Security Directory

E

EuroDNS

eurodns.com

0

EuroDNS is a well-established European domain registrar and web services provider based in Luxembourg, operating since 2002. The company offers a comprehensive suite of services including domain registration with over 1000 TLDs, managed WordPress hosting, SSL certificates, branded email solutions, and web security products. Their market position is strong, supported by 20+ years of experience, ISO 27001 certification, and positive customer reviews. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content tailored to individuals and businesses seeking domain and hosting services. Technically, EuroDNS employs a modern technology stack including Google Tag Manager, Bing Ads, ContentSquare, and Mailchimp for analytics and marketing. The site uses HTTPS with strong SSL configurations and offers domain privacy services. While security headers are not explicitly detected, the company demonstrates good security practices and compliance with GDPR, supported by comprehensive privacy and cookie policies with consent mechanisms. The security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of a public incident response policy or vulnerability disclosure program is noted as an area for improvement. The domain WHOIS data aligns perfectly with the business claims, showing transparency and legitimacy. Overall, EuroDNS presents a trustworthy and professional online presence with a high level of business credibility and technical maturity.

Hilti Luxembourg operates as a regional branch of the global Hilti group, specializing in providing innovative tools, fastening systems, and software solutions for the construction and building industry. The website targets professional users in the building sector, offering products and services designed to enhance productivity and safety. The site is well-branded and consistent with Hilti's global presence, reflecting a mature business model focused on B2B sales and service.

H

Holland Watch Group B.V.

auer.lu

0

Auer.lu is an e-commerce platform specializing in the online retail of watches, positioned as the largest specialist in the horology sector online within its market. The business operates under the umbrella of Holland Watch Group B.V., a recognized entity in the watch retail industry. The website targets primarily French-speaking consumers in Luxembourg and the Netherlands, offering official brand watches with fast delivery services. Technically, the site employs modern web technologies including Alpine.js, Tailwind CSS, and integrates Google Analytics and Tag Manager for tracking. The presence of privacy and cookie policies with consent mechanisms indicates a good level of privacy compliance. Security posture is solid with HTTPS and CSRF protections, though it lacks some advanced security headers. The absence of WHOIS data limits domain trust evaluation but the business branding and partner domains support legitimacy.

T

Toyota Luxembourg

toyota.lu

0

Toyota Luxembourg operates as the official regional website for Toyota in Luxembourg, offering a comprehensive range of hybrid, diesel, and petrol vehicles along with current promotions. The website targets general consumers interested in Toyota automobiles within Luxembourg and provides services such as brochure requests, test drive bookings, and special offers. The site is well-branded, consistent with Toyota's corporate identity, and leverages modern digital marketing and analytics tools. Technically, the website is built on Adobe Experience Manager with integrations including Adobe Launch, Datadog RUM, Google Tag Manager, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. The absence of WHOIS data limits domain trust assessment, but the website content and branding strongly support legitimacy. Overall, the site presents a professional, secure, and user-friendly experience aligned with Toyota's brand standards.

C

Creditreform Luxembourg SA

creditreform.lu

0

Creditreform Luxembourg SA operates as a key player in the finance sector, specializing in credit risk management, debt collection, and market analysis services. The company leverages a global network to provide secure business transactions and risk evaluation solutions primarily targeting business clients. The website reflects a professional and consistent brand image, supporting its market position as a leading provider in Luxembourg. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Swiper.js and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS and implements GDPR-compliant cookie consent mechanisms, although explicit security headers are not visibly configured in the HTML. The absence of WHOIS data limits domain trust analysis, but the website content and external partner domains suggest legitimate operations. Overall, the site demonstrates a solid security posture with room for improvement in explicit security header implementation and transparency in domain registration data.

F

FERI (Luxembourg) S.A.

feri.lu

0

FERI (Luxembourg) S.A. is a prominent fund management company operating in Luxembourg, one of the largest fund markets in Europe and globally. The company manages multi-billion euro assets and offers investment solutions primarily targeting institutional investors and financial professionals. The website reflects a professional and consistent brand presence with multilingual support and dedicated portals for clients. Technically, the site employs modern JavaScript libraries, cookie consent management via Cookiebot, and analytics tools including Google Analytics and Microsoft Application Insights, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and anti-CSRF cookies, though explicit security policies and incident response contacts are not published. The absence of WHOIS data limits domain trust analysis but the website content and contact information support legitimacy. Overall, the site is well-structured, compliant with GDPR, and provides a good user experience.

U

Union Investment Luxembourg S.A.

union-investment.lu

0

Union Investment Luxembourg S.A. is a well-established asset management company operating as a wholly owned subsidiary of the Union Asset Management Holding AG, a major German investment group. The company manages a large portfolio of funds and serves a professional investor audience. The website demonstrates a mature digital presence with modern web technologies, consent management, and analytics integration. However, the absence of WHOIS data limits domain trust verification. Security posture is strong with HTTPS and consent mechanisms, but lacks explicit security policies and incident response information. Overall, the site is professional and trustworthy but could improve transparency and contact accessibility.

