Security Directory

O

OTRE Occitanie

otre-occitanie.org

0

OTRE Occitanie is a regional professional organization representing road transporters in the Occitanie region of France. The website serves as a platform to provide information about the organization's services, partnerships, and news relevant to transport professionals. The business model focuses on advocacy and service provision for transporters, positioning itself as a key regional player in the transportation sector. The website content is primarily in French and targets transport professionals and stakeholders in the region. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as jQuery and Google Fonts. The site is hosted by OVH sas, a reputable hosting provider. Performance and mobile optimization are good, with SEO optimization evident through meta tags and structured data. Cookie consent is implemented via tarteaucitron.io, indicating attention to privacy compliance, although explicit privacy and terms of service pages are not found. From a security perspective, the site uses HTTPS and has domain status protections in place. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No vulnerability disclosure or incident response policies are visible, and no direct contact emails or phone numbers are provided, which could impact user trust and security communication. Overall, the website presents a professional and trustworthy front for the organization, with moderate technical maturity and security posture. Strategic improvements in privacy policy transparency, security headers, and DNSSEC implementation would enhance compliance and trustworthiness.

G

GedMouv

gedmouv.com

0

GedMouv is a specialized B2B platform offering shared traceability solutions for the transport and logistics industry, enabling real-time data exchange and delivery tracking among customers, carriers, and drivers. The company operates under the parent entity B2PWeb and targets transport companies, freight forwarders, and shippers primarily in France. The website is professionally designed using WordPress with modern technologies such as Bootstrap, jQuery, and slick carousel, and integrates multiple analytics and marketing tools with GDPR-compliant consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements in HTTP security headers and explicit security policies are recommended. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, but the overall business presence and content quality support a trustworthy profile.

T

Transportez-Vous Bien

transportezvousbien.fr

0

Transportez-Vous Bien is a French health prevention program specifically designed for non-executive employees in the transport sector. Managed by Carcept Prévoyance, it offers a range of free health-related services including coaching, workshops, and support to improve employee well-being. The website is professionally designed, content-rich, and targets both employees and transport companies. It leverages WordPress CMS with modern plugins and integrates Google Analytics and Tag Manager for analytics. The site is mobile-optimized and includes GDPR-compliant privacy and cookie policies. Security posture is good with HTTPS and cookie consent, though some security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the business legitimacy is supported by detailed content and partner references.

L

LANKELEISI FR

lankeleisi.fr

0

LANKELEISI FR operates an official e-commerce website specializing in electric bicycles with a focus on dual motor and off-road models, targeting French-speaking consumers. The company offers a range of electric bikes and accessories, backed by a three-year warranty, positioning itself as a reliable brand in the transportation and e-commerce sectors. The website is built on the Shopify platform, leveraging modern web technologies and third-party integrations for customer reviews, marketing, and analytics. The technical infrastructure is robust, with good mobile optimization and moderate performance. Security posture is strong with HTTPS enforced, cookie consent implemented, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site presents a professional and trustworthy online presence.

R

Trouvez ou Publiez une randonnée Rapidement et Gratuitement ! | randopedestre.com

randopedestre.com

0

randopedestre.com is a niche French website dedicated to the dissemination and discovery of hiking events both in France and internationally. It provides a free platform for hiking event organizers to publish their events and for hikers to find upcoming hikes via a calendar, search tools, and an interactive map. The website is relatively new, launched in late 2023, and targets hiking enthusiasts and event organizers. Technically, it is built on WordPress using Bootstrap 5 and jQuery, with integrations including Google Maps API, Matomo analytics, and Google AdSense for monetization. SEO is well implemented with Yoast SEO plugin and structured data. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking and advertising. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is functional, professional, and trustworthy for its niche but could improve in security and privacy transparency.

C

calendrierdestrails.com

calendrierdestrails.com

0

calendrierdestrails.com is a specialized website launched in late 2023 that provides a comprehensive calendar and publication platform for trail running events primarily in France and abroad. It targets both trail runners looking for upcoming events and organizers wishing to publish their events quickly and for free. The site offers advanced search, regional and departmental categorization, and an interactive map to enhance user experience. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, Google Maps API, and uses Matomo for analytics and Google AdSense for monetization. The site is mobile-optimized and SEO-friendly with structured data implemented via JSON-LD. Security-wise, the site uses HTTPS with a clientTransferProhibited domain status but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional, professional, and trustworthy but could enhance security and privacy features to improve compliance and user trust.

S

Sport equipements | Never too late to be in shape !

sport-equipements.fr

0

The website sport-equipements.fr is a French-language platform focused on sports equipment and fitness training content. It targets fitness enthusiasts and individuals interested in improving their physical health through exercise and proper equipment. The site leverages WordPress with Elementor and Yoast SEO plugins, indicating a modern and SEO-conscious technical infrastructure. Performance and mobile optimization are good, though accessibility is basic. Security posture is moderate with HTTPS enforced but lacking advanced security headers and explicit privacy or cookie policies. The absence of WHOIS data limits domain trust assessment, but the website content and design suggest a legitimate small business presence in the sports and fitness niche. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance.

