Security Directory

F

Fondation ENGIE

fondation-engie.com

0

Fondation ENGIE is a well-established corporate foundation affiliated with the ENGIE Group, focusing on supporting projects in environment, education, and employment sectors globally. The website reflects a mature digital presence with multilingual support, rich content, and clear mission statements aligned with sustainable development goals. Technically, the site is built on WordPress with modern plugins and integrations such as Google Analytics, Tag Manager, and reCAPTCHA, hosted on AWS infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy policies and cookie management are comprehensive and GDPR compliant. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates high professionalism and trustworthiness suitable for a large non-profit foundation.

H

Homiris

homiris.fr

0

Homiris is a French-based security service provider specializing in home and professional alarm systems with integrated telesurveillance. Operated by EPS, a recognized leader in the French security market, Homiris offers subscription-based connected alarm solutions with included equipment, maintenance, and 24/7 monitoring. The company holds multiple certifications and awards, reinforcing its market position and trustworthiness. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content tailored to its French audience. Technically, the site uses modern JavaScript libraries and integrates third-party services for analytics, advertising, and customer reviews. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though security headers are not explicitly detected and reCAPTCHA is configured but disabled. WHOIS data is unavailable, which slightly reduces domain trust but the overall business credibility remains high due to certifications and transparent business information. Strategic recommendations include enhancing security headers, enabling anti-bot protections, publishing explicit security policies, and adding a security.txt file for vulnerability disclosures.

E

Euractiv FR

euractiv.fr

0

Euractiv FR is a well-established French-language European news media outlet founded in 2002, focusing on European policy, economy, politics, agriculture, health, technology, energy, environment, transport, and defense sectors. It serves a French-speaking audience interested in European affairs, providing news, analysis, newsletters, events, and job listings. The website is part of a broader Euractiv network with multiple country editions, positioning it as a significant player in European media. Technically, the site is built on WordPress with modern SEO and analytics tools, including Google Tag Manager, Google Analytics, and OneSignal for push notifications. Hosting and DNS services are provided by OVH and Cloudflare, ensuring reliable infrastructure. Security posture is strong with HTTPS enforced, security headers present, and a cookie consent mechanism compliant with GDPR. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with a high legitimacy score based on WHOIS data and domain age.

I

Iboco

iboco.fr

0

Iboco is a specialized provider of electrical wiring and installation systems, serving residential, tertiary, industrial, and infrastructure sectors primarily in France. The company operates a professional website with a comprehensive product catalog and solutions, leveraging modern web technologies such as Sitecore CMS, Algolia search, and Google Analytics. The domain is well-established since 1998, indicating a mature business presence. The website demonstrates good design quality, clear navigation, and mobile optimization, supporting a positive user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. Privacy compliance is basic, lacking visible privacy and terms of service pages. Overall, the site is trustworthy and business-focused with no suspicious content or blocking mechanisms detected.

Ford France operates as the official national website for Ford Motor Company in France, offering a comprehensive catalog of new and used vehicles, commercial vehicles, and leasing options. The site targets French consumers interested in automotive products and services, positioning itself as a major player in the French automotive market. The business model focuses on direct sales and leasing, supported by promotional offers to attract customers. Technically, the website leverages Adobe Experience Manager as its CMS, hosted on Akamai infrastructure with modern JavaScript frameworks and service workers to enhance performance and security. The site is mobile-optimized and implements standard SEO and accessibility features, although accessibility could be improved further. Analytics and marketing tools such as Adobe Analytics, Google Analytics, and LivePerson chatbot are integrated, supporting extensive user tracking with GDPR-compliant consent mechanisms. From a security perspective, the website enforces HTTPS, employs security headers, and uses cookie consent banners, reflecting a good security posture. However, explicit security policies and incident response contacts are not published, and no vulnerability disclosure program is evident. The WHOIS data is not publicly available, likely due to privacy protection, which is justified for a large enterprise brand. Overall, the domain and website appear legitimate and trustworthy. The overall risk assessment is low, with recommendations to publish security policies, enhance accessibility, and implement a vulnerability disclosure program to further strengthen trust and compliance.

C

Crédit Mutuel du Sud-Ouest

cmso.com

0

Crédit Mutuel du Sud-Ouest operates as a regional cooperative and mutual bank serving individuals, professionals, enterprises, associations, and local authorities primarily in the South-West of France. The website presents a professional banking service offering including accounts, cards, and online management, positioning itself as a local bank committed to customer projects and community engagement. The site is well-branded and consistent with the Crédit Mutuel Arkéa group identity. Technically, the website leverages modern web technologies including Bootstrap for responsive design, Jalios CMS for content management, and integrates advanced analytics and consent management tools such as Piano Analytics and Didomi. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes essential security headers. It implements GDPR-compliant cookie consent mechanisms, demonstrating a commitment to privacy. However, the absence of explicit security policies, incident response information, and direct security contact channels limits transparency. The WHOIS data is notably missing or unavailable, which raises questions about domain registration legitimacy despite the professional appearance and branding. Overall, the website is a credible and professional digital presence for a regional bank, with strong privacy and security practices but some gaps in transparency and domain registration clarity. Strategic improvements in publishing security policies and verifying domain registration would enhance trust and compliance.

