Security Directory

D

Dausinger Digital EURL

refiner.io

0

Refiner.io is a specialized SaaS company providing in-app survey software tailored for web and mobile applications. Founded in 2014 and based in France, the company targets SaaS businesses and product teams seeking advanced user feedback solutions. Their platform emphasizes customizable microsurveys with precise user targeting and seamless integrations with popular analytics and marketing tools, positioning them as a niche player in the customer feedback and product research market. The website reflects a professional and consistent brand image with strong trust indicators such as client logos and testimonials. Technically, the site uses modern JavaScript technologies, integrates with Google Tag Manager, LinkedIn Insight, and Fathom Analytics, and is hosted on AWS infrastructure. Performance and mobile optimization are excellent, with good SEO and accessibility practices. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers could be improved. Privacy compliance is well addressed with a comprehensive GDPR policy, but a cookie consent mechanism is missing despite tracking scripts. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, Refiner.io demonstrates a mature digital presence with a strong focus on user feedback solutions for SaaS companies.

S

Saint-Gervais Mont-Blanc

saintgervais.com

0

Saint-Gervais Mont-Blanc is an official tourism website promoting the mountain village of Saint-Gervais in Haute-Savoie, France. It offers comprehensive information about mountain activities, wellness, thermal spas, and local events, targeting tourists and visitors interested in alpine experiences. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Google Tag Manager, and Leaflet maps. Security posture is good with HTTPS and cookie consent mechanisms in place, though explicit privacy and terms policies are not clearly found. The WHOIS data is missing or unavailable, which is unusual but the website content and technical setup suggest legitimacy. Overall, the site is a well-maintained digital presence for regional tourism with room for improvement in privacy transparency and contact information.

H

Hockey Club Mont-Blanc

hcmontblanc.com

0

Hockey Club Mont-Blanc operates an official website serving as the primary digital presence for the regional ice hockey club in France. The site offers comprehensive information about the club's teams, schedules, results, ticketing options, merchandise, and partner promotions. The target audience includes local fans, sports enthusiasts, and community members interested in ice hockey. Technically, the website is built on WordPress with popular plugins such as SportsPress and Elementor, indicating a modern and maintainable infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks some security headers and visible privacy compliance documentation, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and social media presence suggest legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

P

Presse Havas Paris

havasparis.com

0

Presse Havas Paris is a well-established media and communications agency based in France, operating since 2012. The company specializes in press relations and communication services, targeting media professionals and communication specialists. The website reflects a professional presence with clear branding and consistent messaging aligned with the Havas group. The digital infrastructure is built on WordPress, leveraging modern technologies such as jQuery, Vimeo API, and Google reCAPTCHA, ensuring a functional and user-friendly experience. SEO is enhanced through Yoast SEO plugin and structured data, supporting good search visibility. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms in place, although some security headers and explicit security policies are absent. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is professional, secure, and compliant, serving its target audience effectively.

E

Exalto

exalto.fr

0

Exalto is a French retail e-commerce company specializing in men's eyewear, offering a curated selection of glasses emphasizing elegance, technical quality, and comfort. The website is built on the PrestaShop platform, utilizing modern JavaScript libraries for enhanced user experience and lazy loading for performance optimization. The site is accessible without any WAF or security challenges, indicating good availability. However, the absence of visible privacy, cookie policies, and contact information suggests areas for compliance and trust improvement. Security posture is moderate with HTTPS enabled but lacking security headers and explicit incident response contacts. Overall, the website presents a professional retail presence but would benefit from enhanced transparency and security best practices.

E

Exalto

mafede.fr

0

E-licence via Exalto is a specialized technology provider offering extranet and intranet portals tailored for French sports federations. With a strong market position serving 40 federations, the company provides comprehensive license and competition management solutions. The website reflects a mature business with professional content and a clear focus on the sports federation sector in France. Technically, the site is built on WordPress with modern frameworks and plugins, delivering a moderate performance and good mobile experience. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response or security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR explicit statements. Overall, the site is trustworthy and professional but could improve in security and privacy compliance to enhance user trust and regulatory adherence.

A

a'urba

aurba.org

0

a'urba is a well-established urban planning agency based in Bordeaux, France, with over 40 years of experience in strategic urban development for the Bordeaux metropolitan area and its surrounding territories. The agency provides a range of services including urban development strategy, data observatories, research publications, and consulting. The website reflects a professional and comprehensive digital presence, featuring extensive resources, publications, and event information targeted at urban planners, government officials, and stakeholders in regional development. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Bootstrap, LayerSlider, and Google services including Analytics and reCAPTCHA. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security measures include HTTPS enforcement and CAPTCHA protection on forms, alongside GDPR-compliant cookie consent mechanisms. The security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing explicit security policies or incident response contacts. The absence of WHOIS data due to query failure or privacy protection is noted but does not significantly detract from the site's legitimacy given the professional content and compliance indicators. Overall, a'urba presents a trustworthy and authoritative online presence suitable for its public agency role, with recommendations to improve security headers and transparency around security policies to further strengthen trust and compliance.

