Security Directory

O

Office de tourisme Nice Côte d'Azur

nicecotedazur-greeters.com

0

The website www.nicecotedazur-greeters.com represents the official platform for the Nice Côte d'Azur Greeters, a volunteer-based cultural tourism initiative affiliated with the local tourism office. It offers visitors the opportunity to meet local volunteers ('Greeters') who provide free guided walks sharing their passion and knowledge of Nice and the surrounding Côte d'Azur region. The site is well-branded, professionally designed, and targets tourists seeking authentic local experiences. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WP Rocket, ensuring good SEO and performance. The presence of Google Tag Manager and Cookiebot indicates a moderate level of user tracking balanced with GDPR-compliant consent mechanisms. Security posture is generally good with HTTPS enforced, though explicit security headers are not detected in the provided data. The absence of WHOIS registration data is a notable anomaly, reducing transparency and trust in domain registration details. Overall, the site is safe, professional, and serves a niche non-profit hospitality sector effectively.

C

Centre des Congrès Océanice

oceanice-congres.com

0

The website www.oceanice-congres.com represents the Centre des Congrès Océanice, a modern congress and event center located in Nice, France. It offers modular event spaces, accessibility features, and an eco-responsible approach to hosting events. The site targets event organizers, businesses, associations, and public entities seeking professional venues in the region. The business model focuses on venue rental and associated event services, positioning itself as a new and environmentally conscious player in the hospitality sector of Nice. Technically, the website is built on WordPress 6.6.2 with a variety of plugins including Yoast SEO for optimization, Iris Map for mapping features, and Sentry for error tracking. It uses modern web technologies such as jQuery and MapLibre GL JS. The site is well-optimized for SEO and mobile devices, with good accessibility features. Performance is moderate, with room for improvement in loading speed and technical enhancements. From a security perspective, the site uses HTTPS with a good SSL configuration and employs Sentry for monitoring. However, it lacks explicit security headers and formal privacy and cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, although the website content itself appears professional and legitimate. Overall, the website presents a solid business presence with good technical implementation and security posture but requires improvements in privacy compliance and domain registration transparency to enhance trust and regulatory adherence.

B

Bureau des Congrès de Nice Côte d’Azur

meet-in-nicecotedazur.com

0

The website 'Meet in Nice : bureau des congrès de Nice Côte d'Azur' serves as the official platform for the Bureau des Congrès de Nice Côte d’Azur, providing comprehensive support and information for organizing professional events in the Nice region. It targets event organizers, corporate clients, and tourism professionals, positioning itself as a regional leader in destination marketing and event facilitation. The site offers services including event planning assistance, venue and accommodation information, and local expertise, emphasizing sustainability and eco-responsibility. The business model focuses on promoting Nice Côte d'Azur as a premier MICE (Meetings, Incentives, Conferences, Exhibitions) destination.

F

French Riviera Pass

frenchrivierapass.com

0

French Riviera Pass operates a professional multilingual tourism website offering city passes for Nice and the Côte d'Azur region. The business targets tourists seeking convenient access to attractions and discounts. The website is built on WordPress with modern performance and SEO optimizations, including lazy loading and Google Tag Manager integration. Security posture is good with HTTPS enforced, but lacks explicit security headers and a visible incident response policy. The absence of WHOIS data for the domain is a notable anomaly that reduces trust, though the website content and design are professional and trustworthy. Overall, the site demonstrates a mature digital presence suitable for its hospitality sector niche.

The website 5mcl.fr currently presents no accessible content, metadata, or business information. The domain is registered with GANDI since 2021 and is active, but the website itself appears to be either under construction or blocked by security mechanisms. There are no visible privacy policies, contact details, or technical implementations such as scripts or analytics. This severely limits the ability to assess the business or security posture. The lack of HTTPS and security headers further reduces trustworthiness. Overall, the site is not currently suitable for business or customer engagement.

F

Flocon Vert

flocon-vert.org

0

Flocon Vert is a French non-profit organization providing a sustainability label for mountain tourism destinations committed to ecological transition. The website presents detailed information about the label, criteria, partner destinations, and upcoming events. It targets mountain destinations, tourism professionals, and environmentally conscious visitors. The site is built on WordPress with Elementor and integrates modern web technologies and Google analytics tools. Security posture is good with HTTPS and CAPTCHA protections, but lacks some security headers and explicit privacy/cookie policies. Contact information and social media presence enhance business credibility. Overall, the site is professional and trustworthy with a clear mission in sustainable tourism.

