Security Directory

F

Fondation SOMFY

fondation-somfy.com

0

Fondation SOMFY is a corporate foundation linked to Groupe SOMFY, dedicated to supporting social and environmental initiatives primarily in France and internationally. The foundation focuses on promoting healthy and sustainable housing, social integration, and environmental preservation through financial and human sponsorship. The website reflects a well-established non-profit entity with consistent branding and a clear mission. Technically, the site uses a mix of JavaScript libraries including jQuery and TagCommander for analytics and tracking, and it is hosted securely with HTTPS and cookie consent mechanisms in place. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and external links strongly indicate legitimacy. Security posture is good with no visible vulnerabilities, but the site lacks explicit security policies or incident response information. Overall, the website is professional, user-friendly, and compliant with privacy regulations, serving its target audience effectively.

R

RI OKNA

ri-okna.fr

0

RI OKNA is a traditional Czech manufacturer specializing in high-quality windows and doors, operating since 1994 with nearly 30 years of experience. The company targets both domestic and international markets, offering a wide range of products including PVC, aluminum, wood, and composite windows and doors. Their business model focuses on manufacturing and direct sales, emphasizing quality materials and customer service. The website is professionally designed, multilingual, and optimized for French-speaking customers, reflecting a medium-sized enterprise with a strong market position in manufacturing.

S

Société des Avis Garantis

societe-des-avis-garantis.fr

0

Société des Avis Garantis is a French company specializing in providing authentic customer review solutions for e-commerce merchants. Their platform supports multiple popular e-commerce platforms such as PrestaShop, Shopify, Magento, and WooCommerce, offering features like review moderation, Google Shopping integration, multilingual support, and customizable widgets. The website is professionally designed, well-structured, and provides clear information about their services, target audience, and trust indicators including GDPR compliance and certifications. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies including Google reCAPTCHA for form security. The SSL configuration is good, and cookie consent mechanisms are in place, reflecting a strong privacy posture. However, WHOIS data is not publicly available, indicating privacy protection which is reasonable for this business type. Overall, the site demonstrates a mature digital presence with good security and compliance practices.

M

Musée national et domaine du château de Pau

chateau-pau.fr

0

The Château de Pau website represents the official digital presence of the Musée national et domaine du château de Pau, a French national museum under the Ministry of Culture. The site offers comprehensive information about the museum's history, collections, exhibitions, events, and visitor services, targeting a broad audience including tourists, educators, researchers, and cultural professionals. The business model is government-funded, focusing on cultural preservation and public education. The museum maintains a strong market position as a recognized heritage site with partnerships with national cultural organizations.

The website www.paujeunes.fr serves as an official local government platform dedicated to supporting youth in Pau, France. It provides comprehensive information and resources related to education, employment, social engagement, and local aids for young people. The platform is well-branded with consistent city imagery and messaging, targeting students and young adults in the region. Technically, the site is built on Drupal 10 and integrates Matomo analytics with user consent mechanisms, reflecting a moderate level of digital maturity. The site is mobile-optimized and accessible, with good navigation and content relevance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and explicit security policies. The absence of WHOIS data is a notable gap but does not detract significantly from the site's legitimacy given its official branding and content. Overall, the platform is a trustworthy and valuable resource for its intended audience.

L

Les Amis du Palais de Tokyo

lesamisdupalaisdetokyo.com

0

Les Amis du Palais de Tokyo is a cultural association founded in 2019 that supports the Palais de Tokyo contemporary art center in Paris through membership and patronage. The website serves as a platform to inform members and potential donors about exclusive events, artist meetings, and benefits. The site is well-branded, consistent, and targets art enthusiasts and patrons. Technically, the site uses modern web technologies including Laravel backend, Google Analytics, Facebook SDK, and Google reCAPTCHA, hosted by OVH sas. The site is mobile optimized with good SEO and accessibility basics. Security posture is solid with HTTPS, CSRF tokens, and cookie consent, but lacks advanced security headers and formal security policies. No blocking or WAF challenges were detected, allowing full content access. Overall, the site is trustworthy and professionally maintained, with room for improvement in security policy transparency and incident response readiness.

S

Site officiel de la Ville de Tarbes

tarbes.fr

0

The website www.tarbes.fr serves as the official digital portal for the city of Tarbes, France, providing residents and visitors with comprehensive information about municipal services, news, urban planning, social programs, and cultural activities. The site is positioned as a key communication channel for the local government, offering a broad range of public service information and administrative resources. The target audience primarily includes local citizens, businesses, and visitors seeking official city information. Technically, the website is built on the WordPress CMS platform, utilizing popular plugins such as Yoast SEO for search engine optimization and Matomo for analytics, alongside Google Analytics which is disabled by default pending user consent. The site incorporates modern web technologies including jQuery, FontAwesome, and Leaflet for interactive maps. Mobile optimization and navigation clarity are well addressed, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, the absence of a published privacy policy, terms of service, and incident response contact information represents gaps in compliance and transparency. The WHOIS data is unavailable, which slightly reduces trustworthiness but does not detract significantly given the official nature and branding of the site. Overall, the website demonstrates a solid foundation in content quality, technical implementation, and business credibility, with room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and terms documents, enhancing security headers, and establishing clear incident response channels to strengthen trust and compliance.