C

Crédit Mutuel de Bretagne

cmb.fr

0

Crédit Mutuel de Bretagne is a regional cooperative and mutual bank serving individuals, professionals, enterprises, associations, and collectives primarily in Brittany, France. The website offers comprehensive banking services including account management, online account opening, and card services, positioning itself as a trusted regional financial institution under the Crédit Mutuel Arkéa group. The site is professionally designed with consistent branding and clear navigation tailored to its diverse audience segments. Technically, the website leverages modern web technologies including JavaScript, CSS, Bootstrap, and Jalios CMS. It integrates advanced consent management via Didomi and analytics through Piano Analytics and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. From a security perspective, the website enforces HTTPS, employs cookie consent mechanisms aligned with GDPR, and avoids exposing sensitive data. While explicit security headers are not fully visible in the HTML, the overall posture is strong with no evident vulnerabilities. The absence of WHOIS data is likely due to privacy protection, which is justified for a financial institution. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a major regional bank. Strategic recommendations include enhancing visible security headers, publishing clear security and incident response policies, and maintaining vigilance on third-party scripts to sustain trust and compliance.

C

CIC

cic.fr

0

CIC (Crédit industriel et commercial) is a major French banking and insurance group offering a wide range of financial services including accounts, loans, insurance, savings, and digital banking solutions. The website targets individuals, entrepreneurs, professionals, and associations primarily in France, emphasizing proximity banking and ethical commitments as an enterprise with a mission. The digital infrastructure is modern and well-optimized for mobile and accessibility, leveraging multiple third-party services for enhanced user experience and analytics. Security posture is strong with HTTPS and secure practices, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data is noted but likely due to AFNIC domain registration policies. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a large customer base effectively.

C

Crédit Mutuel

creditmutuel.fr

0

Crédit Mutuel is a major French mutual bank serving over 9 million client-members with a cooperative banking model. The website presents a professional, well-structured digital presence offering retail banking, loans, insurance, and mobile banking services. The bank holds a strong market position, recognized as the best French banking group in 2023. Technically, the site uses modern JavaScript libraries, analytics tools, and CDN hosting, with good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly found. WHOIS data is unavailable, likely due to privacy protection, which is justified for a financial institution. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

E

Euro-Information

e-i.com

0

Euro-Information is a well-established technological subsidiary of Crédit Mutuel, providing information system management and IT services to multiple banking and financial groups in France. The website reflects a mature digital presence with comprehensive content about their services, career opportunities, and corporate values. The technical infrastructure uses modern web technologies and CDNs to deliver content efficiently, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent management. The absence of WHOIS data is a notable anomaly but does not currently detract from the website's legitimacy given strong corporate branding and trust signals.

C

Crédit Mutuel Impact

creditmutuelimpact.fr

0

Crédit Mutuel Impact is a specialized asset management company operating under Crédit Mutuel Alliance Fédérale, focusing on sustainable and impact investments primarily in infrastructure and private equity sectors. The company targets investors interested in long-term environmental and societal impact, managing funds that support renewable energy, electric mobility, and decarbonization projects. The website reflects a professional and consistent brand image aligned with its parent company, offering clear information about its investment philosophy and regulatory compliance. Technically, the site uses modern web technologies including jQuery and YouTube API, with a responsive design and good accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a minor concern but is offset by the strong brand presence and regulatory adherence. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations.

N

NewAlpha Asset Management

newalpha.com

0

NewAlpha Asset Management is a French asset management firm specializing in research, advisory, and portfolio management of investment funds. The company targets both professional and non-professional investors, offering a broad range of investment strategies including traditional asset classes, alternative investments, and private assets. The website is professionally designed, multilingual (French and English), and provides comprehensive information about the firm's expertise and services. Technically, the site is built on WordPress with modern SEO and privacy tools such as Yoast SEO and Cookiebot, and uses Matomo for analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and headers are lacking. The absence of WHOIS data reduces transparency and trust somewhat, but the overall presentation and regulatory references support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to improve trust and compliance.

C

CIC Private Debt

cic-privatedebt.eu

0

CIC Private Debt is a specialized financial services firm focused on providing private debt financing solutions to European SMEs and mid-sized companies. Established in 2003, it manages a significant portfolio of 3.5 billion euros for institutional and private investors. The company operates under French financial regulations, including AMF oversight and AIFM authorization, and emphasizes responsible investment practices aligned with ESG principles. The website reflects a professional and consistent brand image, targeting investors and corporate clients seeking alternative financing options. Technically, the site employs modern JavaScript libraries and analytics tools, is mobile-optimized, and includes a comprehensive cookie consent mechanism, demonstrating digital maturity. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though improvements in security headers and incident response transparency are recommended. Overall, the website and business present a trustworthy and credible profile with moderate risk.

