTTPS enforced and privacy policies in place, though some HTTP security headers could be improved. WHOIS data is unavailable due to AFNIC policies for .fr domains but the domain and content strongly indicate legitimacy. Overall, the site is a reliable and professional digital presence for ANRU.

C

Caux Seine agglo

cauxseine.fr

61

Caux Seine agglo is a French regional government entity providing local community services and information to residents and businesses in the Caux Seine area. The website serves as an official portal for announcements, events, and public services, targeting a regional audience. The site is built on WordPress and leverages modern web technologies including Matomo for analytics and Google Fonts for typography. The technical infrastructure is moderately optimized with good mobile responsiveness and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of a privacy policy and WHOIS data reduces compliance and trust scores. Overall, the site is professional and trustworthy but could benefit from enhanced privacy disclosures and security hardening.

L

Laval Agglomération

agglo-laval.fr

63

Laval Agglomération operates as the official regional government body for the Laval area in the Mayenne department of France. The website serves as a comprehensive portal offering information and services related to economic development, urban planning, public services, tourism, and community engagement for approximately 100,000 residents and over 6,000 businesses. The site is well-structured with clear navigation and targets local residents, businesses, and visitors. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including jQuery and Google Fonts, and employs Matomo for analytics with privacy-conscious configurations such as Do Not Track support and explicit cookie consent management via tarteaucitron.js. Security posture is moderate with room for improvement in HTTP security headers and SSL configuration transparency. The absence of WHOIS data limits domain registration transparency but does not detract from the site's legitimacy given its official nature and content quality. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting user privacy rights. Overall, the site demonstrates a solid digital presence for a government entity with good content quality and user experience.

F

Fondation pour la Nature et l’Homme

fnh.org

73

Fondation pour la Nature et l’Homme is a well-established French non-profit foundation recognized as a public utility, dedicated to environmental awareness and ecological action. The organization operates multiple programs focused on biodiversity preservation, sustainable agriculture, responsible food consumption, and decarbonized mobility. Their digital presence is professional and content-rich, targeting a broad audience interested in ecological and social sustainability. The website supports donations with clear tax deduction information and multiple giving options, reflecting a mature fundraising model. Technically, the website is built on WordPress with modern JavaScript frameworks such as Alpine.js and HTMX, and integrates advanced analytics tools including Google Tag Manager, Microsoft Clarity, and Matomo. The site is mobile-optimized, accessible, and SEO-friendly, with a good performance profile. Security posture is solid with HTTPS enforced and consent management implemented, though some security headers could be explicitly verified and enhanced. No WHOIS details are available due to privacy protection, which is common and justified for non-profit entities. The website shows no signs of blocking or WAF challenges, allowing full content access. Privacy and cookie policies are comprehensive and GDPR compliant, but explicit contact emails and phone numbers are not publicly listed, relying instead on contact forms and social media channels. Overall, the foundation demonstrates a strong security and compliance posture appropriate for its sector, with a trustworthy and professional online presence. Strategic improvements could focus on enhancing security header implementation and incident response visibility.

B

Bouvet

bouvet.se

48

Bouvet is a Scandinavian publicly listed IT consultancy specializing in system development, business development, and design, with a strong focus on healthcare, public sector, and energy sectors. The company emphasizes creating digital solutions that contribute to societal benefits such as stable energy supply, efficient public services, and improved public health in Sweden. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation, targeting business and public sector clients. Technically, the site uses modern web technologies including Google Fonts, YouTube embeds, Matomo analytics, and LinkedIn Insight tags, hosted likely behind Cloudflare CDN, and built on the Enonic CMS platform. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and ISO 27001 certification, though some security headers could be improved and incident response contacts are not publicly detailed. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained, supporting Bouvet's market position as a leading IT consultancy in Scandinavia.

R

Rocher Blanc

rocher-blanc.mc

59

Rocher Blanc Monaco is a specialized digital communication agency operating in Monaco, focusing on services such as website creation, digital marketing (SEO, SEA, social media management), and visual identity development. As a member of the Inforca group, it targets small and medium enterprises seeking tailored digital solutions. The website reflects a professional and modern digital presence with clear service offerings and strong branding consistency. Technically, the site employs modern JavaScript libraries, uses HTTPS, and integrates analytics and consent management tools effectively. Security measures include the use of hCaptcha on contact forms and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements, making it a credible digital agency in its market niche.