Pau Agglomération operates an official government website serving the city of Pau and its surrounding agglomeration in France. The site provides comprehensive information on daily life, urban planning, social services, culture, environment, and more, targeting residents and visitors. It is positioned as a key local government communication and service platform. Technically, the website is built on Drupal 10, employs Matomo for analytics, and uses modern web technologies ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with privacy and cookie policies and consent mechanisms. However, explicit contact emails and phone numbers are not directly visible, and no terms of service or vulnerability disclosure pages were found. Overall, the website is professional, trustworthy, and well-maintained, reflecting a mature digital presence for a government entity.

C

Cité du design – Esad Saint-Étienne

citedudesign.com

0

Cité du design – Esad Saint-Étienne is a well-established cultural and educational institution based in France, specializing in design and art education, exhibitions, and research. The website reflects a mature organization with a strong regional presence and partnerships with governmental and cultural bodies. Their services cater to students, researchers, and the general public interested in design. Technically, the website employs modern JavaScript libraries and multimedia content, hosted by a reputable registrar OVH sas, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is strong, featuring a comprehensive privacy policy and a robust cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

D

Diverto

diverto.tv

0

Diverto is a French media platform specializing in entertainment news, focusing on television, streaming platforms, and pop culture. The website provides TV program schedules and news related to streaming services, targeting a general audience interested in media and entertainment. The platform positions itself as a niche media outlet within the French market, offering curated content relevant to TV and streaming enthusiasts. Technically, Diverto employs a modern web stack including JavaScript frameworks like Stimulus and Symfony UX Live Component, along with Tailwind CSS for styling. It integrates multiple third-party services for analytics, advertising, and consent management, demonstrating a mature digital infrastructure. Security-wise, the website enforces HTTPS and uses a consent management platform (Didomi) to comply with privacy regulations. However, explicit security headers and incident response policies are not clearly published, and WHOIS data is unavailable, which slightly impacts trust. Overall, Diverto presents a professional and functional media website with good privacy compliance but could improve transparency and security documentation.

U

Université de technologie de Compiègne

utc.fr

0

Université de technologie de Compiègne (UTC) is a well-established French technological university focused on higher education, research, and innovation. The website reflects a professional and consistent brand image, targeting students, researchers, and industry partners. It offers comprehensive educational services and fosters technological advancement. The digital infrastructure is based on WordPress with modern frameworks and good mobile optimization, ensuring a positive user experience. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response contacts are not publicly visible. Overall, the domain and website appear legitimate and trustworthy, consistent with an educational institution of its stature.

T

Ticket for Change

ticketforchange.org

0

Ticket for Change is a French non-profit organization focused on fostering social entrepreneurship and leadership development. Established in 2013, it offers educational programs, community support, and resources to entrepreneurs, young adults, and corporate leaders aiming to create positive social and environmental impact. The organization positions itself as a pioneering school for changemakers, leveraging innovative pedagogies and a strong community network. Technically, the website is built on WordPress with modern SEO and analytics tools, hosted behind Cloudflare for performance and security. The site features comprehensive cookie consent mechanisms and privacy policies aligned with GDPR requirements. Security posture is solid with HTTPS and domain protections, though improvements in security headers and incident response transparency are recommended. Overall, the website reflects a professional, trustworthy, and well-established entity with a clear mission and audience.

C

Com&Trombones

com-trombones.fr

0

Com&Trombones is a small independent administrative and communication assistance service based in France, targeting professionals, artisans, TPE/PME, and individuals. The company offers tailored administrative support including document management, invoicing, client follow-ups, and communication services such as social media management and content creation. The website is professionally designed using WordPress and Elementor, with a clear structure and good user experience. Technical infrastructure includes modern web technologies and hosting via Scaleway with DNS managed by o2switch.net. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and published privacy policies. Overall, the site presents a trustworthy and professional image suitable for its niche market.

C

Contact’Mont-Blanc

contact-montblanc.com

0

Contact’Mont-Blanc is a French local business networking platform launched in 2022, focused on connecting professionals and consumers in the Haute-Savoie region. It offers a directory of local artisans, merchants, and service providers, along with marketing and networking services to boost local visibility. The platform emphasizes community, collaboration, and local economic development. Technically, the website uses modern frameworks like Bootstrap and jQuery, with Google Tag Manager for analytics. The site is mobile-optimized and well-structured, providing a good user experience. Security posture is adequate with HTTPS and domain transfer protection, though DNSSEC and security headers are missing. Privacy compliance is basic but present, with a privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professional, serving a niche local market effectively.