C

Crédit Mutuel Asset Management

creditmutuel-am.eu

0

Crédit Mutuel Asset Management (CMAM) is a prominent asset management company operating primarily in France and Europe, offering a comprehensive range of investment funds focused on simplicity, transparency, performance, and risk management. The company emphasizes responsible and sustainable finance as part of its core business model. The website reflects a professional and consistent brand image aligned with its parent company, Crédit Mutuel. The target audience includes both professional and non-professional investors across multiple European countries. CMAM's market position is that of a significant player in the financial services sector, leveraging its parent group's reputation and resources. Technically, the website employs modern web technologies including jQuery and YouTube's widget API, with analytics powered by Piano Analytics. The site is served over HTTPS with cookie consent mechanisms that comply with GDPR requirements, offering users granular control over tracking preferences. While the site demonstrates good mobile optimization and SEO practices, accessibility compliance is partial, indicating room for improvement. No CMS or hosting provider details were explicitly identified. From a security perspective, the site benefits from HTTPS encryption and a cookie consent banner, alongside a published vulnerability disclosure policy, indicating a mature security posture. However, explicit security headers such as Content Security Policy or HSTS are not evident, and no direct incident response contacts are provided. The WHOIS data is privacy protected by EURid, which is common for European domains, and does not raise immediate concerns given the professional nature of the site and its alignment with a reputable financial institution. Overall, the security posture is solid but could be enhanced by adding more explicit security policies and headers.

S

SCOR

scor.com

0

SCOR is a leading global reinsurance company headquartered in France, offering a broad portfolio of innovative Property & Casualty, Life & Health, and Investment solutions. The company targets insurance firms and investors, positioning itself as a financially solid and innovative market leader. The website reflects a mature digital presence with comprehensive corporate, investor, and compliance information, supporting transparency and trust. Technically, the site is built on Drupal 10 with modern web technologies including Matomo analytics for privacy-respecting user tracking, lazy loading images, and embedded multimedia content. The site is mobile-optimized, accessible, and SEO-friendly, providing a fast and professional user experience. From a security perspective, the website enforces HTTPS, uses security cookies, and implements a robust cookie consent mechanism aligned with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers like Content-Security-Policy could be improved, and a security.txt file is absent. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, but the website's professional content and compliance posture support legitimacy. The risk profile is low, with recommendations to enhance security transparency and incident response visibility.

N

Numberly

1000mercis.com

0

Numberly is a well-established marketing technology company based in France, founded in 2005 and operating as a subsidiary of 1000mercis. The company specializes in data-driven marketing solutions including people-based marketing, programmatic advertising, CRM, and big data analytics. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content aimed at business clients seeking advanced marketing technology services. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js and is hosted with reputable providers including OVH and AWS DNS services. Security posture is solid with HTTPS enforced and domain protections in place, though there is room for improvement in security headers and DNSSEC implementation. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the website and domain registration data indicate a trustworthy and credible business with a strong market position in the marketing technology sector.

S

SCOR Investment Partners SE

scor-ip.com

0

SCOR Investment Partners SE operates as the asset management arm of the SCOR Group, a leading global reinsurer. The company specializes in investment strategies that emphasize risk diversification, recurring returns, and capital preservation, with a strong commitment to sustainable development financing. Their market presence spans Paris, London, and Zurich, targeting professional institutional investors. The website reflects a mature digital presence built on Drupal 10, incorporating modern web technologies and compliance with EU privacy regulations. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies and incident response details. The absence of WHOIS registration data is a notable risk factor, potentially indicating privacy protection or registration issues. Overall, the site is professional and trustworthy but would benefit from enhanced transparency in domain registration and security disclosures.

L

La Française

la-francaise.com

0

La Française is a large, professional asset management group based in France, offering a broad range of investment solutions including equity, fixed income, diversified, alternative, and real estate management. The company operates multiple subsidiaries and is part of the Crédit Mutuel Alliance Fédérale asset management division. The website reflects a mature digital presence with comprehensive content, structured data, and clear navigation targeting institutional investors, distributors, and individual clients. Technically, the site uses modern web technologies and provides a responsive experience, though accessibility compliance is basic. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and detailed incident response contacts. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is trustworthy and professional, though the absence of WHOIS data slightly reduces domain trustworthiness.

N

Numberly

numberly.com

0

Numberly is a well-established marketing technology company founded in 2005 and operating primarily in France. The company specializes in data-driven marketing solutions including people-based marketing, programmatic advertising, CRM, and big data analytics. Their website reflects a mature digital presence with a professional design and clear business focus on B2B clients seeking to optimize marketing investments. Technically, the site uses modern frameworks such as Vue.js and is hosted with reputable providers, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain protections in place, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Numberly presents a credible and trustworthy business with a strong market position in marketing technology.

