Security Directory

A

Agence Parisienne du Climat

apc-paris.com

0

Agence Parisienne du Climat is a key local agency dedicated to accelerating ecological transition in Paris and the Greater Paris area. It supports the implementation of climate plans through advisory services, public engagement, and partnerships with governmental and professional entities. The website is professionally designed, mobile-optimized, and rich in relevant content targeting residents, professionals, and institutions. Technically, it uses modern web technologies including WordPress CMS, Google Tag Manager, and Plausible Analytics, ensuring good performance and SEO. Security posture is solid with HTTPS and secure forms, though explicit security headers and privacy policies are lacking. WHOIS data is missing, which raises concerns about domain legitimacy, but the website's content and partnerships suggest a legitimate organization. Overall, the site is trustworthy but would benefit from improved transparency in privacy and domain registration.

L

Les Licoornes

licoornes.coop

0

Les Licoornes is a French cooperative network focused on radically transforming the economy through an entirely cooperative model. The organization collaborates with multiple cooperative partners across sectors such as renewable energy, telecommunications, shared mobility, ethical banking, and ethical commerce. Their platform aims to empower citizens to choose cooperative economic alternatives and build systemic change. The website is professionally designed, mobile-optimized, and eco-conceived, reflecting their ecological and social mission. Technically, the site runs on WordPress with privacy-conscious Matomo analytics and uses modern web standards. Security posture is good with HTTPS and domain transfer protections, though DNSSEC and explicit security headers are absent. Privacy compliance is strong with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the site is trustworthy, transparent, and aligned with its cooperative mission.

M

Maison de L'Environnement

maison-environnement.fr

0

Maison de L'Environnement is a well-established non-profit association founded in 1994, focused on promoting ecological transition within the Lyon metropolitan area. The organization coordinates about fifty partner associations and offers services including event organization, a mediathèque, training, and cooperative projects. The website reflects a professional and consistent brand image, targeting both citizens and professionals interested in environmental issues. Technically, the site is built on WordPress, uses modern web technologies, and is optimized for performance and mobile devices. Privacy-conscious analytics via Matomo is implemented, though cookie consent mechanisms are absent. Security posture is good with HTTPS enforced, but lacks some security headers and explicit incident response policies. Overall, the website is trustworthy, accessible, and aligns well with the organization's mission and domain registration data.

M

Mon séjour en montagne - Location vacances hiver et été, guides et conseils

mon-sejour-en-montagne.com

0

The website 'Mon séjour en montagne' is a French-language platform focused on mountain vacation rentals and travel advice for winter and summer holidays. It targets French-speaking vacationers interested in mountain tourism, providing rental listings, guides, and tips. The site is built on WordPress using Elementor and Yoast SEO, indicating a moderate level of digital maturity with good SEO practices. However, the absence of WHOIS data raises questions about domain registration transparency. Security posture is moderate with no visible security headers or policies, and privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and professionally designed but lacks critical trust and compliance elements.

L

Libra Memoria : les avis de décès parus dans la presse française

libramemoria.com

0

Libra Memoria is a French media platform specializing in the aggregation and publication of obituary notices from various regional newspapers and funeral homes. It offers users the ability to search for death notices, subscribe to alerts, and access related funeral services such as flower delivery and funeral home directories. The platform targets French-speaking individuals seeking to honor and remember deceased loved ones. Technically, the website employs modern JavaScript libraries, integrates Google Tag Manager and Facebook SDK for analytics and social media, and uses a GDPR-compliant consent management platform (Didomi). While the site is mobile-optimized and well-structured, it lacks explicit privacy and terms of service pages and does not expose contact information clearly. Security-wise, HTTPS is implied but no security headers were detected in the provided data, and no WHOIS information is available for the domain, which raises concerns about domain legitimacy. Overall, the website is functional and professional but would benefit from enhanced transparency and security measures.

T

Tecnifibre

tecnifibre.com

0

Tecnifibre is a well-established French brand specializing in tennis, squash, and padel sports equipment with over 30 years of expertise. The company operates an e-commerce platform built on Salesforce Commerce Cloud, offering a wide range of products including rackets, strings, balls, accessories, and textile apparel. The website targets sports enthusiasts and players globally, with content available in multiple languages. Tecnifibre maintains a strong market position as a specialist brand with presence in 75 countries and active social media engagement. Technically, the website uses modern marketing and analytics tools such as Google Tag Manager and CQuotient, and implements cookie consent via Axeptio, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and explicit security policies or incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though there is room for improvement in security transparency and header implementations.

F

Fondation Maladies Rares

fondation-maladiesrares.org

0

Fondation Maladies Rares is a French non-profit organization dedicated to promoting scientific research and knowledge sharing on rare diseases. The website serves as an informational platform targeting patients, researchers, healthcare professionals, and the general public interested in rare diseases. It positions itself as an established entity in the healthcare non-profit sector with a focus on funding research and supporting affected communities. Technically, the website is built on WordPress using the Divi theme, leveraging modern web technologies such as jQuery and lazy loading scripts to optimize performance. Hosting is provided by o2switch.net, a French hosting provider. The site demonstrates good mobile optimization and SEO practices, including structured data and Open Graph metadata. Security-wise, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service on the homepage. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security and privacy disclosures.

