Security Directory

M

moonseven edito

moonseven-editing.com

0

moonseven edito is a French content creation agency specializing in editorial strategy and content production for socially engaged organizations such as associations, foundations, NGOs, and socially responsible enterprises. Their services include content strategy consulting, motion design, web series, and video production, positioning them as a niche player in the media sector focused on social impact. The website is built on WordPress with a Bootstrap framework, integrating common marketing and analytics tools like Google Analytics and Tag Manager. While the site is professionally designed and mobile-optimized, it lacks critical privacy and cookie policies, and uses an outdated WordPress version, which may expose it to security risks. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and structure appear genuine and business-focused.

B

Boutique Interne CentraleSupélec

boutiqueinternecs.com

0

Boutique Interne CentraleSupélec operates an internal e-commerce platform dedicated to the services of CentraleSupélec, offering textiles, accessories, and goodies. The platform is built on Shopify and targets internal university departments, providing a controlled environment for ordering and quote requests. The website is professionally designed with consistent branding and clear navigation, supporting French language users primarily in France. Technically, the site leverages Shopify's infrastructure hosted on Google Cloud, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS, domain locking, and cookie consent mechanisms, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the site is trustworthy and compliant with GDPR, but could improve transparency on security policies and vulnerability disclosures.

A

Agence KARACTERE

agencekaractere.fr

0

Agence KARACTERE is a French multidisciplinary communication and design agency established in 2011, offering a broad range of services including strategic consulting, content production, graphic design, web development, maintenance, and web marketing. The agency targets businesses and institutions, particularly in higher education, research, and agro-food sectors. The website demonstrates a professional digital presence with modern WordPress technology and compliance with GDPR and cookie regulations. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency. Security posture is generally good with HTTPS and cookie consent mechanisms, but could be improved by adding explicit security headers and incident response information. Overall, the website is trustworthy and well-designed, but verification of domain registration is recommended.

C

Centrale Nantes Alumni

centraliens-nantes.org

0

Centrale Nantes Alumni operates a comprehensive digital platform serving the alumni, students, faculty, and recruiters associated with Centrale Nantes engineering school. The website offers a rich set of services including an alumni directory, event calendars, job board, mentoring, and community engagement tools. It is well-positioned as a key network facilitator for its target audience in France and internationally. The platform leverages modern web technologies such as Vue.js, Google Analytics, and Google Maps API to deliver a responsive and interactive user experience. Security posture is solid with HTTPS enforced and secure login options, though some security headers could be improved. Privacy policies and cookie consent mechanisms are present and GDPR compliant, reflecting good privacy practices. The domain WHOIS data is unavailable likely due to privacy protection, which is common for such organizations. Overall, the website is professional, trustworthy, and well-maintained, supporting its role as a vital alumni network hub.

C

Centrale Lille Alumni

centraliens-lille.org

0

Centrale Lille Alumni is a professional alumni association website dedicated to graduates and students of Ecole Centrale de Lille. It provides resources, networking opportunities, career development services, event information, and a job board tailored to its community. The site is well-branded and targets primarily French-speaking alumni and recruiters, with English language support available. The business model centers on membership and community engagement, positioning itself as a key player in alumni relations for the institution.

C

Centrale Méditerranée Alumni

centraliens-mediterranee.fr

0

Centrale Méditerranée Alumni operates as a regional alumni network for graduates and students of Centrale Méditerranée, providing a platform for networking, career development, and community engagement. The website serves as a hub for members to access news, events, job opportunities, and group activities, positioning itself as a key resource for its alumni community in France. Technically, the site employs modern web technologies including Vue.js, Google Analytics, and Google Maps API, ensuring a responsive and interactive user experience. Security measures include HTTPS enforcement and OAuth-based authentication with major providers, enhancing user trust and data protection. However, the absence of WHOIS data limits domain registration transparency, though the site’s professional presentation and official branding support its legitimacy. Overall, the site demonstrates a mature digital presence with good content quality and security posture, suitable for its educational and non-profit sector audience.

A

Association des Centraliens de Lyon

centraliens-lyon.net

0

The Association des Centraliens de Lyon operates as a professional alumni network for graduates of Centrale Lyon, providing career support, networking opportunities, events, and publications. The website is well-structured, with a clear focus on member engagement and information dissemination. The technical infrastructure leverages a combination of modern JavaScript libraries and frameworks, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, CSRF tokens, and hCaptcha are implemented, reflecting a good security posture. However, the absence of WHOIS data and lack of explicit security and incident response policies present areas for improvement. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and contact information.

W

WHATS4U

whats4u.org

0

WHATS4U is a collective of 18 alumni associations from prestigious French Grandes Écoles focused on facilitating professional evolution for alumni through events, job offer sharing, and partnerships. The website is professionally designed using modern web technologies such as Webflow, Memberstack, and Weglot for multilingual support. It demonstrates good digital maturity with responsive design and clear navigation. Security posture is solid with HTTPS and secure membership management, though it lacks some security headers and explicit incident response policies. Privacy compliance is basic with presence of terms and cookie policy pages but no active consent mechanism. Overall, the site is trustworthy and well-positioned in its niche, serving alumni and recruiters effectively.