M

Materiel-velo.com

materiel-velo.com

0

Materiel-velo.com is a French e-commerce retailer specializing in bicycles, mountain bikes, electric bikes, and related accessories and clothing. The company targets cycling enthusiasts and outdoor sports consumers primarily in France and neighboring countries. The website offers a broad catalog of products with a focus on competitive pricing and fast delivery within 24 to 48 hours. Technically, the site is built on the PrestaShop CMS platform, enhanced with modern search capabilities via Algolia and marketing automation through Connectif. The infrastructure supports a responsive and performant user experience across devices. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. However, the absence of WHOIS domain registration data reduces transparency and trust from a domain legitimacy perspective. Overall, the site presents a professional and trustworthy e-commerce platform with room for improvement in domain registration transparency and published security policies.

2

Application error: a client-side exception has occurred

24h-camions.com

0

The website www.24h-camions.com is positioned as the official portal for the 24 Heures Camions truck racing event scheduled for September 2026. It aims to provide event news, multimedia content, schedules, results, and ticketing information primarily targeting French-speaking motorsport enthusiasts. However, the current site is non-functional due to a client-side JavaScript error, severely impacting user experience and content accessibility. The technical infrastructure leverages modern web technologies such as Next.js and React, hosted likely on Google Cloud Storage with CDN support, and integrates a consent management platform (Didomi) for cookie compliance. Despite these modern tools, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS and consent mechanisms in place but lacks visible security headers and comprehensive privacy documentation. Overall, the site requires urgent remediation of technical errors and improved transparency to enhance trust and usability.

U

Union TLF

e-tlf.com

0

Union TLF is a well-established professional organization representing the transport and logistics sectors in France. Founded in 2000, it serves a large membership base of companies involved in various transport modes and logistics services. The website reflects a mature digital presence with comprehensive information about the organization's services, regional delegations, and industry engagements. The site is professionally designed, well-structured, and optimized for SEO and accessibility, targeting transport and logistics professionals and companies in France. Technically, the site is built on WordPress with modern tools such as Matomo for analytics and Tarteaucitron for cookie consent, demonstrating a commitment to privacy and GDPR compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy entity.

O

ONLYLYON

onlylyon.com

0

ONLYLYON is the official territorial marketing program for the Lyon metropolitan area, focusing on promoting tourism, business investment, education, and cultural activities. The website serves as a comprehensive portal for visitors, investors, students, and event organizers, supported by a network of ambassadors and partners. The site demonstrates a strong market position as a key promoter of Lyon's international ambitions, backed by public and private stakeholders. Technically, the website is built on the Roadiz CMS platform, uses modern web technologies, and integrates Google Analytics and a cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. The absence of WHOIS registration data for the domain is a notable anomaly that slightly reduces trustworthiness but does not detract from the professional presentation and content quality. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, making it a credible and authoritative source for information about Lyon's metropolitan offerings.

T

Transpolis

transpolis.fr

0

Transpolis is a specialized transportation safety and innovation center based in France, offering services such as crash testing, vehicle testing, sensor development, and simulation. The company operates two proving grounds and holds ISO 9001 certification as well as official Euro NCAP laboratory status, positioning it as a reputable player in the automotive safety testing market. The website is built on WordPress with Elementor, leveraging modern web technologies and providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although privacy policy and terms of service documents are missing, representing compliance gaps. Overall, the website reflects a professional and trustworthy business with room for improvement in privacy transparency and incident response disclosures.

S

Syndicat du Pneu

syndicatdupneu.org

0

The Syndicat du Pneu website represents a well-established French trade association dedicated to the tire industry, active since 1929. It serves as a representative body for manufacturers, distributors, wholesalers, and equipment suppliers within France. The website provides industry-related information and resources, targeting professionals in the tire sector. The business model is centered on advocacy, networking, and industry representation, positioning the Syndicat du Pneu as a key stakeholder in the French tire market. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization and Burst Statistics for analytics. The site demonstrates good mobile optimization and moderate performance. The technical infrastructure is modern and standard for professional association websites, with no major technical debt or outdated components detected. From a security perspective, the site enforces HTTPS and uses standard security practices, though it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and consent mechanisms in place. However, WHOIS data is privacy protected, limiting domain registration transparency. Overall, the website is professional, secure, and compliant, with a low risk profile. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving WHOIS transparency to bolster trust further.

C

CSIAM

csiam-fr.org

0

CSIAM is a well-established French automotive industry association representing international vehicle manufacturers' subsidiaries. The organization acts as a liaison with government and public authorities, informs members about regulatory standards, and participates in future mobility planning. The website is professionally designed using WordPress with modern plugins and technologies, providing good user experience and SEO optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and credible with a moderate risk profile.

