Security Directory

F

Fédération Française de Tennis

rolandgarros.com

0

Roland-Garros is the official website for the prestigious French Open tennis tournament, managed by the Fédération Française de Tennis. The site provides comprehensive coverage including live scores, schedules, player information, news, photos, and videos, targeting tennis fans and sports enthusiasts worldwide. It holds a strong market position as the authoritative source for Roland-Garros content. Technically, the site leverages modern JavaScript frameworks such as Vue.js (Nuxt.js), integrates Google Fonts, and uses advertising and tracking services like DoubleClick and TagCommander. The website is mobile optimized with good performance and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present with consent mechanisms, indicating GDPR compliance. WHOIS data is missing, which is unusual but the site’s branding and content strongly indicate legitimacy. Overall, the website is professional, trustworthy, and well-maintained.

U

Union des Marques

uniondesmarques.fr

0

Union des Marques is a French association representing brands, focusing on promoting freedom of communication and supporting marketing and communication professionals. The organization offers a range of services including news, events, legal support, training via its Brand Academy, and community building. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting marketing professionals and brand members. Technically, the site is built on the Procurios CMS platform, hosted by Scaleway, and uses modern tools such as Google Tag Manager. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly documented. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

E

ENKI MULTIMEDIA

gunicorn.org

0

Gunicorn.org is the official website for Gunicorn, a Python WSGI HTTP server designed for UNIX systems. The site serves primarily as an informational and community hub for this open source project, providing installation instructions, deployment guidance, and links to the source code repository on GitHub. The project is mature, with a domain registered since 2010, and is maintained by ENKI MULTIMEDIA based in France. The target audience is developers and system administrators who deploy Python web applications. The business model is open source software development with community-driven contributions and project management hosted on GitHub. Technically, the website is simple and functional, using minimal external libraries such as jQuery and hosted on GitHub Pages. The site lacks advanced CMS or frameworks and has basic mobile optimization and accessibility. Performance is moderate, with no visible analytics or tracking services, reflecting a privacy-conscious approach. However, the site does not implement modern security headers or DNSSEC, and HTTPS enforcement details are not visible, indicating room for improvement in security posture. Security-wise, Gunicorn.org demonstrates some good practices such as a dedicated security mailing list and recommendations to use nginx as a reverse proxy for deployment. However, the absence of security headers, DNSSEC, and formal privacy or cookie policies limits its compliance and security maturity. The WHOIS data is consistent and trustworthy, with no privacy protection masking and domain status flags protecting against unauthorized changes. Overall, Gunicorn.org is a credible and stable open source project site with good business credibility and moderate technical implementation. Security and privacy compliance can be enhanced by adding formal policies, improving HTTPS enforcement, and implementing security headers. These improvements would strengthen trust and protect users better while maintaining the project's open source ethos.

O

OVH sas

kivy.org

0

Kivy.org represents the official website for Kivy, an open source Python framework designed for rapid development of cross-platform GUI applications. The project is mature, founded in 2010, and hosted by OVH sas in France. It targets developers and businesses seeking to build multi-touch and innovative user interfaces across Windows, Linux, macOS, iOS, and Android platforms. The business model is community-driven, supported by contributors and backers, with sponsorship options available. The website demonstrates a consistent brand and a strong community presence via GitHub and social media channels. Technically, the site uses modern web technologies including Vue.js and Axios, with good mobile optimization and fast performance. Hosting is provided by OVH sas, a reputable provider. SEO and accessibility are basic to good, though no CMS is detected. The site lacks explicit privacy and cookie policies, which is a compliance gap. No security headers were detected in the provided data, and DNSSEC is not enabled, indicating room for security improvements. From a security perspective, the site uses HTTPS and has domain registration protections like clientDeleteProhibited and clientTransferProhibited statuses. However, the absence of security headers, privacy policies, and vulnerability disclosure mechanisms reduces the overall security posture. No critical vulnerabilities or suspicious patterns were found. The WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, Kivy.org is a professional, trustworthy, and technically sound website supporting a well-established open source project. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance its security and compliance standing.

S

SCAN-MATCH

captag.events

0

Captag, operated by SCAN-MATCH, is a French event technology company founded in 2012, providing a comprehensive platform for managing physical, hybrid, and digital events. Their services include event registration, RFID parcours, interactive questionnaires, live voting, web applications, VIP management, gamification, and more. The company targets B2B, B2C, VIP, associative, and retail sectors, boasting a strong client portfolio including Orange, Air France, Roland Garros, and Google. Technically, the website employs modern frameworks such as Bootstrap, jQuery, and Leaflet, hosted on Google Cloud Platform, with good mobile optimization and SEO practices. Security posture is strong, supported by ISO 27001 and ISO 20121 certifications, HTTPS enforcement, and a robust cookie consent mechanism. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with clear policies and a dedicated DPO contact. Overall, Captag presents a professional, trustworthy, and mature digital presence aligned with its business claims.