F

Fondation Free

fondation-free.fr

0

Fondation Free is a French non-profit organization established in 2006, affiliated with the Iliad group (Free). It focuses on promoting digital inclusion and supporting youth and social innovation projects through funding, mentorship, and educational programs. The website demonstrates a mature digital presence with modern technologies such as Next.js and React, optimized for performance and accessibility. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. The absence of WHOIS data is typical for French domains and does not detract from the legitimacy of the foundation, which is supported by partnerships with reputable organizations like école 42 and Fondation Mozaïk. Overall, the site is professional, trustworthy, and well-aligned with its mission.

P

Picasoft

picasoft.net

0

Picasoft is a small non-profit association founded in 2016 at the University of Technology of Compiègne, France. It promotes free software, digital autonomy, privacy, and solidarity through awareness, training, and hosting free services. The website serves as a portal to various self-hosted services and educational resources, targeting students, educators, and the free software community. The organization is a member of the CHATONS collective, reinforcing its commitment to open and transparent hosting. Technically, the website is built using SCENARI framework and integrates multiple open-source platforms such as Peertube, Mattermost, Etherpad, and others. The infrastructure is self-hosted with a reputable registrar and hosting provider. The site is mobile-optimized, accessible, and performs moderately well, though SEO could be improved. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and important security headers. No privacy or cookie policies are published, which is a compliance gap. No incident response or vulnerability disclosure policies are evident. The site does not use advertising or tracking technologies, enhancing user privacy. Overall, Picasoft presents a trustworthy and community-focused web presence with good technical foundations but could improve privacy compliance and security hardening to better protect users and meet regulatory requirements.

The website deslivresencommuns.org serves as a digital archive and publishing platform for the non-profit association Framasoft, focusing on open access books under the project "Des Livres en Communs". It provides access to previous publications under the "Framabook" label and aims to progressively release new editions. The site targets French-speaking audiences interested in libre culture and digital commons. Technically, the site is built using the Hugo static site generator, styled with Bootstrap and Fork Awesome, and hosted by OVH sas. It employs Matomo analytics for user tracking, favoring privacy over commercial trackers. The site is mobile-optimized and well-structured, though accessibility features are basic. Security posture is moderate with HTTPS enforced and domain protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is trustworthy and professional but could improve in privacy transparency and security hardening.

W

webo-facto

webo-facto.com

0

Webo-facto is a French professional SaaS platform established in 2011, offering an all-in-one solution for creating, managing, and hosting websites. It targets digital agencies, freelancers, and educational institutions, providing services such as web hosting, domain management, SSL certificates, CMS solutions, and maintenance. The platform emphasizes ease of use, centralized management, and expert support, boasting over 6,000 users and nearly 3,800 hosted sites. Technically, the website employs a mix of proprietary and open source CMS technologies, integrates modern JavaScript libraries, and uses recognized analytics and cookie consent tools. Hosting is provided by OVH, a reputable French provider. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and security headers are not evident. Privacy compliance is basic with cookie consent but lacks detailed policies or GDPR-specific disclosures. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the website is professional, trustworthy, and well-branded, with room for improvement in security policies and transparency.

V

Vosges Matin

vosgesmatin.fr

0

Vosges Matin is a reputable regional news media organization serving the Vosges and Lorraine regions in France. The website offers continuous news coverage across various domains including local, national, and international news, sports, politics, economy, and environment. It operates on a subscription and advertising business model, supported by a professional digital presence including newsletters and mobile applications. The site is part of the EBRA Groupe, a known media group in France. Technically, the website employs modern web technologies such as Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security. The site is mobile-optimized and uses HTTPS with secure cookie practices. However, some security headers are not explicitly detected and could be improved. The site demonstrates good SEO practices and accessibility is basic but functional. From a security perspective, the site shows a mature approach to privacy compliance with GDPR-consistent cookie consent mechanisms and a clearly identified Data Protection Officer contact. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits domain registration verification, but the website content and business information strongly indicate legitimacy. Overall, Vosges Matin presents a trustworthy and professional digital news platform with solid privacy and security practices, though improvements in security headers and explicit security policies could enhance its posture further.

L

Le Progrès

leprogres.fr

0

Le Progrès is a well-established French regional news media outlet focusing on national and regional news for the Rhône-Alpes and surrounding regions. The website serves a broad general audience with digital news content and advertising as its primary business model. It holds a strong market position as a leading regional news provider in Eastern France. Technically, the site employs modern web technologies including Google Tag Manager, Didomi for consent management, and Prebid.js for advertising, indicating a mature digital infrastructure. The site is mobile optimized and uses HTTPS with strong security headers, reflecting a good security posture. However, explicit privacy policies and terms of service pages are not evident in the provided content, which slightly impacts privacy compliance. Overall, the website is professional, trustworthy, and safe for general audiences.