V

Accueil - virage-digital74.fr

virage-digital74.fr

0

Virage Digital 74 is a French digital marketing service provider specializing in impactful social media strategies, social media management, and creating effective showcase websites to enhance digital presence. The company appears to be a small, newly founded business (2024) targeting businesses and professionals seeking to improve their online visibility. The website is built on WordPress using the Divi theme and incorporates SEO optimization via Yoast SEO. Hosting is provided by o2switch, with domain registration through Scaleway, both consistent with the French market focus. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and formal privacy or security policies. Analytics usage includes Metricool tracking pixels, indicating moderate user tracking. Overall, the website is professionally designed with good user experience and mobile optimization, but would benefit from enhanced privacy compliance and security documentation.

J

Jérémie Bottollier Curtet

bottweb.fr

0

Jérémie Bottollier Curtet operates as a freelance web and mobile application developer based in Haute-Savoie, France. The business specializes in creating custom digital solutions including websites (One Page, Vitrine, E-commerce, and bespoke), web and mobile applications, SaaS and Micro-SaaS platforms, site redesign, maintenance, and training services. The company targets local businesses, startups, and independent professionals primarily in the Rhône-Alpes region. The website demonstrates a professional market position with clear service offerings and a strong local focus. Technically, the website is built on WordPress using Elementor, enhanced with modern web technologies and analytics tools such as Google Tag Manager and Hotjar. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, employs security headers, and includes cookie consent mechanisms, indicating a good security posture. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement. The WHOIS data is missing, which slightly impacts domain trustworthiness but does not detract significantly from the overall legitimacy. Overall, the website and business present a low-risk profile with professional digital presence and sound security practices. Strategic recommendations include enhancing transparency with dedicated security and privacy policy pages, implementing vulnerability disclosure, and maintaining regular security audits to sustain trust and compliance.

V

Ville de Lyon

lyon.fr

0

The website www.lyon.fr is the official digital portal for the City of Lyon, France, providing comprehensive information on administrative procedures, cultural events, practical life, and urban projects. It serves residents and visitors with a well-structured, content-rich platform that reflects the city's public service mission. The site leverages Drupal 9 CMS and employs privacy-focused analytics (Matomo) with a robust cookie consent mechanism, demonstrating a strong commitment to user privacy and GDPR compliance. Technically, the site is modern, mobile-optimized, and accessible, though it could benefit from enhanced security headers and a published security policy. The WHOIS data confirms the domain's legitimacy and consistency with the municipal identity. Overall, the site presents a high level of professionalism, trustworthiness, and compliance, suitable for a large government entity.

M

Métropole de Lyon

grandlyon.com

0

The Métropole de Lyon website serves as the official digital presence of the metropolitan government authority for Lyon, France. It provides comprehensive information and services to residents and professionals across 58 communes and a population of 1.4 million. The site focuses on public services such as waste management, housing, transportation, citizen engagement, and economic development, positioning itself as a key regional government resource. The website is well-branded, professionally designed, and consistent with government standards, targeting a broad audience within the metropolitan area. Technically, the site is built on TYPO3 CMS with modern front-end technologies including Bootstrap 5 and Popper.js, ensuring responsive design and good accessibility. It employs privacy-respecting analytics via Matomo and uses a robust cookie consent management system (Tarteaucitron.js), reflecting a mature digital infrastructure with strong privacy compliance. The site is performant with good SEO and accessibility features. From a security perspective, HTTPS is enforced, and privacy best practices are observed, including cookie consent and minimal tracking. However, the absence of visible security headers and a published security policy or incident response contact suggests room for improvement in security transparency and defense-in-depth. No vulnerabilities or suspicious content were detected. Overall, the website is a trustworthy, professional government portal with excellent content quality and privacy compliance. The lack of WHOIS data is a minor concern but likely due to querying limitations or privacy protection. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure channel to further strengthen trust and security posture.

W

Windcoop SCIC SA

wind.coop

0

Windcoop SCIC SA is a French maritime cooperative based in Lorient specializing in low-carbon cargo transport using sail-powered container ships. The company operates an innovative business model focused on sustainability and cooperative ownership, targeting individuals, businesses, and communities interested in ethical and ecological maritime transport. Their flagship project is a 90-meter sail cargo ship designed to reduce CO2 emissions by 60% compared to conventional vessels, with operations planned between Marseille and Madagascar starting in 2027. The website reflects a professional and modern digital presence built on WordPress, featuring comprehensive content, multimedia, and clear calls to action for investment and membership. Technical infrastructure includes Matomo analytics and Google Tag Manager, with a strong emphasis on privacy and cookie consent compliance. Security posture is good with HTTPS and domain transfer protections, though improvements such as DNSSEC and explicit security policies are recommended. Overall, Windcoop presents a credible, transparent, and innovative player in the sustainable transportation sector.