I

Infopro Digital

infopro-digital.com

0

Infopro Digital is a leading business information, data, and technology group focused on delivering innovative business solutions including software, data services, media, and events. The company targets business professionals and enterprises, positioning itself as a key player in the technology and media sectors. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that supports its business objectives. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO and New Relic, indicating a commitment to performance monitoring and user experience. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is trustworthy and professionally maintained, though the lack of WHOIS data slightly reduces domain registration transparency.

M

MAGTOO

magtoo.fr

0

MAGTOO is a French online magazine focused on fashion, culture, lifestyle, style, and societal trends. It targets French-speaking audiences interested in fashion news, style advice, and cultural insights. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Jetpack, indicating a moderate level of digital maturity. The site is well-structured with good SEO and mobile optimization, providing a positive user experience. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published security policies. The absence of WHOIS data limits domain trust assessment, though the website content and branding appear professional and consistent with a legitimate media outlet. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, MAGTOO presents as a credible niche media site with room for improvement in security and privacy compliance.

B

BASSETTI Group

bassetti-group.com

0

BASSETTI Group is a French technology company specializing in industrial software solutions, particularly the TEEXMA platform for quality and performance management. The company targets industrial clients seeking to optimize their operational processes through integrated software solutions. The website reflects a mature digital presence with professional design and multilingual support, indicating a focus on European markets. Technically, the site is built on WordPress with modern SEO and performance plugins, ensuring good user experience and search engine visibility. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The absence of WHOIS data is a notable concern, suggesting either privacy protection or domain registration issues, which should be clarified to enhance trust. Overall, the site is professional and business-focused, with room for improvement in security transparency and domain legitimacy verification.

S

Spartoo

spartoo.com

0

Spartoo is a large French-based e-commerce retailer specializing in footwear, bags, and clothing, offering a vast catalog of over 970,000 products from hundreds of well-known brands. The website is professionally designed with a strong focus on user experience, clear navigation, and mobile responsiveness. It supports multiple languages and regions, indicating a broad European market reach. The technical infrastructure includes modern JavaScript libraries, responsive CSS, and tracking integrations with Bing Ads and Google Analytics, reflecting a mature digital marketing strategy. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security policies and incident response contacts. The absence of WHOIS data reduces domain transparency and trustworthiness, suggesting privacy protection or proxy registration. Overall, Spartoo presents as a credible and professional online retailer with room for improvement in security transparency and domain registration clarity.

A

Aircall

aircall.io

0

Aircall is a leading cloud-based business phone system and unified communications platform founded in 2014 in Paris, France, with a significant presence in New York, USA. Serving over 20,000 customers worldwide, Aircall offers AI-powered communication tools including AI Voice Agent and AI Assist Pro, integrated with CRM and helpdesk systems. The company targets SMBs and enterprise clients, positioning itself as a market leader in cloud telephony and call center software with a strong emphasis on AI-driven productivity and omnichannel messaging. Technically, Aircall employs a modern technology stack including React and Next.js, hosted on AWS and Vercel, with a CMS powered by Storyblok. The website is well-optimized for SEO, mobile-friendly, and incorporates advanced analytics and cookie consent mechanisms. Structured data is extensively used to enhance search engine understanding and social media integration. From a security perspective, Aircall demonstrates strong practices with HTTPS enforcement, security headers, and domain transfer protections. However, DNSSEC is not enabled, and no explicit incident response or vulnerability disclosure policies were found. The domain registration details are consistent with the company's public information, indicating legitimacy and trustworthiness. Overall, Aircall presents a professional, secure, and compliant digital presence with comprehensive business information and a strong market position. Strategic recommendations include enabling DNSSEC, publishing incident response contacts, and establishing a vulnerability disclosure policy to further enhance security posture and trust.

Y

Youdemus

youdemus.fr

0

Youdemus is a French web agency established since 2013, specializing in the creation of eco-designed websites, web support and maintenance, and digital marketing strategies. The company operates primarily in Paris and Bordeaux, targeting businesses and organizations seeking sustainable and professional web solutions. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site leverages WordPress with Oxygen Builder, Flying Press caching, Matomo analytics, and integrates Google Tag Manager and advertising platforms such as Google Ads and Bing Ads. Security posture is good with HTTPS enforced and consent-based analytics tracking, though some security headers and explicit policies are missing. WHOIS data is unavailable from the AFNIC database, which slightly reduces trust but the website content and structured data support legitimacy. Overall, the site presents a professional and trustworthy business with room for improvement in transparency and security documentation.