W

Welcome to the Jungle

welcometothejungle.co

0

Welcome to the Jungle is a well-established online platform specializing in job search, company discovery, and career advice. The website serves a global audience with localized content and offices in multiple countries, focusing on providing a humanized and transparent job search experience. The platform integrates modern technologies such as React, Algolia for search, and advanced analytics tools to deliver a fast and responsive user experience. Security practices are robust with HTTPS, security headers, and anti-bot measures like reCAPTCHA in place. However, the absence of WHOIS data and explicit contact information slightly reduces transparency and trust. Overall, the site demonstrates a mature digital presence with strong branding and content quality.

C

Comundi

comundi.fr

0

Comundi is a well-established French professional training organization specializing in the development of professional skills through a wide range of training programs, consulting services, e-learning modules, and events. The company targets professionals and organizations seeking certified and innovative training solutions. Their market position is strong, supported by recognized certifications such as Qualiopi and a broad client base including major corporations. Technically, the website employs modern web technologies and analytics tools, ensuring a good user experience with mobile responsiveness and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in explicit security headers and published security policies. The absence of WHOIS data reduces transparency but does not detract significantly from the overall credibility based on website content and branding. Overall, Comundi presents a professional and trustworthy online presence suitable for its educational sector.

S

Stratégies

strategies.fr

0

Stratégies is a leading French media company specializing in communication, marketing, and media industry news. The website offers comprehensive content including news articles, dossiers, events, job listings, and training resources, targeting marketing and communication professionals. The digital infrastructure is built on Drupal CMS with modern JavaScript libraries and integrates multiple analytics and advertising technologies, demonstrating a mature digital presence. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers should be verified. The absence of WHOIS registration data slightly impacts domain trust but the professional content and branding indicate a legitimate business. Overall, the site is well-structured, GDPR compliant, and provides a positive user experience.

C

ChooseMyCompany - Certified reviews

choosemycompany.com

0

ChooseMyCompany is a well-established platform founded in 2014 that specializes in providing certified ESG reviews, rankings, and job postings for companies and schools. The platform targets businesses, employees, trainees, and job seekers, offering services such as review collection, benchmarking, and certified review broadcasting with a strong emphasis on GDPR compliance and data protection. The website demonstrates a high level of professionalism, content quality, and user experience, supported by multiple language options and recognized certifications like HappyIndex®. Technically, the site employs modern JavaScript libraries including jQuery, Bootstrap Vue, and cookie consent management tools, hosted on a reputable cloud provider. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and credible, though it would benefit from publishing explicit security policies and incident response contacts.

S

SCAN-MATCH

equativatcannes2025.com

0

The website 'Equativ at Cannes Lions 2025' serves as a professional event platform for Equativ's participation at the Cannes Lions festival. It offers detailed schedules, panel sessions, wellness activities, and exclusive invite-only events targeted at marketing and media professionals. The site facilitates user registration and meeting bookings, positioning itself as a niche event organizer within the media industry. Technically, the site employs modern frontend technologies including Bootstrap, jQuery, Font Awesome, and Matomo analytics, hosted on Google Cloud Platform. The design is professional, mobile-optimized, and content-rich, providing a good user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit policies are lacking. WHOIS data shows a suspicious future domain creation date, which may be a data anomaly but warrants monitoring. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained, with room for security and policy enhancements.

S

SAP Concur

concur.fr

0

SAP Concur is a leading enterprise software provider specializing in business travel and expense management solutions. The website offers comprehensive information about their products, including expense management, travel management, and budget control, targeting businesses and professionals. The site is well-branded, consistent with SAP's corporate identity, and provides localized content for multiple regions. The technical infrastructure leverages modern web technologies, including Drupal CMS, JavaScript frameworks, and advanced monitoring tools like New Relic and TrustArc for privacy compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although additional security headers could enhance protection. The absence of WHOIS data suggests privacy protection, which is justified for this enterprise-level business. Overall, the website demonstrates a mature digital presence with good user experience and compliance adherence.

L

La Vie Claire

lavieclaire.com

0

La Vie Claire is a well-established French retail company specializing in organic food and products, with a history dating back to 1948. It operates over 340 stores across France and offers a broad range of organic groceries, cosmetics, and household items. The company emphasizes sustainability, local sourcing, and environmental responsibility, positioning itself as the second largest specialized organic distribution chain in France. The website reflects a mature digital presence with comprehensive content, strong branding, and active social media engagement. Technically, the website is built on WordPress with modern libraries such as Gravity Forms, Swiper.js, and jQuery. It employs SEO best practices, accessibility features, and performance optimizations including WP Rocket. Cookie consent and privacy compliance mechanisms are implemented effectively. However, the WHOIS data for the domain is unavailable, which is unusual for a large retail brand and slightly reduces trust. Security posture is generally good with HTTPS enforced and CAPTCHA protections on forms, but lacks published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie management are comprehensive and GDPR compliant. Overall, the website is professional, secure, and user-friendly, serving its target audience well. Strategic improvements in transparency around domain registration and security policies would enhance trust and compliance further.