éthi'Kdo is a French e-commerce platform specializing in eco-responsible gift cards that promote ethical gifting for individuals, businesses, and employee committees. The website presents a well-structured and professionally designed interface with a focus on sustainability and social responsibility. The technical infrastructure leverages modern JavaScript, CSS, and HTML5 technologies, integrating third-party services such as Sentry for error monitoring, Google Analytics for user behavior tracking with IP anonymization, and Crisp Chat for customer support. Security posture is strong with HTTPS enforced and appropriate security headers in place, though explicit privacy and cookie policies are absent, indicating room for compliance improvement. Overall, the website demonstrates a high level of business credibility and technical maturity, with no detected vulnerabilities or suspicious activity.

R

Réseau Citiz

citiz.coop

0

Réseau Citiz operates as a cooperative carsharing network in France, providing flexible vehicle rental services across more than 80 cities. The website presents a professional and consistent brand image, targeting both individual and professional users seeking shared mobility solutions. Technically, the site employs modern tracking and consent management tools, including Google Analytics, Facebook Pixel, and tarteaucitron.js for cookie consent, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies are absent. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the site is trustworthy and well-positioned in its market niche.

L

laNef

lanef.com

0

La Nef is a French cooperative ethical bank established in 1988, focusing on financing projects with ecological, social, and cultural impact. It serves both individuals and professionals, offering savings products, loans, and cooperative membership opportunities. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, it is built on WordPress with modern libraries and analytics tools, ensuring good performance and SEO. Security posture is strong with HTTPS and security headers, though it lacks a public vulnerability disclosure and incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be investigated further. Overall, the site demonstrates high trustworthiness and professionalism, suitable for its target audience.

C

CoopCircuits

coopcircuits.fr

0

CoopCircuits is a French cooperative e-commerce platform founded in 2019 that facilitates short food supply chains by leveraging the open source Open Food Network software. It enables organizers and consumers to collaboratively manage and participate in local organic product distribution. The platform supports diverse economic models and emphasizes community governance and transparency. Technically, the site uses modern frameworks such as AngularJS and Ruby on Rails, integrates secure payment processing via Stripe, and employs error monitoring with Bugsnag. The website is well-designed, mobile-optimized, and provides clear navigation and relevant content. Security posture is strong with HTTPS enforced, PCI-compliant payments, and no visible vulnerabilities, though some security headers could be improved. Privacy and legal policies are present and GDPR compliant, though cookie consent mechanisms could be enhanced. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

C

Commown

commown.coop

0

Commown is a French cooperative specializing in ethical and sustainable electronics, offering eco-designed devices primarily through a long-term rental model without purchase options. The cooperative model (SCIC) ensures governance transparency and aligns with their mission to combat planned obsolescence. Their market position is that of a responsible technology provider targeting both individual consumers and professionals who value sustainability and ethical practices. Technically, the website is built using the Hugo static site generator, hosted on Infomaniak servers, and employs modern web standards with good mobile optimization and accessibility. Security posture is solid with HTTPS and hCaptcha integration, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

Mobicoop.fr is a French-based free and commission-free carpooling platform established in 2017. The website offers a service aimed at facilitating daily and occasional ride sharing as a common good, targeting a general audience interested in sustainable and economical transportation options. The platform positions itself as a niche player in the transportation sector, emphasizing openness and community values. Technically, the website is hosted by OVH and uses HTTPS with a moderate performance profile. It employs Matomo analytics with a consent-based tracking mechanism, reflecting a privacy-conscious approach. The site uses modern web fonts and icons but does not appear to rely on a major CMS or framework. Mobile optimization and SEO are adequately addressed, though accessibility features are basic. From a security perspective, the site benefits from HTTPS and respects user consent for analytics. However, it lacks explicit security headers and formal security policies such as a privacy policy, terms of service, or vulnerability disclosure. No contact information or incident response channels are clearly provided, which could be improved to enhance trust and compliance. Overall, Mobicoop.fr presents a trustworthy and professional online presence for its business model but would benefit from enhanced transparency in privacy and security policies, as well as improved contact and incident response information to strengthen its security posture and compliance with regulations.

T

TeleCoop

telecoop.fr

0

TeleCoop is a French cooperative telecommunications operator founded in 2012, offering transparent, no-contract mobile plans with a strong focus on ecological and social responsibility. Positioned as the first cooperative telecom operator in France, it targets consumers who value sustainability and democratic governance in telecom services. The company provides a variety of mobile plans including options for children and teenagers, leveraging the 4G network of Orange, France's leading mobile network. TeleCoop emphasizes customer service based in France and promotes digital sobriety and ecological impact reduction among its subscribers. Technically, the website is built on the Kirby CMS platform and employs modern web technologies such as Matomo for analytics, Google Tag Manager, and Axeptio for cookie consent management. The site is well-optimized for mobile devices, fast loading, and accessible, with good SEO practices and structured data enhancing search engine visibility. Hosting and domain registration are managed by GANDI, a reputable registrar, with consistent WHOIS data supporting the legitimacy of the business. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers like Content-Security-Policy and does not publish a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie management in place. The business credibility is reinforced by clear contact information, verified customer reviews, and social proof. Overall, TeleCoop presents a professional, trustworthy, and well-maintained online presence aligned with its cooperative and ecological mission. Strategic improvements could include publishing a security policy, adding security headers, and establishing a vulnerability disclosure channel to further enhance trust and security posture.