G

Gandi

gandi.jobs

0

Gandi is a well-established French technology company specializing in domain registration, hosting, email solutions, and SSL certificates. Operating globally with offices in multiple continents, it holds a strong market position within the top 20 worldwide in its sector. The website analyzed is a recruitment portal hosted on the Taleez platform, reflecting Gandi's commitment to attracting talent. The technical infrastructure leverages modern web technologies such as Angular and Material Design, providing a professional and responsive user experience. However, the site lacks explicit privacy and cookie policies, and no security headers were detected, indicating areas for improvement in compliance and security posture. Overall, the site is legitimate and trustworthy, but enhancing security and privacy transparency would strengthen its risk profile.

A

ADventori

adventori.com

0

ADventori is a French adtech company specializing in Dynamic Creative Optimization (DCO), Creative Management Platforms (CMP), ad serving, and trafficking services. Positioned as a leader in the French market for over a decade, ADventori offers advanced digital advertising solutions that personalize and optimize campaigns in real-time. The company is part of the COOL company group, enhancing its market reach and expertise. The website showcases a professional and content-rich platform with detailed case studies and service descriptions targeting advertisers and media agencies. Technically, the site is built on WordPress with modern plugins and libraries, ensuring good SEO, mobile responsiveness, and user experience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security headers could be improved. The absence of WHOIS data reduces transparency but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and improving accessibility compliance.

G

Gandi.net

gandi.net

0

Gandi.net is a well-established domain registrar and web hosting provider founded in 2000, offering a broad range of services including domain names, web hosting, SSL certificates, email solutions, and cloud VPS servers. The company targets individuals, SMBs, large corporations, and resellers, positioning itself as a trusted and secure provider with over 350,000 active users and a strong presence in the technology sector. Their business model focuses on providing comprehensive web infrastructure services with an emphasis on security and user experience. Technically, the website employs modern web technologies with a responsive design, good accessibility, and SEO practices. The infrastructure appears robust with a focus on security best practices such as HTTPS enforcement, DNSSEC, and two-factor authentication for email services. The presence of ISO 27001 certification underscores their commitment to information security management. Security posture is strong, with multiple security headers and secure form handling observed. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR adherence, and consent mechanisms. Contact information and support channels are readily available, enhancing trust and transparency. Overall, Gandi.net presents a low-risk profile with a mature security posture and strong business credibility. Strategic recommendations include publishing a security.txt file to facilitate vulnerability disclosures and enhancing incident response contact visibility to further improve security transparency.

E

Elle Hrvatska

elle.hr

0

Elle.hr is a well-established Croatian media website specializing in fashion, beauty, lifestyle, pop culture, and horoscope content. The site targets a general audience interested in contemporary style and cultural trends. It operates as a media publishing business with a consistent brand presence and a decade-long domain history, indicating market stability and recognition. The website leverages modern web technologies and advertising platforms to deliver content and monetize traffic effectively. Technically, the site is hosted on Gandi.net, uses HTTPS with good SSL configuration, and integrates multiple third-party scripts for analytics and advertising. Privacy compliance is evident through a comprehensive privacy policy, cookie consent mechanism, and terms of service, although explicit contact information and security policies are not published. Security posture is solid with HTTPS and basic security headers but could be improved with additional headers and incident response details. Overall, the website is professional, trustworthy, and safe for general audiences, with no signs of content blocking or WAF interference.

T

Tranquil IT

tranquil.it

0

Tranquil IT is a French technology company specializing in IT infrastructure management solutions, notably offering services around WAPT and Samba-AD. The company targets IT professionals and organizations seeking efficient management of their IT assets. The website is professionally designed using WordPress with the Divi theme, featuring multilingual support and privacy-conscious analytics via Matomo. While the technical infrastructure is modern and the site is well-optimized for SEO and mobile use, there is a lack of explicit privacy and security policies, which could impact user trust and compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of published incident response or vulnerability disclosure information is a gap. Overall, the website reflects a credible small technology business with room for improvement in privacy and security transparency.

FSF France is a small non-profit association dedicated to promoting free software in France. The organization provides support and hosting for free software projects and collaborates with other free software and open data initiatives. The website is an archived version of their older site, primarily in French, with basic content focused on news and advocacy. The technical infrastructure is simple, with static HTML and CSS, hosted by Hetzner Online AG. There is no evidence of modern CMS or advanced web technologies. Security posture is basic, with no DNSSEC, security headers, or visible HTTPS enforcement. Privacy and cookie policies are absent despite CNIL registration, indicating compliance gaps. Contact information is clearly provided, including a generic association email and physical addresses in Paris. Overall, the site is trustworthy but lacks modern security and privacy features.