M

M6

6play.fr

0

M6 is a major French media company offering a broad range of entertainment content including TV shows, series, reality shows, cinema, and podcasts through its streaming platform M6+. The website serves as a digital hub for accessing replay and streaming content, targeting a general audience interested in French media entertainment. The platform is supported by official mobile applications for Android and iOS, enhancing accessibility and user engagement. Technically, the site leverages modern web technologies such as React and integrates advanced analytics and performance monitoring tools like New Relic and Google Tag Manager, indicating a mature digital infrastructure. Security measures include HTTPS enforcement, Content Security Policy, and cookie consent mechanisms, reflecting a strong security posture. However, no explicit security policy or incident response information is publicly available. The WHOIS data is not disclosed, likely due to privacy protection, which is common for media companies. Overall, the site demonstrates high professionalism, good privacy compliance, and a trustworthy presence in the French media market.

A

Audika France

audika.fr

0

Audika France is a leading healthcare provider specializing in hearing aids and audiology services across France, operating over 600 centers. The company offers innovative and discreet hearing devices alongside free hearing tests, targeting individuals with hearing loss or concerns. The website reflects a strong market position with consistent branding and comprehensive service offerings. Technically, the site employs modern web technologies including Google Tag Manager, Visual Website Optimizer, and a robust cookie consent platform, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, though improvements are recommended in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with GDPR, but the absence of WHOIS data slightly reduces transparency and trust. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving incident response visibility.

T

The Boeing Company

boeing.fr

0

The Boeing France website represents the French presence of The Boeing Company, a leading aerospace and defense manufacturer with a long history dating back to 1916. The site highlights Boeing's partnerships with French airlines and military forces, showcasing its role in both commercial and defense aviation sectors. The website is built on Adobe Experience Manager and integrates multimedia content via Brightcove, reflecting a modern digital infrastructure. Analytics are managed through Google Tag Manager, indicating moderate user tracking. Security posture is moderate with no explicit security headers detected and missing WHOIS data limiting domain trust verification. Privacy compliance is partial with a cookie consent mechanism present but no clear privacy policy found. Overall, the site is professional, well-branded, and safe for general audiences, but could improve transparency and security practices.

F

Fabriq

fabriq.tech

0

Fabriq is a French-based company founded in 2020 that offers a comprehensive digital platform designed to enhance operational excellence in manufacturing environments. Their solution enables industrial teams to detect, escalate, and resolve operational issues efficiently, promoting continuous improvement and boosting industrial performance. The company serves a broad range of industries including aerospace, pharmaceutical, automotive, luxury goods, food and beverage, and logistics, with deployments in over 530 sites across 41 countries and more than 20,000 daily users. Fabriq's platform integrates with existing enterprise systems such as ERP, MES, and CMMS, and offers mobile applications for on-the-go access. Technically, the website is built on WordPress with modern SEO and analytics tools including Yoast SEO, Google Tag Manager, and Matomo. The site is well-optimized for performance, mobile responsiveness, and accessibility. Security posture is strong, evidenced by HTTPS enforcement, ISO 27001 certification, and a dedicated data security page. However, DNSSEC is not enabled, and no public security.txt or explicit incident response contacts were found. Overall, Fabriq demonstrates a mature digital presence with professional branding, comprehensive content, and strong trust indicators. The security practices are robust but could be enhanced with additional DNS security and vulnerability disclosure mechanisms. The website is safe for general audiences and does not contain any adult or questionable content.

M

Mutuelle Nationale des Sapeurs-Pompiers de France

mnspf.fr

0

The Mutuelle Nationale des Sapeurs-Pompiers de France (MNSPF) operates a professional website offering health and insurance services tailored specifically for firefighters and their families in France. The organization has a solid market presence with over 290,000 members and provides a range of complementary health insurance, salary maintenance, and death/permanent disability coverage products. The website is well-branded, consistent, and targets a clear audience with relevant content and testimonials. Technically, the site is built on WordPress using the Divi theme and incorporates modern SEO and privacy tools such as Yoast SEO and Complianz GDPR plugin. Matomo Analytics is used for privacy-respecting visitor tracking. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious WHOIS patterns were found, and the domain registration aligns well with the business claims. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

B

BOSPF

laboutiqueofficiellepompiers.fr

0

The website 'BOSPF' operates as an e-commerce retail platform specializing in firefighter-related apparel, equipment, collectibles, and accessories. It targets both individual customers and professional firefighters, positioning itself within a niche market in France. The business has been established since 2013, with a consistent domain registration and a clear focus on its target audience. The site offers a variety of product categories including clothing, equipment, and gift cards, supporting a specialized retail business model. Technically, the website is built on the PrestaShop CMS platform, utilizing common web technologies such as jQuery, Font Awesome, and Google Fonts. Hosting is provided by OVH, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The presence of cookie consent mechanisms indicates awareness of privacy regulations, although no explicit privacy policy or terms of service were detected in the provided content. From a security perspective, the site enforces HTTPS with a valid SSL certificate, but lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and form protections are advised. The absence of analytics and advertising scripts suggests minimal user tracking, aligning with basic privacy compliance. Overall, the website presents a professional and trustworthy retail presence with room for enhancement in privacy documentation and security hardening. The domain registration data supports the legitimacy of the business, and the content is safe for general audiences without any adult or questionable material.