E

Enercoop

enercoop.fr

0

Enercoop is a French cooperative network providing 100% renewable electricity sourced from a broad network of citizen and local authority-owned production sites. The company positions itself as a key player in the energy transition with a cooperative and citizen-focused business model. Their services include electricity supply, energy efficiency consulting, and support for renewable energy producers. The website is professionally designed, mobile-optimized, and uses modern technologies including Prismic CMS, Matomo analytics, and Google Tag Manager. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit privacy and terms of service pages are not detected in the provided content. Overall, Enercoop demonstrates a mature digital presence aligned with its cooperative values and market positioning.

A

Agence Parisienne du Climat

adaptaville.fr

0

Adaptaville.fr is a French-language informational platform initiated by the Agence Parisienne du Climat, focused on providing ecological solutions to adapt to climate change in the Île-de-France region. The website serves local authorities, policymakers, and ecological actors by listing proven adaptation solutions, offering news, resources, and a map of solutions. The platform operates as a non-profit, supported by partnerships with public entities such as Métropole du Grand Paris and Ville de Paris. Technically, the site uses modern JavaScript libraries like jQuery and Lucide icons, and employs Plausible Analytics for privacy-conscious user tracking. The hosting is provided by Infomaniak Network SA, a reputable registrar and hosting provider. Security posture is adequate with HTTPS enforced, but lacks visible security headers and cookie consent mechanisms. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site is professional, trustworthy, and well-branded, though improvements in privacy compliance and security headers are recommended.

CoachCopro is a French public service platform dedicated to supporting co-ownerships in their energy renovation projects. It operates as part of the national energy renovation service, France Rénov'. The website provides informational resources and accompaniment services tailored to co-ownership renovation needs. Technically, the site is built using modern JavaScript frameworks such as Nuxt.js and Vue.js, with integration of the TinyMCE editor for content management. The site demonstrates good design quality and user experience, optimized for mobile devices, but lacks comprehensive privacy and cookie policies, which are critical for compliance. Security posture is moderate due to absence of visible security headers and unknown SSL configuration. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the platform appears legitimate and focused on its public service mission but would benefit from enhanced compliance and security measures.

Gitoyen is a French non-profit association established in 2000, dedicated to maintaining a decentralized and neutral Internet by supporting small network operators. It operates as a local Internet registry (LIR) and provides Internet transit, routing, switching, and equipment hosting services primarily to its members. The organization positions itself as a niche player in the telecommunications sector with a strong community and non-profit ethos. Technically, the website uses legacy JavaScript libraries and basic web technologies, hosted under Scaleway SAS, with moderate performance and basic mobile optimization. Security posture is moderate with notable gaps such as lack of DNSSEC, outdated libraries, and missing security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in security and compliance aspects.

shop.fotokino.com is a niche e-commerce platform specializing in artist books, prints, and limited editions, collaborating closely with artists and designers. The website is professionally designed using the Shopify platform, offering a curated selection of art publications and related products. It targets art collectors, enthusiasts, and the general public interested in artist projects on paper. The business operates primarily in France with distribution partnerships extending internationally. Technically, the site leverages modern web technologies, including Shopify's Dawn theme, JavaScript ES modules, and secure payment integrations such as Apple Pay and PayPal. The site is mobile-optimized, accessible, and performs well with fast loading times. Security posture is solid with HTTPS enforced and form protection via hCaptcha, though explicit security headers and privacy policies are missing. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract from the professional presentation and trust signals on the site. Overall, the site is a credible, well-maintained e-commerce platform with room for improvement in privacy and security transparency.

T

Tangible design festival

tangible-festival.org

0

The Tangible design festival website represents a cultural event based in Marseille, France, dedicated to various forms of design expression. The festival is scheduled for October 2025 and features exhibitions, workshops, and meetings across multiple local venues. The business model centers on event organization and cultural promotion within the local design community, targeting a general audience interested in contemporary design and art. Technically, the website is built with modern web standards including HTML, CSS, and JavaScript, and uses HTTPS with hosting provided by OVH sas. The site includes minimal external dependencies, notably the Umami analytics platform for visitor tracking. The site is mobile optimized and accessible with good SEO practices, but lacks advanced frameworks or CMS platforms. From a security perspective, the site benefits from HTTPS and domain status protections but lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy or cookie policies are present, and no contact or incident response information is provided, indicating gaps in compliance and user trust features. The WHOIS data shows a suspicious future domain creation date, which undermines domain legitimacy and trustworthiness. Overall, the website is functional and professionally designed for its purpose but requires improvements in privacy compliance, security hardening, and transparency to enhance trust and regulatory adherence.