T

TIM s.a.s.

tim-sa.fr

0

TIM s.a.s. is a small manufacturing and retail company based in Reims, France, specializing in fencing, gates, motorization, and aluminum and plastic profiles. The company targets both professionals and private individuals, offering a broad range of products including industrial and residential fencing, motorization systems, and related accessories. Their market position is regional with a focus on quality professional products and services such as delivery and professional accounts. The website reflects a professional and consistent brand image with clear contact information and comprehensive product offerings. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and FontAwesome, and integrates a consent management platform for GDPR compliance. The site is mobile-optimized and provides good SEO and accessibility basics. Security-wise, HTTPS is used and cookie consent is implemented, but explicit security headers and incident response information are missing. The WHOIS data is unavailable, which slightly reduces trust but the overall site and business presentation are legitimate and professional. Recommendations include enhancing security headers, adding incident response contacts, and maintaining regular audits of third-party scripts.

P

Poissonnerie des Halles

letal.fr

0

Poissonnerie des Halles à Reims operates a local seafood retail business with over 20 years of experience, offering fresh fish, shellfish, and seafood platters through an online ordering platform with delivery and pickup options. The website is professionally designed, mobile responsive, and provides clear business information including physical address and phone contact. However, the absence of WHOIS data limits domain trust verification. Technically, the site uses modern frontend technologies such as Bootstrap and jQuery, but lacks some security headers and explicit cookie consent mechanisms. Overall, the security posture is moderate with room for improvement in headers and incident response transparency.

C

Commune de Trépail

trepail.fr

0

The website www.trepail.fr serves as the official municipal portal for the Commune de Trépail, located in the Marne region of France. It provides local residents and visitors with information about municipal services, news, administrative procedures, and tourism opportunities within the commune. The site is positioned as a small government entity's digital presence, focusing on community engagement and regional promotion. The content is well-structured, relevant, and professionally presented, targeting local citizens and tourists interested in the Champagne route and natural regional park.

C

Champagne L. Albert Guichon

champagne-albertguichon.fr

0

Champagne L. Albert Guichon is a small family-owned vineyard and champagne producer located in Mardeuil, France, with a heritage dating back to 1929. The company specializes in cultivating traditional champagne grape varieties and producing a range of champagne cuvées. Their market position is that of a boutique producer emphasizing quality and environmental responsibility, as evidenced by their HVE certification. The website reflects a professional and consistent brand image, targeting wine enthusiasts and hospitality clients. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and integrates Google Analytics and a robust cookie consent mechanism via Consentmanager.net. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though some security headers could be improved. The security evaluation shows good practices in data protection and privacy compliance, including GDPR adherence and cookie consent. However, the absence of WHOIS data limits domain trust assessment. Overall, the site is trustworthy and professionally maintained, with clear contact information and social media presence. Strategically, the company should consider enhancing security headers, publishing a vulnerability disclosure policy, and improving WHOIS transparency to strengthen trust and compliance further.

B

BIO ATTITUDE S.A.

bioattitude.com

0

BIO ATTITUDE S.A. is a French manufacturer specializing in ecological and bio-based cleaning products primarily targeting professional and environmentally conscious consumers. The company emphasizes the use of renewable plant-based raw materials sourced from regional agriculture and agro-industry. Their market position is that of a niche leader in ecological cleaning solutions within France, supported by certifications such as Ecocert Greenlife. The website reflects a professional and consistent brand image with clear product offerings and sector-specific solutions.

C

Champagne Mondet

champagne-mondet.fr

0

Champagne Mondet is a traditional family-owned champagne producer based in Cormoyeux, France, with a heritage dating back to 1926. The company cultivates vineyards in the Champagne region and offers a range of champagne products through both physical and online retail channels. Their website reflects a professional and consistent brand image, targeting mature consumers interested in quality champagne. The business model focuses on production and direct sales, supported by participation in wine salons and events. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and a consent management platform, ensuring a responsive and user-friendly experience. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the overall digital presence and business information suggest legitimacy. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and maintaining privacy compliance to strengthen trust and security culture.

A

ACI élévation

aci-elevation.com

0

ACI élévation is a French manufacturer specializing in vertical handling equipment including monte-charges, tables élévatrices, and plateformes élévatrices. The company positions itself as a leader in the French industrial equipment sector with a comprehensive offering from design to maintenance and a national commercial network. The website reflects a mature business with professional branding and detailed product information targeting industrial clients in France. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and FontAwesome, and implements cookie consent and Google Analytics for tracking. Security posture is adequate with HTTPS and consent mechanisms but lacks advanced security headers and explicit incident response policies. WHOIS data is unavailable, which slightly reduces trust but the overall business credibility remains high based on website content and client references. The site is fully accessible with no WAF or blocking detected.

