Security Directory

E

Estheticon

estheticon.fr

0

Estheticon.fr is a well-established French online portal specializing in aesthetic medicine, providing comprehensive educational content, a directory of aesthetic surgeons and clinics, patient testimonials, and interactive forums. The platform targets patients seeking aesthetic procedures and medical specialists offering such services. The business model revolves around connecting patients with qualified professionals and providing reliable information to support informed decisions. The website is professionally designed with consistent branding and a good level of content quality, positioning it as a trusted resource in the French aesthetic healthcare market. Technically, the website employs modern web technologies including jQuery, Foundation framework, Google Analytics, Google Tag Manager, and Facebook Pixel, with a focus on performance and mobile optimization. The site uses HTTPS and cookie consent mechanisms to comply with privacy regulations. However, some security best practices such as security headers and explicit incident response contacts are missing, which could be improved to enhance security posture. From a security perspective, the site demonstrates a good baseline with HTTPS and consent-based tracking but lacks visible security headers and a vulnerability disclosure policy. The absence of WHOIS domain registration data reduces trust from a domain legitimacy standpoint, although the website content and business presence appear professional and credible. Overall, Estheticon.fr presents a moderate to good risk profile with strong business credibility and technical implementation but would benefit from enhanced security practices and transparency in domain registration details. Strategic recommendations include implementing security headers, publishing security policies, and improving contact information visibility to strengthen trust and compliance.

A

ATEX - spol. s r. o.

atexsport.fr

0

ATEX is a Czech-based manufacturer specializing in high-quality sportswear for professional and recreational athletes, with over 30 years of experience. The company produces custom sports clothing exclusively in its Czech workshops and serves a European clientele including France, Germany, Austria, and Belarus. Their products are trusted by national teams and elite athletes, positioning ATEX as a niche player in the premium sportswear manufacturing sector. The website reflects a professional and consistent brand image, targeting sports teams and individual athletes seeking durable and customizable sports apparel. Technically, the website employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and advanced analytics tools such as Google Analytics, Hotjar, and Microsoft Clarity. It is mobile-optimized with good SEO practices and uses HTTPS with reCAPTCHA for form security. However, some security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security and compliance perspective, the site implements GDPR-compliant privacy and cookie policies with user consent mechanisms. Contact information is transparent and includes multiple channels. The absence of WHOIS data for the domain is a concern but may be due to registry policies rather than malicious intent. No critical vulnerabilities or adult content were detected, and the site is fully accessible without WAF blocking. Overall, ATEX presents a trustworthy and professional online presence with solid business credibility and a good security posture. The main risk lies in the lack of publicly available WHOIS data, which should be further investigated to ensure domain legitimacy and ownership transparency.

N

Site en construction

naos-digital.com

0

The website naos-digital.com currently serves as a placeholder 'Site en construction' page hosted by OVHcloud. It lacks any substantive business content, contact information, or policies, indicating that the site is not yet operational or publicly launched. The domain was registered in late 2021 and is hosted on OVH infrastructure, showing consistency in technical setup but minimal digital maturity at this stage. The site uses basic HTML and CSS without any advanced frameworks or CMS detected. Security posture is minimal with no DNSSEC, security headers, or privacy policies implemented. There are no analytics or tracking mechanisms present, and no contact or business information is provided. Overall, the site is safe but offers very limited insight into the business or its operations.

G

Gerflor

gerflorgroup.com

0

Gerflor is a large, established global manufacturing group specializing in floor coverings, wall coverings, finishes, and related services. The company emphasizes sustainability, innovation, and environmental responsibility, serving a broad range of customers worldwide. The website is professionally designed using Drupal 10, with modern web technologies and good mobile optimization. It includes comprehensive corporate information, downloadable reports, and social media integration. Security posture is solid with HTTPS and consent management, though some security headers and explicit security policies are missing. WHOIS data is unavailable, which is unusual and warrants further verification. Overall, the website reflects a mature digital presence with strong business credibility and good privacy compliance.

G

Groupe GERFLOR

gerflor.fr

0

Groupe GERFLOR is a well-established French company specializing in the design, manufacture, and commercialization of innovative, decorative, and eco-responsible flexible flooring and wall covering solutions. The company targets professional customers and offers a wide range of products including linoleum, safety floors, anti-static floors, and accessories. GERFLOR holds a strong market position as a leader in sports flooring and flexible flooring solutions with a history spanning over 80 years. The website reflects a mature digital presence with comprehensive product information, customer support portals, and sustainability commitments. Technically, the site is built on Drupal 10 with modern web technologies and integrates Google Analytics and Usercentrics for privacy compliance. Security posture is strong with HTTPS, CSP, and secure forms, though explicit security policies and incident response information are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting GERFLOR's business credibility and customer engagement.