R

R' La Radiostation

laradiostation.fr

0

R' La Radiostation is a regional French radio station focused on serving mountain vacationers in the Tarentaise area. The website provides radio broadcasting content, news updates in French and English, and weather information relevant to its audience. The business appears to be a small, local media entity with a domain registered since 2004, consistent with its described history. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by OVH, and uses HTTPS for secure connections. However, it lacks explicit privacy and cookie policies, contact information, and security headers, which are important for compliance and security best practices. Overall, the site is functional and professionally designed but could improve in privacy compliance and security hardening.

L

Les Arcs Reservation

lesarcs-reservation.com

0

Les Arcs Reservation operates as the official online booking platform for accommodations and ski packages in the Les Arcs ski resort area in France. The website offers a variety of lodging options including apartments, hotels, chalets, and all-inclusive ski packages, targeting tourists and vacationers seeking a seamless reservation experience. The business positions itself as a trusted local expert with a focus on customer service and comprehensive offerings for winter and summer stays. Technically, the website is built on the Drupal CMS platform and leverages modern JavaScript libraries such as jQuery, Swiper.js, and Air Datepicker to provide an interactive and responsive user experience. The site is mobile-optimized and includes SEO best practices, although performance is moderate. Security is implemented with HTTPS and secure form handling, but lacks some advanced security headers and explicit privacy and cookie policies. From a security perspective, the site shows a good baseline with HTTPS and no visible vulnerabilities in the HTML content. However, the absence of WHOIS registration data and domain transparency is a concern, reducing overall trustworthiness. No incident response or vulnerability disclosure information is provided, and privacy compliance indicators are minimal. Overall, the website is professional and functional with strong business credibility but would benefit from improved transparency in domain registration, enhanced privacy compliance, and stronger security header implementation to increase trust and security posture.

G

Grosset Janin

grossetjanin.com

0

Grosset Janin is a well-established French company specializing in custom wooden chalet construction and renovation, with a history dating back to 1950. The company targets clients seeking bespoke chalet solutions, offering turnkey projects and renovation services. The website is professionally designed, bilingual (French and English), and optimized for performance and mobile devices. The technical infrastructure is based on WordPress with modern optimization tools like NitroPack and includes integrations such as Google Tag Manager and Google Maps API. Security posture is solid with HTTPS enforced and domain locking, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy and terms of service. Overall, the website reflects a credible and trustworthy business with room for enhanced transparency and security documentation.

M

Manufacture Mercier

mercier.cc

0

Manufacture Mercier is a heritage French brand specializing in premium cycling apparel, leveraging a century-old legacy dating back to 1919. The company operates an e-commerce platform built on Shopify, targeting discerning cyclists seeking high-quality textiles designed in France and manufactured in Europe. The website reflects a strong brand identity with rich multimedia content and a professional design that enhances user experience and trust. Technically, the site employs modern web technologies and integrates multiple marketing and analytics tools, ensuring robust performance and customer engagement. Security posture is solid with HTTPS enforcement and privacy compliance, although explicit security policies and incident response details are absent. The domain WHOIS data is unavailable, which introduces some uncertainty regarding domain registration legitimacy, but the overall digital presence and branding suggest a credible business. Strategic recommendations include publishing security policies, improving transparency on incident response, and addressing WHOIS data gaps to enhance trust.

R

RATP Group

ratpgroup.com

0

RATP Group is a leading global urban transport operator, ranked third worldwide, providing comprehensive mobility services, infrastructure management, real estate, and safety solutions. The company serves cities and regions primarily in France but also internationally, supported by a large workforce and multiple subsidiaries. The website reflects a mature digital presence with a focus on sustainability and corporate social responsibility. Technically, the site uses modern frameworks such as React and Next.js, hosted on Akamai infrastructure, and integrates privacy-conscious analytics via Matomo. Security posture is strong with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and explicit security policies are not published. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

E

EFFIA

effia.com

0

EFFIA is a prominent parking service provider operating primarily in France and Belgium, offering parking space reservations and subscription plans across more than 500 locations. The company targets drivers and commuters seeking convenient and cost-effective parking solutions near city centers and train stations. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content to its audience. Technically, the site is built on Drupal CMS and integrates modern tools such as Google Maps API, Didomi for consent management, and analytics platforms like Piano Analytics and Google Tag Manager. Security posture is solid with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with visible cookie consent mechanisms and a comprehensive privacy policy. However, the absence of WHOIS registration data for the domain www.effia.com raises some concerns about domain legitimacy, though the website content and business presence appear credible. Overall, the site scores well in content quality, technical implementation, and security, but could improve business credibility by providing more transparent domain registration and direct contact information.

A

ARTOIS MOBILITES

artois-mobilites.fr

0

Artois Mobilités is a regional public transportation authority in France managing the Tadao bus network and mobility initiatives focused on sustainable and innovative transport solutions. The website reflects an active organization with recent news updates, a clear focus on public service, and community engagement through newsletters and social media. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools such as Google Tag Manager and Facebook SDK, indicating a mature digital infrastructure. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and contact transparency.