E

Exalto

e-licence.fr

0

Exalto operates the E-licence platform, a specialized information system serving French sports federations. The company provides extranet and intranet portals, license and competition management modules, and tailored software solutions for over 40 federations. Their market position is strong within the French sports federation sector, leveraging over 18 years of experience since domain registration in 2006. The website is professionally designed, content-rich, and targets federation administrators and sports organizations in France. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder, LayerSlider, and Bootstrap for responsive design. The infrastructure is hosted via GANDI, a reputable registrar and hosting provider. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. Security posture is adequate with HTTPS enforced and no exposed sensitive data. However, the site lacks explicit security headers and does not provide published security or incident response policies. Cookie consent mechanisms are absent, which may impact GDPR compliance. Analytics usage includes Google Analytics and ShareThis, indicating moderate user tracking. Overall, the website is trustworthy and professional with minor gaps in privacy compliance and security best practices. Strategic improvements in security headers, cookie consent, and transparency policies would enhance the security posture and regulatory compliance.

E

Exalto

ex-alto.com

0

Exalto operates the E-licence platform, a specialized extranet and intranet portal designed exclusively for French sports federations. With over 20 years of experience and 40 federation clients, the company provides comprehensive license and competition management solutions tailored to the sports sector. The website reflects a mature business with a clear focus on B2B services for sports organizations in France. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for enhanced user experience and functionality. While HTTPS is properly implemented, the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. The site actively engages users via social media and newsletter subscriptions but lacks explicit incident response and vulnerability disclosure information. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and stability of the operation.

L

Le Vestiaire

le-vestiaire.fr

0

Le Vestiaire is a well-established French retailer specializing in hockey, skating, roller hockey, and related sports equipment. Founded in 2001, it operates both an e-commerce platform and 11 physical stores across France, positioning itself as a trusted supplier in the sports retail sector. The website is professionally designed, with clear navigation and comprehensive product offerings targeting sports enthusiasts and athletes in France. The company also provides technical services such as blade sharpening and bootfitting, enhancing its value proposition. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies including jQuery, Google reCAPTCHA v2 for form security, and various modules for enhanced user experience such as sliders and carousels. Hosting is provided by OVH, a reputable provider, and the site employs HTTPS with good SSL configuration. While some security headers are not explicitly detected, the overall security posture is solid with no visible vulnerabilities or exposed sensitive data. From a security and compliance perspective, the site includes a comprehensive privacy policy and cookie consent mechanism, indicating GDPR compliance. Contact information is clearly presented, including email, phone, and physical address. However, no explicit security policy, incident response page, or vulnerability disclosure mechanism was found, which could be areas for future improvement. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, Le Vestiaire presents a secure, professional, and user-friendly online presence with strong business credibility in the French sports retail market. Strategic enhancements in security headers and formal incident response documentation could further strengthen its security posture and compliance standing.

A

Autocars BORINI

borini.com

0

Autocars BORINI is a regional transportation company based in Haute-Savoie, France, specializing in passenger transport services including tourist travel, airport and train station transfers, excursions, skibus services, and on-demand transport. The company has a well-established online presence with a website dating back to 1999, reflecting a mature market position in the regional transport sector. The website is professionally designed using WordPress and the Divi theme, providing a good user experience with clear navigation and mobile optimization. Technical infrastructure includes modern web technologies and integrations such as Google Analytics and reCAPTCHA for security and analytics purposes. Security posture is solid with HTTPS enabled and GDPR-compliant cookie consent mechanisms, although some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a trustworthy and professional digital footprint aligned with the company's business operations.

C

Communauté de communes de la Vallée de Chamonix Mont-Blanc

cc-valleedechamonixmontblanc.fr

0

The Communauté de communes de la Vallée de Chamonix Mont-Blanc operates as a local government community entity serving the Vallée de Chamonix Mont-Blanc region in France. The website provides official information, services, news, and resources for residents and visitors, positioning itself as an authoritative source for regional administrative and community matters. It maintains active social media channels and offers multilingual support via GTranslate, enhancing accessibility for a broader audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, supported by Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization and SEO practices, though accessibility compliance is basic and could be improved. Security measures include HTTPS and cookie consent mechanisms, but lack explicit security headers and dedicated security policy pages. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to privacy protection is common for public entities but limits transparency. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve trust and readiness. Overall, the website is professional, trustworthy, and well-suited for its public sector role. Strategic recommendations include implementing security headers, publishing security policies, enhancing accessibility, and adding vulnerability disclosure mechanisms to strengthen security and compliance further.