O

Organisation des Transporteurs Routiers Européens (OTRE)

otre.org

0

The Organisation des Transporteurs Routiers Européens (OTRE) is a professional organization representing the French road transport sector, primarily focusing on SMEs with patrimonial capital. The website serves as a communication and advocacy platform, providing news, events, partnerships, and regional contact information. The organization positions itself as a key representative body for transport professionals in France. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR, ensuring good SEO and privacy compliance mechanisms like cookie consent. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and documented incident response. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and structure indicate a legitimate and professional entity. Overall, the site is well-designed, mobile-optimized, and provides clear contact information, supporting its credibility and user trust.

I

International Organization of Motor Vehicle Manufacturers

oica.net

0

The International Organization of Motor Vehicle Manufacturers (OICA) is a well-established global industry association founded in 1998, headquartered in Paris, France. The organization focuses on promoting safer, cleaner, and smarter automotive manufacturing practices worldwide. Its website serves as a hub for industry news, statistics, event information, and member coordination, targeting automotive professionals and stakeholders globally. The business model is non-profit and essential within the transportation sector, with a medium-sized organizational footprint. Technically, the website is built on WordPress using Elementor and several Jet plugins, supported by OVH hosting. It employs modern web technologies including hCaptcha for form security and CookieHub for cookie consent management. The site demonstrates good SEO practices with structured data and meta tags, and it is optimized for mobile devices with a moderate performance profile. From a security perspective, the site uses HTTPS and implements CAPTCHA and cookie consent mechanisms, but lacks advanced security headers and published security policies. No vulnerabilities or suspicious content were detected, but the absence of a privacy policy and terms of service pages represents a compliance gap. The WHOIS data confirms domain legitimacy and consistency with the organization's claims. Overall, the website is professional, trustworthy, and content-rich, but could improve privacy compliance and security posture by publishing relevant policies and enhancing HTTP security headers. Strategic recommendations include enabling DNSSEC, adding security and incident response policies, and conducting regular security audits to maintain trust and compliance.

P

PFA

pfa-auto.fr

0

PFA (Plateforme automobile) is a prominent French automotive industry platform established in 2009, representing manufacturers, suppliers, subcontractors, and mobility actors. It serves as a strategic body for innovation, competitiveness, employment, and skills development within the French automotive sector and organizes major events such as Mondial de l’Auto. The website is professionally designed using WordPress with modern plugins and demonstrates a strong digital presence including social media integration and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy and security policies are missing, representing compliance gaps. Overall, the site reflects a credible and authoritative industry platform with room for improvement in privacy and security transparency.

La Sphère des Possibles is a French communication agency established since 1992, specializing in communication consulting, event management, and business tourism services primarily in the Lyon region. The company presents itself as an innovative and comprehensive agency with a diverse team capable of addressing various client needs. The website is professionally designed using WordPress and includes rich content such as client testimonials, social media integration, and a video presentation to engage visitors. Technically, the site uses modern web technologies and plugins but lacks some security headers and has an unconfigured Google Analytics plugin. Security posture is moderate with HTTPS enforced and cookie consent implemented, but there is no visible incident response or vulnerability disclosure information. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and reduces trustworthiness. Overall, the website is functional, professional, and safe for general audiences but would benefit from improved transparency and security practices.

E

Eurexpo Lyon | Lyon events

eurexpo.com

0

The website www.gl-lyonevents.com/fr/eurexpo-lyon serves as an informational platform focused on events at Eurexpo Lyon, a major event venue in Lyon, France. The site appears to target event organizers and attendees interested in Lyon-based events, providing venue details and event-related content. The business model centers on event promotion and support services, although explicit business details and company information are not disclosed on the site. Technically, the site is built on Drupal 10 CMS and integrates modern web technologies including YouTube APIs, lazy loading for images, Matomo analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and includes accessibility features, contributing to a moderate user experience and performance level. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy and transparency. Overall, the site is functional but would benefit from enhanced security practices, clearer business disclosures, and compliance documentation to improve trust and credibility.

AFTRAL is a leading French organization specializing in professional training and education in the transport and logistics sectors. The website offers a comprehensive catalog of courses ranging from CAP to BAC+6 levels, supported by a network of over 120 training centers and multiple campuses. The business targets professionals and students seeking qualifications and certifications in transport, logistics, and supply chain management. The site is well-structured, with clear navigation and a professional design consistent with its market position. Technically, the website is built on Drupal 7 with a variety of contributed modules and libraries such as jQuery UI and Apache Solr for search functionality. It integrates modern tracking and consent management tools including Google Tag Manager, TikTok Pixel, and Cookiebot, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though some technical debt is implied by the use of older jQuery versions. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. The absence of WHOIS domain registration data raises concerns about domain legitimacy, though the website content and branding strongly suggest a legitimate and established entity. No critical vulnerabilities or exposed sensitive data were detected. Overall, AFTRAL's website presents a professional and trustworthy front for its educational services, but would benefit from enhanced transparency in privacy policies, contact information, and domain registration details to strengthen trust and compliance.