F

Fédération Cinov

cinov.fr

48

Fédération Cinov is a well-established French federation representing 15 professional syndicats and over 4,000 member companies in the intellectual services sector, including consulting, engineering, and digital services. The organization provides a broad range of services including legal assistance, insurance, training, events, and advocacy, positioning itself as a key representative body within the BETIC branch. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its professional audience. Technically, the site is built on Drupal 10, employs modern analytics (Matomo), and integrates Google reCAPTCHA v3 for form security, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site is trustworthy, professional, and well-aligned with the federation's business objectives.

F

Friedrich-Ebert-Stiftung

fes.de

62

The Friedrich-Ebert-Stiftung (FES) is a well-established non-profit foundation based in Germany, dedicated to promoting social democracy through political education, international cooperation, scientific research, and scholarship programs. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding. The target audience includes individuals interested in social democratic values and political education. Technically, the site is built on TYPO3 CMS and incorporates modern web technologies such as Matomo analytics and Lottie animations, ensuring good performance and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and headers. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

E

ERSTE Foundation

erstestiftung.org

74

ERSTE Foundation is a non-profit organization based in Vienna, Austria, focusing on financial health, democratic values, cultural initiatives, and social finance. The foundation supports a variety of projects including financial education, social finance ventures, cultural collections, and democracy-related policy initiatives. Their market position is that of a well-established regional foundation with a strong presence in Central and Eastern Europe. The website reflects a professional and consistent brand image with clear navigation and comprehensive content tailored to a general audience interested in social impact and education. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Matomo Analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. The use of privacy-respecting analytics and a detailed cookie consent mechanism demonstrates a commitment to GDPR compliance and user privacy. From a security perspective, the site enforces HTTPS and employs cookie consent best practices. However, it lacks visible security headers and a dedicated security or incident response policy page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for non-profit organizations, and does not raise suspicion. Overall, ERSTE Foundation's website presents a trustworthy, professional, and privacy-conscious digital presence. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

C

Caisse d'Assurance Vieillesse des Pharmaciens (CAVP)

cavp.fr

61

The CAVP website represents a professional French pension fund dedicated to pharmacists, providing comprehensive retirement and social benefit services. The site is well-structured, content-rich, and targets pharmacists at various career stages, including active, retired, and collaborators. The business operates under the umbrella of CNAVPL, indicating a government-affiliated entity with a clear mission to manage pharmacists' retirement schemes. Technically, the website employs modern frontend technologies such as Vue.js and Webpack, ensuring a responsive and user-friendly experience. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. The site is served over HTTPS with no detected blocking or WAF challenges, indicating good security hygiene. However, some security headers are missing, and explicit security policies are not publicly disclosed. The security posture is solid with encrypted communications and cookie consent mechanisms compliant with GDPR. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and consistent branding support its legitimacy. Contact channels include phone, email, and online forms, enhancing user accessibility. Overall, the website is a reliable and professional platform for its target audience, with recommendations to enhance security headers and publish incident response policies to further strengthen trust and compliance.

N

Nipos

mistnikultura.cz

62

Pro kulturu is a well-established Czech cultural news portal published by the National Institute for Culture (NIK), a government-affiliated organization. The website provides extensive articles, podcasts, and editorial cycles focused on cultural events and personalities across the Czech Republic. It targets the cultural community and general public interested in cultural affairs. The site demonstrates strong digital maturity with a modern WordPress CMS, Bootstrap framework, and SEO best practices including structured data and Open Graph metadata. Privacy compliance is robust, featuring GDPR-aligned policies and cookie consent management via Complianz. Security posture is good with HTTPS enforced and Matomo analytics configured to require consent, though the absence of security headers suggests room for improvement. The lack of WHOIS data is a notable anomaly that slightly reduces trustworthiness but does not detract from the site's professional presentation and government affiliation. Overall, Pro kulturu is a credible and authoritative source for cultural information in the Czech Republic.

F

Festival Povaleč z.s.

povalec.cz

47

Festival Povaleč is a well-established cultural festival based in Valeč, Karlovy Vary region, Czech Republic, operating since 2006. The festival offers a diverse multi-genre program including music, theater, lectures, and children's activities, targeting local and regional audiences interested in cultural enrichment. The website reflects a professional and consistent brand image with strong multimedia content and social media integration. Technically, the site is built on WordPress with modern plugins and embeds, providing good mobile responsiveness and SEO optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and privacy policies are lacking. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the festival's public presence and history.