C

Communauté de Communes Pays du Mont-Blanc

ccpmb.fr

0

The Communauté de Communes Pays du Mont-Blanc operates a regional government website serving multiple municipalities in the Mont-Blanc area of France. The website provides comprehensive information on local services including transport, environment, culture, economy, tourism, and waste management. It targets residents and visitors seeking community resources and regional updates. Technically, the site is built on WordPress with a variety of plugins and integrates Google Maps and FontAwesome for enhanced user experience. The site is hosted by OVH and uses HTTPS, ensuring secure connections. Security posture is moderate with room for improvement, notably the absence of security headers and use of an outdated jQuery version. Privacy compliance is limited due to the lack of a published privacy policy and terms of service, although a cookie consent mechanism is present. Overall, the website is professional, trustworthy, and well-branded, but would benefit from enhanced security and compliance documentation.

D

Département de la Haute-Savoie

hautesavoie.fr

0

The Département de la Haute-Savoie operates an official government website serving the Haute-Savoie region in France. The site provides comprehensive information about departmental actions, events, employment opportunities, public services, and subsidies. It targets residents and stakeholders within the region, positioning itself as a key public sector information portal. The website is built on a modern WordPress CMS infrastructure, leveraging SEO and caching plugins, and integrates social media channels for broader engagement. Technically, the site is well-optimized for mobile and desktop, with good performance and accessibility standards. Security posture is strong with HTTPS enforcement, CAPTCHA usage, and cookie consent mechanisms, although explicit privacy and security policies are not found in the provided content. Overall, the site demonstrates high professionalism and trustworthiness consistent with a government entity.

C

Club des Sports de Glace Strasbourg - Alsace Section Hockey sur Glace

hockeystrasbourg.org

0

Hockey Strasbourg – CSGSA is a local sports club based in Strasbourg, France, focused on ice hockey training and competitions primarily for youth and amateur players. The club offers a variety of teams across age groups and skill levels, organizes events such as tournaments and equipment exchanges, and maintains an active community presence. The website serves as an information hub for members and prospective players, providing schedules, news, and registration details. Technically, the site is built on WordPress with common plugins and uses HTTPS, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data limits domain trust verification, though the site’s content and social media presence support its legitimacy. Overall, the club maintains a good digital presence but should improve security and compliance aspects to enhance trust and user protection.

K

Kalisport

kalisport.com

0

Kalisport is a French software company providing an all-in-one sports management solution tailored for clubs, committees, and associations. Their platform offers a comprehensive suite of services including member management, accounting, sponsor management, online payments, event management, communication tools, and mobile applications. Positioned as a specialized SaaS provider in the sports technology sector, Kalisport targets small to medium-sized sports organizations primarily in France. The website is professionally designed with a clear focus on usability and accessibility, supporting both web and mobile platforms. Technically, the site leverages modern front-end technologies such as Bootstrap, jQuery, and FontAwesome, and implements cookie consent mechanisms with GDPR compliance in mind. Security posture is moderate; while HTTPS and cookie consent are implemented, the absence of visible security headers and incident response information suggests room for improvement. The lack of WHOIS data raises some concerns about domain registration legitimacy, though the active and professional website presence partially mitigates this risk. Overall, Kalisport presents a credible business with a solid digital presence but would benefit from enhanced transparency and security disclosures.

M

Mont-Blanc Hockey

montblanchockey.fr

0

Mont-Blanc Hockey is a small, community-focused ice hockey club based in France, founded in 2023. The club targets children and youth interested in ice hockey, offering training, tournaments, membership, and merchandise. The website reflects a well-structured and professionally designed platform that supports the club's activities and community engagement. The use of structured data and social media integration enhances its digital presence. Technically, the site employs a modern tech stack with popular JavaScript libraries and frameworks, hosted under a reputable registrar, and implements HTTPS with privacy-conscious analytics (Matomo). Security posture is solid with no critical vulnerabilities detected, though formal security policies and incident response contacts are absent. Privacy compliance is good, with a cookie consent mechanism and a privacy policy page in French. Overall, the website is trustworthy and suitable for its audience, with room for improvement in formal security documentation and contact transparency.

C

Chamonix Hockey Club

chamonixhockeyclub.com

0

Chamonix Hockey Club is a regional ice hockey sports club based in the Chamonix Mont-Blanc valley, France, catering to youth players aged 4 to 20 and adult leisure players. The club organizes training, tournaments, and seasonal events, positioning itself as a key local sports entity in Haute Savoie. The website reflects this focus with detailed match schedules, team information, and event announcements. Technically, the site uses a modern but somewhat dated tech stack including Bootstrap 3, jQuery, and various UI libraries, hosted by OVH sas. It implements HTTPS and cookie consent mechanisms aligned with GDPR requirements, though lacks some advanced security headers and explicit security policies. No contact emails or phone numbers are directly visible, which may impact user engagement and trust. Overall, the site is functional, well-branded, and provides relevant content for its audience.