M

Mutualease

mutualease-cml.com

0

Mutualease is a French financial services brand specializing in leasing and financing professional equipment, operating under the Crédit Mutuel Leasing umbrella. The company targets a broad audience including constructors, distributors, private enterprises, and public sector actors, offering tailored leasing solutions such as credit-bail and operational leasing. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and commitments, including partnerships with reputable entities like the European Investment Fund. Technically, the site uses modern web technologies and integrates Piano Analytics for audience measurement, with a clear cookie consent mechanism ensuring GDPR compliance. Security posture is generally good with HTTPS enforced and a published vulnerability disclosure policy, though explicit security headers and incident response contacts are not visible. The absence of WHOIS data for the domain is a notable concern, suggesting possible registration anomalies, but the overall digital presence and branding indicate a legitimate business. Strategic recommendations include enhancing security headers, publishing explicit security policies, and resolving WHOIS inconsistencies to improve trust and compliance.

M

Michelin

michelin.fr

0

Michelin is a globally recognized enterprise specializing in the manufacturing and retail of tires for automobiles, motorcycles, bicycles, and related mobility products. The website serves as a comprehensive platform offering product information, dealer locators, promotions, and expert advice targeted at a broad audience including individual consumers and professionals. The brand maintains a strong market position as a leader in the transportation sector with consistent branding and high-quality content. Technically, the website leverages modern frameworks such as Astro and Svelte, integrates advanced consent management tools like Didomi, and employs performance optimization via CDNs and asynchronous loading of scripts. Security posture is robust with HTTPS enforcement, comprehensive security headers, and GDPR compliance, although explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a mature digital presence with excellent user experience and trustworthiness, suitable for an enterprise of Michelin's stature.

F

Feratel

feratel.fr

0

Feratel is a medium-sized technology company specializing in providing comprehensive, customized tourism marketing and data management solutions. The company has a strong market presence in France and other European countries, supported by multiple regional domains and multilingual content. Their business model focuses on B2B services targeting tourism industry professionals and destination managers. The website is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital infrastructure. Technically, the website is built on TYPO3 CMS and integrates modern cookie consent management via Cookiebot, ensuring GDPR compliance. The use of HTTPS and inclusion of detailed cookie categories demonstrate a commitment to privacy and security. However, some security headers are not explicitly detected, and no dedicated security or incident response pages are found, indicating room for improvement in security posture. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but the absence of WHOIS data limits full domain trust assessment. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and granular user consent options. Overall, the website and business appear legitimate and professional, with a good balance of content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security policies, and providing clear contact information for incident response to further strengthen trust and security.

G

Groupe Marill

groupe-marill.com

0

Groupe Marill is a well-established family-owned business group with a history dating back to 1896, operating primarily in the Horn of Africa region. The group offers a diversified portfolio of services including maritime agency, logistics, insurance, automobile distribution, and industrial equipment supply. Their website reflects a professional and consistent brand image, targeting businesses and individuals requiring these services in the region. Technically, the website is built on Drupal 7 with several JavaScript libraries and uses Google Analytics for tracking with IP anonymization enabled. However, some technologies like jQuery 1.8 are outdated, and there is a lack of modern security headers and DNSSEC implementation. Security posture is moderate with HTTPS enabled but missing several best practices. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data supports the legitimacy of the business with consistent and long-term domain ownership.

A

AARHSE

aarhse.com

0

AARHSE is a French academic association dedicated to historical and sociological research in the energy sector. The website serves as an informational platform presenting the association's activities, including competitions, bibliographies, and a museum dedicated to the heritage of electricity and gas. The site targets academics, researchers, and professionals interested in energy history and sociology. Technically, the website is built on WordPress with Elementor and uses modern JavaScript libraries and Matomo analytics for privacy-conscious tracking. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is professional, content-rich, and trustworthy for its niche audience.

V

vttrando.fr

vttrando.fr

0

VTTrando.fr is a specialized French website dedicated to mountain biking enthusiasts and event organizers, offering a comprehensive calendar of VTT events and a platform for free event publication. The site is well-positioned in its niche market, providing valuable services such as interactive maps, regional event listings, and a blog with relevant content. Technically, it leverages WordPress CMS with modern libraries like Bootstrap and jQuery, integrates Google Maps and reCAPTCHA for enhanced user experience and security, and uses Matomo for analytics alongside Ezoic for advertising. The website demonstrates good SEO practices and mobile optimization, ensuring accessibility and usability for its audience. Security-wise, the site enforces HTTPS, uses consent management for cookies, and employs reCAPTCHA to protect forms, though it lacks explicit security policy and incident response disclosures. The absence of WHOIS data suggests privacy protection, which is typical for small niche sites and does not detract from its legitimacy. Overall, VTTrando.fr presents a professional, trustworthy, and user-friendly platform with moderate to good security and privacy compliance.