L

Le Républicain Lorrain

republicain-lorrain.fr

0

Le Républicain Lorrain is a prominent regional news media organization based in France, delivering continuous news coverage focused on Lorraine, France, and global events. The website offers a variety of services including news articles, videos, digital editions, and subscription models, targeting a general audience interested in regional and national news. It operates under the parent company EBRA Groupe, indicating a strong market position within the media sector. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, and a consent management platform (Didomi) to ensure compliance with privacy regulations. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Security-wise, the site enforces HTTPS, uses secure cookies, integrates Google reCAPTCHA for form protection, and manages user consent effectively. However, it lacks explicit security headers and a public security policy or vulnerability disclosure mechanism. Overall, the website is professional, trustworthy, and compliant with GDPR, with a solid security posture and a clear business model based on advertising and subscriptions.

L

Le Bien Public

bienpublic.com

0

Le Bien Public is a regional French news media organization focused on delivering local news, videos, and services for Dijon and the Côte d'Or region. It operates under the EBRA Group umbrella and offers subscription-based access complemented by advertising revenue. The website demonstrates a mature digital infrastructure with modern technologies such as Google Tag Manager, Didomi for consent management, and reCAPTCHA for form security. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR adherence, including a named Data Protection Officer contact. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its professional presentation and known parent company. Overall, the site is trustworthy, well-maintained, and suitable for a general audience.

L

L'Est Républicain

estrepublicain.fr

0

L'Est Républicain is a well-established regional news media organization serving the Franche-Comté and Lorraine regions in France. The website offers continuous news updates, videos, digital editions, and subscription services, targeting a broad general audience interested in local and national news. It operates under the parent company EBRA Groupe, reflecting a strong market position in regional media. Technically, the website employs modern web technologies including Google Tag Manager, Didomi consent management, and Google reCAPTCHA to ensure user privacy and security. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and secure form handling, although some HTTP security headers could be improved. Privacy compliance is robust, with clear GDPR adherence and a visible Data Protection Officer contact. Overall, the website is trustworthy, professional, and safe for general audiences.

L

Le Journal de Saône et Loire

lejsl.com

0

Le Journal de Saône et Loire (Le JSL) is a regional French news media organization focused on delivering live news, photos, and videos primarily for the Saône-et-Loire area. The website presents a professional and consistent brand image with active social media presence and app availability, targeting a general audience interested in regional news. Technically, the site employs modern web technologies including Google Tag Manager and consent management via Didomi, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and consent mechanisms, though lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, raising questions about domain registration status and legitimacy, which should be monitored. Overall, the site is functional and trustworthy as a regional news source but would benefit from enhanced privacy disclosures and security hardening.

L

Les Dernières Nouvelles d'Alsace

dna.fr

0

Les Dernières Nouvelles d'Alsace (DNA) is a prominent regional news media organization serving Strasbourg, Alsace, and broader France. The website provides continuous live news updates covering local, national, and international events including politics, sports, economy, and environment. It holds a strong market position as a leading regional news source with a large audience base. The business model centers on digital news publishing supported by advertising revenue and mobile app distribution. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, and a consent management platform to ensure GDPR compliance. The infrastructure supports mobile optimization and integrates multiple advertising and analytics services for monetization and user insights. Security posture is robust with HTTPS enforcement, security headers, and privacy policies in place, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with good content quality and compliance, suitable for its media industry role.

L

L'Alsace

lalsace.fr

0

L'Alsace is a regional news media organization providing continuous local, national, and international news coverage focused on the Alsace region in France. The website offers a broad range of news categories including society, sports, politics, economy, health, and environment, targeting a general audience interested in regional and national news. The site is well-branded and maintains consistent messaging aligned with its media focus. Technically, the website employs modern JavaScript frameworks and tracking technologies such as Google Tag Manager and Didomi for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS, ensuring secure access for users. However, explicit privacy policies and contact information are not clearly presented, which may impact user trust and compliance. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and incident response details. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security best practices.

G

Groupe EBRA

ebra.fr

0

Groupe EBRA is the leading French regional daily press group, publishing multiple well-known regional newspapers and offering advertising, audiovisual, and event services. The website reflects a professional media company with a strong market position in France. The technical infrastructure uses modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms, indicating digital maturity. Security posture is good with HTTPS and security headers, but lacks explicit published security policies or incident response information. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the website is well-designed, content-rich, and trustworthy for its audience.

A

Auchan

auchan.fr

0

Auchan is a major French retail and e-commerce company providing a wide range of products including groceries, household goods, electronics, and more. The website offers multiple shopping channels such as drive, click & collect, and home delivery, targeting general consumers in France. The site is professionally designed with clear navigation and strong branding consistency, reflecting its enterprise-level market position. Technically, Auchan.fr uses modern JavaScript libraries, asynchronous loading, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. The site is mobile-optimized and performs well with responsive design and lazy loading techniques. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. WHOIS data is unavailable, which slightly reduces trustworthiness, but the website's content and external links support legitimacy. Overall, Auchan.fr is a high-quality, trustworthy retail website with good privacy and security practices.