Morzine Réservation operates as the central reservation office for the Morzine Tourist Office, providing online booking services for a variety of accommodations including hotels, chalets, and apartments in the Morzine and Portes du Soleil region of France. The website offers detailed information, availability, pricing, and promotional offers, targeting tourists seeking mountain vacations. The platform supports secure online payments and customer account management, positioning itself as a trusted local booking service. Technically, the website employs a mix of legacy and modern technologies including jQuery 1.9.0, Google Tag Manager, Zendesk Chat, and custom reservation widgets. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. However, some technical improvements are recommended such as updating JavaScript libraries and adding security headers. From a security perspective, the site uses HTTPS and secure payment processing but lacks explicit security policies and incident response information. No major vulnerabilities were detected, but the absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the security posture is good but could be enhanced with additional headers and transparency. The overall risk is moderate; the website appears legitimate and professional but the missing WHOIS data and minor technical issues suggest the need for verification and improvements. Strategic recommendations include verifying domain registration, enhancing security headers, updating libraries, and publishing security policies to increase trust and compliance.

P

Portes du Soleil

portesdusoleil.com

0

Portes du Soleil operates a professional and content-rich website promoting a major alpine ski domain spanning 8 French and 4 Swiss ski stations. The site targets skiers and tourists seeking information on ski passes, accommodations, and live resort data. Technically, the site is built on WordPress with a modern tech stack including Google Tag Manager, Leaflet maps, and various UI libraries, delivering a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit privacy policies, terms of service, and security headers, which are recommended for compliance and protection. The WHOIS data is missing, which raises concerns about domain legitimacy and registration transparency. Overall, the site is trustworthy and professional but would benefit from improved transparency and security hardening.

O

OIML – BIPM

worldmetrologyday.org

0

The World Metrology Day website is an authoritative resource managed by international metrology organizations BIPM and OIML, focusing on promoting the 2025 event celebrating the 150th anniversary of the Metre Convention. It targets the metrology community and related stakeholders by providing free communication resources and event information. The website is professionally designed with consistent branding and clear navigation, leveraging modern frontend technologies such as Bootstrap and Vue.js. Mobile responsiveness and user experience are good, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers, which are recommended for enhanced security. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. The site does not collect user data via forms and uses minimal tracking through AWStats. WHOIS data confirms the domain's legitimacy with consistent registration details and a long history. Overall, the website is a credible, well-maintained informational platform with moderate technical maturity and some room for improvement in privacy compliance and security hardening. There are no indications of malicious content or vulnerabilities, making it a safe and trustworthy resource for its audience.

B

Bureau International des Poids et Mesures

bipm.org

0

The Bureau International des Poids et Mesures (BIPM) operates as an intergovernmental organization dedicated to ensuring global uniformity in measurements and maintaining the International System of Units (SI). The website serves as an authoritative resource for metrology professionals, member states, and the scientific community, providing comprehensive information on metrology areas, governance, publications, and events. The BIPM's market position is that of a leading international authority in measurement standards, supported by a well-structured and content-rich website. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript frameworks such as React and YUI. It integrates Google Analytics for traffic monitoring and demonstrates good mobile optimization and accessibility. The website employs HTTPS with a secure login form, although explicit security headers are not detected in the provided data. The absence of a visible privacy policy and contact information slightly impacts privacy compliance and business credibility scores. From a security perspective, the site shows a solid posture with HTTPS enforcement and secure form handling. However, the lack of published security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement. No vulnerabilities or suspicious patterns were identified, and the domain appears legitimate despite the absence of detailed WHOIS data, likely due to privacy protection. Overall, the website is professional, trustworthy, and safe, with excellent content quality and user experience. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information to improve transparency and compliance.

M

Morzine Avoriaz

morzine-avoriaz.com

0

The website www.morzine-avoriaz.com serves as a professional tourism portal promoting the Morzine-Avoriaz ski resort area in Haute-Savoie, France. It targets tourists and ski vacationers, offering information on ski activities, accommodations, events, and local services. The site is well-structured, multilingual, and optimized for SEO, leveraging WordPress and modern web technologies including Google Tag Manager and MapTiler for maps. Despite the lack of WHOIS registration data, the website presents a credible and consistent brand image with good content quality and user experience. Technically, the site uses a modern tech stack with WordPress CMS, jQuery, and various plugins for enhanced functionality. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. Privacy compliance is limited due to absence of explicit privacy and terms of service pages, though a cookie consent mechanism is present. Overall, the security posture is adequate but could benefit from enhanced security headers and formalized policies. The absence of WHOIS data and contact information slightly reduces trustworthiness but does not detract significantly from the professional presentation. Strategic recommendations include implementing comprehensive privacy and security policies, adding security.txt for vulnerability disclosure, and improving accessibility and security headers to strengthen compliance and user trust.