S

Symfony SAS

symfony.com

0

Symfony SAS operates the symfony.com website, providing a high-performance PHP web framework and a suite of reusable PHP packages for building web applications, APIs, microservices, and CLI apps. The company is well-established with a domain age of over 20 years and a strong presence in the developer community, offering training, certification, cloud hosting, and quality assurance services. Symfony holds a leading position in the PHP ecosystem, supported by a large global developer base and a comprehensive set of tools and services. The website is professionally designed, mobile-optimized, and rich in content, targeting developers and tech teams worldwide. Technically, the website uses modern web technologies including Symfony UX, Stimulus, Bootstrap, and integrates with services like Blackfire for performance profiling. Hosting and DNS are managed via reputable providers including Cloudflare and Platform.sh. The site demonstrates good performance, accessibility, and SEO practices. Security is well addressed with HTTPS, a published security policy, long-term support releases, and monitored CVEs, although some improvements could be made in cookie consent and incident response transparency. Overall, the security posture is strong with no evident vulnerabilities or suspicious indicators. The business credibility is high, supported by official certifications and a consistent brand presence. The site does not contain any adult or questionable content, making it safe for general audiences. The domain registration data aligns well with the business claims, reinforcing trustworthiness. Recommendations include enabling DNSSEC, publishing a cookie consent mechanism, adding a security.txt file, and making contact information more accessible to enhance privacy compliance and incident response readiness.

Q

Quable

quable.com

0

Quable is a specialized SaaS provider offering a comprehensive Product Information Management (PIM) platform designed to help brands and manufacturers centralize and optimize their product data across multiple sales channels. The company has established a strong market presence with over 300 clients globally, including notable brands in fashion, luxury, and industrial sectors. Their platform integrates advanced features such as AI-driven data enrichment, asset management, brand portals, and analytics, positioning them as a competitive mid-market leader. Technically, the website is built on Webflow with modern integrations for analytics, marketing, and multilingual support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response details are absent. The absence of public WHOIS data slightly impacts domain trust but is mitigated by strong business signals and customer testimonials. Overall, Quable presents as a credible and professional business with a well-executed online presence.

E

emeis

emeis.com

0

emeis is a healthcare services provider operating in over 20 countries, specializing in personalized care and support for individuals with physical, cognitive, or mental fragilities. The company is positioned as a significant player in the healthcare sector with a large workforce and is associated with the parent company Orpea. The website is professionally designed using Drupal 10, integrating modern technologies such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site demonstrates good digital maturity with mobile optimization, accessibility, and SEO best practices. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. WHOIS data is unavailable or inconsistent, likely due to privacy protection or domain registration under a different entity, but the website content and business information indicate legitimacy. Overall, the site presents a trustworthy and professional online presence with moderate to high compliance with privacy regulations.

J

Jawg

jawg.io

0

Jawg is a technology company specializing in providing interactive mapping and geocoding services for businesses. Their platform offers APIs and tools to integrate maps, routing, elevation, and business locator features into websites and mobile applications. Positioned as a specialized alternative in the mapping services market, Jawg targets developers and businesses requiring customizable geolocation solutions. The website demonstrates a professional and modern digital presence built on React and Gatsby, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR adherence. Overall, the website reflects a credible and trustworthy business with a clear focus on technology and SaaS services.

Fnac is a leading French retail and e-commerce company specializing in cultural products, electronics, and household appliances. It operates a comprehensive online platform offering a wide range of products including books, music, video games, and ticketing services. The company holds a strong market position in France with an enterprise-scale operation and a well-established brand presence. The website demonstrates a mature technical infrastructure utilizing modern JavaScript frameworks, advanced marketing and analytics tools, and robust performance monitoring. Security posture is strong with HTTPS enforcement, security headers, bot protection, and cookie consent mechanisms in place. However, explicit security policies and incident response information are not publicly available, which could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR, serving a broad consumer audience effectively.

L

Le Monde

lemonde.fr

0

Le Monde is a prominent French media company providing comprehensive news coverage and analysis to a broad French-speaking audience. The website serves as a digital platform for delivering news, opinion pieces, and multimedia content, supported by a subscription and advertising business model. It holds a strong market position as one of France's leading newspapers with a significant digital presence. Technically, the website employs modern web technologies including JavaScript frameworks, advanced analytics tools, and a consent management platform to ensure GDPR compliance. The site is well-optimized for mobile and desktop users, with good performance and accessibility standards. From a security perspective, Le Monde demonstrates a mature posture with HTTPS enforcement, robust security headers, and privacy-conscious cookie consent mechanisms. However, there is room for improvement in publishing explicit security policies and vulnerability disclosure channels. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable source of news and information. Strategic recommendations include enhancing transparency around security policies and incident response, and maintaining vigilance on third-party script security.