G

Gîtes de France®

gites-de-france.com

0

Gîtes de France® is a well-established French vacation rental platform offering a variety of accommodations including gîtes, chambres d'hôtes, camping, and citybreaks. The website targets families, couples, and groups seeking quality vacation rentals across France, leveraging a recognized quality label to build trust. The platform provides booking services, thematic stay inspirations, and gift cards, positioning itself as a leader in the French hospitality sector. Technically, the site is built on Drupal 10, employs modern JavaScript libraries, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, providing an excellent user experience. Security-wise, the site uses HTTPS and secure Drupal forms but lacks visible advanced security headers, suggesting room for improvement. The absence of WHOIS registration data is a concern but does not detract significantly from the site's legitimacy given the strong branding and content quality. Overall, the site presents a professional, trustworthy, and user-friendly platform for vacation rental bookings in France.

U

URW

urw.com

0

Unibail-Rodamco-Westfield (URW) is a leading European commercial real estate company specializing in owning, developing, and operating sustainable, high-quality real estate assets in major cities. The company focuses on creating destinations that foster community connections and meaningful experiences. Their website reflects a mature digital presence with comprehensive investor relations content, sustainability initiatives, and multimedia engagement. Technically, the site is built on modern frameworks such as Next.js and React, optimized for performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and standard security headers, though public security policies and incident response contacts are not prominently disclosed. The absence of WHOIS data is unusual but does not detract from the overall legitimacy and professionalism of the site. Strategic recommendations include publishing explicit security and incident response policies and enhancing transparency around vulnerability disclosures.

G

Groupe BPCE

groupebpce.com

0

Groupe BPCE is a major French banking and insurance group, operating through well-known brands such as Banque Populaire, Caisse d'Epargne, and Natixis. It holds the position of the second largest banking group in France, financing a significant portion of the national economy. The website reflects a mature digital presence with comprehensive content targeting customers, investors, journalists, and partners. The business model focuses on retail banking, insurance, investment management, and corporate banking services. The site is professionally designed, mobile-optimized, and SEO-friendly, indicating a high level of digital maturity. Technically, the website is built on WordPress, leveraging modern JavaScript libraries, SEO plugins, and tag management tools like Tealium. Security measures include HTTPS enforcement and bot protection via hCaptcha. Cookie consent and privacy policies are implemented in compliance with GDPR, demonstrating attention to privacy and regulatory requirements. However, explicit security policies and incident response contacts are not prominently available, which could be improved. The security posture is strong with no evident vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly but does not detract from the overall legitimacy given the extensive corporate branding and content. The site does not contain any adult or questionable content, making it safe for general audiences. Overall, Groupe BPCE's website is a robust, professional platform supporting its business operations and stakeholder communications. Strategic improvements could focus on enhancing transparency around security policies and incident response to further strengthen trust and compliance.

F

FERRERO France

ferrero.fr

0

Ferrero France is a subsidiary of the globally recognized Ferrero Group, a family-owned Italian confectionery company founded in 1946. The company operates in the manufacturing and retail sectors, specializing in sweet food products with iconic brands such as Nutella®, Kinder®, Tic Tac®, and Ferrero Rocher®. The website reflects a mature, enterprise-level business with a strong emphasis on quality, sustainability, and corporate social responsibility. The digital presence is well-structured, multilingual, and professionally designed, targeting a broad general audience including consumers, partners, and job seekers. Technically, the website is built on Drupal CMS and incorporates modern web technologies such as Google Tag Manager for analytics, AddToAny for social sharing, and UserWay for accessibility enhancements. The site is mobile-optimized and includes SEO best practices, though accessibility compliance is moderate at 57%. Security posture is strong with HTTPS enforced and multiple security headers present, alongside a published vulnerability disclosure policy. However, WHOIS data for the domain is unavailable, which is unusual for a major brand and warrants monitoring. Overall, the website demonstrates a high level of digital maturity and security awareness, with comprehensive privacy and cookie policies aligned with GDPR requirements. The absence of explicit contact emails and phone numbers on the public site suggests a preference for contact via forms or social media channels. The site is safe for general audiences with no adult or questionable content detected.

S

SUEZ

suez.com

0

SUEZ is a global enterprise specializing in water and waste management, offering circular economy solutions to local authorities and businesses. The company positions itself as an expert in environmental services, supporting sustainable development and resource management. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to a corporate audience. Technically, the site employs modern web standards, including HTTPS, security headers, and optimized fonts, ensuring a secure and performant user experience. Security posture is strong with no evident vulnerabilities or exposed sensitive data, though the absence of a public vulnerability disclosure policy and incident response contacts suggests room for improvement. Overall, the website is trustworthy and well-maintained, but the lack of WHOIS data raises questions that warrant further registrar-level verification.