The European Fund for Southeast Europe (EFSE) is a well-established impact investment fund focused on providing tailored debt financing solutions to micro, small, and medium-sized enterprises (MSMEs) in Southeast Europe and the Caucasus. Founded in 2005, EFSE operates as a public-private partnership, aiming to foster inclusive and sustainable economic growth by partnering with local financial institutions. The fund offers a variety of financial products including local currency loans and specialized financing for underserved sectors such as agriculture. Technically, the website is built using modern web technologies including React and Next.js, hosted on Mittwald infrastructure. It incorporates advanced monitoring and analytics tools such as Sentry and Matomo, and employs Cookiebot for GDPR-compliant cookie consent. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS, implements multiple security headers, and avoids exposing sensitive data. However, it lacks explicit privacy policy and terms of service pages, which are important for compliance and user trust. No vulnerability disclosure or incident response information is provided, representing an area for improvement. Overall, EFSE's website demonstrates a high level of professionalism and trustworthiness, with strong business credibility and technical implementation. The absence of some compliance documents and contact details slightly reduces the privacy compliance score but does not significantly impact the overall security posture. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing transparency with contact information, and establishing a vulnerability disclosure program.

K

KLEYR GRASSO

kleyrgrasso.com

0

KLEYR GRASSO is an independent full-service business and litigation law firm based in Luxembourg with over 30 years of experience. The firm targets both international and domestic clients, offering expert legal guidance from project inception to implementation. The website reflects a professional legal services provider with a clear focus on business law and litigation. Technically, the site employs a modern frontend stack including jQuery, Bootstrap, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy and terms of service documentation. Overall, the website is accessible, professionally designed, and trustworthy, though it would benefit from enhanced privacy compliance and security best practices.

The website 'Aboutbags' serves as a brand selection portal for various luggage and bag brands under the Samsonite IP Holdings umbrella. It provides users with a simple interface to choose among brands such as Tumi, Samsonite, American Tourister, and others, likely targeting consumers interested in travel goods. The site is branded consistently with official logos and a copyright notice referencing Samsonite IP Holdings S.à r.l., indicating a legitimate business association. From a technical perspective, the site uses jQuery and jQuery Modal libraries loaded from an external domain, with basic mobile responsiveness and moderate performance. The HTML structure is valid but minimal, lacking advanced SEO or accessibility features. No CMS or hosting provider information is discernible from the content provided. Security posture is moderate; the site does not expose sensitive data or contain forms collecting personal information, but lacks visible security headers and privacy-related policies. There is no evidence of HTTPS enforcement or SSL configuration details in the provided data. No analytics or tracking scripts are present, indicating minimal user tracking. Overall, the website is safe and appropriate for a general audience, with no adult or questionable content detected. However, the absence of privacy, cookie, and terms of service policies, as well as contact information, limits its compliance and user trust. The domain registration aligns well with the business entity, supporting legitimacy. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance the site's trustworthiness and security posture.

S

Samsonite

samsonite.lu

0

Samsonite Luxembourg operates an official e-commerce website offering a wide range of luggage, backpacks, and travel accessories tailored for the Luxembourg market and French-speaking customers. The site features comprehensive product categories, personalization services, and customer support options, positioning itself as a key player in the retail luggage sector. The website leverages Salesforce Commerce Cloud as its CMS platform and integrates multiple modern analytics and marketing technologies, including Google Tag Manager, Hotjar, and WonderPush, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a professional, trustworthy, and user-friendly experience with high content quality and branding consistency.

Camprilux operates as the official portal for the Camping Site Owners Association in Luxembourg, providing comprehensive information and booking options for campsites throughout the country. The website targets nature enthusiasts and tourists seeking camping accommodations, offering categorized listings by region, facilities, and special labels such as EcoLabel and Eurewelcome. Technically, the site is built on TYPO3 CMS, employs modern consent management via Usercentrics, and integrates Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and provides a good user experience. Security posture is solid with HTTPS and cookie consent, though explicit security headers and privacy policy documentation are lacking. WHOIS data is unavailable due to malformed query results, limiting domain trust analysis. Overall, the site is professional and trustworthy from a content and business perspective but would benefit from improved transparency and security documentation.

G

Gcore

gcore.com

0

Gcore is a well-established technology company founded in 2003, specializing in global hosting, content delivery network (CDN), edge computing, and cloud services. The company targets businesses seeking to expand their digital presence globally by leveraging high-performance infrastructure solutions. Their market position is that of a global provider with a strong network and multiple service offerings, supported by a large-scale operational footprint and a consistent brand presence. Technically, the website is built using modern web technologies including Angular and static site generation with Scully, ensuring good performance and mobile optimization. The site employs Google Tag Manager for analytics and tracking, and uses HTTPS to secure communications. However, some security best practices such as security headers and explicit privacy and cookie policies are missing, which could be improved to enhance compliance and user trust. From a security perspective, the site shows a good baseline with HTTPS and no exposed sensitive data, but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The domain registration data is consistent and supports the legitimacy of the business, with no privacy protection masking ownership and a domain age of over 20 years. Overall, the website is professional and trustworthy, but would benefit from enhanced privacy compliance and security transparency to improve user confidence and regulatory adherence.