Frac Nouvelle-Aquitaine MÉCA is a regional public art fund based in France, managing a public collection of approximately 1200 artworks. The institution focuses on exhibitions, cultural events, educational collaborations, and publishing editions related to contemporary art. The website serves as an information portal for visitors, collaborators, and the general public interested in the cultural offerings of the Nouvelle-Aquitaine region. Technically, the site is built on WordPress with modern front-end technologies such as Swiper.js and jQuery, and it employs SEO best practices via the Yoast SEO plugin. The site is hosted by IONOS SE and secured with HTTPS, providing a safe browsing experience. However, some security headers are not visibly present, and Google Analytics is installed but not configured, indicating room for improvement in analytics and security monitoring. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though no explicit GDPR compliance statements or data protection officer contacts are found. Overall, the site is professional, trustworthy, and well-maintained, serving its cultural mission effectively.

BeSignal is a specialized software provider offering whistleblowing reporting platforms tailored to meet the requirements of the European Whistleblowing Directive and data protection standards. Founded in 2021 and based in France, the company targets organizations in both the corporate and public sectors, including schools, to streamline whistleblowing report management and resolution. Their business model is primarily SaaS, delivering compliance-focused solutions with multi-language support and a professional online presence. Technically, the website leverages modern JavaScript frameworks such as Vue.js, integrates HubSpot for marketing and analytics, and employs Cookiebot for cookie consent management. The hosting is provided by OVH sas, a reputable European hosting provider. Security-wise, the site enforces HTTPS and has domain protections against unauthorized transfers or deletions, but lacks DNSSEC and some security headers. No explicit privacy policy or terms of service were found, which is a compliance gap. Overall, the website is professional and functional with moderate security posture and good business credibility.

A

All City

allcity.fr

0

All City is a specialized French e-commerce retailer focusing on graffiti, street art, and beaux-arts materials. It holds an exclusive distributor position for Montana Colors spray paints in France, catering primarily to artists and enthusiasts in France and the Benelux region. The website offers a broad catalog of products including spray paints, caps, markers, inks, and protective equipment, supported by clear navigation and a professional design. The business model centers on direct online sales with customer support and delivery services. Technically, the site is built on the Magento platform, utilizing a mix of legacy and modern JavaScript libraries, with HTTPS and reCAPTCHA implemented for security. However, some libraries are outdated, and security headers are not explicitly detected. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and business presence appear legitimate and professional.

A

Atmo-Auvergne-Rhône-Alpes

captotheque.fr

0

La Captothèque is a regional public service platform operated by Atmo-Auvergne-Rhône-Alpes, focused on enabling citizens to measure and understand air quality in their territories. The website offers sensor loans and data visualization tools to engage the community in environmental monitoring. The platform is supported and financed by the Auvergne-Rhône-Alpes regional government, positioning it as a niche but trusted service in the energy/environment sector. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Flickity, hosted by OVH, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit security headers and formal privacy or security policies. The WHOIS data confirms domain legitimacy and consistency with the business age and claims. Overall, the site is professional, trustworthy, and serves a clear public interest mission.

S

Sciences Po

sciencespo.fr

0

Sciences Po is a prestigious and internationally recognized selective research university based in France, specializing in social sciences and humanities. The institution offers a unique multidisciplinary education model combining academic specialization with professional anchoring to prepare societal actors. The website reflects this positioning with comprehensive content, professional design, and clear navigation targeting students, researchers, and professionals. Technically, the site is built using modern frameworks such as Gatsby and React, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not prominently published. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website demonstrates a high level of digital maturity and business credibility, supporting the institution's reputation and trustworthiness.

The website ootravaux.fr is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct access to any business content or information. The domain is registered since 2019 with a reputable registrar and is actively maintained with an expiry in 2026. However, no visible content, contact information, or business details are accessible to perform a comprehensive analysis. The technical infrastructure includes Cloudflare protection, indicating an intention to secure the site from automated threats. Due to the lack of accessible content, the security posture cannot be fully assessed beyond the presence of Cloudflare's WAF. Privacy and compliance policies are not found, and no business credibility indicators are visible. Overall, the site appears to be protected but currently unavailable for detailed evaluation.