M

Musée d'Aquitaine

musee-aquitaine-bordeaux.fr

0

Musée d'Aquitaine is a prominent cultural institution in Bordeaux, France, dedicated to preserving and showcasing the history and heritage of Bordeaux and the Aquitaine region. The museum offers a variety of exhibitions, educational programs, and online resources targeting a broad audience including families, students, researchers, and tourists. It operates under the auspices of the City of Bordeaux, reflecting its important role in regional cultural preservation. Technically, the website is built on Drupal 11, leveraging modern web technologies such as jQuery, Bootstrap, and specialized tools like Piano Analytics for visitor tracking and Tarteaucitron for cookie consent management. The site is well-optimized for mobile devices, accessible, and SEO-friendly, providing a smooth user experience with clear navigation and rich content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is not publicly available, likely due to privacy protection, which is justified given the nature of the institution. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen the security posture and user trust.

E

Eurométropole de Metz

metzmetropole.fr

0

The Eurométropole de Metz website serves as the official digital presence of the metropolitan government entity responsible for the Metz region in France. It provides comprehensive information about the territory, administrative structures, public services, urban development projects, ecological commitments, cultural activities, tourism, and economic development. The site targets residents, businesses, students, and visitors, offering a broad range of resources and service information. The business model is that of a public sector government authority focused on regional governance and service delivery. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies including jQuery, SoundManager2, OpenLayers for mapping, and the Foundation CSS framework. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with no critical technical issues detected. Privacy compliance is strong, featuring a GDPR-compliant cookie consent mechanism and a detailed privacy policy. From a security perspective, the site enforces HTTPS and employs cookie consent respecting Do Not Track signals. However, no explicit security headers were detected in the provided data, and no published security policy or incident response contacts were found. No vulnerabilities or exposed sensitive data were identified. The WHOIS data is unavailable due to privacy protection, which is typical and justified for a government entity. External links are primarily to related government or regional partner domains, and analytics are handled via Matomo with transparent user consent. Overall, the website presents a trustworthy, professional, and well-maintained digital presence for the Eurométropole de Metz. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and adding a vulnerability disclosure mechanism to further strengthen security posture and user trust.

É

École Supérieure d'Art et Design de Saint-Étienne

esadse.fr

0

The École Supérieure d'Art et Design de Saint-Étienne (ESADSE) is a French higher education institution specializing in art and design. The website serves as an informational portal for students, educators, researchers, and partners, providing access to academic programs, research activities, alumni networks, and partnerships. The site also integrates with the Cité du design platform, which consolidates new content and news. The business model is focused on education and cultural development within the art and design sector, targeting a regional and international audience interested in these fields. Technically, the website employs a legacy jQuery-based stack with additional libraries such as Font Awesome and highlight.js. Cookie consent is managed via tarteaucitron.js, indicating awareness of privacy regulations. The site is hosted by OVH, a reputable French hosting provider. Performance and mobile optimization are moderate, with room for improvement in accessibility and modern web standards. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible advanced security headers and incident response information. No security.txt or vulnerability disclosure mechanisms are present. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the security posture is adequate but could benefit from enhancements in headers, policies, and transparency. The overall risk is low given the educational nature of the site and absence of suspicious elements. Strategic recommendations include improving security headers, publishing privacy and security policies, enhancing mobile and accessibility features, and formalizing incident response procedures to strengthen trust and compliance.

É

École supérieure d’art et de design des Pyrénées

esad-pyrenees.fr

0

École supérieure d’art et de design des Pyrénées is a French higher education institution specializing in art and design education, serving students primarily in the Pyrénées region. The website presents a professional and well-structured platform offering information on admissions, courses, diplomas, international programs, and public workshops. The institution maintains an active presence with regular updates on events and exhibitions, supported by partnerships with cultural and governmental organizations. Technically, the website employs modern JavaScript libraries and external services such as Mapbox for mapping, Plausible for analytics, and Sendinblue for newsletter management, hosted on OVH infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and cookie consent mechanisms, which are important for GDPR compliance. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

É

éditions B42

editions-b42.com

0

éditions B42 is a specialized French publishing company focusing on books and journals related to design, typography, and contemporary cultural studies. The company operates a professional e-commerce website built on WordPress and WooCommerce, offering a wide catalog of publications and related objects. The website targets readers, designers, academics, and students interested in these niche fields. The domain is well-established since 2008, registered with a reputable registrar, and the website content aligns with the business profile, indicating a legitimate and credible operation. Technically, the site uses modern web technologies and supports multilingual content via WPML, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

A

Alliance Digitale

iabfrance.com

0

Alliance Digitale is a French non-profit industry association dedicated to structuring and defending the digital marketing sector in France. It brings together experts, advertisers, agencies, and technology providers to promote innovative and responsible solutions, ensuring a reliable and high-performing industry. The organization offers certifications such as the Privacy Protection Pact and Drive to Trust, publishes reports and guides, and hosts events and webinars to foster collaboration and knowledge sharing. The website reflects a mature digital presence with professional design, comprehensive content, and active engagement with its members and the broader industry. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use. Security posture is good with HTTPS and no obvious vulnerabilities, though some security headers and incident response policies are not explicitly published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, though improvements in transparency and compliance would enhance its security and privacy posture.