P

PJHB Notaires Associés

pjhb.fr

0

PJHB Notaires Associés is a professional notarial office operating in Epernay and Reims, France, offering legal services in real estate, family law, business law, and rural law. The firm is composed of multiple notaries and provides comprehensive support for private and professional legal projects. The website reflects a regional market position with a focus on personalized client service and environmental responsibility through digitalization initiatives. Technically, the website employs modern web technologies including Bootstrap, jQuery, and FontAwesome, with a responsive design and cookie consent mechanisms ensuring GDPR compliance. Security posture is moderate with HTTPS usage and cookie consent but lacks visible advanced security headers. The absence of WHOIS data limits domain trust assessment, but the professional presentation and clear contact information support legitimacy. Overall, the website is well-structured, user-friendly, and compliant with privacy regulations, serving its target audience effectively.

P

PACEMETAL SA

pacemetal.fr

0

PACEMETAL SA is a French manufacturing company specializing in custom metal staircases, including straight, helical, and curved designs, as well as metal guardrails and walkways. Positioned as a leader in France, the company emphasizes compliance with applicable norms for public spaces, offices, industry, and residential buildings. The website reflects a medium-sized enterprise with over 40 employees and a long collective experience in metal fabrication. Technically, the website employs modern frameworks such as Bootstrap and integrates Google Analytics and Tag Manager for tracking, alongside a GDPR-compliant cookie consent mechanism. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response information. The absence of WHOIS data reduces transparency but the professional presentation and compliance signals support legitimacy. Overall, the website is well-structured, mobile-optimized, and provides clear business information, though direct contact emails and phone numbers are not explicitly listed in the HTML content.

A

Anodur

anodur.fr

0

Anodur is a French company specializing in surface treatment of aluminum and titanium, including anodization and passivation services, with additional marking services such as digital printing and laser engraving. The company operates primarily in the manufacturing sector, targeting industrial clients requiring high-quality surface finishing and protective treatments. Their market position is strengthened by ISO 9001 certification and the recent acquisition of Delcros, expanding their capabilities and geographic reach. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Usercentrics for cookie consent, alongside Google Analytics for user tracking. The site is mobile-optimized with good SEO practices and a professional design, although some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks certain security headers which could enhance protection. From a security and compliance perspective, the site demonstrates GDPR compliance with clear privacy and cookie policies and consent mechanisms. However, no explicit security policy or incident response contacts are provided, and WHOIS data is unavailable, which slightly reduces trust. No vulnerabilities or exposed sensitive data were detected. Overall, Anodur presents a trustworthy and professional online presence with minor areas for security and technical improvement. The lack of WHOIS transparency is a notable gap but does not outweigh the positive trust signals from certifications and contact transparency.

T

Tours-sur-Marne

tours-sur-marne.fr

0

Tours-sur-Marne is a small municipal government entity in the Marne department of the Grand Est region in France. The website serves as an official portal providing residents and visitors with local information, administrative services, event updates, and community resources. It positions itself as a local authority with a focus on community engagement and transparency. The site is well-branded and consistent with its municipal identity. Technically, the website employs modern web technologies including Bootstrap for responsive design, jQuery, FontAwesome for icons, and Google Fonts for typography. It integrates a consent management platform to comply with GDPR requirements and uses Google Analytics for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms, indicating awareness of privacy and security best practices. However, it lacks explicit security headers and does not provide a security policy or incident response information. The absence of WHOIS data due to privacy protection is typical for municipal domains and does not raise immediate concerns. Overall, the security posture is solid but could be improved with additional headers and transparency. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

L

Le BOCAL

restaurantlebocal.fr

0

Le Bocal is a specialized seafood restaurant located in Reims, France, offering a variety of fish, shellfish, and crustaceans with a focus on fresh, regional products. The business operates primarily as a dining establishment with additional services such as table reservations and gift vouchers. The website reflects a professional and consistent brand image, targeting a general audience interested in quality seafood dining experiences. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's professional presentation and clear contact information support its legitimacy. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, making it a trustworthy digital presence for the restaurant.

R

RVF Ressorts & Visseries des Flandres

rvf.com

0

RVF Ressorts & Visseries des Flandres is a French manufacturer specializing in industrial and precision springs with nearly 100 years of history since its founding in 1923. The company offers a wide range of custom springs including compression, torsion, traction, spiral, flat, and shaped wire springs, serving diverse industrial sectors such as automotive, agriculture, building, medical, and luxury goods. The website reflects a professional and established business with ISO9001 and IATF 16949 certifications, indicating a commitment to quality and industry standards. Technically, the website employs modern web technologies including Bootstrap, jQuery, FontAwesome Pro, and Owl Carousel, with Google Analytics integrated for user tracking. The site is mobile-optimized and SEO-friendly, providing a good user experience. However, some accessibility features could be enhanced. Security-wise, the site uses HTTPS but lacks visible security headers and explicit security or incident response policies, which are areas for improvement. The WHOIS data for the domain www.rvf.com is notably missing, which is inconsistent with the company's long operational history and raises some trust concerns. Despite this, the website content, contact information, and certifications support the legitimacy of the business. Privacy and cookie policies are present and appear GDPR compliant, reflecting awareness of data protection regulations. Overall, RVF presents as a credible and professional manufacturing company with a solid digital presence but should address WHOIS transparency and enhance security policies to improve trust and compliance.