U

Ultrō

ultro.fr

0

Ultrō is a French digital agency specializing in e-commerce, UX/UI design, and web development services. Established in 2009, the company supports businesses in defining digital strategies and implementing digital services. The website reflects a professional and modern digital presence with strong client trust signals, including high ratings on Sortlist and active social media engagement. Technically, the site is built on Webflow with modern JavaScript libraries such as GSAP and integrates privacy-conscious analytics tools like Fathom and Plausible. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and headers could be improved. Overall, Ultrō presents a credible and trustworthy digital agency profile with a well-optimized and user-friendly website.

G

Groupe TF1

tf1.fr

0

TF1 is a leading French media group offering a broad range of entertainment content including series, films, and live TV streaming through its TF1+ platform. The website is professionally designed with excellent content quality and user experience, targeting a general audience with free and premium subscription models. Technically, the site leverages modern frameworks such as Next.js and Tailwind CSS, integrates advanced analytics and marketing tools, and maintains strong SEO and accessibility standards. Security posture is robust with HTTPS, comprehensive security headers, and no visible vulnerabilities. Privacy compliance is well addressed with detailed policies and consent mechanisms aligned with GDPR. Overall, TF1's digital presence reflects a mature, trustworthy, and secure media platform.

C

CIR Médical

cirmedical.fr

0

CIR Médical is a French manufacturer specializing in medical devices, including vacuum mattresses, splints, and contaminated patient cells. The company operates within the healthcare and manufacturing sectors, targeting healthcare professionals and emergency services. The website reflects a professional presence with clear branding and contact information, supported by a long-standing domain registered since 2007 and linked to Groupe Rivolier. Technically, the site is built on WordPress with Jetpack and Google Analytics integrations, hosted on WordPress.com infrastructure, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible privacy or cookie policies, indicating room for compliance improvements. Overall, the site is trustworthy and professional but should enhance privacy and security transparency to align with best practices.

S

Sapeurs-Pompiers de France

pompiers.fr

0

The website www.pompiers.fr serves as the official digital presence of the Sapeurs-Pompiers de France, a large national governmental and non-profit organization dedicated to firefighting, emergency response, and public safety in France. It provides comprehensive information about firefighter recruitment, risk prevention, news, and community engagement. The site targets a broad audience including the general public, prospective volunteers, professionals, and stakeholders in emergency services. The business model is focused on public service and community support rather than commercial revenue generation. Technically, the website is built on WordPress with modern web technologies including Progressive Web App features, Google Tag Manager for analytics, and Axeptio for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, with structured data enhancing search engine understanding. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS, implements multiple security headers, and avoids exposing sensitive data. However, it lacks a dedicated security policy or vulnerability disclosure page, which could enhance transparency and incident response readiness. Privacy compliance is well addressed through a comprehensive privacy and cookie policy with consent mechanisms, aligning with GDPR requirements. Overall, the website is trustworthy, professional, and well-maintained, reflecting the organization's authoritative position. The absence of WHOIS data is likely due to privacy protection policies common for governmental domains in France and does not detract from legitimacy. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure channel, and enhancing incident response contact visibility.

L

LaserMaxx74

lasermaxx74.fr

0

LaserMaxx74 is a small local entertainment business based in Annecy, France, specializing in laser game and quiz boxing activities. The company targets a broad audience including families and children aged 8 and above, offering event hosting for birthdays, corporate events, and bachelor/bachelorette parties. The website is professionally designed using modern web technologies and integrates booking services through a partner platform. The digital infrastructure includes analytics and marketing tools with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical and justified for this business type. Overall, the website presents a trustworthy and professional image suitable for its market niche.

M

Megazone France

megazone.fr

0

Megazone France is a leading French company specializing in the supply and installation of laser game equipment and arenas for professional leisure establishments. The company positions itself as the market leader in France with over 135 active centers equipped in 2025. Their offerings include hardware, software, arena design, and customizable solutions tailored to client needs. The website is professionally designed, bilingual (French and Spanish), and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and uses modern performance and tracking tools such as WP Rocket and Google Analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit privacy policies are missing. WHOIS data is unavailable, which slightly reduces trust but does not outweigh the professional presentation and business legitimacy. Overall, the site is a credible B2B platform serving the leisure and entertainment sector in France.