S

SOLUTRANS

solutrans.fr

0

SOLUTRANS is a prominent biennial trade fair and exhibition dedicated to industrial and urban vehicles, held in Lyon, France. It serves as a global crossroads for professionals in road and urban transport, showcasing innovations in energy transition, digitalization, and regulatory compliance. The event is organized by Comexposium and supported by key industry partners such as Michelin and Aramco. The website provides comprehensive information about the event, exhibitors, conferences, and practical visitor details, supported by a modern technical infrastructure including Sitecore CMS, Bootstrap, and compliance tools like OneTrust.

P

Phedre Barbas

phedrebarbas.com

0

The website phedrebarbas.com serves as an online portfolio for a French-Greek artist and designer based in Paris, showcasing various artistic installations and design projects. The content is rich with images and descriptions of art pieces spanning from 2021 to 2024, targeting a general audience interested in contemporary art and design. The business model is primarily a portfolio presentation without e-commerce or direct sales functionalities, positioning itself within a niche artistic community. Technically, the site is built on the Cargo Collective platform, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and jQuery. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Hosting and domain registration are managed via eNom and Cargo Collective, with HTTPS enabled but missing DNSSEC and security headers. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and critical security headers, which could expose it to certain risks. No privacy, cookie, or terms of service policies are present, indicating compliance gaps. The WHOIS data is suspicious due to a future domain creation date, which undermines trust in the domain registration legitimacy. Overall, the website is a well-designed artist portfolio with good content quality but has notable deficiencies in privacy, security policies, and domain registration transparency. Strategic improvements in security headers, privacy compliance, and domain registration accuracy are recommended to enhance trust and security posture.

J

Jean-Baptiste Durand

jeanbaptistedurand.com

0

Jean-Baptiste Durand's website is a personal portfolio showcasing artistic works, hosted on the Cargo Collective platform. The site is professionally designed with good navigation and mobile optimization, serving a general audience interested in art. The technical infrastructure leverages modern web technologies and integrates Stripe for e-commerce, indicating readiness for online sales of artworks. Security posture is adequate with HTTPS enabled and domain registration transparency, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is minimal, with no visible privacy or cookie policies, which could expose the site to regulatory risks. Overall, the site is legitimate and functional but would benefit from improved security and privacy practices.

E

Editions Hogrefe France SAS

hogrefe.fr

0

Editions Hogrefe France SAS operates a professional website offering psychometric tests, clinical and HR evaluation tools, and training services primarily targeting psychologists and HR professionals in France. The company positions itself as a key reference in the psychometric and professional evaluation market, providing a comprehensive range of products and services including digital evaluation platforms. The website is built on TYPO3 CMS, employs modern web technologies, and integrates consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and secure login mechanisms, although explicit privacy and terms of service policies are not clearly found in the provided content. The absence of WHOIS data reduces transparency but does not significantly detract from the overall legitimacy given the professional presentation and consistent branding. Strategic recommendations include publishing clear privacy and terms policies, enhancing accessibility, and establishing formal security incident response documentation.

M

MAXI ZOO

maxizoo.fr

0

MAXI ZOO is a well-established French e-commerce retailer specializing in pet products, including food, accessories, and care items. The website targets pet owners in France and operates under the umbrella of the Fressnapf Group, a recognized leader in the pet retail sector. The platform offers a comprehensive shopping experience with clear navigation, mobile optimization, and professional design. Technically, the site employs modern web technologies such as Vue.js and Adobe Tag Manager, ensuring a responsive and interactive user experience. Security measures are robust with HTTPS enforcement and multiple security headers, although the absence of a published security policy and incident response details indicates room for improvement. The lack of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the brand's market presence. Overall, MAXI ZOO presents a secure, professional, and user-friendly online store with good privacy compliance and trustworthy business practices.

F

Factorial

factorial.fr

0

Factorial is a French-based technology company specializing in SaaS business management software, primarily targeting small and medium-sized enterprises with HR and administrative automation solutions. The company has established a solid market position in Europe with a professional and well-structured website offering multi-language support and clear service offerings. Their technical infrastructure leverages modern web technologies such as React and Next.js, hosted behind Cloudflare for performance and security. The website integrates advanced analytics and optimization tools including Google Analytics 4 and Visual Website Optimizer, indicating a mature digital marketing strategy. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. WHOIS data confirms domain legitimacy and consistent registration details. Overall, Factorial presents a trustworthy and professional online presence suitable for its business domain.

S

Shop Pharmacie

redcare-pharmacie.fr

0

Redcare Pharmacie operates as a leading online pharmacy and parapharmacy platform serving the French market. The company offers a wide range of non-prescription medications, health and hygiene products, cosmetics, maternity and baby care items, and veterinary products. It emphasizes customer convenience with free delivery over 49€, a loyalty program, and mobile applications for Android and iOS. The business is positioned as a major European player with millions of customers across multiple countries, supported by strong brand consistency and recognized certifications.