S

SANITINO

sanitino.fr

0

Sanitino.fr is a French e-commerce platform specializing in the sale of sanitary and bathroom equipment, offering a wide range of products from renowned brands such as Grohe, Hansgrohe, Geberit, and Kludi. The website targets consumers and professionals across multiple European countries, supported by localized domains. The business model focuses on online retail with expert advice and fast delivery services. The site is professionally designed with good content quality and consistent branding, positioning Sanitino as a leading vendor in its sector. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and cookie consent tools, ensuring a good user experience with mobile optimization and accessibility features. However, some security best practices such as explicit security headers and a published security policy are missing. The site uses HTTPS and has implemented cookie consent mechanisms, but lacks a visible privacy policy and terms of service pages. From a security perspective, the site shows a moderate security posture with no detected vulnerabilities or blocking by WAF. The absence of WHOIS registration data reduces trustworthiness slightly, but the professional presentation and contact information support legitimacy. There is no evidence of incident response or vulnerability disclosure mechanisms. Overall, Sanitino.fr presents a solid e-commerce platform with good technical and business maturity but would benefit from enhanced transparency in privacy and security policies to improve compliance and trust.

A

AutoScout24

autoscout24.fr

0

AutoScout24 is a leading European online marketplace specializing in the sale and purchase of new and used vehicles. The platform offers a comprehensive range of automotive services including vehicle listings, price evaluations, financing options, and insurance advisory, targeting both private consumers and professional dealers across multiple European countries. The website demonstrates a high level of digital maturity with modern web technologies such as React, service workers, and integration of major analytics and advertising platforms. Privacy compliance is well addressed with GDPR-aligned policies and consent management mechanisms. Security posture is strong with HTTPS enforcement, security headers, and use of reCaptcha Enterprise, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site presents a professional, trustworthy, and user-friendly experience with extensive automotive content and clear navigation.

B

BioTechUSA France

biotechusa.fr

0

BioTechUSA France operates as a specialized e-commerce platform focused on health and fitness nutritional supplements, targeting health-conscious consumers primarily in France. The website offers a comprehensive product catalog, including proteins, vitamins, and fitness apparel, supported by educational content such as blogs and training plans. The brand maintains a consistent and professional online presence with active social media engagement and a clear business model centered on direct online sales and customer engagement. Technically, the website is built on WordPress with WooCommerce integration and enhanced search capabilities via Algolia. It leverages modern web technologies and frameworks like Bootstrap and jQuery, hosted behind Cloudflare for DNS and CDN services. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate and could benefit from further optimization. From a security perspective, the site enforces HTTPS and employs cookie consent management via Cookiebot, indicating compliance with GDPR requirements. However, there is a lack of visible HTTP security headers and no published security or incident response policies, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, BioTechUSA France presents a trustworthy and professional digital footprint with solid privacy compliance and a mature domain registration history. Strategic enhancements in security policy transparency and technical security headers would further strengthen its security posture and customer trust.

STRATO GmbH operates a professional French-language website offering domain registration, web hosting, email services, and online storage solutions. The company positions itself as a climate-friendly and GDPR-compliant hosting provider with ISO certifications and data centers located in Germany, ensuring strong data protection. The website is well-designed, mobile-optimized, and provides clear navigation and cookie consent mechanisms. Technically, the site uses modern JavaScript frameworks and Google Tag Manager for analytics, with no detected security vulnerabilities or blocking mechanisms. However, WHOIS data is unavailable due to AFNIC restrictions, which is typical for .fr domains. Overall, STRATO presents a trustworthy and mature digital presence in the European hosting market.

About Amazon France is a corporate informational website representing Amazon's presence and activities in France. The site highlights Amazon's core principles, business sectors including e-commerce, cloud services, logistics, and entertainment. It serves as a communication platform for corporate information, sustainability efforts, workplace culture, and economic impact in France. The website is professionally designed with consistent branding aligned with Amazon's global identity. Technically, it employs modern web technologies, including JavaScript, SVG icons, JSON-LD structured data, and integrates consent management and analytics tools. Security posture is strong with HTTPS enforced and privacy compliance mechanisms in place, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements, serving a general audience interested in Amazon's corporate footprint in France.

I

idealo

idealo.fr

0

idealo.fr is a leading French price comparison platform offering consumers the ability to compare prices, read product reviews, and receive price alerts across a wide range of product categories. The website is professionally designed, mobile-optimized, and provides a seamless user experience with features such as wishlists and price alerts. The platform targets general consumers looking for the best deals online and operates within the e-commerce sector. Technically, the site leverages modern web technologies including React with Next.js, and integrates consent management tools to comply with GDPR regulations. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data for the domain is a notable gap but does not detract significantly from the overall legitimacy given the professional web presence and branding consistency. Overall, idealo.fr demonstrates a mature digital infrastructure and a trustworthy e-commerce service.