A

Amber Beverage Group

amberbev.com

0

Amber Beverage Group is a well-established global spirits company with a diverse portfolio of alcoholic beverage brands including vodka, tequila, whiskey, and gin. The company operates internationally with a significant presence in the Baltic States, Europe, Australia, and North America, employing over 1,600 people. Their business model encompasses production, bottling, marketing, distribution, export, and retail of both owned and third-party beverage brands. The website reflects a professional and consistent brand image with clear product and corporate information, targeting adult consumers and business partners worldwide. Technically, the site is built on WordPress using modern plugins and frameworks, with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and includes an age verification gate, but lacks visible advanced security headers and published security policies. Overall, the domain registration data supports the legitimacy and trustworthiness of the business.

A

AutoScout24

autoscout24.lu

0

AutoScout24 is a leading European online marketplace specializing in the sale and purchase of new and used vehicles, including cars, motorcycles, caravans, and commercial vehicles. The platform serves a broad audience in Luxembourg and across Europe, connecting private sellers and professional dealers with buyers through a comprehensive and user-friendly website. The business model focuses on providing extensive vehicle listings, automotive advice, and additional services such as financing and insurance, positioning AutoScout24 as a dominant player in the transportation sector. Technically, the website employs modern web technologies including React, service workers, and integrates multiple tracking and advertising tools while maintaining GDPR compliance through a consent management platform. Security posture is strong with HTTPS enforcement and bot protection mechanisms, although explicit security policies and incident response information are not publicly available. Overall, the website demonstrates high professionalism, excellent content quality, and good privacy compliance, but the absence of WHOIS data and direct company contact details slightly reduce the business credibility score.

I

ION Network Solutions s.à r.l.

ion.lu

0

ION Network Solutions s.à r.l. is an established IT services company based in Luxembourg with over 20 years of experience and a medium-sized team of more than 20 collaborators. The company targets both professional and individual clients, offering IT solutions including custom software development. Their market position is solid within the Luxembourg IT sector, supported by a professional website showcasing client logos and social media presence. Technically, the website uses modern JavaScript libraries such as Dojo Toolkit, Bootstrap, jQuery, and Glide.js, along with Google Maps API integration. The hosting appears to be managed via mbox.lu, a Luxembourg-based provider. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and vulnerability disclosure information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional, well-branded, and trustworthy but could improve in privacy and security transparency.

The website www.unplanpourtonavenir.lu serves as an informational platform for the Ordre des Architectes et des Ingénieurs-conseils (OAI) in Luxembourg, focusing on educating and informing students and professionals about the engineering consultancy profession. It provides resources on educational paths, construction projects, and job opportunities, positioning itself as a professional association resource. Technically, the site uses basic HTML, CSS, and older JavaScript libraries such as jQuery 1.7.1 and the jQuery Cycle plugin, indicating a somewhat dated technology stack. The site lacks modern CMS or frameworks and shows basic mobile and accessibility features. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable due to a malformed domain name error, limiting domain trust verification. Overall, the site is functional but requires modernization and improved security and privacy compliance to enhance trust and user experience.

L

LAIX (Luxembourg Architectes Ingénieurs-conseils eXport)

laix.lu

0

LAIX is a professional platform dedicated to showcasing architectural, engineering, and urbanism projects by Luxembourg architects and consulting engineers, primarily members of the Ordre des Architectes et Ingénieurs Conseils (OAI). The website serves as a promotional and informational hub for these professionals, highlighting their projects both within Luxembourg and internationally. The platform targets industry professionals, potential clients, and partners interested in Luxembourgish architectural and engineering expertise. Technically, the website is built on Drupal 8 CMS, incorporating modern web technologies such as JavaScript, CSS, and external services like Google Analytics and AddToAny for social sharing. The site is mobile-optimized and accessible, with a moderate performance profile. However, some SEO and privacy compliance aspects could be improved. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but lacks visible security headers and formal security or incident response policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a generally secure posture but with room for enhancement in security best practices and compliance documentation. Overall, the website is professional and trustworthy, with comprehensive project content and clear contact information. The absence of privacy and cookie policies, as well as security policies, represents compliance gaps that should be addressed to improve user trust and regulatory adherence.

O

OAI/Ordre des Architectes et des Ingénieurs-Conseils du Grand-Duché de Luxembourg

architectour.lu

0

Architectour.lu is a professionally maintained website serving as a comprehensive guide to contemporary architecture, engineering, and urbanism in Luxembourg. It is affiliated with the official Order of Architects and Engineers (OAI) of Luxembourg, providing curated tours, project showcases, and editorial content aimed at professionals and the general public interested in architectural innovation and sustainable construction. The platform is well-positioned as a leading architectural reference in Luxembourg with a clear focus on promoting local architectural achievements and education. Technically, the website is built on Drupal 8 CMS, leveraging modern JavaScript libraries and Google Analytics for user tracking with IP anonymization. The site is mobile optimized, accessible, and features good SEO practices. However, it lacks some advanced security headers and explicit privacy and cookie policies, which are important for compliance and user trust. From a security perspective, the site uses HTTPS and anonymizes user IPs in analytics, but does not provide visible security policies, incident response contacts, or vulnerability disclosure mechanisms. No WAF or blocking mechanisms are detected, and the site content is fully accessible. The WHOIS data aligns well with the website's business claims, indicating legitimacy and consistency. Overall, the website is a credible and valuable resource for its target audience but would benefit from enhanced privacy compliance and security posture improvements to align with best practices and regulatory requirements.