P

Pure Altitude

pure-altitude.com

0

Pure Altitude is a French skincare and spa brand specializing in products made from mountain plants, founded in 2007 and operating primarily through an e-commerce Shopify platform. The website is professionally designed, mobile-optimized, and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Judge.me for customer reviews. The business targets consumers interested in natural and environmentally respectful skincare products. Technically, the site leverages Shopify's infrastructure and modern web technologies, ensuring good performance and accessibility. Security posture is solid with HTTPS enforced and domain registration protections, though some security headers could be improved and explicit security policies published. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Overall, the site presents a trustworthy and professional online presence consistent with its business claims.

Look Cycle is a specialized manufacturer and retailer of carbon bicycles and automatic pedals, targeting cycling enthusiasts and professionals across road, track, gravel, and e-bike segments. The company positions itself as a leader in automatic pedal technology with a comprehensive product catalog and a professional online presence. The website demonstrates a mature digital infrastructure with modern analytics and marketing tools integrated, including Google Tag Manager, Microsoft Clarity, Hotjar, and Facebook Pixel. The site is well-optimized for mobile and accessibility, with clear navigation and rich content. Security posture is strong with HTTPS enforcement and security headers, though the absence of a public security policy and incident response contacts suggests room for improvement. The lack of WHOIS data is a concern for domain legitimacy but does not detract significantly from the overall trustworthiness given the professional site and compliance with privacy regulations. Strategic recommendations include enhancing transparency around security and incident response, verifying domain registration details, and expanding direct contact information to improve business credibility and user trust.

T

Tadao

tadao.fr

0

Tadao operates as a regional public transportation network serving the Artois and Gohelle sectors in France, providing bus schedules, route planning, traffic updates, and on-demand transport services. The website reflects a medium-sized organization with a clear focus on user accessibility and service information, supported by a parent company, Transdev, a known global transport operator. The digital infrastructure is modern, leveraging JavaScript frameworks, cookie consent management, and analytics tools, with a CMS platform (ActiPAGE) generating the site content. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security best practices like explicit security headers and incident response information could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies in French, aligned with GDPR requirements. Overall, the site is professional, trustworthy, and well-positioned in its market niche.

L

Louvre-Lens

louvrelens.fr

0

Louvre-Lens is an official French museum branch presenting cultural exhibitions, events, and visitor services. The website serves as a comprehensive portal for museum information, programming, and ticketing, targeting a broad public audience including families, tourists, and cultural enthusiasts. The site is built on WordPress with modern plugins and analytics tools, demonstrating a mature digital infrastructure. Security posture is good with HTTPS, cookie consent, and anonymized analytics, though explicit security headers and incident response contacts are not published. The absence of WHOIS data reduces domain registration trust but the website content and branding strongly indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR requirements.

The website jemegare.fr serves as a regional landing page for EFFIA, a significant French company specializing in paid on-street parking management and mobility services. The site highlights EFFIA's extensive presence across multiple French cities, emphasizing its role in parking space management and regulation. The business targets both city authorities and motorists, positioning itself as a key player in the transportation sector in France. The website content is straightforward, focusing on service offerings and city-specific parking solutions, with links to multiple city subdomains.

L

Lens Lievin Tourisme

groupes-lenslievin.fr

0

Lens Lievin Tourisme operates the website groupes-lenstourisme.fr as a local tourism office focused on organizing group visits and school outings in the Lens-Liévin area of France. The website provides information and resources to facilitate group tourism activities, positioning itself as a key local hospitality service provider. The business is relatively new, with domain registration in 2024, and targets groups such as schools and friends planning visits. Technically, the website is built on WordPress and uses common tools like Google Analytics and Rank Math SEO, indicating a moderate level of digital maturity. The site is hosted by OVH, a reputable provider, and employs HTTPS for secure communications. However, there is room for improvement in security posture, including the implementation of security headers and visible privacy and cookie policies. No forms or direct contact information were found in the analyzed content, which may impact user engagement and trust. Overall, the website is professional and relevant to its audience but would benefit from enhanced privacy compliance and security best practices.

ATMO BFC is a regional environmental health organization focused on air quality, climate, energy, and mobility in Bourgogne-Franche-Comté, France. The website serves as an authoritative source for environmental data, publications, and public information. The organization appears well-established with a domain registered since 2017 and no privacy protection, indicating transparency. The site uses Drupal 10 CMS with modern JavaScript libraries and includes analytics via Matomo and cookie consent via CookieYes. Security posture is adequate with HTTPS and domain protections but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial due to the absence of a visible privacy policy page. Overall, the website is professional, content-rich, and trustworthy for its target audience.