G

G DATA CyberDefense AG

gdata.fr

0

G DATA CyberDefense AG is a well-established cybersecurity company with a history dating back to 1987, specializing in antivirus and internet security solutions for both individual consumers and enterprises. The company offers a broad portfolio including antivirus for Windows and Mac, internet security suites, mobile security for Android and iOS, VPN services, and security awareness training. The website is professionally designed, multilingual, and targets a European audience with a strong presence in France. Technically, the site runs on TYPO3 CMS and integrates modern consent management and analytics tools, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses consent mechanisms for privacy compliance, though explicit security headers and incident response contacts could be improved. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, but the website's trust signals and certifications support its legitimacy.

A

Aareon France

aareon.fr

0

Aareon France is a well-established software and digital solutions provider specializing in the social housing sector in France. The company offers a comprehensive portfolio of ERP and digital solutions designed to optimize processes and connect stakeholders in the social housing ecosystem. The website reflects a mature digital presence with professional design, clear navigation, and relevant content targeting social housing organizations and their collaborators. Technically, the site is built on HubSpot CMS with modern JavaScript libraries and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not found. The absence of WHOIS data from AFNIC limits domain trust assessment but does not detract significantly from the overall legitimacy given the professional content and branding. Strategic recommendations include publishing security and incident response policies and providing direct contact information for data protection and security matters.

S

Samuel Niums Aminou

niums.com

0

The website niums.com represents a personal freelance portfolio and blog operated by Samuel Niums Aminou, a French web designer and blogger. The site focuses on showcasing web design work, sharing blog content related to web development and music, and linking to a YouTube channel for video content. The business model is that of an individual freelancer targeting French-speaking audiences interested in web design and music genres. The market position is small and personal, with no indication of larger corporate structure or subsidiaries. Technically, the website is built using basic HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The hosting provider is OVH sas, a reputable French hosting company. The site lacks modern CMS or frameworks and shows minimal mobile optimization and accessibility features. SEO practices are basic, with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site has a basic posture. The domain is registered since 2003 with no privacy protection, indicating transparency and legitimacy. However, no DNSSEC is enabled, no security headers are detected, and there is no visible HTTPS enforcement or secure forms. Privacy and cookie policies are absent, and no contact information is provided, which reduces compliance with GDPR and best practices. Google Analytics is used without a consent mechanism, indicating privacy compliance gaps. Overall, the website is functional for its purpose as a personal portfolio and blog but lacks professional security, privacy, and compliance features. The risk level is moderate due to missing security controls and privacy policies. Strategic improvements in security headers, HTTPS enforcement, privacy compliance, and contact transparency are recommended to enhance trust and compliance.

The website respectdudroitdauteur.fr serves as an advocacy and informational platform focused on the respect of copyright and intellectual property rights within the context of emerging AI regulations in Europe. It represents a coalition of European cultural and creative organizations, publishing declarations and charters to influence policy and promote responsible AI use respecting creators' rights. The site is relatively new, founded in 2023, and hosted on OVH using WordPress technology. It demonstrates good content quality and professional presentation, targeting stakeholders in the cultural and AI regulatory sectors. Technically, the site is well-structured, mobile-optimized, and accessible, though it lacks advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS enforced but could be improved with additional policies and disclosures. Overall, the site is trustworthy and credible but would benefit from enhanced privacy compliance and security transparency.

A

Adami

adami.fr

0

Adami is a French collective management organization dedicated to supporting artists-interpreters through rights management, financial aid, and career support. The website is professionally designed, multilingual (French and English), and targets artists and project holders in the cultural and media sectors. The business model revolves around collective rights management and funding artistic projects, positioning Adami as a key player in the French artistic ecosystem. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of a published security policy and incident response details suggests room for improvement. The lack of WHOIS data limits domain trust verification, but the professional presentation and official social media presence support legitimacy. Overall, the site is safe, compliant with GDPR, and well-structured, serving its audience effectively.

A

ADAGP

adagp.fr

0

ADAGP is a well-established French collective rights management organization founded in 1953, specializing in the collection and distribution of authors' rights in the visual arts sector. The website presents a professional and comprehensive digital presence, targeting artists, rights holders, and users of artworks with a broad range of services including membership, authorization requests, and artistic support. The technical infrastructure is built on Drupal CMS with modern frontend technologies and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced, though improvements are recommended in security headers and explicit privacy compliance documentation. The absence of WHOIS data limits domain ownership verification but the website's content quality, contact transparency, and social media presence support its legitimacy. Overall, ADAGP's website is a trustworthy and authoritative resource in its domain.

L

La SCELF

scelf.fr

0

La SCELF is a French civil society organization representing French language editors, focusing on publishing and editorial services. The website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site is accessible, uses HTTPS, and includes a cookie consent mechanism, but lacks visible privacy policies, terms of service, and explicit contact information. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Strategic recommendations include publishing privacy and security policies, improving security headers, and clarifying domain registration details to enhance trust and compliance.