S

Schwarzwald Tourismus GmbH

foretnoire-magique.fr

0

The website www.foretnoire-magique.fr serves as a regional tourism portal for the Black Forest area, targeting French-speaking visitors interested in cultural, natural, and travel experiences. It is branded under Schwarzwald Tourismus GmbH and provides rich content about the region's attractions, gastronomy, and events. The site is well-structured with good navigation and accessibility features, leveraging modern technologies such as Neos CMS and the Flow PHP framework. It integrates Google Tag Manager and Analytics for user tracking, though privacy and cookie policies are notably absent, representing a compliance gap. Security posture is solid with HTTPS enforced, but security headers are not explicitly detected. WHOIS data is unavailable, which slightly reduces trust but does not negate the site's legitimacy given its professional presentation and official branding. Overall, the site is a credible and useful resource for tourism promotion but should improve privacy disclosures and security headers to enhance compliance and trust.

Flying Blue is the official loyalty program of Air France-KLM and its partner airlines including Transavia, Aircalin, Kenya Airways, and TAROM. It serves frequent flyers by offering mileage accumulation and redemption services, positioning itself as a major European airline loyalty program. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Angular, Google Tag Manager, and a consent management platform (Didomi) to ensure compliance with privacy regulations. Despite the absence of WHOIS registration data, the website's branding and technical infrastructure indicate a legitimate and enterprise-level operation. Security posture is strong with HTTPS enforced and consent mechanisms in place, though improvements could be made by adding explicit security headers and publishing a security policy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

W

Welcome to the Jungle

welcometothejungle.com

0

Welcome to the Jungle is a well-established online platform specializing in employment services, including job listings, company profiles, and career advice. The website targets job seekers and employers, providing a comprehensive ecosystem for recruitment and career development. The platform demonstrates a mature digital infrastructure with modern technologies such as React, Algolia search, and integrated analytics tools. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the professional presentation and comprehensive policies. Overall, the website is a reliable and professional resource in the employment sector.

S

Scaleflex

scaleflex.com

0

Scaleflex is a technology company specializing in cloud-based visual asset management solutions for enterprises and SMBs. Their platform integrates digital asset management, visual AI, brand portals, and dynamic media optimization to help businesses efficiently manage and optimize billions of visual assets. The company is positioned as a trusted provider with over 1300 brands relying on their services globally. The website demonstrates a mature digital infrastructure using modern technologies such as Webflow CMS, Weglot for multilingual support, and Google Tag Manager for analytics. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data for the domain raises questions about domain registration legitimacy, which should be further investigated. Overall, the website is professional, well-designed, and content-rich, targeting enterprise clients seeking scalable visual asset management solutions.

M

Markus Kunze | Digital Poets

digitalpoets.org

0

Markus Kunze | Digital Poets is a small French IT service company specializing in website creation, SEO, and IT maintenance, established since 1999. The company targets artisans, small and medium enterprises primarily in the Béarn region but also serves international clients. The website is professionally designed using WordPress with modern plugins and multilingual support, reflecting a mature digital presence. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking some advanced security headers and formal security policies. WHOIS data is unavailable due to query failure, limiting domain trust verification. Overall, the business appears credible and well-positioned in its niche with good technical implementation and privacy compliance.

V

La Sarre

visiter-la-sarre.fr

0

The website www.visiter-la-sarre.fr serves as a regional tourism portal for the Saar region, primarily targeting French-speaking visitors. It provides travel advice, excursion information, and promotes nature activities, positioning itself as a regional tourism promotion platform. The site is powered by the Neos CMS built on the Flow PHP framework, indicating a modern and maintainable technical infrastructure. The site is multilingual, with partner sites in German, English, and Dutch, enhancing its reach. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers are missing and privacy compliance elements like privacy and cookie policies are not evident. Overall, the site is professional, well-branded, and trustworthy, but could improve transparency and compliance by adding privacy and cookie policies and security headers.

B

Beyond125

beyond125.org

0

Beyond125 is a non-profit initiative dedicated to protecting NGOs worldwide from cyber threats and disinformation. The organization collaborates with cybersecurity experts, international organizations, and volunteers to provide cybersecurity tools, services, and AI-driven platforms such as the CyberPeace Tracer. Their mission is to secure the digital future of civil society organizations by fostering resilience and transparency in cyberspace. The website is professionally designed on the Squarespace platform, offering clear navigation and relevant content focused on the NGO sector. However, it lacks visible contact information and formal privacy or cookie policies, which could be improved to enhance trust and compliance. The security posture is strong with HTTPS and HSTS enabled, but additional security headers and incident response details would strengthen it further.

S

Scaleflex

filerobot.com

0

Scaleflex is a technology company specializing in cloud-based visual asset management solutions for enterprises and SMBs. Their platform integrates digital asset management, visual AI, brand portals, and dynamic media optimization to help businesses manage, optimize, and syndicate visual content efficiently. With over 1300 brands trusting their services, Scaleflex holds a strong market position in the visual experience technology sector. The website is professionally designed, multilingual, and showcases strong client trust signals including testimonials and case studies. Technically, the website is built on modern technologies including Webflow CMS, jQuery, Google Tag Manager, and Weglot for translations. It leverages CDN and image optimization services to ensure fast performance and excellent mobile responsiveness. The site uses secure HTTPS connections and integrates marketing and analytics tools responsibly. From a security perspective, the site enforces HTTPS and uses reputable third-party services. While some security headers like Content-Security-Policy are not explicitly detected, no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Scaleflex presents a low-risk profile with a mature digital presence, strong business credibility, and good security posture. Recommendations include enhancing security headers and maintaining regular audits of third-party scripts to further strengthen security.