R

RATP Dev

ratpdev.com

0

RATP Dev is a global operator specializing in the operation and maintenance of urban and interurban transportation networks across five continents. The company offers a wide range of services including metro, tramway, bus, train, sightseeing, demand-responsive transport, and specialized services for persons with reduced mobility. The website reflects a mature enterprise with a strong international presence and multiple subsidiaries. Technically, the site is built on Drupal 10, uses modern analytics and mapping technologies, and implements cookie consent mechanisms, indicating a reasonable level of digital maturity. Security posture is good with HTTPS and some privacy measures, but lacks explicit security policies and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and branding align with the known RATP Group. Overall, the site is professional and trustworthy but would benefit from enhanced transparency in privacy and security disclosures.

F

Framasoft

framaprout.org

0

Framaprout.org is a niche, playful web project operated by the French non-profit organization Framasoft, known for promoting free software and digital commons. The site offers an interactive 'Prout-o-mètre' application with humorous content and browser extensions to engage users in a lighthearted manner. The project targets a general audience interested in digital culture and community-driven initiatives. Technically, the site uses modern frontend technologies including Vue.js and Bootstrap, hosted by OVH sas, with good mobile optimization and privacy-respecting analytics. Security posture is adequate with HTTPS enforced and domain protections, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is partial, with privacy and terms policies available on the parent site but no cookie consent mechanism on this site. Overall, the site is trustworthy, professionally presented, and aligned with Framasoft's mission.

F

Framasoft

framacolibri.org

0

Framacolibri is a community-driven forum platform operated by Framasoft, a French non-profit organization dedicated to promoting free and open-source software. The website serves as a hub for discussions, support, and collaboration around various Framasoft projects such as PeerTube, Mobilizon, and Yakforms. It targets users and contributors interested in decentralized and libre software solutions. The platform is built on the Discourse forum software, indicating a modern and scalable technical infrastructure. The website demonstrates good digital maturity with responsive design and clear navigation, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses a reputable domain registrar, Gandi SAS. However, it lacks DNSSEC and some recommended security headers, and does not publicly disclose a security policy or incident response contacts. Privacy compliance is limited, with no visible privacy or cookie policies, which could be improved to align with GDPR requirements. No advertising or tracking services were detected, indicating a privacy-respecting approach. Overall, Framacolibri presents a trustworthy and professional community platform with a solid technical foundation. The main risks relate to privacy policy transparency and security policy disclosures, which are recommended for enhancement to improve user trust and compliance. The domain registration details support the legitimacy and consistency of the website's non-profit mission.

F

Framasoft

framalang.org

0

Framasoft is a reputable French non-profit organization dedicated to promoting free software, digital commons, and collaborative translation efforts through its Framalang project. The website serves as a portal for community members to participate in translating digital culture content, primarily from English to French, supporting the broader mission of open knowledge dissemination. The organization maintains a strong presence in the francophone free software ecosystem with multiple linked community platforms and projects. Technically, the site is built using modern static site generation tools (HonKit), ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and explicit cookie consent mechanisms. The WHOIS data is privacy protected, which is typical and justified for a non-profit entity, and does not detract from the domain's legitimacy. Overall, the site is trustworthy, well-maintained, and aligned with its community-driven mission.

F

Framasoft

framatube.org

0

Framatube is a PeerTube instance operated by the non-profit association Framasoft, dedicated to hosting and sharing videos related to their community and open source projects. The platform leverages decentralized video hosting technology to provide an alternative to mainstream video platforms, emphasizing privacy and open standards. The website is well-branded, consistent, and targets a general audience interested in free and open source software and community content. Technically, the site is built on the PeerTube platform using modern web technologies including Angular and TypeScript, with privacy-respecting Matomo analytics integrated. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

F

Framasoft

framalab.org

0

Framasoft operates Framalab as an experimental platform offering privacy-respecting, open-source alternatives to popular proprietary web services. The organization is a French non-profit established in 2011, focusing on community-driven digital tools such as forms, petitions, shared expense management, diagramming, and PDF handling. The website is well-structured, multilingual, and targets users seeking ethical and privacy-conscious digital services. Technically, the site uses modern frontend technologies like Vue.js and FontAwesome, hosted by OVH sas, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain protections in place, but lacks DNSSEC and security headers, and no cookie consent mechanism is present. Privacy compliance is supported by comprehensive privacy and terms pages on the parent site, though explicit cookie policies are missing. Overall, the site is trustworthy and professional, with minimal tracking and strong community engagement via social media and forums.