P

PROCIREP

procirep.fr

0

PROCIREP is a French collective management organization representing cinema and television producers, focusing on rights management related to private copying and retransmission rights. Established since 1999, it operates alongside related entities such as ANGOA and the French ISAN agency, providing support and funding for audiovisual production. The website reflects a professional and consistent brand presence targeting French audiovisual producers and stakeholders. Technically, the site uses the SPIP CMS with standard web technologies and integrates Google Analytics with a compliant cookie consent mechanism. Security posture is adequate with HTTPS and consent management but lacks explicit security headers and published security policies. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements, though improvements in accessibility and security transparency are recommended.

S

SAS ICESI

woah.fr

0

WOAH.fr is a French technology website operated by SAS ICESI, offering a Google visibility administration solution aimed at businesses seeking to improve their search engine presence. The website presents a professional design with clear navigation and a login form for user access. The technical infrastructure includes modern web technologies such as Bootstrap, jQuery, and FontAwesome, hosted by IONOS SE. While the site is accessible and functional, it lacks visible privacy and cookie policies, and security features such as security headers and advanced form protections are not evident. Social media integration is present, enhancing business credibility. Overall, the website demonstrates a moderate security posture with room for improvement in compliance and security best practices.

C

Centre National de la Musique

whatthefrance.org

0

What The France is a culturally focused media platform created by the Centre National de la Musique to promote French music internationally. It offers curated playlists, video content, news, and branded events to highlight the French music scene. The website is well-positioned as a niche cultural promoter with a clear target audience of music enthusiasts and industry professionals. Technically, the site is built on WordPress with modern plugins and technologies, optimized for performance and SEO, and includes multilingual support. Security posture is solid with HTTPS, cookie consent management, and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the site demonstrates a professional and trustworthy presence with strong branding and compliance with privacy regulations.

C

CNMlab

cnmlab.fr

0

CNMlab is a French think tank and research laboratory affiliated with the Centre national de la musique, focusing on music industry research and academic collaboration. The website serves as a platform for publications, scientific council information, and calls for contributions, targeting academics and music professionals. Technically, the site is built on WordPress with a modern tech stack including Gravity Forms, WP Rocket, and WPML for multilingual support. The site is well-optimized for performance and SEO, with good mobile responsiveness and privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and domain transfer protection, though it lacks explicit security headers and a cookie consent mechanism. Overall, the domain registration is consistent and trustworthy, matching the business entity and history. The site content is safe, professional, and relevant to its niche audience.

C

Centre national de la musique

cnmwork.fr

0

CNMwork is a professional portal operated by the Centre national de la musique (CNM) focused on providing a directory and job, internship, and service offers within the French music sector. It serves as a national platform connecting music industry professionals and job seekers, positioning itself as a key resource in the French music employment ecosystem. The website is well-branded with official logos and government affiliation, enhancing its credibility. Technically, the site is built using modern web technologies including React, Next.js, and Material-UI, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although accessibility compliance could be improved. Performance is moderate, with no blocking or WAF detected, indicating reliable availability. Security posture is solid with HTTPS enforced and secure cookie settings, but lacks explicit security headers and documented security policies or incident response information. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. Overall, CNMwork presents a trustworthy and professional digital presence for the French music sector, though improvements in security headers and accessibility would enhance its posture. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its official backing.

C

CarbonAct | Nous accompagnons votre organisation dans l'action face aux enjeux climatiques

carbonact.fr

0

CarbonAct is a French consulting organization focused on assisting other organizations in addressing climate change challenges. The website presents a professional appearance with a clear focus on climate action and sustainability consulting services. The technical infrastructure is based on WordPress with the Divi theme, utilizing common web technologies such as jQuery and Google Fonts. The site is accessible without any WAF or security challenge blocking content. Security posture is moderate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website appears legitimate and professional but would benefit from enhanced privacy and security practices.

1

1artisan1site.fr

1artisan1site.fr

0

The website www.1artisan1site.fr appears to be a small business or artisan-focused site, likely offering services related to website creation or digital presence for artisans. The site uses modern web technologies such as Bootstrap 5.3.3 and Google Fonts, and implements a cookie consent mechanism via Cookiebot, indicating some attention to privacy compliance. However, critical business information such as company details, contact information, privacy policy, and terms of service are missing, which limits the site's credibility and trustworthiness. The WHOIS data for the domain is unavailable, which raises concerns about the domain's legitimacy and registration status. Technically, the site is moderately optimized for mobile and performance but lacks security headers and detailed privacy compliance documentation. Overall, the security posture is average with room for improvement in transparency and compliance.