G

GuideRefOAI

guideoai.lu

0

GuideRefOAI is a professional directory and resource platform affiliated with the Ordre des Architectes et Ingénieurs Conseils (OAI) in Luxembourg. It provides a comprehensive guide and references for architects, consulting engineers, interior architects, urban designers, and landscape architects, facilitating connections between clients and trusted design professionals. The website offers downloadable guides and archives, targeting professionals and clients in the architecture and engineering sectors within Luxembourg. Technically, the site is built on Drupal 8, incorporates Google Analytics for user tracking, and uses AddToAny for social sharing. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and anonymizes IP addresses in analytics but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits full domain legitimacy verification, but the site content and branding strongly indicate a legitimate professional organization. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced privacy compliance and security practices.

O

Ordre des Architectes et des Ingénieurs-Conseils (OAI)

bhp.lu

0

The website bhp.lu represents the Bauhärepräis OAI, an architecture and engineering award program managed by the Ordre des Architectes et des Ingénieurs-Conseils (OAI) in Luxembourg. It serves as a platform to showcase award winners, nominees, and related cultural exhibitions, targeting architects, engineers, project owners, and the general public interested in architectural quality and urban development in Luxembourg. The site is professionally designed with consistent branding and good content relevance, reflecting a small but important government-related entity promoting architectural excellence. Technically, the website is built on Drupal 8 CMS, utilizing standard web analytics (Google Analytics) and social sharing tools (AddToAny). The site is mobile optimized and accessible, with moderate performance. However, there is room for improvement in security practices, such as implementing security headers and providing explicit privacy and cookie policies. No contact emails or phone numbers are explicitly provided, which limits direct communication channels. From a security perspective, the site uses HTTPS and anonymizes IP addresses in analytics, but lacks visible security headers and incident response information. No vulnerabilities or suspicious patterns were detected in the WHOIS data, which aligns well with the website's Luxembourg-based professional focus. Overall, the site is trustworthy but could enhance compliance and security posture. Strategic recommendations include adding comprehensive privacy and cookie policies with consent mechanisms, improving security headers, publishing contact information for security incidents, and maintaining up-to-date CMS and modules to mitigate vulnerabilities.

I

ION Network Solutions s.à r.l.

mbox.lu

0

The website mbox.lu represents ION Network Solutions s.à r.l., a Luxembourg-based technology company specializing in managed cloud services including hosting, email, backup, and virtual servers. The business has been operating since 2002 with a structured cloud platform launched in 2011. The site presents a professional and consistent brand image targeting businesses seeking reliable cloud infrastructure solutions. Technically, the site uses modern frameworks such as Bootstrap and Dojo Toolkit, with integration of Google Fonts and Maps API, indicating a moderate level of digital maturity. However, the absence of CMS or hosting provider details limits deeper infrastructure insights. Security posture is moderate; no HTTPS or security headers details were found in the provided data, and no forms are present to collect user data, reducing attack surface. The lack of privacy, cookie, and terms of service policies indicates compliance gaps. WHOIS data could not be retrieved due to query rate limiting, which reduces trust in domain legitimacy. Overall, the site is safe, professional, and business-focused but would benefit from enhanced security and compliance transparency.

V

Vegan Society Luxembourg A.S.B.L.

vegansociety.lu

0

Vegan Society Luxembourg is a small non-profit organization dedicated to promoting veganism in Luxembourg and Europe through education, events, and community engagement. Their website offers membership options, donation capabilities, and resources to support their mission. The organization maintains an active social media presence and provides clear contact information, enhancing their community outreach and trustworthiness. Technically, the website is built on WordPress using popular plugins such as WooCommerce and Elementor, delivering a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and visible incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

A

Association des Agences Marketing et Communication | MarkCom

markcom.lu

0

MarkCom is a well-established non-profit association representing 29 leading marketing and communication agencies in Luxembourg since 1995. The organization promotes excellence, best practices, training, and advocacy for agencies and advertisers. The website is professionally designed, mobile-optimized, and rich in relevant content including events, tools, and news updates. Technically, the site is built on WordPress with modern plugins and performance optimizations, hosted via EuroDNS. Security posture is strong with HTTPS, security headers, and consent management, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the domain registration and hosting details align with the business profile, indicating legitimacy and trustworthiness.