F

Framasoft

mobilizon.fr

0

Mobilizon.fr is a community-driven event and group management platform operated by Framasoft, a French non-profit organization promoting free software and digital freedom. The website serves as an instance of the Mobilizon platform, enabling users to organize, mobilize, and manage events and groups. The platform targets general audiences interested in community engagement and activism. Technically, the site uses modern JavaScript frameworks such as Vue.js and UI libraries like Oruga, with good mobile optimization and accessibility features. The domain is registered with GANDI since 2019, consistent with the platform's operational timeline. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional, trustworthy, and professionally presented but would benefit from enhanced privacy and security documentation.

F

Framasoft

framagames.org

0

Framagames is a small, community-driven platform operated by the non-profit organization Framasoft, offering free and open source games playable online or offline. The website targets a general audience interested in free software and gaming, positioning itself as a niche player within the open source gaming community. The platform provides downloadable games and online play options, supported by community engagement and guides hosted on the parent Framasoft domain. Technically, the site is built using modern web technologies including Vue.js and Font Awesome, hosted by Gandi SAS. The website is mobile optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and performance. The domain is well maintained with HTTPS and clientTransferProhibited status, but lacks DNSSEC and security headers which could enhance security posture. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks explicit security policies, incident response information, and cookie consent mechanisms. Tracking is minimal and privacy policies are hosted on the parent domain, indicating reasonable privacy compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, Framagames presents a trustworthy, well-maintained platform with a strong community focus. Strategic improvements in security headers, cookie consent, and public security policies would enhance its security posture and compliance. The site is safe for general audiences and aligns well with its non-profit, open source mission.

F

Framasoft

framagroupes.org

0

Framasoft is a French non-profit association founded in 2004, dedicated to popular education on digital challenges and the cultural commons. The Framagroupes service provides a free, ethical platform for creating and managing email discussion groups, emphasizing user privacy, data autonomy, and community moderation. The organization is funded primarily by donations and operates with transparency and a strong ethical stance against surveillance capitalism. Technically, the website uses modern web technologies including Vue.js and the Sympa mailing list software, hosted by Gandi SAS. The site is well-designed, mobile-optimized, and accessible, with clear navigation and professional content. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are missing. Privacy compliance is strong with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy, safe, and aligned with its mission of digital emancipation.

F

Framasoft

framacarte.org

0

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical, free/libre software services. Framacarte is one of its flagship projects, offering a free online map customization tool based on OpenStreetMap and the uMap software. The organization is funded primarily by donations and emphasizes privacy, minimal data collection, and transparency. The website is professionally designed, mobile-optimized, and rich in content, targeting a broad audience interested in digital emancipation and open-source tools. Technically, the site uses modern web technologies including Vue.js and Bootstrap, hosted by OVH sas. It employs HTTPS with good SSL configuration but lacks DNSSEC and some security headers, which are recommended for enhanced security. Analytics are handled via Matomo with minimal tracking, aligning with the organization's privacy ethos. Security posture is solid for a non-profit, with domain registration protections and no evident vulnerabilities, though improvements are suggested in DNS security and explicit security policies. Privacy compliance is good, with clear terms and privacy policies, though no cookie consent mechanism was detected. Overall, Framasoft and Framacarte present a trustworthy, well-managed digital service with strong community and ethical foundations. Strategic improvements in security and privacy transparency would further enhance trust and resilience.

F

Framasoft

framadate.org

0

Framadate is a free, open-source polling and scheduling tool operated by the French non-profit association Framasoft. The website offers collaborative event scheduling and opinion polling services with a strong emphasis on user privacy, data autonomy, and digital emancipation. The platform is donation-funded and positions itself as an ethical alternative to commercial services, targeting individuals and organizations seeking privacy-respecting tools. Technically, the site uses modern web technologies such as Vue.js and Bootstrap 4, is hosted by a reputable registrar (Gandi SAS), and is well-optimized for performance and mobile devices. Security posture is solid with HTTPS enforced and minimal data collection, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is good with a comprehensive privacy policy and terms of use, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and aligns well with its stated mission and business model.

F

Framasoft

framalistes.org

0

Framasoft is a French non-profit organization providing ethical digital services, including Framalistes, a free mailing list platform focused on privacy and user autonomy. The organization is well-established with a domain age consistent with its founding and operates transparently with donation-based funding. The website is professionally designed, mobile-optimized, and accessible, reflecting a mature digital presence. Technically, it uses modern frameworks like Vue.js and the Sympa mailing list software, hosted by a reputable registrar, Gandi SAS. Security posture is good with HTTPS and domain transfer protections, though DNSSEC and explicit security policies could be improved. Privacy compliance is strong with minimal tracking and clear terms of use. Overall, the site is trustworthy and serves a niche audience seeking ethical alternatives to commercial mailing list services.