H

Hockey Club 74

hc74.fr

0

Hockey Club 74 is a regional alliance of ice hockey clubs based in Haute-Savoie, France, representing teams from Chamonix, Megève, Morzine, and St Gervais. The website serves as a hub for club information, upcoming matches, tournaments, and partner acknowledgments, targeting hockey players, fans, and the local community. The club is positioned as a key regional sports entity with institutional and private partnerships supporting youth development and competitive hockey. Technically, the website is built on a custom sports club platform (Kalisport) leveraging Bootstrap 3, jQuery, and various JavaScript libraries for UI components and event management. It is hosted by OVH and uses HTTPS with a good SSL configuration. The site is mobile responsive and includes SEO and accessibility considerations, though some accessibility features are basic. From a security perspective, the site enforces HTTPS, uses a cookie consent mechanism with high privacy settings, and employs Matomo analytics for privacy-conscious tracking. However, explicit security headers and incident response policies are not evident. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for the hockey club alliance with good content quality and privacy compliance. Strategic improvements could include adding explicit security policies, terms of service, and enhanced security headers to further strengthen the security posture.

L

Les Radeliers : ligues AURA et SUD de hockey sur glace

hockey-radeliers.com

0

Les Radeliers is the official website representing the regional ice hockey leagues of South-East France, specifically the Auvergne-Rhône-Alpes and Sud Provence-Alpes-Côte d'Azur regions. The organization focuses on providing information about leagues, clubs, competitions, training stages, and events to players, officials, and fans within these regions. The website serves as a central hub for news, event calendars, and membership management, positioning itself as a key regional sports entity. Technically, the website is built on WordPress with popular plugins such as WooCommerce for e-commerce capabilities, Elementor for page building, and The Events Calendar for event management. It integrates Google Analytics and Google AdSense for analytics and advertising, respectively. The site demonstrates moderate performance and good mobile optimization, with a structured navigation system and consistent branding. From a security perspective, the site uses HTTPS and includes secure payment integration via PayPal. However, it lacks several important security headers like Content-Security-Policy and X-Frame-Options, which could be improved to enhance protection against common web attacks. No exposed sensitive data or vulnerable libraries were detected in the HTML source. Overall, the website is safe, professional, and well-structured for its audience, but the absence of WHOIS data and privacy policy pages slightly reduces trustworthiness. Strategic improvements in security headers and clearer privacy compliance documentation would strengthen its security posture and user trust.

E

Ekino FR

ekino.fr

0

Ekino FR is a well-established digital transformation group headquartered in France with an international footprint including offices in Singapore, Vietnam, Hong Kong, India, and the USA. The company specializes in consulting, customer experience, data and AI, and engineering services, integrating design and innovation to deliver sustainable digital solutions. Their client portfolio includes major brands such as CANAL+, Renault, Orange, and Bolloré, positioning them as a significant player in the technology consulting market. The website reflects a mature digital presence with comprehensive content, strong branding, and clear navigation, targeting businesses seeking digital transformation services. Technically, the website is built on WordPress with modern SEO and privacy tools such as Yoast SEO and Complianz GDPR plugin. Analytics are handled via Matomo, emphasizing privacy compliance. The site is mobile-optimized and accessible, with good performance indicators. However, some security best practices like security headers and a published security policy are missing, which could be improved to enhance trust and compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear cookie consent mechanisms and detailed privacy and cookie policies. The absence of WHOIS data due to privacy protection slightly reduces trust but is common for commercial entities. Certifications such as ISO 27001 and ISO 14001, along with workplace awards, further reinforce the company's credibility. Overall, Ekino FR presents a professional, trustworthy, and privacy-conscious digital presence suitable for its business domain. Strategic improvements in security transparency and incident response communication are recommended to further strengthen their security posture and stakeholder confidence.

P

Promoglace

promoglace.com

0

Promoglace is a French retailer specializing in hockey, roller hockey, street hockey, and skating equipment and accessories. The company positions itself as a trusted partner for players and clubs, offering a wide range of products including skates, sticks, protective gear, and apparel. With nearly 30 years of experience, Promoglace serves a diverse audience from beginners to elite athletes, combining e-commerce with physical stores and club partnerships. The website is professionally designed, mobile-optimized, and provides a seamless shopping experience with secure payment options and customer support.