L

La Plateforme Maladies Rares

plateforme-maladiesrares.org

0

La Plateforme Maladies Rares is a French non-profit collaborative platform established in 2001, dedicated to coordinating efforts among key stakeholders in the rare diseases ecosystem. It is administered by Maladies Rares Info Services and primarily funded by AFM-Téléthon and the French Ministry of Health. The platform serves patients, families, healthcare professionals, researchers, and public health authorities by fostering collaboration, sharing knowledge, and providing support services. The website reflects a mature digital presence with good content quality, clear navigation, and consistent branding. Technically, it uses modern JavaScript libraries and fonts, hosted by a reputable registrar and hosting provider. Security posture is good with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and privacy compliance. Overall, the platform demonstrates high trustworthiness and professionalism, serving as a critical resource in the healthcare non-profit sector.

A

Alliance Maladies Rares

alliance-maladies-rares.org

0

Alliance Maladies Rares is a French non-profit organization dedicated to promoting research, mutual aid, information dissemination, training, and advocacy related to rare diseases and rare disabilities. Established since 2001, it serves patients, families, healthcare professionals, and researchers within the rare disease community in France. The website reflects a professional and consistent brand presence, targeting a general audience interested in healthcare and support services for rare conditions. Technically, the website is built on WordPress, utilizing common libraries such as jQuery and Bootstrap, hosted by OVH sas, a reputable French hosting provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. Cookie consent mechanisms are implemented, indicating awareness of GDPR requirements, although privacy and terms of service policies are missing. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized transfers or deletions. However, DNSSEC is not enabled, and no security headers were detected, representing areas for improvement. No incident response or vulnerability disclosure policies are published, which could enhance trust and compliance. No adult or explicit content is present, making the site safe for general audiences. Overall, the website is credible and trustworthy, with a solid business foundation and technical infrastructure. Strategic improvements in privacy compliance, security headers, and DNSSEC implementation would strengthen its security posture and regulatory adherence.

A

AFM-Téléthon

afm-telethon.fr

0

AFM-Téléthon is a prominent French non-profit organization dedicated to combating rare diseases through fundraising, research support, and patient assistance. The website reflects a mature digital presence with comprehensive content targeting families affected by rare diseases, donors, researchers, and healthcare professionals. It offers donation mechanisms, educational resources, and extensive information about its activities and subsidiaries. Technically, the site is built on Drupal CMS, employs modern analytics and consent management tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could be enhanced. The absence of WHOIS data is unusual but does not detract significantly from the site's legitimacy given the strong branding and external references. Overall, the site is professional, trustworthy, and well-aligned with its mission.

N

NeuroEros

neurosphinx.fr

0

NeuroEros is a small French health and wellness blog launched in 2023, focusing on sexuality, mental health, slimming, and beauty. The site provides educational content, product reviews, and guides aimed at a general adult audience interested in improving their well-being and sexual health. The business model appears to rely on content publishing with affiliate marketing. Technically, the website is built on WordPress using Elementor, hosted with Cloudflare DNS, and employs HTTPS with good SSL configuration. The site is moderately optimized for mobile and SEO, with basic accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and incident response policies. Privacy compliance is good with GDPR-aligned policies and cookie consent. No suspicious or malicious content or domains were detected. Overall, the website is professional and trustworthy, though improvements in security practices and explicit contact information could enhance credibility and safety.

O

onestar press

onestarpress.com

0

Onestar Press is a niche e-commerce business specializing in the sale of artists' books, prints, and multiples, operating since 2000. The website is professionally designed using Shopify and React technologies, providing a good user experience with clear navigation and mobile optimization. The business targets collectors and enthusiasts of contemporary art publications, offering a curated selection of unique and special edition works. Despite the professional presentation, the WHOIS data for the domain is missing, indicating either a recent registration or privacy protection, which conflicts with the claimed business history. The website includes comprehensive legal pages and contact information, supporting business credibility. Technically, the site uses modern frameworks and is hosted on Shopify, ensuring reliable infrastructure and moderate performance.

L

Le Relais des Fermes

relais-desfermes.com

0

Le Relais des Fermes is a specialized mountain restaurant located at 1300 meters altitude in Megève, France, offering authentic Alpine cuisine and a warm, family-friendly atmosphere. The business operates primarily during the winter season and offers event privatization services for groups up to 100 people. The website is professionally designed, multilingual, and integrates modern web technologies including Google Tag Manager and Weglot for translation. Security measures such as HTTPS and Google reCAPTCHA are implemented, and privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data raises some concerns about domain transparency, although the website content and branding strongly indicate a legitimate hospitality business affiliated with Maison & Hotels Sibuet.