A

Agentúra JAY production s.r.o.

wshakespeare.sk

48

The website wshakespeare.sk represents Agentúra JAY production s.r.o., organizing the Letné Shakespearovské Slávnosti, a well-established cultural festival celebrating Shakespeare's plays in Bratislava and other Slovak and Czech cities. The site targets theater lovers, families, and children with a focus on live performances and cultural enrichment. The business model revolves around event organization and ticket sales, supported by a 25-year history and regional partnerships. Technically, the site uses a custom-built platform with common JavaScript libraries like jQuery, Google reCAPTCHA for form security, and Matomo for privacy-conscious analytics. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is moderate, with room for improvement in HTTP security headers and explicit privacy policies. The domain WHOIS data is consistent and supports the legitimacy of the business. Overall, the website is professional, trustworthy, and serves its cultural mission effectively.

C

CEA-Leti

leti-innovation-days.com

55

CEA-Leti is a prominent technology research institute under CEA, specializing in miniaturization technologies that enable smart, energy-efficient, and secure solutions for various industries. The website serves as a platform to promote and organize multiple semiconductor and technology innovation events globally, targeting industry professionals and researchers. Their market position is strong as a global leader in semiconductor innovation events, supported by a large organization and a consistent brand presence. Technically, the website is built on a modern WordPress CMS with Elementor and several event management plugins. It uses Cloudflare for DNS and serves content over HTTPS, ensuring a secure and reliable user experience. The site is moderately optimized for performance and mobile devices, with good SEO practices and accessibility features. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and advanced security headers like Content-Security-Policy. There is no visible security policy or incident response information, which could be improved. Privacy compliance is partially addressed with a privacy policy and GDPR links, but no cookie consent mechanism is present. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in security and privacy compliance. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance their posture.

VINCI is a global leader in concessions, energy services, and construction, operating in over 120 countries with a workforce of approximately 285,000 employees. The company emphasizes sustainability, energy transition, and social progress, positioning itself as a responsible corporate citizen. The website reflects a mature digital presence with comprehensive corporate information, news updates, and engagement initiatives targeting investors, partners, job seekers, and the general public. Technically, the site is built on Drupal 10, integrates Matomo for analytics, and uses Tarteaucitron.js for cookie consent management, indicating a focus on privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers could be enhanced. HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. Security posture is solid but could be improved by publishing explicit security policies and vulnerability disclosure mechanisms. The WHOIS data is missing or inaccessible for the queried domain, which is a minor concern but likely due to privacy protection or query format. Overall, the site is trustworthy and professionally maintained. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a formal vulnerability disclosure process to further strengthen trust and compliance.

Plus que pro Solution is a French business-oriented website offering a comprehensive solution aimed at small and medium enterprises (TPME) to protect their reputation, enhance their know-how, and improve overall business performance. The website positions itself as a trusted partner for TPMEs, leveraging digital tools and reputation management services. The content is professionally presented, targeting a French-speaking audience with clear business value propositions. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and SEO-optimized infrastructure. The presence of multiple analytics and marketing tools such as Google Analytics, Matomo, and Microsoft Clarity shows a mature approach to data-driven marketing and user behavior analysis. Security-wise, the site uses HTTPS and has no visible critical vulnerabilities or exposed sensitive data, but lacks some security headers and explicit privacy and cookie policies, which are important for GDPR compliance. The absence of WHOIS registration data is a concern for domain legitimacy and trust, although the website content and technical setup appear professional. Overall, the site demonstrates a solid business and technical foundation but would benefit from enhanced privacy compliance and clearer contact and security policies.

W

WS Interactive

ws-interactive.fr

55

WS Interactive is a well-established French web agency based in Toulouse, offering tailored digital solutions including website creation, mobile app development, SEO, and UX/UI design. With over 25 years of experience, the agency targets businesses seeking high-quality digital presence and marketing strategies. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital infrastructure. Technically, the site runs on WordPress with modern JavaScript libraries and employs analytics tools like Matomo and Google Tag Manager, alongside privacy-compliant cookie consent mechanisms. Security posture is solid with HTTPS and CAPTCHA protections, though explicit security headers and policies could be enhanced. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and compliance. Overall, WS Interactive demonstrates a strong market position in the technology sector with a focus on quality and client engagement.