D

Des Rosiers

des-rosiers.com

0

Des Rosiers is a newly established creative direction and production house based in France, founded in 2024. The company positions itself as a member of the Grand Bureau collective, indicating a collaborative approach within the creative industry. Their website is minimalistic and professional, focusing on clear presentation of contact information and brand affiliation. The business targets clients seeking creative direction and production services, operating as a small-sized agency. Technically, the website uses modern CSS frameworks such as Tailwind CSS and is hosted via Gandi SAS, reflecting a contemporary but basic digital infrastructure. The site is mobile-optimized and presents a good user experience, though content depth is limited. Security posture is moderate; while the domain uses HTTPS (implied), no advanced security headers or DNSSEC are implemented, and privacy compliance elements like cookie or privacy policies are absent. Overall, the website is legitimate and consistent with a small creative agency's online presence but would benefit from enhanced security and compliance features.

A

A.S.L

asl-paris.com

0

A.S.L is a Paris-based architecture studio founded in 2000, specializing in hospitality projects and extending its craft into a curated line of objects and furniture. The company positions itself as a niche player combining architectural design with retail of design objects and art curation, targeting design-conscious clients and hospitality industry professionals. The website is professionally designed using modern technologies such as Next.js and integrates e-commerce capabilities via Shopify collections. It employs standard analytics and marketing tools including Google Analytics, Facebook Pixel, and Klaviyo, with GDPR-compliant privacy and cookie policies in place. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. No critical vulnerabilities or suspicious activities were detected. Overall, the website reflects a mature digital presence aligned with the company's boutique market positioning.

S

Saint-Lazare

saint-lazare.com

0

Saint-Lazare is a boutique art direction and graphic design studio operating from Paris and New York, specializing in creating timeless brands with immersive narratives. The website showcases a professional portfolio with high-quality multimedia content and a clear presentation of services and client collaborations. The technical infrastructure is modern, leveraging Webflow CMS, Google Fonts, and Adobe Typekit, ensuring fast performance and excellent mobile optimization. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though the absence of security headers and privacy policies indicates room for improvement. The WHOIS data is missing, which reduces domain trustworthiness and suggests the need for verification of domain registration. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

B

Bureau Beaubourg

beaubourg.co

0

Bureau Beaubourg is a small brand strategy bureau based in Paris, France, specializing in guiding brands to identify and express their unique qualities through creative and strategic services. The website presents a professional and consistent brand image with clear messaging targeting businesses seeking brand expertise. Technically, the site is built on the Webflow platform using modern frontend technologies such as jQuery and Lenis for smooth scrolling, hosted on Webflow's CDN, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance mechanisms such as privacy and cookie policies. No forms or data collection fields are present, reducing immediate data protection concerns but also indicating limited direct user engagement. Overall, the site is trustworthy with legitimate WHOIS registration data consistent with the business claims.

A

AVICOM'

avicom.fr

0

AVICOM' is a small communication agency operating primarily in Lyon and Paris, specializing in branding and digital strategy services. The website reflects a professional service-oriented business model targeting companies seeking communication and branding expertise. Technically, the site is built on WordPress using Elementor and Yoast SEO plugins, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in privacy compliance and security practices are recommended to enhance trust and regulatory adherence.

T

The Joint Committee for Traceability in Laboratory Medicine

jctlm.org

0

The Joint Committee for Traceability in Laboratory Medicine (JCTLM) operates as a global authoritative resource focused on ensuring traceability in laboratory medicine and in vitro diagnostics. The organization provides a comprehensive database of higher-order reference materials, measurement methods, and services, serving healthcare professionals, metrology experts, and the diagnostics community worldwide. The website reflects a well-established non-profit/governmental entity with a clear mission to support accurate patient care through metrological standards. The site is hosted by Scaleway SAS and uses modern web technologies including Next.js and Google Tag Manager, indicating a moderate level of digital maturity and performance optimization. Mobile responsiveness and navigation clarity are good, supporting a positive user experience. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the website is trustworthy, professional, and serves its niche audience effectively.

G

Grand Bureau

grandbureau.com

0

Grand Bureau is a creative agency operating as a family of studios based in Paris and New York City. They specialize in brand creation and strengthening through a narrative-driven, holistic approach encompassing strategy, art direction, graphic design, architecture, content creation, digital, web design, and e-commerce. The website presents a professional and consistent brand image targeting businesses seeking comprehensive creative services. Technically, the site is built on Webflow with modern JavaScript libraries such as jQuery and Lenis for smooth scrolling, hosted on Webflow's CDN, offering moderate performance and good mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies, which are critical for compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy, although the active and professional website reduces suspicion. Overall, the site scores well on business credibility and content quality but needs improvements in privacy compliance and security best practices.

The website hockeynet.fr serves as the official login portal for the Fédération Française de Hockey sur Glace (French Ice Hockey Federation), targeting federation officials and administrators. It provides secure access to management tools and resources related to French ice hockey governance. The domain is registered with GANDI since 2020, consistent with the federation's digital presence. The site uses modern frontend technologies such as Vue.js and jQuery, with a responsive design and basic accessibility features. Security measures include HTTPS enforcement and CSRF token protection on the login form, though additional HTTP security headers are not detected. Privacy compliance is partially addressed with a linked GDPR charter, but lacks an explicit cookie consent mechanism. No contact or incident response information is provided on the login page, limiting transparency in security and support channels.