A

ATELIERS MECANIQUES DE SAUCOURT

ressorts-ams.com

0

ATELIERS MECANIQUES DE SAUCOURT (AMS) is a French manufacturer specializing in the production of industrial springs, offering both small and large series fabrication. Positioned regionally in Hauts-de-France and part of the QUARSOR SPRING SOLUTIONS group, AMS serves various industrial sectors including automotive, agriculture, medical, and luxury goods. Their website reflects a professional and consistent brand image, emphasizing certifications such as ISO9001 and IATF 16949, which reinforce their quality and reliability in manufacturing. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and FontAwesome, ensuring a responsive and user-friendly experience. The presence of Cookiebot for cookie consent and Google Analytics for traffic monitoring indicates a mature digital infrastructure with attention to privacy compliance. However, the absence of visible security headers and incomplete WHOIS data are notable gaps. From a security perspective, the site benefits from HTTPS encryption and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. The missing WHOIS registration data raises concerns about domain legitimacy, which should be addressed to enhance trust. Overall, the website is secure and professional but could improve in transparency and security best practices. The overall risk assessment is moderate with recommendations focusing on domain registration verification, enhanced security headers, and clearer security policies. These improvements will strengthen AMS's digital trustworthiness and compliance posture.

E

Emmaüs International

emmaus-international.org

0

Emmaüs International is a large, established non-profit organization focused on fighting poverty and social exclusion with a presence in over 40 countries and approximately 450 groups. The website serves as a comprehensive platform for information about their history, actions, campaigns, and resources, targeting a general audience interested in humanitarian aid and social justice. The organization maintains a consistent brand image and active social media presence, enhancing trust and engagement. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses privacy-respecting analytics tools like Matomo. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism compliant with GDPR. However, the hosting provider is not explicitly identified, and performance is moderate. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The malformed WHOIS data limits domain registration trust verification, though the website content and social signals support legitimacy. Overall, the site presents a professional and trustworthy front for Emmaüs International but would benefit from enhanced transparency in security policies and domain registration details to improve trustworthiness and compliance.

A

AirZen

airzen.fr

0

AirZen Radio operates as a French national online radio platform focused on delivering 100% positive content including radio streams, podcasts, and articles aimed at improving wellbeing and lifestyle. The website is professionally designed using WordPress with modern SEO and content management plugins, targeting a French-speaking general audience interested in positive news and culture. Technically, the site uses HTTPS with a good SSL configuration and integrates analytics and advertising services such as Matomo and Google Adsense. However, it lacks explicit privacy and cookie policy pages, and no clear contact information is provided, which are areas for improvement. Security posture is moderate with no detected security headers and no visible vulnerabilities. Overall, the domain WHOIS data is not publicly available, likely due to privacy protection, but the website content and structure indicate a legitimate media business.

U

Université de Strasbourg

unistra.fr

0

Université de Strasbourg is a prominent French public university offering extensive educational programs, research activities, and international collaborations. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting students, researchers, and academic partners. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries, ensuring good performance and mobile optimization. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data is notable but likely due to AFNIC policies; however, the website's content and partner affiliations strongly support its legitimacy. Overall, the site scores well on content quality, technical implementation, and business credibility, with minor penalties for privacy compliance and WHOIS transparency.

L

Linop

linop.fr

0

Linop is a professional graphic and digital design service operated by Pauline Le Gal, offering art direction, web design, and training services primarily targeting entrepreneurs, associations, and artists in France. The website presents a well-structured portfolio with clear contact options and integrates GDPR-compliant cookie consent mechanisms. Technically, the site is built on WordPress with modern plugins and hosted by Infomaniak Network SA, ensuring reliable infrastructure. Security posture is good with HTTPS enabled and no evident vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

C

Cyber Création

cybercreation.fr

0

Cyber Création is a small, established French web and print communication agency based in Ormes near Reims, operating since 1998. The company specializes in graphic design, website creation including intranet and e-commerce solutions, and print production services. Their website reflects a professional and consistent brand image, targeting local businesses and organizations seeking digital and print communication solutions. The site is well-structured, mobile-optimized, and compliant with GDPR regulations, featuring a comprehensive cookie consent mechanism and privacy policy.

Flexit.fr is the official website for the Flexit CMS, a flexible and dynamic content management system designed primarily for French-speaking users. The CMS targets small to medium businesses and e-commerce merchants seeking an easy-to-use platform for website creation and management. The website is professionally designed, mobile responsive, and emphasizes simplicity, security, and flexibility. The business behind Flexit is NEFTIS, which also provides support and maintenance services for the CMS. The website content is rich and well-structured, providing clear information about the product's features and benefits. Technically, the website uses modern web technologies including JavaScript and Google Tag Manager for analytics. It is served over HTTPS with a good SSL configuration, and the site is mobile optimized. However, some security best practices such as explicit security headers and published security policies are missing. The site includes a cookie consent banner indicating GDPR compliance, but lacks direct contact emails or phone numbers, relying instead on a contact form. From a security perspective, the site shows a moderate security posture with HTTPS enabled and automatic update claims for the CMS. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this type of business. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is trustworthy and professional with a moderate to good security posture. Strategic improvements include adding security headers, publishing a security policy and incident response contacts, and providing direct contact information to enhance trust and compliance.