P

PC Presse

linformaticien.com

63

L'Informaticien is a French professional media portal focused on IT and cybersecurity news, targeting IT managers and professionals. It is operated by PC Presse and offers a range of services including news articles, videos, newsletters, and subscription options. The website is well-structured and uses Joomla CMS with modern web technologies, providing a good user experience and mobile optimization. Security measures include HTTPS and hCaptcha for form protection, though some security headers are missing. The absence of WHOIS data for the domain is a concern and should be investigated further to confirm domain legitimacy. Overall, the site presents a professional and trustworthy front for its target audience.

T

The Shift Project

theshiftproject.org

62

The Shift Project is a French non-profit think tank established in 2010, dedicated to advancing the decarbonization of the economy through rigorous scientific research and policy influence. It targets professionals, leaders, and stakeholders across sectors such as energy, transport, agriculture, industry, and public administration. The organization operates with a strong volunteer network and produces publications, reports, and events to inform and engage its audience. Technically, the website is built on WordPress with a modern Flynt theme, leveraging analytics tools like Matomo, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted by OVH sas, uses HTTPS, and demonstrates good mobile optimization and accessibility. While no explicit security headers were detected, the site follows good security practices with secure forms and domain registration protections. From a security perspective, the site maintains a good posture with HTTPS and domain status protections but could improve by enabling DNSSEC and implementing security headers such as CSP and HSTS. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. No incident response or vulnerability disclosure policies were found publicly. Overall, the website is professional, trustworthy, and well-positioned in its niche. It exhibits strong content quality and business credibility, with moderate technical and security scores. Strategic improvements in security headers and public security policies would enhance its posture further.

Komunitní plánování Ostrava is a Czech non-profit organization focused on community planning of social services tailored to the needs of Ostrava citizens. The website serves as an information portal providing news, event calendars, and resources related to social service planning and community engagement. It maintains a network of partner organizations and offers structured content in Czech language. Technically, the site is built on WordPress CMS with plugins for event management and GDPR compliance, and uses Matomo for analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving its community-focused mission effectively.

A

Acronis International GmbH

acronis.com

80

Acronis International GmbH is a well-established global provider of cybersecurity and data protection solutions, specializing in backup software and services for consumers, businesses, and managed service providers (MSPs). Founded in 2003, the company has positioned itself as a leader in the technology sector, offering award-winning products that protect sensitive information across various platforms. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the website employs modern web technologies including Vue.js, Matomo analytics, and Google Tag Manager, ensuring a responsive and performant user experience. Security best practices are evident with HTTPS enforcement, robust security headers, and no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant, supporting the company's commitment to data protection. The security posture is strong, though the absence of a public vulnerability disclosure policy and explicit incident response contacts suggests areas for improvement. The WHOIS data is incomplete, likely due to privacy protection, but the overall trust indicators and structured data confirm the legitimacy of the domain and business. The website is free from adult or questionable content, targeting a general professional audience. Overall, Acronis demonstrates a high level of digital maturity and security awareness, making it a trustworthy and professional platform for its users.

O

Orléans Métropole

orleans-metropole.fr

10

Orléans Métropole is the official metropolitan government entity serving the Orléans area in France, providing a wide range of public services including urban mobility, waste management, water and sanitation, urban planning, and economic development. The website serves residents, local businesses, and visitors by offering comprehensive information and access to services. The site is built on TYPO3 CMS and uses modern web technologies, including Matomo for analytics, ensuring a good level of digital maturity and user experience. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is partial, with a privacy policy present but lacking a visible cookie consent mechanism. WHOIS data is unavailable, likely due to AFNIC policies, but the site shows strong trust indicators consistent with a government entity.

C

Clermont Auvergne Métropole

clermontmetropole.eu

10

Clermont Auvergne Métropole is a public metropolitan government entity serving 21 communes in the Clermont-Ferrand region of France. The website provides comprehensive information on urban planning, waste management, mobility, cultural activities, and ecological transition initiatives. It targets residents and stakeholders within the metropolitan area, offering services and resources relevant to local governance and community development. The site is positioned as a key regional authority with a broad scope of public services.