A

Apex Timing - Solutions logicielles pour les loisirs multiactivités et sports mécaniques

apex-timing.com

0

Apex Timing is a specialized software company providing comprehensive management solutions for leisure centers and karting activities, including leisure karting and competitive karting. The company offers integrated tools such as certified cash registers, online booking, timing systems, and customer management, serving a global clientele across 53 countries with over 800 clients. Their business model focuses on SaaS subscriptions and partnerships with other leisure and sports technology providers. Technically, the website is built on WordPress with Elementor and related plugins, delivering a professional and responsive user experience. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and incident response documentation are recommended. Overall, the company presents a trustworthy and mature digital presence, though the lack of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy.

M

Motul

motul.com

0

Motul is a well-established company specializing in high-performance engine oils, lubricants, and vehicle care products for a wide range of vehicles including cars, motorcycles, trucks, and bicycles. The website reflects a strong market position with a comprehensive product offering and multiple sales channels including B2B and e-commerce platforms. The brand is supported by consistent and professional digital presence with clear navigation and rich content. Technically, the site is built on modern frameworks such as Next.js and React, integrating advanced analytics and marketing tools with user consent management. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data is unusual but does not detract significantly from the overall legitimacy given the brand recognition and content quality. Strategic recommendations include enhancing security transparency and publishing vulnerability disclosure policies to further strengthen trust and compliance.

F

FORVIA

forvia.com

0

FORVIA is a major global technology supplier in the automotive industry, ranking as the 7th largest worldwide. The company emphasizes sustainability and innovation, offering a broad portfolio of automotive technologies including electrification, automated driving, and sustainable materials. The website is professionally designed using Drupal 10, with modern web standards and analytics via Matomo. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response details are not published. WHOIS data is missing, which is unusual for a corporate domain and suggests privacy protection or recent registration. Overall, the site presents a credible and professional business presence with room for improvement in transparency and direct contact information.

K

KNDS France

knds.fr

0

KNDS France is a leading European defense manufacturer specializing in air-land defense systems, including armored vehicles, artillery, and robotics. It operates as part of the KNDS Group, with a strong presence in France and multiple subsidiaries across Europe and globally. The company supports armed forces with comprehensive lifecycle services and is a key player in major defense programs such as SCORPION. Technically, the website is built on modern frameworks like Next.js and React, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and domain protections, though DNSSEC is not enabled. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a professional, trustworthy, and mature digital presence aligned with its business stature.

S

Studio River

studioriver.fr

0

Studio River is a French award-winning motion design studio specializing in creative storytelling and video production. Their website showcases a professional portfolio of short films and motion design projects for notable clients in luxury and technology sectors. The company targets creative agencies, brands, and media professionals seeking high-quality motion design services. Technically, the website is built on WordPress using the Salient theme and employs modern web technologies including jQuery, Google Analytics, and Vimeo video integration. The site is mobile-optimized, fast-loading, and well-structured with clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are absent. Privacy and cookie policies are not explicitly found, indicating compliance gaps. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security disclosures.

S

Satys

satys.com

0

Satys is a well-established French industrial group specializing in aerospace and railway mobility services, including aircraft painting, sealing, interiors manufacturing, and surface treatment. The company operates internationally with a strong presence in 13 countries and employs approximately 2,600 people. Their market position is strong, recognized as a world leader in aircraft painting and a French leader in composite treatment. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the website is built on Joomla CMS using modern frameworks such as Helix Ultimate and Bootstrap 5.3.3, with a moderate performance profile and good mobile optimization. Hosting is provided by OVH sas, a reputable provider. Security posture is adequate with HTTPS enabled and domain protections in place, though improvements such as DNSSEC and security headers are recommended. Security policies and incident response information are not explicitly presented on the website, indicating room for improvement in transparency and compliance. Privacy and cookie policies exist but lack advanced consent mechanisms. Overall, the site is safe, professional, and trustworthy, with no adult or questionable content detected. Strategic recommendations include enhancing security headers, enabling DNSSEC, implementing cookie consent mechanisms, and publishing clear incident response and vulnerability disclosure policies to strengthen compliance and trust.

P

PSD Aero

psdaero.com

0

PSD Aero is a well-established French company specializing in the distribution and processing of metallurgical products for the aerospace, nuclear, and mechanical industries. With a strong international presence and partnerships with major aerospace players such as Safran and Airbus, PSD Aero positions itself as a first-tier supplier offering high-quality alloys and customized services. The company emphasizes quality, environmental sustainability, and supply chain acceleration to meet the demanding needs of its customers. Technically, the website employs modern web technologies including Bootstrap, Swiper.js, and Microsoft Clarity for analytics, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, security headers, and secure forms are implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a credible and reliable digital presence for PSD Aero.