L

LUGA

luga.lu

0

LUGA is a cultural event organizer hosting an ephemeral urban garden exhibition in Luxembourg from May to October 2025. The website serves as an information and engagement platform for visitors, volunteers, and partners, showcasing event details, locations, and news. The site is well designed, multilingual, and optimized for SEO and accessibility, reflecting a mature digital presence. Technically, it leverages WordPress CMS, Cloudflare for DNS and CDN, and integrates modern analytics and consent management tools, indicating a good level of digital maturity. Security posture is solid with HTTPS, security headers, and cookie consent, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

O

Ordre des Architectes et des Ingénieurs-Conseils

oai.lu

0

The Ordre des Architectes et des Ingénieurs-Conseils (OAI) is a professional association representing architects, consulting engineers, urban planners, interior architects, and landscape architects in Luxembourg. Established by law in 1989, it serves as a regulatory and support body for these professions, offering services such as training, publications, member directories, and event organization. The website is well-structured, professionally designed, and targets both professionals and clients in the architecture and engineering sectors. It maintains a strong presence on multiple social media platforms, enhancing its outreach and engagement. Technically, the website employs modern web technologies including the Dojo Toolkit, Bootstrap, and advanced search integrations with Typesense and InstantSearch.js. It uses HTTPS with good SSL configuration, though it lacks some security headers that could enhance protection. The site is mobile-optimized and provides a moderate level of performance and accessibility. Analytics are implemented via Piwik/Matomo, indicating a moderate level of user tracking. From a security and compliance perspective, the site does not display explicit privacy or cookie consent mechanisms, which may impact GDPR compliance. No contact information for incident response or data protection officers is evident. The WHOIS data is unavailable due to malformed queries or registry restrictions, which slightly reduces trustworthiness but does not negate the professional presentation and content quality. Overall, the OAI website is a credible and professional platform serving its niche audience effectively. Strategic improvements in privacy compliance, security headers, and transparency of contact information would enhance its security posture and regulatory adherence.

F

Fondation Sommer

fondation-sommer.lu

0

Fondation Sommer is a Luxembourg-based non-profit organization dedicated to supporting educational, cultural, and intercultural projects. The foundation operates primarily through grant funding and project support, targeting non-profit organizations and educational institutions within Luxembourg and its vicinity. The website is professionally designed using WordPress with Bootstrap and Font Awesome, supporting multilingual content via WPML. The technical infrastructure is modern and includes performance optimizations such as WP Rocket. Security posture is adequate with HTTPS enforced and some security best practices observed, though explicit security headers and incident response information are lacking. Privacy and cookie policies are not found, indicating a gap in compliance with GDPR requirements. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security disclosures.

C

cropmark.

cropmark.com

0

Cropmark is a well-established full-service creative studio operating primarily in Luxembourg and Brussels, offering a broad range of branding, corporate design, editorial design, web design, development, SEO, and strategic communication services. The company targets businesses and organizations seeking professional creative solutions, leveraging over 20 years of industry experience. The website reflects a professional and consistent brand image with rich content and clear navigation, supporting its market position as a trusted creative agency in its region. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates analytics tools such as Google Analytics and Matomo. It uses HTTPS for secure communications and content delivery networks for optimized image serving. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured data. However, there is no detected CMS or hosting provider information. From a security perspective, the site benefits from HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. The absence of WHOIS registration data for the domain is a notable concern, although the website content and contact information support legitimacy. Overall, Cropmark's website is professional and trustworthy, but improvements in privacy compliance and domain registration transparency are recommended to enhance security posture and regulatory adherence.

Luxembourg for Finance is a government-related agency focused on the development and promotion of Luxembourg's financial services industry. Established in 2008, it serves as a key player in identifying new business opportunities and supporting the financial sector's growth. The website reflects a professional and consistent brand image, targeting financial industry stakeholders and investors interested in Luxembourg's market. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates analytics tools including Google Analytics and Piwik PRO. It employs Google Tag Manager and reCAPTCHA for enhanced tracking and security. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features could be improved. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms to comply with GDPR. However, it lacks visible security headers and explicit security or incident response policies on the site. The absence of WHOIS domain registration data raises concerns about domain transparency and legitimacy, although the professional content and social media presence mitigate some risk. Overall, the website presents a moderate risk profile with good content quality and technical implementation but requires improvements in privacy transparency, contact information availability, and domain registration clarity. Strategic recommendations include publishing comprehensive privacy and terms of service policies, enhancing security headers, and verifying domain registration details to strengthen trust and compliance.

K

Kultur | lx – Arts Council Luxembourg

kulturlx.lu

0

Kultur | lx – Arts Council Luxembourg is a governmental cultural promotion organization dedicated to supporting artists and promoting Luxembourg's cultural creation. The website serves as a comprehensive platform for cultural news, events, funding opportunities, and resources, targeting artists, cultural professionals, and the general public interested in Luxembourg's arts scene. The organization holds a strong national position as the official arts council, supported by government partnerships and a clear mission to foster cultural development. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates Google services like Tag Manager and reCAPTCHA. Accessibility features and GDPR-compliant cookie management via Axeptio demonstrate digital maturity and compliance. The site is mobile-optimized and well-structured, providing a positive user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though the absence of explicit security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data limits domain trust verification, but the professional presentation and official branding mitigate concerns. Overall, the website is a trustworthy, well-maintained digital presence for a government cultural entity, with recommendations to enhance security headers and incident response transparency to further strengthen its security posture.