C

Confédération générale des Scop et des Scic

pourunautremodeledesociete.coop

39

The website pourunautremodeledesociete.coop represents the Confédération générale des Scop et des Scic, a French non-profit organization dedicated to supporting cooperative societies. It serves as a hub for information about cooperative congresses, partners, and the cooperative network across France. The site targets cooperative members, stakeholders, and the general public interested in cooperative models. The business model is non-profit and focused on advocacy, networking, and resource provision within the cooperative sector. The organization is well-established with a domain registered in 2021 and a consistent brand presence.

I

insite

insite.coop

10

Insite.coop is a French cooperative web agency specializing in Drupal-based custom website development, serving public sector entities, associative networks, and cooperatives since 1996. The company emphasizes responsible web design, eco-conception, accessibility, and digital strategy. Their market position is strong within the public and cooperative sectors, supported by a medium-sized cooperative business model and a portfolio of reputable clients such as Gallimard and the Museum National d'Histoire Naturelle. Technically, the website is built on Drupal 11, leveraging modern JavaScript libraries and Matomo for privacy-respecting analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. Security posture is good with HTTPS enforced and privacy mechanisms in place, including cookie consent and Do Not Track respect. However, the absence of DNSSEC, security headers, and published security policies indicates areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR. Strategic recommendations include enhancing security headers, publishing incident response and security policies, and enabling DNSSEC to strengthen domain security.

ESFIN Gestion is a French fund management company specializing in capital investment for enterprises within the Social and Solidarity Economy (ESS) and impact-driven sectors. Affiliated with Crédit Coopératif (Groupe BPCE), ESFIN focuses on long-term equity financing for non-listed companies, managing multiple investment vehicles dedicated to various niches within the ESS and impact ecosystem. The website reflects a professional and consistent brand image, with clear messaging targeting socially conscious enterprises and investors. Technically, the site is built on WordPress using modern plugins such as Elementor and Yoast SEO, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and formal security policies are absent. WHOIS data is unavailable, limiting domain trust analysis, but the affiliation with a reputable banking group and professional content mitigate concerns. Overall, ESFIN Gestion presents a credible and trustworthy digital presence aligned with its business objectives.

G

Groupement National de la Cooperation

entreprises.coop

55

Coop FR represents a large network of French cooperative enterprises, promoting the cooperative business model characterized by democratic governance and equitable profit sharing. The organization serves as a national voice for over 23,000 cooperatives employing 1.3 million people. The website provides resources, news, testimonials, and event information to support and promote the cooperative movement in France. Technically, the site is built on Drupal 10, hosted on OVH infrastructure, and uses Matomo analytics with privacy-conscious settings. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital presence. Security posture is solid with HTTPS enabled and no exposed sensitive data, though additional security headers and a formal security policy could enhance protection. Privacy compliance is supported by visible cookie consent and a privacy policy, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-aligned with its business mission.

A

Avise

avise.org

56

Avise is a French non-profit organization dedicated to providing resources and support for the social and solidarity economy (ESS). The website serves as a key platform for social entrepreneurs, public and private stakeholders, and actors within the social economy sector, offering information, tools, and support to foster social innovation. The organization positions itself as a central resource in the French ESS ecosystem, focusing on knowledge dissemination and capacity building. Technically, the website is built on Drupal 10, leveraging modern web technologies including FontAwesome for icons and Matomo alongside Google Tag Manager for analytics. The site demonstrates good mobile optimization and a professional design, although some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and SEO. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism with high privacy settings, indicating awareness of privacy regulations. However, no explicit privacy policy or terms of service pages were detected in the provided content, and security headers appear to be missing or unreported. No vulnerability disclosure or incident response information is available, which could be improved to enhance trust and compliance. Overall, the site appears legitimate and professionally maintained, but the absence of WHOIS data and explicit privacy/legal documentation limits full trust assessment. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact and incident response information to strengthen compliance and user trust.

C

Club des Anciens Cooperateurs

clubdesancienscooperateurs.coop

52

The Club des Anciens Cooperateurs is a French non-profit organization dedicated to maintaining connections among retired members of the cooperative movement (Scop). The website serves as a community hub, offering information about the club, its activities, publications, and cooperative history. It targets retired cooperators and those interested in cooperative experiences and history. The organization appears small and focused on community engagement within the cooperative sector in France. Technically, the website is built on Drupal 10, leveraging Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and includes a cookie consent mechanism compliant with GDPR. The domain is registered with Domains.coop Limited, consistent with the cooperative branding and French origin. No blocking or WAF challenges were detected, and the site is fully accessible. From a security perspective, HTTPS is properly implemented, but there is room for improvement in security headers and publishing explicit security policies or incident response contacts. The WHOIS data is transparent and consistent, supporting the site's legitimacy. The contact email is a generic personal email, which may affect perceived professionalism. Overall, the website presents a trustworthy, well-maintained community platform with good privacy compliance and moderate security posture. Strategic improvements in security policies and contact professionalism would enhance trust and security posture further.