A

Aquitem & Aliénor.net

aquitem.fr

0

Aquitem & Aliénor.net is a French technology and retail-focused group with over 35 years of expertise in data services, digital marketing, and hosting solutions. The company operates under the parent Groupe FIDUCIAL and offers a range of services including data hosting, data visualization, loyalty program management, web digital strategy, and AI-powered marketing solutions. Their market position is that of an established medium-sized B2B service provider targeting retailers and businesses seeking advanced data and digital solutions. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Tag Manager, and Matomo. The site is mobile-optimized and uses hCaptcha for form security. Security posture is good with HTTPS and some best practices, but lacks explicit security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, which is reasonable for this business type. Overall, the website is professional and trustworthy, though it could improve compliance by publishing privacy and terms of service pages explicitly.

M

MaCarteFid'

macartefid.fr

0

MaCarteFid' by FIDUCIAL is a French-based SaaS provider specializing in customer loyalty solutions tailored for independent merchants. The company offers a 100% web-based platform that requires no hardware or software installation, making it accessible and easy to use. Positioned as an affordable and intuitive solution, it targets small retail businesses seeking to enhance customer retention. The website reflects a professional and consistent brand image, supported by client references and social media presence. Technically, the site is built on WordPress using the Enfold theme, integrating modern analytics tools like Matomo and Google Tag Manager, and employs hCaptcha for form security. The security posture is strong with HTTPS enforced and no critical vulnerabilities detected, although security headers could be improved. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website demonstrates a mature digital presence with solid business credibility and security practices.

A

Aquitem & Aliénor.net

groupe-aquitem.fr

0

Aquitem & Aliénor.net is a French technology company specializing in data services, retail marketing, loyalty program management, AI-driven customer targeting, and digital agency services. With over 35 years of expertise and a medium-sized business profile, it serves retail and e-commerce clients primarily in France. The company is part of the FIDUCIAL Group and operates several subsidiaries and partner brands such as ZeFid’ and MyDataviz’. The website reflects a mature digital presence with professional content, consistent branding, and a clear focus on data-driven business solutions. Technically, the site is built on WordPress with modern plugins and analytics tools, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the domain WHOIS data is privacy protected but consistent with a legitimate business entity. The website is safe, professional, and trustworthy, with no signs of malicious activity or content blocking.

A

Agence tactee

tactee.fr

0

Agence tactee is a French digital marketing agency founded in 2014, specializing in SEO, SEA, inbound marketing, and website creation and redesign. The company operates multiple regional offices across France and serves a diverse clientele including SMEs, startups, and large corporations. Their website demonstrates a strong market position with a professional design, comprehensive service offerings, and a portfolio of notable clients. Technically, the website is built on WordPress with modern tools such as Yoast SEO and Google Tag Manager, ensuring good SEO and analytics capabilities. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security and privacy policies are not found in the provided content. Overall, the site is professional, trustworthy, and well-optimized for its business goals.

The website outil-web.fr is a French-language agricultural form platform designed to collect user data related to agricultural activities such as cultivated surface area and type of culture. The site targets agricultural professionals or farmers in France and operates as a small-scale data collection service. The technical infrastructure is basic, relying on standard HTML and CSS with Google Fonts integration, hosted by Infomaniak Network SA. The site includes a CSRF token in its form, indicating some attention to security, but lacks advanced security headers and visible HTTPS confirmation in the provided data. No privacy, cookie, or terms of service policies are present, which limits compliance with GDPR and other privacy regulations. The absence of contact emails or phone numbers reduces business credibility and user trust. Overall, the site is functional but basic, with moderate mobile optimization and minimal tracking or advertising.

ADEME (Agence de la transition écologique) is a prominent French government agency dedicated to accelerating ecological transition and combating climate change. The agency provides expert advice, financial aid, data, and research support to a broad audience including citizens, businesses, local authorities, researchers, and associations. ADEME positions itself as a key player in France's environmental and energy sectors, with a strong focus on sustainability and public service. The website reflects this mission with comprehensive content, official branding, and multiple service portals. Technically, the website is built on WordPress with modern optimization tools such as WP Rocket and Yoast SEO, ensuring fast performance, mobile responsiveness, and good accessibility. The use of Google Tag Manager and Eulerian Analytics indicates moderate user tracking with consent management via Tarteaucitron, supporting privacy compliance. The site employs HTTPS with good SSL configuration and some security best practices, though explicit security headers are not fully confirmed. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly accessible security policies or incident response contacts, which could be improved to enhance transparency and readiness. WHOIS data is not publicly available due to AFNIC privacy norms, but the domain and content strongly align with official French government entities, supporting legitimacy. Overall, ADEME's website is professional, trustworthy, and well-structured, serving as a reliable resource for ecological transition stakeholders. Strategic recommendations include enhancing security header implementation, publishing security policies, and providing clear incident response contacts to further strengthen trust and compliance.