The website billetterie-club.fr is currently inaccessible due to an SSL handshake failure between Cloudflare and the origin server, resulting in a Cloudflare 525 error page. This indicates a misconfiguration or incompatibility in the SSL setup on the hosting server side. The domain is relatively new, registered in April 2023 via OVH, a reputable French registrar and hosting provider. No business content, contact information, or compliance policies are present on the landing page, which is solely an error message. The site uses Cloudflare for CDN and security services, including Cloudflare Insights for minimal analytics. Due to the blocked content, a full assessment of business operations, security posture, and compliance cannot be performed. The current security posture is weak due to the SSL failure and lack of security headers or policies.

A

Anglet Hormadi Pays Basque

hormadi.fr

0

Anglet Hormadi Pays Basque is a professional ice hockey club based in France, competing in the Synerglace Ligue Magnus. The website serves as the official digital presence of the club, providing comprehensive information about the team, season schedules, news updates, ticketing options, and partner relations. The site targets sports fans and the local community, offering a well-structured and branded experience consistent with a medium-sized sports organization. Technically, the website is built on WordPress with a modern tech stack including popular plugins and libraries such as WPBakery, Bootstrap, and Google Analytics. The site demonstrates good mobile optimization, SEO practices, and user experience. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policies. From a security perspective, the site uses HTTPS and implements some best practices, though security headers could be enhanced. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common for such organizations, and does not raise immediate trust concerns. Overall, the website is professional, trustworthy, and suitable for its business purpose. Strategic recommendations include improving security headers, maintaining plugin updates, and enhancing incident response visibility.

Magasins Généraux is a cultural venue and creative center located in Pantin, France, founded in 2017 by BETC. It operates as a hub for artistic exhibitions, events, and public engagement, contributing to the cultural landscape of the Grand Paris area. The website reflects a professional and consistent brand image targeting a broad audience including groups, families, educators, and artists. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js with Prismic CMS, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained.

R

ROSA PARIS

rosaparis.com

0

ROSA PARIS is a French integrated advertising agency founded in 2020, offering creative and media services to clients such as SNCF and ParionsSport. The website presents a professional and creative brand image with case studies highlighting their work. Technically, the site uses modern web technologies including JavaScript libraries for feature detection and lazy loading, and is hosted with a reputable provider. The site is mobile optimized and SEO friendly but lacks some accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy but could improve compliance and security transparency.

B

BETC Places

betcplaces.com

0

BETC Places is a consulting firm specializing in creating meaningful living places that blend tangible and intangible elements such as history, community, and emotion. The company targets businesses and organizations involved in real estate development and place-making. The website is built on a modern Nuxt.js framework, indicating a good level of digital maturity, with mobile optimization and a professional design. Security posture is moderate, with HTTPS implied but lacking explicit security headers and incident response information. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website presents a professional image but would benefit from enhanced transparency and security practices.

BETC Corporate is a well-established full-service agency based in France, specializing in strategic, creative, and technological expertise to help brands renew their engagement with the public and thrive in business. The company offers a broad range of services including sustainable transformation consulting, branding, advertising, internal and employer communication, and health communication. The website reflects a professional and consistent brand image with a clear focus on corporate clients and brand communication. Technically, the site uses modern JavaScript libraries and integrates a comprehensive cookie consent mechanism via OneTrust, demonstrating good digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

BETC FULLSIX is a well-established French digital and creative agency specializing in consulting, digital innovation, and data-driven marketing services. The company operates under the Havas Group umbrella and targets brands seeking comprehensive digital transformation and creative solutions. The website reflects a mature digital presence built on modern technologies such as React and Next.js, integrated with Prismic CMS for content management. The site is professionally designed, mobile-optimized, and provides clear navigation and rich content relevant to its audience. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is strong, with clear cookie and privacy policies aligned with GDPR requirements. No incident response or vulnerability disclosure information is publicly available, which could be enhanced to improve trust. Overall, the website and business demonstrate high professionalism and credibility in the digital agency market.

M

Maison BETC

betcetoilerouge.com

0

Maison BETC is a specialized micro-network agency focused on luxury and premium sectors including fashion, beauty, and lifestyle brands. Operating internationally with offices in New York, Paris, and Shanghai, the company offers a comprehensive suite of services ranging from brand strategy and architecture to creative campaigns, digital experience design, and event production. The website reflects a professional and modern digital presence built using Framer technology, emphasizing visual appeal and clear brand messaging. Technical infrastructure is modern and performant, with good mobile optimization and fast loading times. Security posture is adequate with HTTPS and domain protection, though improvements such as DNSSEC and security headers are recommended. Privacy and compliance policies are currently missing, representing a compliance gap. Overall, the site demonstrates high business credibility but would benefit from enhanced privacy and security transparency.