M

medici.tv

medici.tv

0

medici.tv is a specialized media streaming platform offering the world's largest collection of classical music and jazz, including live event streaming. The platform targets music enthusiasts and general audiences interested in high-quality classical and jazz content. It operates on a subscription-based business model and holds a strong market position as a leading provider in its niche. Technically, the website employs modern web technologies such as Nuxt.js and JWPlayer, ensuring fast performance, mobile optimization, and good accessibility. The site is well-structured with comprehensive privacy and cookie policies, indicating a mature digital presence. Security-wise, the platform enforces HTTPS, uses security headers, and manages cookie consent effectively, although explicit security policies and incident response information are not publicly available. Overall, the website presents a professional and trustworthy front with no signs of blocking or WAF interference, but the absence of WHOIS data limits transparency regarding domain registration details.

G

Groupement des Entreprises de Sécurité

ges-securite-privee.org

0

The Groupement des Entreprises de Sécurité (GES) operates as the French professional syndicate for private security companies, providing representation, information, and sector-specific services such as job boards and training resources. The website targets French private security professionals and companies, positioning itself as a key industry association. Technically, the site is built on WordPress, leveraging common web technologies like jQuery, LESS CSS, and bxSlider, and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by OVH, a reputable provider. The site is mobile-optimized with good SEO practices but lacks explicit privacy and cookie policies, which impacts compliance. Security posture is adequate with HTTPS enabled and reCAPTCHA on forms, but DNSSEC is not enabled and security headers are missing. Overall, the domain registration is consistent and legitimate, matching the business profile and age. Strategic improvements include adding privacy and cookie policies, enabling DNSSEC, and enhancing security headers to strengthen trust and compliance.

B

BNP Paribas

histoire.bnpparibas

0

The website 'Source d'Histoire BNP Paribas' serves as a corporate heritage platform showcasing two centuries of BNP Paribas' archives and history through diverse media such as articles, podcasts, videos, and documents. It targets a general audience interested in the bank's historical narrative and brand legacy. The site is professionally designed, well-branded, and consistent with BNP Paribas' corporate identity, reflecting its position as a major player in the global finance industry. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and nonce usage, though some advanced security headers and policies are missing. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. No direct contact emails or phone numbers are publicly listed, but contact forms and social media links provide communication channels. Overall, the site is trustworthy, professional, and well-maintained, supporting BNP Paribas' brand storytelling and heritage preservation.

F

FlixBus France

flixbus.fr

0

FlixBus France operates as a major intercity bus transportation service provider, offering affordable travel options across France and Europe with a network covering over 8,000 destinations in more than 40 countries. The company leverages a strong digital presence with a modern, user-friendly website and mobile app that facilitate easy booking, real-time trip tracking, and customer engagement. The brand is well-established and trusted, supported by extensive social proof and consistent branding across multiple platforms. Technically, the website employs modern web technologies including React, Honeycomb UI framework, and is hosted on Amazon Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site integrates advanced analytics and marketing tools such as Google Tag Manager, Datadog RUM, Adjust, and Usercentrics for consent management, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and manages user consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response contacts and vulnerability disclosure mechanisms are not publicly visible, representing an area for improvement. Overall, FlixBus France presents a low-risk profile with strong business credibility, good privacy compliance, and a secure, performant web presence. Strategic recommendations include publishing clear security incident response information and adopting a security.txt file to enhance transparency and trust.

R

rapidmail

rapidmail.fr

0

Rapidmail.fr is a French SaaS provider specializing in GDPR-compliant newsletter software that enables businesses to create, send, and analyze email newsletters efficiently. The company targets French-speaking business users and marketers, offering a pay-per-send pricing model without long-term commitments. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content about its services. Technically, the site uses modern web standards with secure HTTPS and appropriate security headers, reflecting a mature digital infrastructure. Security posture is strong with no visible vulnerabilities or exposed sensitive data, although explicit security policies and incident response contacts could be improved. Overall, rapidmail.fr presents as a trustworthy and credible business with a solid market position in the European email marketing sector.

L

L'Oréal Finance

loreal-finance.com

0

L'Oréal Finance is a corporate financial website associated with the global cosmetics leader L'Oréal, targeting French-speaking financial professionals and stakeholders. The site provides financial information and investor relations content, leveraging Drupal 10 as its CMS and integrating standard analytics and cookie consent mechanisms. The website is professionally designed, mobile-optimized, and compliant with GDPR regulations, reflecting a mature digital presence. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration status, warranting further verification. Security posture is generally good with HTTPS enforced and cookie consent implemented, but the lack of explicit security headers suggests room for improvement. Overall, the site presents a trustworthy and professional front but should address domain registration transparency and enhance security headers to strengthen trust.