W

Web Incubator Community Group (WICG)

wicg.io

0

The Web Incubator Community Group (WICG) operates as a community-driven platform under the World Wide Web Consortium (W3C) to incubate and discuss new web platform features. It serves developers and browser makers by providing a collaborative environment for proposing and refining web standards. The website reflects a well-established entity with a domain age consistent with its founding in 2015, and it maintains a reputable presence with active GitHub repositories and affiliation with recognized web standards bodies. Technically, the site employs modern web technologies including HTML5, CSS, and JavaScript with asynchronous script loading, and is hosted by a reputable registrar, Gandi SAS. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured content. Security-wise, the site uses HTTPS but lacks visible security headers and published security policies, which suggests room for improvement in security posture and transparency. Privacy compliance is minimal, with no privacy or cookie policies found, and no explicit GDPR compliance indicators. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures to align with best practices and regulatory expectations.

F

FORVIA

faurecia.com

0

FORVIA is a major global supplier in the automotive industry, focusing on sustainable and innovative automotive technologies. The company positions itself as a tech company with a strong emphasis on sustainability and digital transformation in mobility. The website reflects a professional corporate presence with detailed sections on technologies, sustainability, investor relations, and careers. Technically, the site is built on Drupal 10 and uses Matomo for analytics, indicating a modern and privacy-conscious approach. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit security policies. The absence of WHOIS data limits domain trust verification but the website content and branding suggest legitimacy. Privacy and cookie policies are not clearly found, indicating room for compliance improvement.

D

Dassault Aviation

dassault-aviation.com

0

Dassault Aviation is a leading French aerospace company specializing in the design, manufacture, and support of combat aircraft and business jets, including renowned brands such as Rafale, Falcon, and nEUROn. The company holds a strong market position as a major player in aeronautics with a global presence and a history dating back to 1916. The website reflects a mature digital presence with comprehensive content tailored to industry professionals, customers, and enthusiasts. Technically, the site is built on WordPress with modern analytics and tracking tools, optimized for performance and accessibility. Security posture is robust with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response details are not publicly available. Overall, the domain appears legitimate despite WHOIS privacy protection, consistent with the company's stature and security needs.

Diptyque is a well-established luxury brand specializing in perfumes, candles, body care, and home decor products. The website serves as a comprehensive e-commerce platform targeting consumers interested in premium fragrance and lifestyle products. The brand maintains a strong market position with iconic product lines and a consistent, professional online presence. Technically, the site leverages modern frameworks such as Vue.js and integrates advanced analytics and marketing tools including New Relic, Google Tag Manager, and Klarna services, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS registration data slightly impacts trust but is mitigated by the brand's strong external presence and professional content. Overall, the website is secure, performant, and compliant with privacy regulations, serving its target audience effectively.

O

OKAST

okast.tv

0

OKAST is a French-based technology company specializing in providing cloud-based, no-code video streaming platform solutions including VOD, FAST channels, and live streaming. The company targets a diverse audience including content distributors, TV and media companies, experts, trainers, YouTubers, and corporate brands. With over 600 platforms launched globally, OKAST positions itself as a leading player in the media technology sector, offering a comprehensive suite of tools for content monetization, advertisement management, and user engagement. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted likely on AWS infrastructure, and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing explicit privacy and cookie policies, although a cookie consent mechanism is present. Overall, the website is professional and trustworthy, but could improve transparency and security documentation.

D

Dethleffs

dethleffs.fr

0

Dethleffs is a well-established European company specializing in caravaning products including camping-cars, campervans, and urban campers, targeting families and travel enthusiasts. The website reflects a professional and consistent brand presence with multi-language support and a comprehensive cookie consent mechanism, indicating a mature digital presence. Technically, the site uses modern technologies such as Pimcore CMS, Matomo analytics, Google Tag Manager, and Cookiebot for privacy compliance, demonstrating a good level of digital maturity. Security posture is strong with HTTPS enforced and privacy-respecting analytics, though some security headers and explicit security policies are not detected. Overall, the website is trustworthy and professionally maintained, with no signs of blocking or WAF interference.

VELUXshop.fr is the official French e-commerce platform for VELUX branded window blinds, shutters, and accessories. The website offers a comprehensive catalog of products tailored for roof windows, including interior and exterior blinds, mosquito nets, and smart home compatible accessories. The site targets homeowners and consumers in France seeking high-quality window treatment solutions. It provides a configurator tool to assist customers in selecting the right products for their specific window types and sizes. The business model is direct online retail, supported by customer service, delivery, and installation options. The site maintains consistent branding aligned with the VELUX Group, reinforcing its market position as a trusted provider in the home improvement retail sector.