L

Vendre sa moto rapidement et au meilleur prix du marché avec Le coin moto

lecoinmoto.fr

0

Lecoinmoto.fr is a French small business website dedicated to facilitating the sale of motorcycles by providing free quick valuation and handling the sales process including secure payment. The website targets motorcycle owners in France seeking a fast and efficient way to sell their vehicles at the best market price. The business operates as an online service platform with a clear and focused value proposition. Technically, the website uses a modern Bootstrap 5.2.1 framework ensuring responsive design and moderate performance. The hosting provider is OVH, a reputable French hosting company. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is limited to a single email address with no phone or physical address provided. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security transparency.

Q

QUADRIM Conseils

quadrim.com

0

QUADRIM Conseils is a French consulting firm specializing in technical management optimization for real estate assets, with a focus on energy, maintenance, and engineering services. The company has been operating since 1998 and serves a diverse clientele including major institutions and corporations. The website is built on WordPress using common plugins and frameworks, providing a professional and responsive user experience. However, the absence of WHOIS registration data for the domain raises questions about domain legitimacy or recent registration status, which should be further investigated. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Overall, the website presents a credible business front but would benefit from enhanced security and compliance measures.

P

Pygmento

pygmento.com

0

Pygmento operates an e-commerce platform specializing in personalized event badges for conferences, seminars, salons, clubs, and other events, primarily targeting French-speaking customers. The website is professionally designed using WordPress with the Divi theme and includes SEO optimizations and customer engagement tools such as Crisp Chat and Google Tag Manager. However, the absence of visible privacy and cookie policies and missing WHOIS registration data present some concerns regarding transparency and compliance. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but security headers and incident response information are lacking. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and clearer business contact information.

L

La culture avec la copie privee

aidescreation.org

0

The website aidescreation.org serves as a centralized database for cultural aid actions funded by collective management organizations in France, fulfilling a legal requirement established by the law of July 7, 2016. It aggregates and publishes data about cultural funding, supporting transparency and public access to information. The platform targets cultural stakeholders, beneficiaries, and the general public interested in cultural aid. The business operates as a non-profit entity, with a clear mission aligned with French cultural policy and copyright management frameworks. Technically, the website employs a modern but straightforward technology stack including jQuery, Bootstrap, DataTables, Owl Carousel, and Matomo analytics with privacy by design. It uses HTTPS and is hosted by OVH sas, a reputable provider. The site includes a cookie consent mechanism compliant with GDPR requirements. While the site lacks some advanced security headers and DNSSEC, it maintains a good security posture overall with no visible vulnerabilities or exposed sensitive data. Security-wise, the site benefits from HTTPS encryption and cookie consent but could improve by enabling DNSSEC and adding security headers such as Content-Security-Policy. There is no published security or incident response policy, which is a gap for transparency and readiness. The WHOIS data is consistent and transparent, reinforcing the legitimacy of the domain and its alignment with the stated business purpose. Overall, aidescreation.org is a trustworthy, well-maintained platform providing valuable cultural aid data with good privacy compliance and moderate technical sophistication. Strategic improvements in security policies and technical hardening would enhance its posture further.

S

SPEDIDAM

myspedidam.fr

0

My SPEDIDAM is a French media rights management platform focused on providing artists with tools to manage their accounts and royalty declarations. The website serves as a secure login portal for artists and associated members, reflecting a specialized business model in the media sector. The company appears established with a domain age of over six years and consistent WHOIS data, indicating legitimacy and operational stability. Technically, the website employs a modern technology stack including jQuery, Kendo UI, Bootstrap, and ASP.NET MVC framework. While the site is mobile optimized and uses Google Analytics for tracking, there is room for improvement in accessibility and SEO optimization. The performance is moderate, and the design quality is good, providing a professional user experience. From a security perspective, the site enforces password complexity and includes CSRF tokens in forms, but lacks visible HTTP security headers such as CSP or HSTS in the provided content. No cookie consent mechanism is present, which is a GDPR compliance gap. The absence of explicit security policies and incident response contacts suggests an opportunity to enhance transparency and trust. Overall, the website is trustworthy and professional but would benefit from enhanced security headers, privacy compliance improvements, and clearer terms of service documentation to strengthen its security posture and regulatory adherence.

P

Accueil

parispectacles.fr

0

Parispectacles.fr is an online platform dedicated to promoting and selling tickets for a wide range of cultural events in Paris, including comedy shows, concerts, classical music performances, dance, improvisation, and family-oriented events. The website targets a general audience interested in live entertainment and cultural experiences in the Paris region. The business model revolves around online ticket sales and event information dissemination, positioning itself as a niche regional player in the hospitality and entertainment sector. Technically, the website employs modern web technologies such as the Uikit CSS framework, Google Tag Manager for analytics, and a cookie consent mechanism compliant with European regulations. The site is mobile-optimized and provides a good user experience with clear navigation and event categorization. However, some technical aspects such as security headers and SEO optimization could be improved. From a security perspective, the site uses HTTPS and integrates Google Tag Manager for tracking, but lacks visible security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, although the website content itself appears professional and consistent with a legitimate business. Overall, the website presents a moderate risk profile with room for improvement in privacy compliance, security best practices, and domain registration transparency. Strategic recommendations include implementing comprehensive privacy and terms policies, enhancing security headers, and verifying domain registration details to bolster trust and compliance.