F

Framasoft

framatalk.org

0

Framasoft is a French non-profit association dedicated to promoting digital autonomy and popular education through ethical and privacy-respecting online services. Their Framatalk platform offers free, ad-free videoconferencing based on the open-source Jitsi Meet software, targeting individuals and groups seeking secure and easy-to-use communication tools. The organization is funded primarily by donations and emphasizes transparency and community involvement. Technically, the website leverages modern web technologies including Vue.js and Bootstrap 4, hosted by OVH sas, a reputable provider. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. The use of open-source software and self-hosted analytics reflects a strong commitment to privacy and user control. Security-wise, the site enforces HTTPS and uses domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled and no explicit security policy or vulnerability disclosure mechanism is published. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by clear terms and policies, though no cookie consent mechanism was found. Overall, Framatalk presents a trustworthy, professional, and privacy-conscious service with a strong ethical foundation. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and adding cookie consent mechanisms to enhance compliance and user trust.

F

Framasoft

framagit.org

0

Framagit.org is a self-hosted GitLab instance operated by Framasoft, a French non-profit organization dedicated to promoting free software and digital commons. The platform provides hosting and collaboration tools for open source projects, targeting developers, contributors, and ethical digital communities. The website demonstrates a solid technical infrastructure leveraging GitLab, modern JavaScript frameworks, and privacy-conscious analytics via Matomo. Security posture is strong with HTTPS enforcement, CSRF protection, and domain transfer restrictions, although DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is partial, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, the site is trustworthy, professionally maintained, and serves a niche community with a focus on ethical technology.

C

Collectif CHATONS

chatons.org

0

The website www.chatons.org represents the Collectif CHATONS, a French non-profit collective initiated by Framasoft in 2016. It focuses on providing ethical, transparent, and decentralized online services as alternatives to major tech companies, targeting users concerned about privacy and digital sovereignty. The site offers resources to find service providers ('chatons') by service type, location, or other criteria, and promotes community collaboration and support. Technically, the site is built on Drupal 8, uses Matomo for privacy-respecting analytics, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and privacy-conscious analytics, though explicit security headers and cookie consent mechanisms are absent. WHOIS data is unavailable or malformed, limiting domain trust assessment, but the association with Framasoft and the quality of content support legitimacy. Overall, the site is professional, trustworthy, and well-aligned with its mission.

F

Framasoft

framasoft.org

0

Framasoft is a well-established French non-profit organization founded in 2004, dedicated to digital emancipation through free software, hosting ethical online services, and popular education. It operates a variety of community-driven projects and platforms such as PeerTube, Mobilizon, and Framablog, supported primarily by donations. The organization targets individuals and groups interested in liberating their digital practices and promoting social justice. Technically, the website uses modern frameworks like Vue.js and Bootstrap, is hosted by OVH, and demonstrates excellent mobile optimization and performance. Security posture is strong with HTTPS and domain protections, though DNSSEC is not enabled and security policies are not explicitly published. Privacy compliance is good with a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the website is professional, trustworthy, and transparent, with a high legitimacy score based on WHOIS data and content consistency.

A

Aquilenet

aquilenet.fr

0

Aquilenet is a small, non-profit associative Internet Service Provider based in the Aquitaine region of France. It focuses on providing open, neutral, and privacy-respecting Internet access to its members, leveraging open-source tools and community-driven values. The organization is registered with ARCEP and is a founding member of the Fédération FDN, reinforcing its credibility and commitment to ethical Internet services. The website serves as an information portal and access point to various member services including webmail, cloud storage, VPN, and more. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jCarousel for UI elements. It employs Piwik/Matomo analytics, indicating a privacy-conscious approach to user tracking. The site is mobile-optimized with a clear navigation structure, though accessibility features could be improved. No major CMS or hosting provider details are evident from the HTML content. From a security perspective, the site uses HTTPS URLs and does not expose sensitive data or vulnerable scripts. However, it lacks visible security headers and formal policies such as privacy or cookie policies, which are important for compliance and user trust. No forms collecting sensitive data are present on the homepage, reducing immediate risk. WHOIS data is unavailable, likely due to privacy protection or AFNIC policies, but the site content and affiliations suggest legitimacy. Overall, Aquilenet presents a trustworthy and community-focused ISP with a solid technical foundation but could enhance its compliance posture by publishing clear privacy and cookie policies and improving security headers. The risk level is low, but transparency improvements would benefit user trust and regulatory compliance.

T

Twisto

twisto.fr

0

Twisto is the primary public transportation provider for the Caen la mer urban community in France, offering bus and tramway services along with real-time traffic updates, route planning, and ticketing solutions. The website is professionally designed using Drupal 10, featuring a mobile-optimized interface and integrated journey planner widgets. It maintains a strong social media presence and provides comprehensive traffic alerts to its users. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is not publicly available, indicating privacy protection, which is justified for this type of public service entity. Overall, the website is trustworthy, user-friendly, and compliant with privacy regulations.