S

Sunny Side of the Doc

sunnysideofthedoc.com

0

Sunny Side of the Doc is an established international marketplace and community platform dedicated to the documentary industry, hosting events in La Rochelle, France. The website serves as a hub for documentary professionals, filmmakers, and media industry participants to connect, network, and engage in marketplace activities. The platform positions itself as a leader in the documentary event space, offering key services such as event hosting and community building. Technically, the website is built on WordPress with a modern tech stack including React and various plugins for event management and marketing. The site demonstrates good SEO practices and mobile optimization, though some accessibility features are basic. Security posture is adequate with HTTPS enforced and a consent management platform for GDPR compliance, but lacks explicit security headers and detailed privacy policies. The absence of WHOIS registration data is a notable concern, suggesting either privacy protection or a data retrieval issue, which slightly impacts trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security practices.

I

Impact Social Club

impactsocialclub.com

0

Impact Social Club is a French-speaking non-profit association dedicated to impact films, providing expertise, training, and resources to its community. The website is professionally designed using WordPress and the Divi theme, with a moderate level of technical sophistication including SEO and analytics integration. The site demonstrates a good level of digital maturity for a small organization, with mobile optimization and structured data enhancing its online presence. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and explicit incident response policies. Privacy compliance is limited due to absence of a privacy policy and terms of service, though a cookie consent mechanism is present. Overall, the site is trustworthy and serves its niche audience effectively, but could improve in compliance and security transparency.

F

Festival Séries Mania

seriesmania.com

0

Séries Mania is a well-established international festival dedicated exclusively to TV series, held annually in Lille, France, since 2006. The website serves as a comprehensive platform for the festival, its professional forum, and the Series Mania Institute, an educational entity focused on series training. The site targets both general audiences interested in series and industry professionals. It enjoys a strong market position as a key event in the TV series industry with significant partnerships and social media presence. Technically, the website is built on WordPress with modern SEO and analytics tools including Yoast SEO, Google Analytics, Matomo, and Google Tag Manager. It uses Cloudflare for DNS and benefits from HTTPS encryption. The site is moderately performant and well optimized for mobile devices, with good SEO practices and a cookie consent mechanism implemented via tarteaucitron.io. From a security perspective, the site uses HTTPS and has domain registration protections in place. However, it lacks visible security headers, explicit privacy policies, terms of service, and incident response information. No vulnerability disclosure or security.txt files were found. The domain registration data is consistent and supports the legitimacy of the site. Overall, Séries Mania presents a professional and trustworthy online presence with excellent content quality and business credibility. To enhance security and privacy compliance, it should publish clear privacy and security policies and implement additional security headers and vulnerability disclosure mechanisms.

P

Candu123 {} Situs Agen Penyedia Permainan Bisa Menghasilkan CUAN KILAT

pestcontroleverything.com

0

The website 'pestcontroleverything.com' hosts content branded as 'Candu123', an online gaming affiliate platform promoting quick earnings through gaming activities. The business model revolves around affiliate marketing and online gaming services, targeting a mature audience interested in gambling. The site claims licensing by PAGCOR but lacks verifiable certification details. Technically, the site uses a modern but basic tech stack including Bootstrap, jQuery, and several UI libraries, hosted behind Cloudflare DNS but without advanced security headers or DNSSEC enabled. Security posture is moderate with HTTPS enabled but missing critical security headers and privacy policies. The domain name is unrelated to the website content, which raises trust concerns. Contact information is minimal, limited to an obfuscated email and a physical address in Paris, France. Overall, the site is functional but lacks comprehensive privacy, security, and compliance features.

C

CIFE

cife.eu

0

CIFE is a private higher education and research institution with a long-standing history since 1954, operating in multiple European cities including Nice, Berlin, Brussels, and Istanbul. It specializes in interdisciplinary and international Master programmes focused on European integration, international relations, Mediterranean studies, energy transition, and climate diplomacy. The institution targets students, researchers, and professionals interested in European and global policy studies. The website reflects a professional and consistent brand image with a clear structure and relevant content for its audience. Technically, the website is built on ASP.NET WebForms with modern front-end frameworks like Bootstrap and jQuery. It integrates analytics and marketing tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience, although some accessibility and SEO improvements could be made. From a security perspective, the site uses HTTPS and anonymizes IPs in analytics, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. No critical vulnerabilities or suspicious content were detected. The WHOIS data is not publicly available due to registry privacy policies, but the domain and website content appear legitimate and consistent with an established educational institution. Overall, the website presents a trustworthy and professional digital presence with room for enhancements in privacy compliance and security best practices.

M

Marché du film

marchedufilm.com

0

Marché du Film is the premier global film market and event organizer affiliated with the Festival de Cannes, serving as a central hub for film industry professionals worldwide. The website showcases a comprehensive range of services including film market exhibitions, screenings, conferences, and networking opportunities. It targets producers, distributors, buyers, and programmers, positioning itself as the world's leading film market with a strong international presence. Technically, the site is built on WordPress with modern web technologies, optimized for performance and mobile use, and incorporates privacy and security best practices such as HTTPS, reCAPTCHA, and cookie consent mechanisms. Security posture is solid with room for improvement in DNSSEC and content security policies. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, reflecting a mature digital presence for a large-scale media event.