C

Centre national de la musique

cnm.fr

0

The Centre national de la musique (CNM) is a French national institution dedicated to supporting professionals in the music and variety sectors. Established in 2005, it provides financial aids, training, research, and consulting services to foster the development of the music industry in France. The website reflects a mature digital presence with multilingual support, professional design, and comprehensive content tailored to its target audience of music professionals and stakeholders. Technically, the site is built on WordPress with modern performance optimizations and accessibility considerations, hosted by OVH, a reputable provider. Security posture is solid with HTTPS, security headers, and privacy compliance mechanisms in place, although explicit security policies and incident response details are not publicly disclosed. Overall, the CNM website demonstrates high business credibility and digital maturity appropriate for a government agency.

M

Music Story

music-story.com

0

Music Story is a well-established company founded in 2004, specializing in providing customized music metadata, licensing, and integration services to leading digital music brands worldwide. Their business model focuses on B2B services, offering high-quality metadata and rights clearance to enhance music experiences for their clients. The website reflects a professional and consistent brand image, targeting digital music platforms and content providers globally, with multilingual support and a strong emphasis on client trust and satisfaction. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and a compliant cookie consent mechanism. The infrastructure is modern and moderately performant, with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Overall, the website is trustworthy, compliant with GDPR, and demonstrates a mature digital presence suitable for its industry niche.

V

Vimec France Accessibilite sarl

vimecfrance.fr

0

Vimec France Accessibilite sarl is a well-established French company specializing in custom private home elevators and accessibility solutions. With over 40 years in the industry and more than 15,000 installations across France, Vimec holds a leading market position. Their product range includes private elevators, platform lifts, stairlifts, and mobility aids tailored for residential use. The website reflects a professional and consistent brand image targeting individuals and professionals seeking home mobility solutions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates analytics tools like Google Analytics and Facebook Pixel, indicating a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Privacy compliance is well addressed with clear cookie and privacy policies aligned with GDPR. Overall, the site is trustworthy, user-friendly, and provides comprehensive business information.

M

Musée du Louvre

louvre.fr

0

The Louvre Museum's official website serves as a comprehensive digital portal for visitors, researchers, and art enthusiasts worldwide. It offers detailed information on exhibitions, events, collections, ticketing, and educational programs. The site is well-branded, professionally designed, and optimized for mobile devices, reflecting the institution's global prominence and commitment to accessibility. Technically, the site uses modern web technologies including React and Next.js, ensuring a responsive and performant user experience. Security measures such as HTTPS and robust security headers are in place, although explicit security policies and incident response information are not publicly disclosed. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. Overall, the website demonstrates high business credibility and trustworthiness, consistent with a major government cultural institution.

The website mutuelles-axa.fr represents the mutual insurance activities of the AXA group, a major global insurance and financial services company. The site provides corporate information, news, governance details, and CSR initiatives targeted at French-speaking customers interested in mutual insurance products. The business model is focused on mutual insurance services under the AXA brand, positioning itself as a trusted enterprise in the finance sector. Technically, the site is built on Adobe Experience Manager, indicating a mature and enterprise-grade CMS platform. The presence of TagCommander and Piano Analytics scripts shows a modern approach to analytics and tag management, with a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the site is professional, trustworthy, and well-aligned with AXA's corporate identity.

A

AXA S.A.

axa-research.org

0

The AXA Research Fund website represents a well-established non-profit research funding initiative under the AXA Group, focusing on advancing scientific research in health, climate & environment, and socio-economy & new technologies. The site effectively communicates its mission, grant programs, and impact, targeting researchers and academic institutions globally. The technical infrastructure is modern, leveraging JavaScript modules, CSS, and cookie consent tools, with evidence of mobile optimization and accessibility considerations. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the website reflects a mature digital presence aligned with its business objectives and parent company branding.

A

AXA Prévention

axaprevention.fr

0

AXA Prévention is a well-established prevention platform under the AXA Group umbrella, focusing on climate risk adaptation, health, safety, and cybersecurity awareness for the French public and professionals. The website offers a broad range of free services, guides, and campaigns to educate and protect its audience. Technically, the site is built on modern web technologies including React and Next.js, with good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site reflects a mature, trustworthy, and professional digital presence aligned with AXA's corporate standards.