N

Neftis

neftis.com

0

Neftis is a well-established digital agency based in Lorraine, France, specializing in web creation, SEO, digital marketing, hosting, and professional training. With over 20 years of experience and a medium-sized team, the company serves businesses and organizations seeking comprehensive digital communication solutions. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site uses modern analytics tools such as Google Analytics, Piwik PRO, and Microsoft Clarity, and is built on the FlexIT CMS platform. It is mobile-optimized and employs HTTPS with good SSL configuration, ensuring secure user interactions. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and contact information support the company's credibility. No critical security vulnerabilities or adult content were detected, and privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism.

The website www.grandreims.fr serves as the official digital presence of the Communauté urbaine du Grand Reims, a large regional government entity in France. It provides comprehensive information and services related to community news, urban planning, environment, business development, and mobility for residents, businesses, and visitors. The site is well-structured, professionally designed, and targets a broad audience within the Grand Reims territory. Technically, it is built on TYPO3 CMS with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, WHOIS data is unavailable, which slightly impacts trust but is mitigated by the official nature and content quality of the site.

V

Ville et Eurométropole de Strasbourg

strasbourg.eu

0

The website www.strasbourg.eu serves as the official digital portal for the City and Eurométropole of Strasbourg, France. It provides comprehensive information and services to residents, tourists, professionals, students, and other stakeholders. The site features news, event calendars, administrative procedures, cultural content, and community engagement tools, positioning itself as a central hub for local government communication and citizen interaction. Technically, the site is built on the Liferay CMS platform with modern web technologies including React and Alloy UI, ensuring a responsive and accessible user experience. Security measures such as HTTPS enforcement, security headers, and cookie consent mechanisms are in place, reflecting a mature security posture. However, explicit privacy policy and terms of service pages are not clearly identified, and contact information is not prominently displayed, which are areas for improvement. Overall, the site is trustworthy, professionally maintained, and aligned with its public service mission.

D

Département de la Meuse

meuse.fr

0

The Département de la Meuse website serves as the official digital presence of the regional government authority for the Meuse department in France. It provides comprehensive public service information, news, event listings, and resources for residents and local partners. The site is well-structured, primarily targeting local citizens and stakeholders, and offers services such as social support, cultural activities, tourism, and administrative procedures. The business model is governmental, focusing on public administration and community engagement. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, supplemented by modern JavaScript libraries like jQuery, Parsley.js for form validation, and Tarteaucitron.js for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The presence of a cookie consent mechanism and a comprehensive privacy policy indicates a mature approach to GDPR compliance. From a security perspective, the site enforces HTTPS and employs cookie consent controls, but lacks explicit HTTP security headers and a published security.txt file. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS registration data slightly reduces trust but is mitigated by the official nature of the domain and consistent branding. Overall, the security posture is solid but could be improved with additional headers and incident response information. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include enhancing HTTP security headers, publishing a security.txt file, providing incident response contacts, and adding a terms of service page to improve legal clarity and user trust.

D

DLA Grand-Est

dla-grandest.org

0

DLA Grand-Est is a regional non-profit organization dedicated to supporting social utility structures in the Grand Est region of France. The website presents a professional and well-structured platform offering information about their services, including accompaniment for social utility employers, training for volunteers, and calls for service providers. The organization positions itself as a key regional player in social and employment development within the non-profit sector. Technically, the website employs modern web technologies such as Bootstrap for responsive design, jQuery for interactivity, FontAwesome for icons, and Google Analytics for visitor tracking. The site is mobile-optimized and includes standard SEO and accessibility features, though some accessibility aspects could be improved. The presence of a cookie consent banner and a comprehensive privacy policy indicates good privacy compliance. From a security perspective, the site uses HTTPS with a presumably strong SSL configuration. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. The WHOIS data is unavailable due to a malformed request or privacy restrictions, which slightly reduces trust in domain legitimacy but does not outweigh the professional presentation and compliance indicators. Overall, the website is a credible and professional platform for a regional non-profit organization with a good security posture and privacy compliance. The main risk is the lack of WHOIS transparency and absence of explicit security policies, which should be addressed to enhance trust and security maturity.

E

ESSor Grand Est

essor-grandest.org

0

ESSor Grand Est operates as a regional information portal dedicated to supporting the Social and Solidarity Economy (ESS) in the Grand Est region of France. The platform provides a comprehensive database of accompaniment and financing tools for project leaders, associations, cooperatives, and social enterprises. It also features calls for projects and crowdfunding information, positioning itself as a key resource for ESS actors in the region. The website maintains a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the website employs legacy JavaScript libraries such as jQuery 1.8.3 and integrates Google Analytics and Google Tag Manager for user tracking. While the site loads most resources securely, some external scripts are loaded over HTTP, introducing mixed content risks. The site demonstrates basic mobile optimization and accessibility but lacks advanced SEO and modern frameworks. No CMS or hosting provider details are evident from the source. From a security perspective, the site uses HTTPS for analytics scripts but does not explicitly show security headers or advanced security policies. The use of outdated JavaScript libraries and insecure script loading are notable vulnerabilities. Privacy compliance is minimal, with no cookie consent mechanism detected and only a basic privacy/legal mentions page available. WHOIS data is unavailable, limiting domain trust verification. Overall, the security posture is moderate but requires improvements to meet best practices and regulatory compliance. The overall risk assessment indicates a functional and trustworthy platform for its niche audience but with moderate technical and security shortcomings. Strategic recommendations include updating legacy libraries, enforcing HTTPS for all resources, implementing cookie consent, enhancing security headers, and improving WHOIS transparency to strengthen trust and compliance.