P

Palais de Tokyo

palaisdetokyo.com

0

Palais de Tokyo is a prominent cultural institution based in Paris, France, dedicated to contemporary art. It is recognized as the largest center for contemporary art in Europe, offering exhibitions, performances, educational workshops, and a retail boutique. The website reflects a mature digital presence with a modern tech stack including Nuxt.js and Vue.js, and incorporates privacy compliance tools such as tarteaucitron for cookie consent and Sibforms for newsletter subscriptions. The site is well-designed, mobile-optimized, and provides clear navigation and rich content relevant to its audience. Security posture is solid with HTTPS enforced and domain transfer protections, though some improvements like enabling DNSSEC and publishing a security policy could enhance trust further. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, serving a general audience interested in art and culture.

The website www.pau.fr serves as the official digital portal for Pau Agglomération, a French municipal government entity. It provides comprehensive information and services related to daily life, urban planning, culture, social services, and community engagement for residents and visitors. The site is built on Drupal 10 and integrates Matomo analytics for privacy-conscious user tracking. The design is professional, mobile-optimized, and accessible, reflecting a mature digital presence for a government organization. Security posture is good with HTTPS and some security best practices observed, though explicit security policies and incident response information are not publicly visible. The absence of WHOIS data is a notable anomaly that warrants further verification but does not detract from the site's apparent legitimacy based on content and branding.

B

Bureau DGC

bureaudgc.com

0

Bureau DGC is a small Paris-based graphic design studio founded in 2016, specializing in book design, visual identity, spatial design, website, and digital media. The company targets artists, publishers, architects, urbanists, and brands, positioning itself as a niche creative agency with a professional portfolio showcasing diverse projects. The website reflects a consistent brand identity and provides clear contact information, though it lacks social media presence and phone contact details. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Analytics and Google Tag Manager for tracking. The site is hosted by OVH sas, a reputable provider. Mobile optimization is good, but accessibility and SEO optimizations are basic. No CMS or advanced frameworks are detected. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are important for enhancing security posture. There are no visible privacy or cookie policies, nor incident response contacts, indicating compliance gaps especially regarding GDPR. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website is professional and functional but would benefit from improved security practices and privacy compliance measures to enhance trust and regulatory adherence.

The website ibuildmytime.com serves as a personal and professional portfolio for Léa Guillon, a creative professional specializing in graphic arts, coding, and poetry. The site showcases a variety of printed and digital creative works including books, posters, websites, drawings, texts, and installations. The business operates as a small creative entity based in France, founded in 2022, targeting a general audience interested in artistic and digital content. The market position is niche, focusing on bespoke creative services rather than mass-market offerings. Technically, the website employs a modern JavaScript technology stack including jQuery, LazyLoad libraries, Swiper for sliders, and Video.js for video content. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is hosted by OVH sas, a reputable hosting provider, and uses HTTPS, though DNSSEC is not enabled. Mobile optimization is good, but accessibility and SEO features are basic. No CMS is detected, indicating a custom-built site. From a security perspective, the site lacks several best practices: no DNSSEC, no security headers detected, and no disclosed security or incident response policies. Privacy and cookie policies are absent, and no GDPR compliance indicators are present. Contact information is limited to an email address, with no phone or physical address provided. Despite these gaps, no critical vulnerabilities or malicious content were detected, and the domain registration is transparent and consistent with the business profile. Overall, the website is functional and professionally presented but would benefit from enhanced privacy compliance, security hardening, and clearer business information to improve trust and regulatory adherence.

Z

ZOL

zol.fr

0

ZOL is a French digital agency specializing in custom web and mobile solutions, agile project management, consulting, UX/UI design, and data-driven digital transformation. Established since 2005 with a domain registered in 2008, the agency serves a diverse clientele including startups, SMEs, large groups, and communication agencies. Their market position is solid, supported by a portfolio of notable clients and a strong emphasis on bespoke digital craftsmanship. Technically, the website employs modern technologies such as PHP, Symfony, React, Docker, and integrates analytics tools like Google Tag Manager and Matomo. Hosting is provided by OVH, a reputable provider. The site is well-optimized for mobile and SEO, with a professional design and clear navigation, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a professional and trustworthy digital presence with room for improvement in privacy policy publication and security best practices. Strategic enhancements in these areas would strengthen compliance and security posture.

T

The Coding Machine

thecodingmachine.com

0

The Coding Machine is a French-based technology company specializing in custom web and mobile application development, serving entrepreneurs, startups, and large enterprises. Established in 2004, it has a mature market presence and offers a comprehensive suite of services including technical conception, UX/UI design, development, maintenance, audits, and generative AI solutions. The company emphasizes adherence to deadlines and budgets, positioning itself as a reliable partner in digital transformation projects. Technically, the website is built on WordPress with a modern tech stack including Laravel, Symfony, React, Vue.js, and various No Code and blockchain technologies, hosted on Amazon AWS. The site is well-optimized for SEO and mobile, with good performance and accessibility standards. Security posture is solid with HTTPS, domain locks, and CAPTCHA-protected forms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a professional, trustworthy, and technically competent organization with a strong digital presence.