F

Fédération SCOP Communication

fdcom.coop

53

The Fédération SCOP Communication is a French cooperative federation representing 270 cooperative enterprises in the communication and culture sectors. Established in 2004, it serves as a network and support organization providing services such as RSE engagement, visibility enhancement, thematic meetings, personalized support, and representation in paritary bodies. The website reflects a professional and consistent brand image targeting cooperative communication businesses and stakeholders. Technically, the site is built on Drupal 10, employs modern analytics tools like Matomo and Google Tag Manager, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS and cookie management, though some improvements like DNSSEC and security headers are recommended. The domain registration data aligns well with the business identity, indicating high legitimacy. Overall, the site is well-structured, content-rich, and trustworthy.

F

Fédération des Coopératives d'Activité et d'Emploi

les-cae.coop

51

The Fédération des Coopératives d'Activité et d'Emploi is a French federation supporting the creation and development of cooperative business models known as CAE. The organization promotes the entrepreneur salarié and associé status, providing resources, networking, training, and advocacy for cooperative enterprises. The website is well-structured, professionally designed, and targets entrepreneurs and cooperatives in France. Technically, the site is built on Drupal 10, uses Matomo for analytics, and includes modern web technologies with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The domain registration is consistent with the business claims and shows no suspicious patterns. Overall, the website demonstrates a mature digital presence with good business credibility and compliance with GDPR.

U

UR SCOP MIDI PYRENEES

scopoccitanie.coop

51

The website represents UR SCOP MIDI PYRENEES, a regional cooperative union serving the Occitanie region in France. It provides support, training, and networking services to cooperative businesses such as Scop and Scic. The site is well-structured, professionally designed, and targets cooperative entrepreneurs and members in the region. It leverages Drupal 10 CMS and integrates modern analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent, though some security headers and explicit policies could be improved. The domain registration aligns well with the business identity, enhancing trustworthiness. Overall, the site is a credible and professional resource for cooperative businesses in Occitanie.

U

URSCOP ILE DE FRANCE

les-scop-idf.coop

55

The website represents URSCOP ILE DE FRANCE, a regional cooperative union established in 2010, focused on supporting and federating cooperative enterprises such as Scop and Scic in Île-de-France, Centre-Val de Loire, and overseas territories. It offers services including accompaniment for business creators, cédants, associations, and employee buyers, as well as training and networking opportunities. The site is well-positioned as a regional leader in the cooperative ecosystem with strong partnerships and a clear mission. Technically, the website is built on Drupal 10, leveraging modern analytics tools like Matomo and Google Tag Manager with privacy-conscious configurations. The site is mobile-optimized, accessible, and SEO-friendly, hosted on a cooperative-oriented infrastructure. Performance is moderate with good technical implementation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security policy or incident response contacts are published. No vulnerabilities or suspicious content were detected. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the website is trustworthy, professional, and well-maintained, serving its cooperative audience effectively. Strategic improvements could focus on enhancing security headers, publishing security policies, and enabling DNSSEC to further strengthen trust and resilience.

U

Union régionale des Scop et Scic Auvergne-Rhône-Alpes

scop.org

57

Union régionale des Scop et Scic Auvergne-Rhône-Alpes operates as a regional cooperative network supporting cooperative entrepreneurs and enterprises in the Auvergne-Rhône-Alpes region of France. The organization provides a comprehensive range of services including entrepreneurial accompaniment, training, financial support, and networking opportunities. It holds a strong market position as the leading cooperative support network in the region, supported by partnerships with regional authorities and the European Union. The website reflects a professional and consistent brand image, targeting cooperative entrepreneurs and social economy actors. Technically, the website is built on Drupal 10, leveraging modern web technologies and privacy-conscious analytics tools such as Matomo. It integrates social media and tracking scripts responsibly with a cookie consent mechanism in place. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common and justified for this type of organization. Overall, the security posture is solid but could be improved with additional transparency and security controls. The overall risk assessment is low, with the site demonstrating good business credibility, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