R

Réunion des musées nationaux Grand Palais

rmngp.fr

0

Réunion des musées nationaux Grand Palais (GrandPalaisRmn) is a prominent French cultural institution dedicated to promoting access to culture nationwide. It operates multiple expertises including acquisitions, photographic agency, art workshops, publishing, exhibitions, cultural engineering, mediation, and retail through bookshops and product sales. The organization is closely linked to the French Ministry of Culture, as evidenced by branding and domain information. The website is professionally designed, content-rich, and targets a broad audience including the general public, professionals, and educational institutions. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries such as Swiper.js and Matomo for analytics, with a cookie consent manager (Tarteaucitron) ensuring GDPR compliance. Hosting is provided by ECRITEL, a reputable provider. The site demonstrates good mobile optimization and accessibility features, though some security headers could be improved. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and readiness. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its cultural mission with a strong digital presence. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

G

Grand Palais

grandpalais.fr

0

Grand Palais is a prominent French cultural institution offering exhibitions, concerts, educational workshops, and guided tours. The website is well-designed, mobile-optimized, and uses Drupal CMS with modern technologies such as Google Tag Manager and OneTrust for cookie consent. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which slightly reduces trust but the website content and branding strongly indicate legitimacy. Overall, the site is professional, compliant with GDPR, and serves a broad audience including families, professionals, and visitors with special needs.

Hisense HVAC France operates as a localized branch of Qingdao Hisense HVAC equipment Co., Ltd., focusing on commercial and residential HVAC solutions including VRF systems, air-to-water heat pumps, and chillers. The website presents a professional and consistent brand image targeting HVAC customers in France and globally, offering product information, technical documentation, and showroom support. The digital infrastructure is built on a custom ASP.NET CMS with modern JavaScript libraries such as jQuery and Swiper, providing a good user experience with mobile optimization and clear navigation. However, the website lacks critical privacy and cookie policies, and no direct contact emails or phone numbers are exposed, which limits user trust and compliance transparency. Security posture is moderate with HTTPS implied but no advanced security headers or vulnerability disclosures present. The domain registration is consistent and legitimate, supporting the business claims.

S

Synpase

synpase.eu

0

Synpase is a French national syndicate representing professionals in the audiovisual, spectacle, and event sectors. The organization provides resources, advocacy, and member services to support its constituency. The website is professionally designed using WordPress and the Avada theme, featuring modern plugins for document embedding, newsletter subscription, and member login. The site is well-structured and mobile-optimized, targeting industry professionals in France. Security posture is adequate with HTTPS enabled and secure forms, but lacks visible security headers and privacy policies. WHOIS data is unavailable, which slightly impacts trust but the active and updated website supports legitimacy. Overall, the site is a credible resource for its sector with room for improvement in privacy compliance and security transparency.

H

Hivebrite

hivebrite.io

0

Hivebrite is an enterprise-level SaaS company specializing in providing an online community engagement platform designed to facilitate organic connections and positive impact within communities. The company positions itself as a best-in-class, easy to set up, and customizable solution targeting organizations seeking to build and manage online communities. The website is professionally designed, built on WordPress with modern SEO and marketing tools integrated, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protections in place, though some improvements like DNSSEC and security policy disclosures are recommended. Overall, the website is trustworthy and business credible but lacks explicit privacy and security policy documentation, which should be addressed to enhance compliance and user trust.

H

Hivebrite

hivebrite.com

0

Hivebrite is a technology company based in France, founded in 2020, offering a best-in-class online community engagement platform. Their SaaS model targets organizations and communities seeking customizable and easy-to-set-up engagement solutions. The website reflects a professional and consistent brand presence with good content quality and clear messaging focused on community engagement. Technically, the site is built on WordPress, leveraging modern marketing and analytics tools such as HubSpot, Google Tag Manager, and Visual Website Optimizer, hosted behind Cloudflare DNS services. Security posture is solid with HTTPS enabled and domain transfer protections, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks visible privacy and terms of service pages. Overall, the website is trustworthy, safe for general audiences, and well-positioned in the technology sector.

V

Visual Factory

visual-factory.fr

0

Visual Factory is a well-established French company specializing in visual communication services such as signage, vehicle covering, stands, and office branding, primarily serving Montpellier, Nîmes, and nationwide clients. The company emphasizes full in-house production capabilities and has over 20 years of industry experience, positioning itself as a trusted regional leader with a professional digital presence. The website is built on WordPress with modern plugins and integrates Google Analytics and Google Ads for marketing and tracking purposes. Privacy and cookie policies are implemented with consent mechanisms, reflecting basic GDPR compliance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Overall, the site is professional, user-friendly, and trustworthy, with clear contact information and business details.