L

La Belle Bobine

labellebobine.com

0

La Belle Bobine is a small artisan business based in Finistère, Bretagne, France, specializing in handmade clothing and accessories since 2011. The company also offers sewing workshops for beginners and advanced learners, targeting local customers and sewing enthusiasts. The website is built on WordPress with a professional design and clear navigation, supporting the business's artisanal retail and educational services. Technically, the site uses common WordPress plugins and libraries, including Yoast SEO and jQuery, and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, which reduces domain trustworthiness, though the website content and contact information appear legitimate. Overall, the site is functional and professional but would benefit from improved privacy compliance and security hardening.

G

Good Design Store

good-designstore.com

0

Good Design Store is a French-based e-commerce retailer specializing in Scandinavian and Nordic design furniture, lighting, and home decoration products. Established in 2014, the company operates both online and through physical boutiques in Marseille and Nice, targeting consumers seeking high-quality contemporary design. The website presents a professional and well-structured platform powered by PrestaShop, integrating modern analytics and marketing tools such as Microsoft Clarity and Google Tag Manager. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and comprehensive privacy policies. Security posture is good with HTTPS enforced and secure payment options, though improvements are recommended in DNS security and HTTP headers. Overall, the site demonstrates a mature digital presence with strong business credibility and user trust.

S

SOMFY Group

somfy-group.com

0

SOMFY Group is a global leader in home and building automation, specializing in motorization and control solutions for openings and closures. The company operates in over 59 countries and emphasizes sustainability and digital innovation. Their website reflects a mature digital presence with comprehensive corporate content, including annual reports and sustainability initiatives. Technically, the site uses modern frameworks like Bootstrap and integrates multiple analytics and tracking tools, hosted likely via Akamai CDN. Security posture is good with HTTPS enforced and a dedicated cybersecurity reporting channel, though explicit security headers are not detected. Privacy compliance is strong with clear cookie consent and privacy policies in French, aligned with GDPR. The domain WHOIS data is unavailable, which slightly reduces trust but the overall site professionalism and content quality support legitimacy.

E

Votre annuaire ETP Maladies Rares – L'Éducation Thérapeutique du Patient pour tous

etpmaladiesrares.com

0

The website 'Votre annuaire ETP Maladies Rares' serves as an educational and directory platform focused on Therapeutic Patient Education (ETP) for rare diseases. It provides patients, families, and healthcare professionals with resources, videos, and guides to better manage chronic illnesses. The site is positioned as a niche healthcare education resource in France, founded in 2017 and hosted on WordPress.com. The content is well-structured, relevant, and consistent with healthcare education standards, referencing authoritative organizations such as the WHO and French health authorities. Technically, the site leverages WordPress CMS with standard plugins and Google Fonts, hosted by Automattic Inc. Performance and mobile optimization are moderate to good, though accessibility and SEO are basic. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is limited, with a legal mentions page but no explicit cookie consent mechanism or detailed privacy policy. Security evaluation shows no critical vulnerabilities or malicious indicators, but improvements are recommended in security headers and privacy transparency. The absence of direct contact emails or phone numbers limits business credibility slightly, though the site maintains moderate trustworthiness through authoritative content and consistent branding. Overall, the website is a functional, safe, and informative resource for its target audience but would benefit from enhanced privacy compliance, security hardening, and clearer business contact information to improve trust and compliance posture.

T

Transition Maladies Rares

transitionmaladiesrares.com

0

Transition Maladies Rares is a specialized healthcare resource website dedicated to supporting the transition of patients with rare and chronic diseases from pediatric to adult care. The site offers a comprehensive collection of information, tools, projects, and professional resources to facilitate this critical healthcare transition. It is supported by the NeuroSphinx initiative and associated with recognized healthcare institutions in France. The website targets patients, families, and healthcare professionals involved in rare disease management. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and FontAwesome, and integrates Google reCAPTCHA for form security. The site is well-structured, mobile-optimized, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and spam protection, though some security headers are missing and privacy compliance could be enhanced with explicit consent mechanisms. Overall, the domain registration and WHOIS data align well with the website's content and business history, indicating legitimacy and trustworthiness.

F

Filières de Santé Maladies Rares

filieresmaladiesrares.fr

0

Filières de Santé Maladies Rares is a French healthcare informational platform dedicated to rare diseases, providing resources, directories, research bulletins, and training for patients, caregivers, and healthcare professionals. The website positions itself as a national coordination point for rare disease filières in France, offering comprehensive content relevant to its audience. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and moderate performance. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved and explicit privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the site content and infrastructure indicate legitimate operation. Overall, the site is professional, trustworthy, and safe for general audiences.