R

Research Luxembourg

researchluxembourg.org

0

Research Luxembourg is a collaborative initiative representing major public research institutions in Luxembourg, supported by the Ministry of Higher Education and Research. The website serves as a portal for research news, career opportunities, and industry collaborations, positioning itself as a key national research platform. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, delivering a professional and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and incident response information could be improved. Overall, the domain and website present a trustworthy and credible presence aligned with public research objectives.

L

Luxinnovation

luxinnovation.lu

0

Luxinnovation is Luxembourg's national innovation agency dedicated to empowering companies to innovate and fostering a sustainable and digital economy. The website reflects a mature digital presence with comprehensive content targeting startups, businesses, and research organizations. The technical infrastructure leverages modern web technologies, including Tailwind CSS, Alpine.js, Kentico CMS, and integrates multiple analytics and marketing tools such as Matomo, Google Tag Manager, Facebook Pixel, and LinkedIn Insight. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with cookie consent implemented but lacking a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

F

Fondation Restena

my.lu

0

The website my.lu/fr is the official platform managed by Fondation Restena for registering and managing .lu domain names. It offers two modes of domain management: classical paper forms and a modern online platform launched in June 2023. The site targets individuals and organizations in Luxembourg seeking .lu domain services. The business is positioned as the official registrar for .lu domains, providing trusted and secure domain management services. Technically, the site is built on Drupal 10 with modern frontend technologies including lazy loading images and Font Awesome icons. It is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS and secure forms, though explicit security headers and policies are not published. Privacy and cookie policies are not found, indicating room for compliance improvement. WHOIS data confirms the legitimacy of the domain and its management by Fondation Restena. Overall, the site is professional, trustworthy, and safe for general audiences.

L

Home | Luxembourg. Our Common Ground.

luxembourg-ourcommonground.lu

0

The website 'Luxembourg. Our Common Ground.' serves as a cultural and promotional platform highlighting Luxembourg's diversity, multilingualism, and inclusive society. It targets a general audience interested in Luxembourg's heritage, culture, and tourism. The site features rich multimedia content including images, videos, and interactive galleries, supported by modern web technologies such as Typekit fonts, Glide.js carousels, and lazy loading for performance optimization. Cookie consent is managed via CookieYes, indicating some level of privacy compliance. However, the absence of explicit privacy policy, terms of service, and contact information limits transparency and user trust. The WHOIS data is unavailable due to a malformed domain query, which reduces confidence in domain legitimacy but does not necessarily indicate malicious intent. Overall, the site is professionally designed and well-branded, with strong cultural and tourism messaging.

C

CFL multimodal

cfl-mm.lu

0

CFL multimodal is a Luxembourg-based logistics and transportation company specializing in rail freight, multimodal hubs, and comprehensive logistics services. It operates as part of the CFL Group, providing sustainable and efficient freight solutions across Europe. The website reflects a professional and well-structured digital presence with clear service offerings and a focus on environmental responsibility. Technically, the site uses modern web technologies including jQuery, Bootstrap, FontAwesome, and integrates analytics tools such as Google Tag Manager and Matomo. The security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and policies are not evident. The absence of WHOIS data limits domain trust assessment, but the overall business credibility is supported by consistent branding and social media presence. Privacy compliance is well addressed with GDPR-aligned policies and cookie management.

L

Luxembourg - Let's Make It Happen (LMIH)

lmih.lu

0

Luxembourg - Let's Make It Happen (LMIH) is an official government-backed platform designed to inspire and connect actors involved in promoting Luxembourg internationally. The website offers a rich selection of multimedia tools, branding guidelines, and partnership opportunities to support the promotion of Luxembourg's values and talents. It targets both national and international audiences including ministries, public administrations, businesses, and associations. The platform is positioned as a central resource for Luxembourg's national branding efforts, leveraging modern web technologies and a multilingual approach to maximize reach and engagement. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including Yoast SEO, jQuery, Select2, Swiper.js, and Matomo analytics for privacy-conscious tracking. It employs HTTPS with good SSL configuration and integrates Google reCAPTCHA v2 for form security. Accessibility features and SEO optimizations are well implemented, contributing to a positive user experience across devices. However, explicit privacy and cookie policy pages are not detected in the provided content, which is a compliance gap. From a security perspective, the site follows best practices such as HTTPS enforcement and CAPTCHA protection on forms. The use of Matomo analytics and Axeptio cookie consent indicates a privacy-aware approach. Nonetheless, the absence of security headers and vulnerability disclosure policies suggests room for improvement in security posture. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website presents a professional, trustworthy, and well-structured platform aligned with its government branding mission. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure mechanism to enhance compliance and security maturity.