V

VELUX France

velux.fr

0

VELUX France operates as a leading manufacturer and retailer of roof windows and related products, serving homeowners, architects, and construction professionals primarily in France. The company offers a broad product portfolio including motorized windows, blinds, shutters, and accessories, supported by professional consultation and installation services. The website reflects a mature digital presence with modern technologies such as Vue.js, Algolia search, and Google Tag Manager, ensuring a fast, mobile-optimized, and user-friendly experience. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data limits domain legitimacy verification, but the website's professional branding and external trusted links support its credibility. Overall, the site scores highly on content quality, technical implementation, and business credibility, with recommendations to enhance transparency on security policies and incident response.

N

NanoCard

nanocard.eu

0

NanoCard is a French-language digital media platform specializing in cryptocurrency and finance news, guides, and tools. Established in 2017, it serves a niche audience interested in crypto and financial topics, providing up-to-date news, educational content, and practical calculators. The site leverages WordPress CMS with SEO and GDPR compliance plugins, indicating a moderate level of digital maturity and focus on user privacy. Hosting is provided by Scaleway SAS, a reputable provider, supporting the site's operational stability. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and vulnerability disclosure practices. Overall, NanoCard presents a professional and trustworthy platform for its target audience.

Johnson & Johnson France operates as a major healthcare company focused on innovation in MedTech and Innovative Medicine sectors. The website presents a professional and comprehensive digital presence with clear corporate branding and structured content targeting healthcare professionals, partners, and the general public. The technical infrastructure leverages modern web technologies including Brightspot CMS, Google Tag Manager, and OneTrust for privacy compliance, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. Overall, the site is trustworthy and professionally maintained, though WHOIS data is unavailable which slightly impacts domain trust assessment.

A

Alcyon

alcyoneurope.com

0

Alcyon is a European leader in the distribution of veterinary medicines, pet food, and veterinary equipment, operating primarily in France, Belgium, and Italy. The company is structured with subsidiaries in these countries and governed by a board largely composed of practicing veterinarians, emphasizing its close ties to the veterinary profession. The website presents a professional and multilingual platform that highlights the company's history, organizational structure, and key business metrics, targeting veterinary professionals across Europe. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support. It uses jQuery and is optimized for mobile devices with good SEO practices. The site is served over HTTPS with no visible security vulnerabilities in the provided HTML content. However, it lacks some security headers and visible privacy or cookie policies, which are important for compliance and user trust. From a security perspective, the site demonstrates a solid baseline with HTTPS and no exposed sensitive data. The absence of privacy and cookie policies, as well as missing incident response and vulnerability disclosure information, indicates areas for improvement in compliance and transparency. The WHOIS data is notably missing or unavailable, which raises some concerns about domain registration transparency despite the professional appearance and content of the website. Overall, Alcyon’s website is a well-structured and professional digital presence for a veterinary distribution group, but it would benefit from enhanced privacy compliance, security headers, and clearer domain registration information to improve trust and regulatory adherence.

D

Doctolib

doctolib.com

0

Doctolib is a leading European healthcare technology company specializing in online appointment booking and teleconsultation services. The platform serves patients and healthcare professionals primarily in France, Germany, and Italy, offering a seamless way to find specialists and manage medical appointments. The company also provides professional management software for healthcare providers, enhancing operational efficiency. The website reflects a mature digital presence with comprehensive legal, privacy, and user support documentation, reinforcing trust and compliance with GDPR regulations. Technically, the website employs modern web technologies including React, Sentry for error tracking, Datadog for real user monitoring, and advanced consent management via Didomi. The infrastructure leverages Cloudflare services for security and performance, with strong SSL/TLS configurations and security headers implemented. The site is mobile-optimized and accessible, providing a fast and user-friendly experience. From a security perspective, Doctolib demonstrates robust practices such as HTTPS enforcement, cookie security with SameSite and Partitioned flags, and CAPTCHA integration to mitigate abuse. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data limits full domain legitimacy verification, though the overall trust signals and professional branding mitigate this concern. Overall, Doctolib presents a secure, compliant, and professionally managed online platform with strong market positioning in healthcare technology. Strategic recommendations include enhancing transparency with a published security.txt file and continuous monitoring of third-party dependencies to maintain security posture.

D

Doctolib

doctolib.fr

0

Doctolib is a leading healthcare technology company based in France, providing an online platform for patients to quickly find healthcare specialists and book appointments online. The platform also offers teleconsultation services and practice management software for healthcare professionals, positioning itself as a key player in the European healthcare digital transformation. The website is professionally designed, highly accessible, and optimized for mobile users, reflecting a mature digital presence. Technically, the site leverages modern frameworks such as React, integrates advanced monitoring tools like Sentry and Datadog, and employs robust consent management via Didomi, indicating a strong commitment to performance and privacy compliance. Security posture is solid with HTTPS enforcement, secure cookie handling, and anti-abuse captchas, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain and website exhibit high legitimacy and trustworthiness, with no signs of blocking or suspicious activity. Strategic recommendations include publishing detailed security and vulnerability disclosure policies and enhancing transparency around data protection officer contacts to further strengthen compliance and trust.