T

tripadvisor.fr

tripadvisor.fr

0

The website tripadvisor.fr is currently inaccessible due to a CAPTCHA challenge implemented via a third-party bot protection service, preventing full content retrieval and analysis. Tripadvisor is a well-known enterprise in the hospitality sector, operating since 2005, with a domain registration consistent with its business history. Due to the blocked content, no direct business descriptions, contact information, or policy documents could be extracted. The technical infrastructure shows use of AWS DNS services and third-party CAPTCHA scripts, indicating a focus on bot mitigation. Security posture cannot be fully assessed due to lack of accessible content, but domain WHOIS data suggests legitimacy. Overall, the site is safe for general audiences with no adult content detected.

Annecy Web is a small, regionally focused web design and digital agency based in Annecy, France, specializing in creating websites for artisans, SMEs, and e-commerce businesses. The company offers web design, print materials, and consulting services, positioning itself as a creative and client-focused partner in the Haute Savoie and Geneva areas. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. The presence of Google reCAPTCHA v3 and GDPR cookie consent mechanisms demonstrates a baseline security and privacy awareness, although formal privacy policies and security documentation are absent. Overall, the website is professional, well-branded, and trustworthy, with clear contact information and a user-friendly design.

S

Sparteo

sparteo.com

0

Sparteo is a technology company specializing in advanced advertising technology solutions tailored for publishers and ad networks. The company offers a suite of AI-powered products including display monetization, consent management, supply side platform services, and audio/video advertising technologies. Sparteo holds a strong market position supported by multiple industry awards and certifications, indicating a reputable and innovative presence in the AdTech sector. Their target audience primarily includes digital publishers and advertising networks seeking to optimize revenue and ensure regulatory compliance. Technically, Sparteo leverages modern web technologies such as Webflow CMS, Matomo analytics, and Google reCAPTCHA, ensuring a fast, mobile-optimized, and accessible website experience. The use of a dedicated consent management platform highlights their commitment to privacy compliance and user consent management. Security-wise, the website enforces HTTPS and integrates bot protection and consent management, though it could benefit from additional explicit security headers and published security policies. The absence of WHOIS data for the subdomain is noted but does not detract significantly from the overall trustworthiness given the strong branding and external validations. Overall, Sparteo demonstrates a mature digital infrastructure with a solid security posture and compliance awareness, positioning it well for continued growth in the AdTech industry.

F

Fastcmp

fastcmp.com

0

Fastcmp is a specialized Consent Management Platform designed specifically for publishers, operating as part of the Sparteo group. The company focuses on delivering a high-performance CMP solution that optimizes monetization and consent rates, leveraging technical excellence and collective intelligence. Their business model aligns revenue with customer success, emphasizing a performance-based approach. The website reflects a professional and modern digital presence with clear branding and targeted messaging towards publishers. Technically, the site is built on Webflow with integrations such as Matomo analytics and Google reCAPTCHA, ensuring good performance, mobile optimization, and GDPR compliance. Security posture is solid with HTTPS and bot protection, though explicit security headers and incident response policies are not published, representing areas for improvement. Overall, the website and business demonstrate a mature digital footprint with moderate to high trustworthiness, though WHOIS data for the subdomain is unavailable, which is typical for subdomains. Strategic recommendations include enhancing security headers, publishing security policies, and improving direct contact information availability.

V

Viously

viously.com

0

Viously is a technology company specializing in AI-driven video solutions tailored for publishers. Positioned as an all-in-one platform, it offers video player technology, video hubs, advertising stacks, and analytics to empower publishers to control and monetize their video content effectively. The company is established in Europe with plans for global expansion and operates under the parent company Sparteo. The website reflects a mature digital presence with professional design, clear branding, and comprehensive service descriptions. Technically, the website leverages modern web technologies including Webflow CMS, Matomo analytics, Google reCAPTCHA for bot protection, and FastCMP for consent management, ensuring compliance with privacy regulations. Hosting appears to be via Webflow's CDN, contributing to fast performance and excellent mobile optimization. The site demonstrates good SEO and accessibility practices. From a security perspective, the site uses HTTPS and integrates bot protection and consent management. However, explicit security headers and published security policies or incident response information are absent, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the domain is consistent with the parent company Sparteo, supporting legitimacy. Overall, Viously's website presents a trustworthy and professional front for its video technology services, with strong compliance and technical maturity. Strategic enhancements in security transparency and direct contact information could further strengthen trust and security posture.