H

heap studio

heap.lu

0

Heap studio is a small creative digital agency based in Luxembourg specializing in web development, design, branding, and consulting services. The company positions itself as a success-oriented studio focused on delivering purposeful and targeted results for clients, primarily businesses and organizations seeking digital creative solutions. Their portfolio showcases a variety of projects emphasizing brand identity, UX/UI design, and front-end and back-end development. Technically, the website is built on WordPress with modern tools such as Yoast SEO and GSAP animations, hosted by Infomaniak, a reputable provider. The site demonstrates good mobile optimization, SEO practices, and a professional design, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but could improve in compliance and security transparency.

The Luxembourg House of Cybersecurity (LHC) website represents a government-backed initiative focused on cybersecurity coordination and awareness within Luxembourg. The site primarily serves as an informational landing page announcing the transformation of SECURITYMADEIN.LU into LHC, targeting government entities and cybersecurity stakeholders. The business model is centered on providing a national cybersecurity hub and fostering community engagement in cybersecurity matters. Technically, the website is built using the Hugo static site generator, with basic CSS and JavaScript. The site is simple and moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No analytics or tracking technologies are detected, indicating a minimal digital footprint. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which are important for compliance and user trust. The absence of WHOIS data limits the ability to verify domain registration legitimacy, although the presence of official government links supports authenticity. No forms or user input fields reduce attack surface but also limit user engagement. Overall, the website is safe and professional but basic in content and technical sophistication. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance posture.

Youth.lu is an official youth service platform operated under Luxembourg's national youth service. It provides informational resources including directories of youth organizations, chalet information, and funding opportunities for youth projects. The website targets youth and youth organizations within Luxembourg, positioning itself as a government-affiliated non-profit service platform. Technically, the site is built on Drupal 8 with common web technologies such as jQuery and Bootstrap, and uses Piwik for analytics. The site is moderately optimized for mobile and basic in accessibility and SEO. Security posture is average with no detected security headers and no visible vulnerabilities, but lacks privacy and cookie policies, which impacts GDPR compliance. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe for general audiences and does not contain adult or explicit content.

V

Volontaires.lu

volontaires.lu

0

Volontaires.lu is a Luxembourg-based volunteer service platform aimed at engaging youth in meaningful volunteer projects both locally and internationally. The website serves as an informational hub providing access to volunteer programs, mission listings, and training opportunities. It appears to be affiliated with government or official entities, supported by the presence of government logos and social media channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and uses Google Tag Manager and Matomo for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data is unavailable due to a malformed query, which slightly reduces trustworthiness but does not negate the legitimacy suggested by the content and branding. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

S

Service national de la jeunesse

animateur.lu

0

Animateur.lu is an official government portal operated by the Service national de la jeunesse in Luxembourg, targeting current and prospective youth animators. The site provides comprehensive resources including training, certifications, event listings, and material lending to support youth animation activities. It holds a strong market position as a trusted government resource with consistent branding and clear navigation. Technically, the website is built on WordPress with a modern stack including WooCommerce for e-commerce capabilities, Contact Form 7 for forms, and Complianz for GDPR compliance. The site uses Matomo analytics hosted on its own server, enhancing privacy compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers could be improved. Overall, the website is professional, accessible, and trustworthy, serving its audience effectively.

O

On Stéitsch

onsteitsch.lu

0

On Stéitsch is an annual cultural and art festival organized by the Luxembourg National Youth Service, targeting young people under 30 years old. The website serves as an official platform to promote the event, providing information about dates, participation, and past editions. It is positioned as a government-affiliated event with a focus on youth culture and arts. The site uses WordPress CMS with plugins such as Yoast SEO and Ninja Forms, indicating a moderate level of digital maturity and standard web infrastructure. The technical setup includes modern JavaScript libraries and responsive design elements, ensuring good user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a trustworthy and professional government event site with good compliance to privacy regulations. The lack of WHOIS data limits domain registration insights, but the site’s content and branding strongly support its legitimacy.

B

Base1

base1.lu

0

Base1 is a youth-focused makerspace and creativity hub based in Luxembourg, offering open access to a makerspace, workshops, and events for young people aged 8 to 30. The organization supports a wide range of creative projects including drone building, coding, video production, and more, fostering innovation and learning in a community environment. The website is multilingual, primarily in French, and integrates modern web technologies with WordPress CMS and various plugins for multilingual support, forms, and cookie management. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks published privacy and security policies. The domain registration aligns well with the organization's Luxembourg location and youth focus, indicating legitimacy. Overall, the site is professional, user-friendly, and trustworthy, though improvements in privacy compliance and security transparency are recommended.

IN:CUBATOR is a small non-profit organization based in Luxembourg that supports youth initiatives and non-profit organizations by providing a comprehensive support package including coworking spaces, guidance, workshops, networking, and financial assistance. The website is built on WordPress using Elementor and presents a professional and consistent brand image targeted at young people up to 29 years old and youth sector organizations. Technically, the site uses modern web technologies but lacks some advanced security headers and privacy compliance features. The absence of WHOIS data limits domain trust analysis, but the presence of clear contact information and relevant content supports its legitimacy. Security posture is moderate with HTTPS enabled but missing some best practices. Privacy and cookie policies are not found, indicating compliance gaps.