M

Montélibus

montelibus.fr

0

Montélibus operates as the public transportation network for Montélimar Agglomération in France, providing bus services, route planning, schedules, and real-time traffic updates. The website is designed to serve residents and visitors seeking transit information within the region. It leverages TYPO3 CMS and integrates modern web technologies including Google Fonts and cookie consent management via tarteaucitron. The presence of a clear contact phone number and social media link enhances user engagement and trust. However, the absence of WHOIS data limits domain trust verification. The website lacks explicit privacy policy and terms of service pages, which are important for regulatory compliance and user trust. Security headers are not detected, suggesting room for improvement in security posture. Overall, the site is functional, informative, and professionally presented, but could benefit from enhanced transparency and security practices.

G

Grand Besançon Métropole

ginko.voyage

0

The website www.ginko.voyage serves as the official digital platform for Grand Besançon Métropole's public transportation services, branded as Ginko. It provides users with access to schedules, route planning, and ticket purchasing functionalities, targeting residents and visitors of the Grand Besançon metropolitan area in France. The site is professionally designed with a consistent brand identity and offers accessibility features to accommodate diverse user needs. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, Google Tag Manager, and Cookiebot for analytics and compliance. The site is mobile-optimized and includes SEO best practices. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements, although explicit security headers are not fully confirmed. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable due to privacy protection, which is common and justified for this type of public service website. Overall, the site demonstrates a mature digital presence with good security and privacy compliance.

S

Station des rousses

lesrousses.com

0

Station des Rousses operates as a regional tourism information portal focused on promoting the Les Rousses mountain resort in the Jura region of France. The website targets families and tourists interested in nature, outdoor activities, and mountain vacations. It provides comprehensive information on accommodations, activities, events, and practical travel details, positioning itself as a key resource for visitors to the area. The business model centers on tourism promotion and visitor engagement rather than direct sales. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses popular libraries like Bootstrap and Font Awesome. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Cookie consent is managed via Tarteaucitron, indicating attention to privacy compliance, though no explicit privacy policy page was found. From a security perspective, the site uses HTTPS with good SSL configuration and asynchronous loading of tracking scripts. However, no explicit security headers were detected, and there is a lack of published security policies or incident response contacts. The absence of WHOIS registrant data reduces domain trustworthiness, though the professional site content and social media presence support legitimacy. Overall, the website is a well-constructed tourism portal with moderate security and privacy compliance maturity. Strategic improvements include publishing clear privacy and security policies, enhancing security headers, and improving domain registration transparency to strengthen trust and compliance.

L

Les Arcs Office de Tourisme

lesarcs.com

0

Les Arcs Office de Tourisme operates a comprehensive and professionally designed website promoting the Les Arcs ski resort and mountain destination in the French Alps. The site targets families and tourists interested in skiing, mountain activities, and year-round vacation options. It offers services such as accommodation booking, activity reservations, and detailed tourism information. The website is built on TYPO3 CMS and integrates modern web technologies including jQuery, Swiper.js, and Matomo analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though some security headers and explicit security policies are absent. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. WHOIS data is unavailable or protected, which slightly reduces transparency but does not detract from the site's professional appearance and trustworthiness. Overall, the website is a high-quality, trustworthy digital presence for a medium-sized tourism entity in France.

O

Office de Tourisme Lens Lievin Henin Carvin

tourisme-lens.fr

0

The website tourisme-lens.fr serves as the official tourism portal for the Lens-Liévin and Hénin-Carvin region in France. It provides comprehensive visitor information, event promotion, interactive maps, and booking services, targeting tourists interested in cultural, historical, and leisure activities. The site is well-branded, professionally designed, and offers multilingual support, enhancing accessibility for international visitors. Technically, it is built on WordPress with modern frameworks and plugins, hosted by OVH, and integrates analytics and marketing tools with GDPR-compliant consent mechanisms. Security posture is solid with HTTPS and cookie consent, though improvements in security headers and explicit security policies are recommended. Overall, the site is trustworthy, user-friendly, and aligned with its business objectives.

O

Office de Tourisme Métropolitain Nice Côte d'Azur

explorenicecotedazur.com

0

The website www.explorenicecotedazur.com serves as the official metropolitan tourism office for the Nice Côte d'Azur region in France. It provides comprehensive tourism information, event listings, itinerary suggestions, and booking services aimed at tourists and visitors. The site is well-branded, professionally designed, and offers multilingual support (French, English, Italian). The presence of structured data and SEO optimizations indicates a mature digital presence. Technically, the site is built on WordPress with modern plugins and integrates multimedia content such as videos and social media feeds. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The WHOIS data is unavailable or indicates the domain may not be registered, which is inconsistent with the active and professional website, suggesting possible privacy protection or WHOIS server issues. Overall, the site is trustworthy and serves as a key information hub for tourism in the region.