S

Syndicat des énergies renouvelables

enr.fr

0

The Syndicat des énergies renouvelables is a professional trade association focused on the renewable energy sector in France. It serves over 530 members including global energy actors and local stakeholders, with a strong emphasis on supporting the energy transition. The website offers a variety of services such as event organization, publications, professional training, and member networking. It positions itself as a key player in the French renewable energy market, providing reliable information and fostering collaboration among industry professionals. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several plugins for SEO, sliders, and cookie consent management. The site is mobile-optimized and uses HTTPS with a cookie consent mechanism, reflecting a good level of digital maturity. However, some security headers are missing, and there is room for improvement in accessibility and security best practices. From a security perspective, the site uses HTTPS and has implemented cookie consent compliant with GDPR. The login form includes security tokens, but no advanced security headers like CSP or HSTS were detected in the HTML source. The WHOIS data is unavailable, which limits domain trust assessment, but the professional presentation and content quality support legitimacy. Overall, the website is professional, content-rich, and serves its target audience well. The main risks relate to missing WHOIS transparency and some security header omissions. Strategic recommendations include enhancing security headers, improving accessibility, and verifying domain registration details to strengthen trust.

The Syndicat ELE website represents a professional association for local energy companies in France, focusing on industry representation and advocacy. The site content is relevant and targeted towards energy sector professionals, with a clear business focus. Technically, the website uses standard web technologies and some modern fonts and libraries, but lacks advanced SEO, accessibility, and security features. The absence of WHOIS data and domain registration details raises concerns about domain legitimacy and trustworthiness. Security posture is basic, with no evident security headers or privacy policies, which could expose the organization to compliance risks. Overall, the website is functional and professional but requires improvements in security, privacy compliance, and domain transparency to enhance trust and regulatory adherence.

R

réseau Cler

cler.org

0

Réseau Cler is a well-established French non-profit organization dedicated to promoting and supporting the energy transition on the ground. Founded in 1999, it serves a diverse audience including citizens, elected officials, press, and members involved in energy and environmental sustainability. The website provides rich content including campaigns, publications, job offers, and resources to facilitate energy transition efforts. The organization positions itself as a key network in France for positive energy territories and combating energy precarity. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses libraries like jQuery and FontAwesome. It is hosted by OVH sas, a reputable provider. The site is mobile-optimized and SEO-friendly, though some technical improvements could enhance performance and security. Analytics are implemented via Google Analytics and Google Tag Manager, indicating moderate user tracking. From a security perspective, the site uses HTTPS and has domain protections in place, but lacks DNSSEC and security headers, and uses an outdated jQuery version, which could pose risks. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Contact information is available but no explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and serves its mission effectively. Strategic improvements in security hardening and privacy compliance would enhance its posture and user trust.

J

Journées du Logiciel Libre

jdll.org

0

Journées du Logiciel Libre (JdLL) is a well-established non-profit event focused on free software and open source culture, primarily serving the French-speaking community in Lyon, France. The website provides information about the event, its history, and ways to participate or support the initiative. The organization has a mature online presence with a domain registered since 2005 and a consistent branding approach. Technically, the site is built on GravCMS, a modern flat-file CMS, hosted on Infomaniak servers, and is mobile-optimized with good SEO practices. However, it lacks advanced security headers and DNSSEC, which could enhance its security posture. The site does not currently provide privacy or cookie policies, which is a compliance gap, especially under GDPR regulations. No direct contact emails or phone numbers are provided, but social media presence on Mastodon and Peertube supports community engagement. Overall, the site is safe, professional, and trustworthy but could improve in privacy compliance and security best practices.

C

Capitole du Libre

capitoledulibre.org

0

Capitole du Libre is a well-established non-profit event organizer focused on free software advocacy and community engagement in Toulouse, France. The website promotes the 2025 edition of their annual event featuring conferences, workshops, and community activities. The organization targets both experts and the general public interested in open source software. Their business model relies on free registration, sponsorships, and merchandise sales. Technically, the website is built on modern frameworks such as Next.js and React, hosted by Infomaniak, and optimized for mobile devices. However, it lacks some advanced SEO and accessibility features. Security-wise, the site uses HTTPS and has domain transfer protections but lacks security headers and explicit privacy or cookie policies, which are compliance gaps. No WAF or blocking mechanisms are detected, and the domain registration is consistent and trustworthy. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

The website aciah-linux.org represents the Association A.C.I.A.H, a French non-profit organization dedicated to digital accessibility and inclusion. They provide an accessible Linux distribution called Aciah-Linux, along with tutorials, training, and personalized support primarily targeting people with disabilities, elderly users, and beginners. The association is supported by various regional and national partners and funders, indicating a solid community presence and trust. The website content is primarily in French with options for translation, and it is well-structured with good navigation and relevant educational content. Technically, the site uses the SPIP CMS with several plugins and is hosted by OVH, a reputable provider. While the site is functional and moderately optimized, it lacks some modern security practices such as DNSSEC and security headers. Privacy and cookie policies are absent, which is a compliance gap. No social media presence or direct contact emails/phones are visible, limiting direct communication channels. Overall, the site is trustworthy and serves a niche community effectively but could improve in security and privacy compliance.