The analyzed website is a CAPTCHA verification page for the French domain of KAYAK, a well-known global travel metasearch engine. The page is designed to verify that visitors are legitimate users and not automated bots, employing Google reCAPTCHA Enterprise technology. Due to this security mechanism, the actual website content is inaccessible, limiting the ability to perform a full content and compliance analysis. KAYAK operates under Booking Holdings Inc., serving travelers seeking flights, hotels, and car rentals by aggregating offers from multiple providers. The domain WHOIS data is unavailable, which restricts verification of domain legitimacy and ownership details. The presence of advanced bot mitigation indicates a mature security posture, but the lack of visible privacy, cookie, or contact information on this page reduces transparency and user trust.

C

candu123

whereisthebeastmaster.com

0

The website 'whereisthebeastmaster.com' operates as an e-commerce platform primarily focused on selling online gaming and gambling-related products under the brand 'Candu123'. It targets a mature audience interested in gaming and gambling, offering affiliate marketing and live chat support. The site is localized with Indonesian language content but claims a physical location in Paris, France. The business model revolves around online sales and affiliate links, with a modest market presence and a small-scale operation impression. Technically, the site employs a modern but basic technology stack including jQuery, Bootstrap, Font Awesome, and several UI libraries. It shows moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The site does not appear to use a known CMS and lacks clear hosting provider information. The design and user experience are functional but basic. From a security perspective, the site uses HTTPS but lacks critical security headers and published security policies. There is no visible privacy or cookie policy, and no incident response or vulnerability disclosure information is provided. The WHOIS data is privacy protected, reducing transparency and trust. The site uses multiple external domains for assets and affiliate links, some of which appear suspicious or unrelated, which may pose risks. Overall, the website presents moderate risks due to limited transparency, lack of security best practices, and gambling-related content which is regulated and sensitive. Strategic improvements in security posture, privacy compliance, and business transparency are recommended to enhance trust and compliance.

M

Médiateur national de l'énergie

sollen.fr

0

The website www.sollen.fr serves as an official online platform provided by the Médiateur national de l'énergie in France, offering a free and secure service to consumers and small businesses for resolving disputes with energy suppliers and distributors. The platform facilitates mediation for issues related to electricity, natural gas, LPG, fuel oil, wood, and heat networks. It targets a broad audience including individuals, artisans, small enterprises, associations, and local authorities. The site is well-branded with official logos and certifications such as Certilis, enhancing its credibility. Technically, the website employs modern JavaScript libraries including jQuery and jQuery UI, uses Google Fonts for typography, and implements responsive design for mobile devices. The site includes secure forms with CSRF tokens and integrates Xiti analytics for user tracking. However, explicit privacy and cookie policies are not present on the main page, and security headers are not evident, indicating room for improvement in privacy compliance and security hardening. From a security perspective, the site uses HTTPS and secure form handling but lacks visible advanced security headers and incident response contact information. The absence of WHOIS data reduces trust slightly, though the official nature of the platform and certifications mitigate concerns. Overall, the site is safe, professional, and trustworthy, with moderate technical maturity and some gaps in privacy and security best practices. Strategically, the platform is positioned as a key public service in the French energy sector, providing an essential dispute resolution mechanism. Enhancing transparency around privacy, security policies, and contact information would further strengthen user trust and compliance posture.

M

médiateur national de l'énergie

energie-info.fr

0

The website energie-info.fr serves as the official information portal for the Médiateur National de l'Énergie, a French independent public authority dedicated to providing consumers with comprehensive information about electricity, natural gas, and other energy sources. It offers tools such as energy offer comparison, dispute resolution guidance, and educational content about energy consumption and billing. The site is well-positioned as a trusted resource for French energy consumers, supported by consistent branding and official government affiliations. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, jQuery, Bootstrap, and various plugins for enhanced user experience and accessibility. It employs cookie consent management via tarteaucitron.js and integrates Google Analytics for audience measurement. The site is mobile-optimized, SEO-friendly, and provides a smooth user experience. From a security perspective, the site uses HTTPS with good SSL configuration and implements reCAPTCHA on its contact form to prevent spam. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. The absence of WHOIS registration data reduces domain trustworthiness, although the official nature of the site mitigates this concern. Overall, energie-info.fr is a professional, secure, and user-centric platform that effectively serves its public authority role. Strategic recommendations include enhancing security headers, publishing a security policy, and improving domain registration transparency to further strengthen trust and compliance.

M

Medialex

medialex.fr

0

Medialex is a French company specializing in legal and administrative secretarial services, including legal announcements, business formalities, general assemblies, and digital registers. The company positions itself as a leader in the French market, serving businesses and legal professionals with online platforms and expert support. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service descriptions. Technically, the site is built on WordPress with modern analytics and consent management tools, ensuring GDPR compliance and user privacy. Security posture is good with HTTPS and consent mechanisms, though some security headers could be explicitly implemented. WHOIS data is unavailable, which slightly reduces trust but the professional presentation and client logos support legitimacy. Overall, the site is a reliable and professional digital presence for Medialex's services.