The website 'Acheter Responsable GE' is a regional platform dedicated to promoting goods and services from the Social and Solidarity Economy in the Grand Est region of France. It serves as a directory, resource hub, and event organizer for businesses and organizations interested in responsible purchasing. The platform is supported by regional public entities and managed by the Chambre Régionale de l'Economie Sociale et Solidaire Grand Est, indicating a strong regional presence and trustworthiness. Technically, the site uses a Flexit CMS, integrates Google Analytics and Tag Manager for tracking, and is served over HTTPS, ensuring secure communication. However, the absence of visible privacy and cookie policies and lack of security headers suggest areas for improvement in privacy compliance and security posture. The WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency, but the professional content and public entity support mitigate some of these concerns. Overall, the site presents a good user experience with clear navigation and relevant content for its target audience.

A

AFM Productions

afmproductions.fr

0

AFM Productions is a specialized audiovisual production company founded in 1997 by the AFM-Téléthon association, focusing on creating documentaries and educational content about rare genetic diseases and medical research. The company targets a general audience interested in health, science, and social issues, leveraging storytelling to raise awareness and inform the public. The website reflects a professional and consistent brand identity aligned with its mission. Technically, the website is built on Drupal 10 with Bootstrap and uses modern libraries such as Swiper.js for UI components. It integrates Google Analytics and a GDPR-compliant cookie consent mechanism via CookieYes, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS and has implemented cookie consent but lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a trustworthy entity. Overall, the site presents a low-risk profile with good compliance and technical standards, though improvements in security headers and transparency policies are recommended.

I

Institut des cellules Souches pour le Traitement et l'Étude des maladies Monogéniques

istem.eu

0

I-Stem is a French research institute specializing in stem cell therapy and the study of rare and ultra-rare monogenic diseases. It operates as a medium-sized organization with approximately 80 staff members, including scientists and support personnel. The institute is well-positioned in the European healthcare research sector, collaborating with notable partners such as AFM-Telethon and Genethon. Their key services include fundamental and clinical research, clinical trial sponsorship, and providing advanced technological platforms to support their scientific endeavors. Technically, the website is built on WordPress with modern plugins for SEO, search, and form management. It employs Google reCAPTCHA for security and Tarteaucitron for cookie consent management, reflecting a mature digital infrastructure. The site is optimized for mobile and accessibility, with good SEO practices and moderate performance. From a security perspective, the site uses HTTPS with strong SSL configuration and includes security headers. It integrates anti-bot measures and cookie consent mechanisms, but lacks a dedicated security policy or incident response contact details. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The absence of direct contact emails or phone numbers suggests a preference for controlled communication via contact forms. Strategic recommendations include publishing explicit security and incident response policies and considering a vulnerability disclosure program to enhance transparency and trust.

A

AFM-Téléthon

telethon.fr

0

AFM-Téléthon is a prominent French non-profit organization dedicated to funding research and supporting patients affected by neuromuscular and rare diseases. The website serves as a secure platform for online donations, offering multiple payment options and clear information about the impact of donations. The organization maintains a strong market position in the charitable sector with transparent financial reporting and recognized certifications such as Bureau Veritas. Technically, the website is built on a modern stack with Drupal CMS, integrates advanced analytics and consent management tools, and is optimized for mobile and accessibility. Security practices include TLS 1.2 encryption and consent frameworks, though explicit security headers should be verified. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

M

Muséum de Bordeaux - sciences et nature

museum-bordeaux.fr

0

The Muséum de Bordeaux - sciences et nature is a well-established public museum located in Bordeaux, France, focusing on natural history and cultural exhibitions. It serves a broad audience including families, schools, leisure professionals, journalists, and patrons. The museum offers permanent and temporary exhibitions, educational workshops, events, and virtual tours, positioning itself as a key cultural institution in the region. Technically, the website is built on Drupal 10 with modern libraries such as jQuery UI, Slick Carousel, Leaflet.js for maps, and FontAwesome for icons. It demonstrates good mobile optimization, accessibility, and SEO practices. The site includes a cookie consent mechanism and privacy policies aligned with GDPR requirements, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. The WHOIS data is unavailable, which limits domain registration insights but does not detract from the site's legitimacy given its professional content and official nature. Overall, the website is secure, compliant, and professionally maintained, with no signs of blocking or malicious activity. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