3

3D Ouest

3douest.com

0

3D Ouest is a French software company specializing in management solutions for local governments and public sector entities. Established in 2003, it offers a suite of SaaS applications tailored to various municipal needs such as childcare, municipal hall management, tourist tax collection, cemetery management, and scheduling. The company positions itself as a specialist provider with a strong focus on adapting to client-specific management modes and providing personalized support. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting French local authorities. Technically, the website is built on WordPress with modern plugins including Yoast SEO and LayerSlider, and uses Matomo for privacy-conscious analytics. The site is hosted by OVH sas, a reputable French hosting provider. The technical implementation is solid with good mobile optimization and SEO practices, though some security enhancements like DNSSEC and security headers could be improved. From a security perspective, the site uses HTTPS and hCaptcha to protect forms, but lacks published security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. Privacy compliance is strong with clear privacy and cookie policies, and GDPR considerations are evident. Overall, 3D Ouest presents a trustworthy and professional online presence consistent with its business claims. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

M

Accueil | Médiathèques Plaine Commune

mediatheques-plainecommune.fr

0

The website www.mediatheques-plainecommune.fr serves as the online presence for Médiathèques Plaine Commune, a public media library network likely serving the Plaine Commune area in France. The site provides cultural and educational resources to the general public, positioning itself as a government or public service entity. The website is built on Drupal 10 CMS and utilizes Matomo Analytics with DoNotTrack enabled, reflecting a moderate level of digital maturity and privacy awareness. However, the absence of visible privacy and cookie policies, as well as the lack of security headers, indicates room for improvement in compliance and security practices. The WHOIS data is not publicly available, suggesting privacy protection, which is common for public institutions but reduces transparency. Overall, the site is functional and safe but would benefit from enhanced security and privacy disclosures.

S

Salle Gaveau Paris

sallegaveau.com

0

Salle Gaveau Paris is a well-established concert hall and event venue located in the 8th arrondissement of Paris, France. The venue offers concert hosting, event privatisation, ticket sales, and café services, positioning itself as a key player in the Parisian hospitality and entertainment sector. The website reflects a professional and consistent brand image, targeting cultural audiences and event organizers. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Slider Revolution, hosted by OVH sas, a reputable provider. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enabled and domain protection flags set, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the site is trustworthy and professional but could improve in privacy transparency and security hardening.

Nanxia is a French software development agency specializing in creating customized software solutions and digital platforms for various sectors including event management, construction project tracking, energy optimization, and artisan web services. The website showcases multiple partner projects and platforms, indicating a diversified portfolio and a focus on B2B clients. The company positions itself as a specialized agency delivering tailored software products to professional audiences. Technically, the website employs modern frontend technologies such as Bootstrap 4.3.1 and jQuery 3.3.1, with Google Analytics integrated for visitor tracking. The site is mobile responsive and well-structured, though it lacks advanced accessibility features and explicit privacy or cookie policies. The absence of security headers and WHOIS data reduces the overall security posture and trustworthiness. From a security perspective, the site uses HTTPS (implied by URL), but no explicit security headers were detected. There are no visible forms collecting sensitive data, reducing immediate risk, but the lack of privacy and cookie consent mechanisms is a compliance gap. The WHOIS query returned no registration data, which is unusual and warrants further investigation to confirm domain legitimacy. Overall, Nanxia's website is professional and business-focused with good content quality and technical implementation. However, improvements in security headers, privacy compliance, and domain registration transparency are recommended to enhance trust and security posture.

S

Spedidam

spedidam.fr

0

SPEDIDAM is a well-established French collective rights management organization founded in 1959, dedicated to protecting and managing the intellectual property rights of performing artists. The website serves as an information and service portal for artists, music users, and creators of spectacles, offering rights management, legal advice, and cultural aid programs. The organization has a significant market presence with over 115,000 rights holders and a large associate base. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and Swiper Slider, hosted by OVH. The site is moderately performant, mobile-optimized, and SEO-friendly, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks some security headers and explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and content-rich, targeting a general audience interested in artists' rights and cultural management. However, compliance with privacy regulations could be enhanced by adding clear privacy and cookie policies and consent mechanisms. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

S

Sacem

sacem.fr

0

Sacem is a well-established French organization founded in 1851, dedicated to managing the rights of authors, composers, and music publishers. The website reflects a mature digital presence with comprehensive services for members and clients, including rights management, project support, and access to a repertoire of works. The site is professionally designed, mobile-optimized, and provides multi-language support, indicating a broad target audience and international reach. Technically, the site uses modern frameworks such as Bootstrap and Font Awesome, with appropriate use of HTTPS and cookie consent mechanisms, demonstrating good digital maturity. Security posture is solid with HTTPS and some security best practices, though explicit security headers and incident response information are not evident. Overall, the site is trustworthy and professional, though the lack of WHOIS data limits domain registration transparency.