A

ARESCOP

revisioncooperative.coop

56

The website revisioncooperative.coop represents ARESCOP, a cooperative network focused on providing cooperative revision and auditing services to Scop, Scic, and Coop47 entities in France. The platform serves as an informational and contact portal, offering regional office details and testimonials to support cooperative governance. The business model is non-profit and cooperative-oriented, targeting cooperative enterprises and their members across France. Technically, the website is built on Drupal 10, leveraging modern web technologies including FontAwesome for icons and Matomo for analytics, complemented by a GDPR-compliant cookie consent mechanism (tarteaucitron). The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Hosting details are not explicit. From a security perspective, the site enforces HTTPS and uses cookie consent tools but lacks advanced security headers and a published security policy or incident response contacts. The domain registration is consistent with the business, registered under ARESCOP in France since 2019, indicating legitimacy. No WAF or blocking mechanisms are detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security hardening and transparency regarding incident response and vulnerability disclosure.

S

SOCODEN

financer-les-scop.coop

53

The website financer-les-scop.coop serves as a financial resource platform for the cooperative movement of Scop and Scic in France, operated by SOCODEN. It offers a range of financial tools including participative loans, treasury loans, bank loan guarantees, equity financing, and real estate financing tailored to cooperative enterprises. The site is well-positioned within the French cooperative ecosystem, supported by a network of related cooperative organizations and federations. Technically, the site is built on Drupal 10, integrates modern analytics tools such as Matomo and Google Tag Manager, and employs a robust cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enabled and no exposed sensitive data, although DNSSEC is not enabled and some security headers could be improved. Overall, the site is professional, trustworthy, and provides clear contact information and social media presence, supporting its credibility and user engagement.

C

Confédération générale des Scop et des Scic

pouruneeconomiehumaine.coop

53

The website pouruneeconomiehumaine.coop represents the Confédération générale des Scop et des Scic, a well-established French cooperative confederation with approximately 140 years of history. The site primarily promotes the 2026 congress event and provides resources and information for cooperative members, partners, and stakeholders. It features detailed navigation for congress registration, partner engagement, and regional cooperative networks. The business model is non-profit and focused on supporting cooperative enterprises in France. The website content is professionally presented in French, targeting cooperative members and related organizations.

C

Confédération générale des Scop et des Scic

jetransmetsamessalaries.fr

57

The website 'Je transmet à mes salariés' is a professionally maintained platform operated by the Confédération générale des Scop et des Scic, focusing on facilitating the transmission of businesses to employees in France. It provides comprehensive information, resources, and testimonials to support cooperative business transitions, targeting entrepreneurs, ceding business owners, employees, and accounting experts. The site leverages Drupal 10 CMS and integrates modern analytics and marketing tools such as Google Tag Manager, Matomo, and LinkedIn Insight, ensuring a robust technical infrastructure with good mobile optimization and accessibility. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, reflecting a good privacy posture. However, it lacks some advanced security headers and explicit incident response contacts, which could be improved. The absence of WHOIS registrant data is likely due to privacy protection policies common with .fr domains and does not detract from the site's legitimacy. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR requirements. Strategically, the platform serves a niche cooperative business market in France, supported by a network of partner cooperative organizations and regional unions. It maintains a consistent brand presence across social media and offers valuable content such as e-books and video testimonials, enhancing user engagement and trust.

S

Accueil | Start-Scop le site des start-up coopératives

start-scop.fr

48

The website www.start-scop.fr serves as a dedicated platform promoting and supporting start-up cooperatives (Scop/Scic) in France. It targets young entrepreneurs seeking social utility and a sense of belonging through cooperative business models. The site offers guidance on creating, financing, and accompanying cooperative startups, showcasing successful cooperative entrepreneurs and providing news and resources. Technically, the site is built on Drupal 10 CMS, integrates Matomo and Google Analytics for tracking with privacy considerations, and uses modern web technologies including YouTube APIs. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though it lacks explicit security headers and formal privacy or security policies. The domain WHOIS data is not publicly available, typical for .fr domains or privacy-protected registrations, but the website content and activity indicate legitimacy. Overall, the site is professional, well-structured, and serves a niche cooperative entrepreneurship community effectively.