M

Musée des Arts décoratifs et du Design de Bordeaux

madd-bordeaux.fr

0

The Musée des Arts décoratifs et du Design de Bordeaux is a French cultural institution dedicated to decorative arts and design, located in Bordeaux. The museum showcases collections from the 18th and 19th centuries, emphasizing regional and national heritage. The website serves as an information portal for visitors, offering details on exhibitions, events, and educational content. It targets a general audience including local residents, tourists, and cultural enthusiasts. The museum operates as a non-profit entity under the auspices of the city of Bordeaux. Technically, the website is built on Drupal CMS with Bootstrap and Font Awesome for styling and icons. It employs modern web standards, is mobile-optimized, and includes a cookie consent mechanism compliant with GDPR. Performance is moderate with good SEO and accessibility basics. The site integrates social media channels and external cultural partners, enhancing its digital presence. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent management. However, explicit security headers like CSP and X-Frame-Options are not detected, and no formal security policy or incident response contacts are published. No vulnerabilities or exposed sensitive data were found. The WHOIS data confirms domain legitimacy and consistency with the museum's identity. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve security posture by adding formal policies and security headers. The risk level is low, with recommendations focused on enhancing security transparency and technical hardening.

M

Musée des Beaux-Arts de Bordeaux

musba-bordeaux.fr

0

The Musée des Beaux-Arts de Bordeaux is a well-established cultural institution showcasing European art from the 15th to the 20th century. It offers permanent collections, temporary exhibitions, educational programs, and public events, serving a broad general audience including families, students, and art enthusiasts. The museum is positioned as a key cultural entity within Bordeaux, supported by official city partnerships and a strong online presence. Technically, the website is built on Drupal 11, leveraging modern web technologies such as jQuery and Bootstrap for responsive design. It incorporates privacy and cookie consent management via Tarteaucitron and uses Piano Analytics for visitor tracking. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. From a security perspective, the site enforces HTTPS and manages cookie consent effectively. However, it lacks explicit security headers and a published security policy or incident response information, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The absence of WHOIS data slightly reduces trust but does not detract from the legitimacy indicated by the content and official affiliations. Strategic improvements in security transparency and header implementation would further strengthen the site’s security and compliance stance.

V

Ville de Bordeaux

bordeaux.fr

0

The website www.bordeaux.fr is the official municipal portal for the city of Bordeaux, France. It provides comprehensive information about city news, events, public services, administrative procedures, and guides for residents and visitors. The site is well-branded with consistent city logos and uses Drupal 11 as its content management system, indicating a modern and maintainable technical infrastructure. Navigation is extensive and well-structured, targeting a broad audience including residents, professionals, and visitors. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured data. Security-wise, the site implements a cookie consent mechanism but lacks visible security headers and explicit privacy or security policies in the provided content. WHOIS data is unavailable due to privacy restrictions typical for .fr domains, but the domain's legitimacy is supported by its official nature and consistent branding. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in security posture and privacy compliance.

E

Eurométropole de Metz

eurometropolemetz.eu

0

The Eurométropole de Metz website serves as the official digital presence of the metropolitan government entity responsible for the Metz region in France. It provides comprehensive information about local governance, public services, urban planning, cultural activities, and economic development initiatives. The site targets residents, businesses, visitors, and public stakeholders, offering a broad range of civic resources and support. The business model is that of a public sector government authority, focusing on service provision and community engagement. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery, Foundation CSS framework, and OpenLayers for mapping. It integrates Matomo analytics for user tracking with GDPR-compliant cookie consent mechanisms. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers could enhance its posture. From a security perspective, the site enforces HTTPS and employs explicit cookie consent aligned with GDPR requirements. However, it lacks visible HTTP security headers and does not provide explicit security policies or incident response contacts. The WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this public entity. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-maintained, with a solid foundation for public service delivery. Strategic recommendations include enhancing HTTP security headers, publishing security and incident response policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

B

Bureau des Congrès de l'Eurométropole de Metz

congres-metz.com

0

The website congres-metz.com serves as the official online presence for the Bureau des Congrès de l'Eurométropole de Metz, promoting Metz as a prime destination for business events, conferences, and seminars. It targets business professionals and event planners, offering comprehensive information on venues, accommodations, catering, and sustainable event practices. The site is well-positioned regionally, emphasizing accessibility and eco-responsibility. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and cookie consent, ensuring a robust digital infrastructure. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and includes integrity checks on scripts, reflecting a good security posture. However, the absence of WHOIS registration data and explicit contact information slightly detracts from its trustworthiness. Overall, the site is professional, user-friendly, and compliant with privacy regulations, making it a reliable resource for its audience.

A

andzup

andzup.com

0

andzup is a B2B prospection platform focused on the communication and media industry, providing qualified European market intelligence data and tools to optimize commercial prospecting. The platform targets communication agencies, ad agencies, publishers, and media owners across Europe, with a strong presence in France. The website demonstrates a professional and consistent brand image, supported by client trust indicators and third-party review badges. Technically, the site is built on WordPress with Elementor and uses modern SEO and analytics tools, including Yoast SEO and Piwik PRO. Security posture is good with HTTPS and reCAPTCHA v3 implemented, though security headers are missing and privacy policies are not clearly presented. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business presence appear legitimate. Overall, the site is well-structured, user-friendly, and suitable for its target audience.