S

Sport et neige

sportetneige.com

0

Sport et Neige is a specialized retail business focused on cross-country skiing and Nordic walking equipment, operating both online and through a physical store in Pontarlier, France. Established in 1977, it offers a wide range of products including skis, clothing, and accessories for men, women, and children. The website is well-structured, professionally designed, and targets enthusiasts of endurance sports in the Jura region and beyond. Technically, the site uses modern frameworks such as UIkit and Swiper, with a cookie consent mechanism implemented via tarteaucitron. Security posture is generally good with HTTPS enforced, though some security headers are missing and an outdated jQuery version is used. The absence of WHOIS registration data is a notable concern, potentially impacting domain legitimacy perception. Overall, the site presents a trustworthy and professional front for a niche sports retail business.

Q

Quartier Libre Besançon

quartierlibre-besancon.fr

0

Quartier Libre Besançon is a non-profit association uniting three community centers (MJC Palente, MJC Clairs-Soleils, and Maison de quartier Rosemont St-Ferjeux) in Besançon, France. The organization focuses on promoting cultural, social, and leisure activities for local residents, families, youth, and adults. The website serves as a portal for information on events, activities, and community engagement, reflecting a strong local community presence. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, with integration of Google Analytics and Google reCAPTCHA for security and analytics. The site is well-structured, mobile-optimized, and uses modern web technologies, though some security headers are missing. Cookie consent and GDPR compliance mechanisms are implemented, indicating attention to privacy regulations. Security posture is generally good with HTTPS enforced and reCAPTCHA protecting forms, but the absence of certain security headers and lack of a published security policy or incident response contact are areas for improvement. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable, likely due to privacy protection, but the website content and contact information support legitimacy. Overall, the website is professional, trustworthy, and serves its community-oriented mission effectively. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date software to mitigate risks.

M

Megève Mont-Blanc

megeve-montblanc.com

0

Megève Mont-Blanc is a well-established cycling event organizer specializing in a unique mountain cyclosportive held annually in the French Alps. The website promotes the 2025 edition with detailed information on routes, registration, volunteering, and partnerships. The business targets cycling enthusiasts and mountain sports lovers, offering multiple race distances and live tracking features. Technically, the site is built on WordPress with Elementor and several plugins, hosted by OVH, and shows good SEO and mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is partial with a privacy policy present but no visible cookie consent mechanism. Contact information is clearly provided, including emails, phone, and physical address. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

T

Tourisme Bretagne

tourismebretagne.bzh

0

Tourisme Bretagne operates as a regional tourism professional portal focused on the Brittany region of France. The website provides news, resources, and subscription-based services tailored to tourism professionals. It is positioned as an important regional authority or resource hub, likely supported by government or regional tourism bodies. The site is built on WordPress with WooCommerce and integrates modern tracking and consent management tools, reflecting a moderate level of digital maturity. Security posture is good with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

D

DESTINATION NANCY

destination-nancy.com

0

DESTINATION NANCY is a public local company primarily focused on promoting tourism and organizing events in the Grand Nancy metropolitan area. It operates key event venues such as Centre Prouvé and Parc Expo, provides free advisory services through its Convention Bureau, and collaborates closely with the local government and tourism office. The website is professionally designed, multilingual (French and English), and regularly updated with event and news content. Technically, it is built on WordPress with modern plugins and analytics tools, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent, though there is room for improvement in security headers and explicit security policies. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

C

Communauté de Communes Pyrénées Cerdagne

pyrenees-cerdagne.fr

0

The website www.pyrenees-cerdagne.fr represents the Communauté de Communes Pyrénées Cerdagne, a local government entity serving the Pyrénées Cerdagne region in France. It provides public services including urban planning, waste management, cultural activities, and cross-border cooperation. The site targets residents and visitors of the region, offering information and access to community resources. The business model is typical of a public sector organization funded by government budgets. Technically, the site is built on Drupal 7 with Angular integration, leveraging modern mapping libraries such as Leaflet and Google Maps API. It uses Matomo for analytics and Sirdata's consent framework for cookie management, indicating a moderate level of digital maturity and privacy awareness. The site is mobile-optimized and has a clear navigation structure. From a security perspective, HTTPS is enforced, and cookie consent mechanisms are in place. However, no explicit security headers were detected in the HTML content, and no public security or incident response policies are published. The absence of WHOIS data is unusual for a .fr domain but does not appear to impact the legitimacy of the site based on content and branding. Overall, the website is professional, trustworthy, and serves its public sector purpose well. Strategic recommendations include enhancing security headers, publishing privacy and security policies explicitly, and improving WHOIS transparency if possible.