D

Doctolib

doctolib.legal

0

Doctolib is a leading French healthcare technology company specializing in online appointment booking and telehealth services. The platform enables patients to find healthcare professionals and book appointments easily, supporting a broad range of medical specialties. The website is professionally designed, mobile-optimized, and provides comprehensive legal and privacy information, reflecting a mature digital presence. Technically, Doctolib employs modern web technologies including React, Sentry for error tracking, Datadog for performance monitoring, and robust consent management tools to ensure GDPR compliance. Security posture is strong with HTTPS enforcement and modern security headers, though no explicit incident response or vulnerability disclosure policies are publicly available. Overall, Doctolib demonstrates a high level of digital maturity and trustworthiness appropriate for a healthcare service provider.

I

IBSA (Institut Biochimique SA)

ibsafrance.fr

0

IBSA France represents the French branch of IBSA (Institut Biochimique SA), a Swiss multinational pharmaceutical company founded in 1945. The company operates in over 90 countries with 20 subsidiaries worldwide, focusing on pharmaceutical products across eight therapeutic areas. The website reflects a professional corporate presence with a focus on sustainability, innovation, and healthcare services. Technically, the site uses modern JavaScript libraries, Google Analytics, and OneTrust for cookie consent, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. The absence of WHOIS data reduces domain trust slightly, but the overall business credibility remains high due to consistent branding and extensive subsidiary network.

M

Medicontur France

medicontur.fr

0

Medicontur France is a specialized healthcare company focused on the development and manufacturing of high-precision intraocular lens (IOL) systems for cataract and other ocular diseases. The company targets both healthcare professionals and patients through dedicated platforms, offering product information, online calculators, and professional services. With over 30 years of experience, Medicontur holds a reputable position in the ophthalmology medical device market in France and internationally. The website reflects a professional and consistent brand image with good content quality and SEO optimization. Technically, the website is built on a modern WordPress platform using Elementor and WooCommerce, supported by Yoast SEO for optimization. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and performance tuning. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and explicit security policies. Privacy compliance is partially addressed with a privacy policy present and GDPR considerations, but the absence of a cookie consent mechanism and incident response information indicates areas for improvement. Overall, the website is trustworthy and professional, with a strong business credibility score and no signs of malicious or suspicious activity.

The domain betsson.fr currently functions solely as a geolocation redirector, forwarding visitors to the main Betsson homepage at betsson.com. This indicates that betsson.fr is not intended to host full website content but rather to route traffic based on geographic location. The domain is well-established, created in 2007, and registered with a reputable registrar, CSC CORPORATE DOMAINS INC., with active status and Cloudflare DNS hosting. However, the lack of substantive content, including privacy policies, cookie notices, terms of service, and contact information, limits the ability to fully assess the site's compliance and security posture. No security headers or scripts were detected in the minimal HTML content provided, and no WAF or security challenge was observed, indicating the site is accessible but minimal in functionality. The content is safe for general audiences with no adult or explicit material detected.

Betclic.fr is an established online gambling and sports betting platform operating primarily in France since 2006. The business targets adult users interested in sports betting and casino games. The domain is hosted on Amazon AWS infrastructure, indicating a modern hosting environment. However, the website content is currently inaccessible, returning an HTTP 403 Forbidden error with minimal content, which prevents full analysis of the site’s features, policies, and user interface. No privacy, cookie, or terms of service policies are present in the provided content, and no contact information or forms are available. Security headers and HTTPS configuration details are not visible in the provided data, limiting the security posture assessment. The domain WHOIS data is consistent and legitimate, supporting the business credibility despite the current access restriction.

R

ROTHO BLAAS SRL

rothoblaas.fr

0

Rothoblaas SRL is a well-established manufacturer and supplier specializing in products for wood construction professionals, including carpenters, engineers, and installers of fall protection systems. The company operates internationally with a strong presence in France and multiple language versions of its website. Their offerings include construction hardware, safety equipment, technical training, and software tools, positioning them as a comprehensive solution provider in the wood construction industry. The website reflects a professional and consistent brand image with clear navigation and rich content tailored to their target audience. Technically, the website employs modern JavaScript frameworks such as Alpine.js and integrates third-party services like Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and accessible, with a cookie consent mechanism that aligns with GDPR requirements. However, explicit security headers are not detected, and there is no publicly available incident response or vulnerability disclosure policy, which are areas for improvement. From a security perspective, the site uses HTTPS with a valid SSL configuration and implements CSRF tokens, indicating a good baseline security posture. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS registration details slightly reduces trust but does not detract significantly from the overall legitimacy given the professional presentation and certifications displayed. Overall, Rothoblaas demonstrates a mature digital presence with strong business credibility and compliance practices. Strategic enhancements in security policy transparency and domain registration visibility would further strengthen their trustworthiness and resilience.