E

Evolix SARL

evolix.com

0

Evolix SARL is a specialized French company founded in 2004, providing dedicated Linux and BSD server hosting, open source infrastructure management, and infogérance services primarily in Marseille, Paris, and Montréal. Their business model focuses on offering customizable dedicated servers, high availability hosting, disaster recovery solutions, and 24/7 managed services with expert support. The company maintains a strong market position as a niche provider with a multi-datacenter presence and their own network ASN, targeting businesses requiring reliable and secure open source hosting solutions. Technically, Evolix employs a mature infrastructure leveraging Linux/BSD systems, Debian GNU/Linux, and a variety of open source software stacks including PHP, MariaDB, PostgreSQL, and nginx. The website is custom-built without a CMS, uses jQuery 1.10.2 and other JavaScript libraries, and is hosted likely in professional datacenters with good network connectivity. Performance and mobile optimization are moderate to basic, with room for improvement in accessibility and modern frontend technologies. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks explicit security headers and uses an outdated jQuery version, which could pose vulnerabilities. No cookie consent mechanism is present, which is a GDPR compliance gap. The company demonstrates trustworthiness through transparent WHOIS data, long domain age, RIPE membership, and clear contact information. However, explicit security policies and incident response contacts are not published. Overall, Evolix presents a professional and credible online presence with solid business and technical foundations. Strategic improvements in security headers, library updates, and privacy compliance would enhance their security posture and regulatory adherence.

A

Aquitaine Blue Energies

aquitaine-blue-energies.fr

0

Aquitaine Blue Energies (ABE) is a regional association founded in 2021, focused on promoting and developing offshore wind and marine renewable energy sectors in the Nouvelle-Aquitaine region of France. The organization acts as a cluster to federate local companies and professionals around a common economic development project in the marine energy field. The website reflects a professional and consistent brand presence with clear messaging about its mission, values, and activities. Technically, the site is built on WordPress with modern plugins and themes, hosted by OVH, and demonstrates good SEO and mobile optimization. Security posture is adequate with HTTPS and no obvious vulnerabilities, but lacks published security policies and vulnerability disclosure mechanisms. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, including a company email and physical address in La Rochelle, along with active social media channels on Twitter and LinkedIn. Overall, the site is trustworthy and serves its business purpose well but should improve compliance and security transparency.

C

CLS (Collecte Localisation Satellites)

cls.fr

0

CLS (Collecte Localisation Satellites) is a large multinational company founded in 1986, specializing in satellite data collection and Earth observation services. The company operates globally with 35 sites and focuses on environmental monitoring, maritime security, sustainable fisheries, mobility, and energy infrastructure. CLS leverages advanced technologies such as data science, AI, and machine learning to provide actionable insights to governments, environmental agencies, and industry sectors. The website reflects a mature digital presence with professional design, comprehensive content, and multilingual support. Technically, the website is built on WordPress using the Divi theme and incorporates modern JavaScript libraries like Swiper.js and GSAP. It employs HTTPS with good SSL configuration and uses hCaptcha for form security. The site includes detailed privacy and cookie policies with consent mechanisms, indicating good privacy compliance. Analytics are implemented via Google Tag Manager with moderate user tracking. From a security perspective, the site shows good practices such as HTTPS enforcement and CAPTCHA usage but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, but the professional web presence and certifications support trustworthiness. Overall, CLS presents a strong business and technical profile with good security posture and privacy compliance. The main risk is the lack of publicly available WHOIS data, which should be further investigated to confirm domain registration legitimacy.

C

Churchill

churchill.fr

0

Churchill is a premium French web agency specializing in custom website creation, redesign, SEO, and digital marketing services primarily targeting market leaders in Paris and Lyon. The company emphasizes bespoke solutions using WordPress and WooCommerce, integrating advanced tools and third-party services to maximize client ROI. Their market position is supported by over 10 years of experience and more than 120 completed projects, with a strong focus on SEO and user experience. Technically, the website is built on a modern WordPress platform with performance optimizations via WP Rocket, analytics through Matomo and Google Tag Manager, and cookie consent managed by Axeptio. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. However, explicit security headers are not visibly configured, and no public security policy or incident response information is provided. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data limits domain trust verification. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site demonstrates professionalism and trustworthiness, though domain registration transparency is lacking. Recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving WHOIS transparency to bolster trust and compliance.

A

Agence tactee

seoh.fr

0

Tactee is a French digital agency founded in 2014, specializing in SEO, SEA, inbound marketing, and website creation and redesign. The agency targets SMEs, startups, and large groups seeking to enhance their digital presence and conversion rates. With multiple agency locations across France and a portfolio of notable clients, Tactee positions itself as a trusted partner in digital marketing. Technically, the website is built on WordPress with modern tools such as Yoast SEO, Google Tag Manager, and marketing automation via Plezi, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the overall legitimacy given the professional content and branding. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing vulnerability disclosure information.