A

AXA Atout Cœur

axa-atoutcoeur.fr

0

AXA Atout Cœur is a French non-profit association affiliated with AXA France, focused on combating social exclusion, risk prevention, and environmental protection. Established in 2009, it mobilizes thousands of volunteers annually to engage in community and environmental actions. The website serves as a platform to inform visitors about the association's mission, upcoming events, and opportunities for engagement such as skills sponsorship. Technically, the site is built using modern React technology with asynchronous loading of analytics scripts including Google Tag Manager and Piano Analytics, ensuring a responsive and user-friendly experience. Privacy and cookie policies are well implemented with clear consent mechanisms, reflecting good compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit incident response information are absent. Overall, the site presents a professional and trustworthy digital presence for the association.

F

Fondation Daniel et Nina Carasso

fondationcarasso.org

0

Fondation Daniel et Nina Carasso is a non-profit organization dedicated to promoting sustainable food systems and civic art in France and Spain. The foundation operates under the aegis of Fondation de France and supports social and ecological transformation through financial grants, impact investments, and expert accompaniment. Their website reflects a professional and well-structured digital presence, targeting a broad audience including artists, researchers, and social entrepreneurs. Technically, the site is built on WordPress with modern plugins and tracking tools, ensuring good SEO and user experience. Security measures include HTTPS, reCAPTCHA, and GDPR-compliant cookie management, though some security headers could be improved. The absence of WHOIS data limits domain trust analysis, but the overall digital footprint and compliance indicators support legitimacy.

A

Aerophile

vasqueparis2024.fr

0

The website vasqueparis2024.fr represents a public event installation called La Vasque, associated with the Paris 2024 Olympic and Paralympic Games. It is operated by Aerophile and features partnerships with governmental and cultural institutions such as the Prefecture of Île-de-France, EDF, the Louvre, and the City of Paris. The event is scheduled for summer 2025 at the Jardin des Tuileries, targeting general public visitors and Olympic enthusiasts. The business model revolves around event hosting and public engagement with sponsorship support. Technically, the website is built on WordPress with a modern tech stack including UIkit and jQuery. It uses HTTPS with a reputable hosting provider (Infomaniak Network SA) and implements cookie consent management via tarteaucitron. The site is mobile optimized and has good SEO and accessibility basics. Analytics are handled via Google Analytics (GA4) with moderate user tracking. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The domain is newly registered in April 2025, which is unusual given the event dates but does not indicate malicious intent. Privacy policies are comprehensive and GDPR compliant. Overall, the website presents a professional and trustworthy front for a niche event tied to the Paris 2024 Olympics. Recommendations include enhancing security headers, adding a vulnerability disclosure policy, and improving direct contact information for better transparency and incident response readiness.

The Maison Départementale des Personnes Handicapées de Seine-et-Marne (MDPH 77) is a government entity providing centralized access to rights and benefits for persons with disabilities in the Seine-et-Marne region of France. The website serves as an official portal offering information, application processing, partner resources, and event updates tailored to the disabled community and their families. It is positioned as a trusted regional public service with a clear mission and strong local government backing. Technically, the website is built on Drupal 8, hosted by Scaleway, and employs modern web standards including responsive design, SVG icons, and privacy-focused analytics via Matomo. Cookie consent is managed through a compliant mechanism (Tarteaucitron), reflecting good privacy practices. The site demonstrates good SEO, accessibility, and user experience, with clear navigation and professional branding consistent with government standards. From a security perspective, the site uses HTTPS with a good SSL configuration and clientTransferProhibited domain status, indicating protection against unauthorized domain transfers. While explicit security headers are not visible in the HTML, the overall posture is solid with no exposed sensitive data or vulnerabilities detected. However, the site lacks publicly visible security policies or incident response contacts, which could be improved. Overall, the website is a well-maintained, trustworthy government portal with strong compliance to privacy regulations and a clear focus on serving its target audience. The risk profile is low, with recommendations to enhance security headers and publish security policies to further strengthen trust and resilience.

R

Radio Screen

radio-screen.com

0

Radio Screen is a specialized media technology company providing an associated data broadcasting platform for DAB+, RadioDNS Hybrid Radio, and Webradios. Their platform enables radio stations to enhance their visual identity by distributing logos, artist images, and metadata to compatible receivers, including vehicle infotainment systems. The company operates primarily in France and targets broadcasters and automotive infotainment providers. The website reflects a professional and consistent brand image with clear business messaging and established partnerships with recognized industry players such as Music Story and WorldDAB. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and integrating Google Analytics and Tag Manager for analytics. The site is hosted by OVH sas, a reputable provider, and uses HTTPS with a good SSL configuration. Cookie consent and privacy policies are implemented with GDPR compliance in mind, using the Complianz plugin for consent management. However, some security headers are missing, and no explicit security policy or incident response information is published. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks advanced security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and trustworthy, with no privacy protection and a domain age appropriate for the business maturity. Overall, Radio Screen presents a low-risk profile with a solid business model and good digital maturity. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance their security posture and trustworthiness further.