N

Nuit du Sport

nuitdusport.lu

0

Nuit du Sport is a government-backed initiative in Luxembourg aimed at promoting sports activities among youth and the general population by organizing annual sports events across various communes. The website serves as an informational and promotional platform, providing program details, partner information, and news updates. It is supported by official government bodies such as the Service National de la Jeunesse and the Ministère des Sports, indicating a strong institutional backing. Technically, the website employs modern web technologies including jQuery, lazy loading for images, and tracking via Matomo analytics. The site is mobile-optimized and accessible, with good SEO practices and a consistent branding strategy. No CMS or hosting provider details are explicitly identified from the content. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected, and there is no public security or incident response policy. Privacy compliance is indicated by the presence of a legal aspects page covering privacy and cookie policies, with GDPR compliance implied. Overall, the website presents a low-risk profile with a solid business credibility due to government affiliation, though the lack of WHOIS data and explicit security policies slightly reduce trust scores. Strategic improvements could focus on enhancing security headers, publishing incident response contacts, and providing clearer contact information.

B

BEE SECURE

bee-secure.lu

0

BEE SECURE is a government-backed digital safety awareness platform based in Luxembourg, focused on educating children, youth, parents, and educators about responsible and safe use of digital technologies. The platform offers a variety of services including awareness campaigns, a helpline, a stopline for reporting illegal content, educational resources, and youth consultations. It is co-financed by the European Union and operated in partnership with national agencies such as the police and justice departments. The website is professionally designed, content-rich, and well-structured primarily in French, targeting a broad audience concerned with digital safety. Technically, the website is built on WordPress, utilizing modern web technologies such as jQuery and FontAwesome, and employs Matomo analytics hosted locally in Luxembourg to ensure privacy compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although there is room for improvement in publishing explicit security policies and incident response information. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. The use of Matomo analytics with local hosting aligns with GDPR compliance. However, the absence of WHOIS data due to a malformed query reduces domain transparency and trust from a registration standpoint. Overall, the platform appears legitimate and trustworthy based on content and government affiliations. Strategically, BEE SECURE should focus on enhancing domain registration transparency, publishing security and incident response policies, and maintaining rigorous audits of third-party scripts to sustain and improve its security posture and user trust.

Maison Eisenborn is a government-affiliated non-profit organization providing accommodation and support services to young adults involved in international mobility programs in Luxembourg. The website is professionally designed using WordPress and integrates standard technologies such as jQuery, Ninja Forms, and Google Maps API. The site includes a comprehensive application form collecting detailed personal and financial information, indicating a structured approach to service delivery. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit privacy policies are recommended. Overall, the domain registration and website content are consistent and trustworthy, reflecting a legitimate government service.

S

S-Team

s-team.lu

0

S-Team is a government-backed non-profit initiative based in Luxembourg focused on preventing violence among youth in schools and educational institutions. The project engages young people to lead prevention activities and peer mediation, supported by national youth services and partner organizations. The website is well-structured, professionally designed, and provides clear information about the project, partners, and contact details. Technically, it is built on WordPress with modern libraries and frameworks, including Bootstrap and jQuery, and integrates Google reCAPTCHA and Matomo analytics with GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, limiting domain legitimacy assessment, but the presence of government logos and partner sites supports trustworthiness. Overall, the site is a credible, safe, and well-maintained platform for its intended audience.

J

Jugendpräis

jugendprais.lu

0

Jugendpräis is a government-organized platform in Luxembourg dedicated to recognizing and promoting youth projects. Managed by the Service national de la jeunesse, it serves as a biennial award event highlighting diverse youth initiatives. The website targets youth groups and organizations, providing visibility and recognition through awards and public engagement. The platform enjoys strong partnerships with governmental and European entities, as well as media support from RTL Luxembourg. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO for search optimization and Complianz for GDPR cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. The infrastructure is secure with HTTPS enforced, though security headers could be enhanced. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and an opt-in consent mechanism. However, explicit security policies and incident response contacts are not present, which could be improved to enhance trust and readiness. Overall, Jugendpräis presents a professional, trustworthy, and well-maintained digital presence aligned with its governmental and non-profit mission. Strategic improvements in security headers and incident response transparency would further strengthen its security posture and stakeholder confidence.

S

Service national de la jeunesse

colonies.lu

0

The website colonies.lu is an official government-operated portal managed by the Service national de la jeunesse in Luxembourg. It serves as a centralized platform aggregating a wide variety of leisure activities such as weekends, camps, and colonies organized by multiple partner organizations. The portal targets children and youth in Luxembourg, providing event listings, registration capabilities, and practical information. The site is well-branded with consistent government logos and clear navigation, reflecting a professional and trustworthy presence. Technically, the site is built on WordPress 6.8.1 with modern plugins including Yoast SEO and Complianz GDPR for privacy compliance. It uses Bootstrap for responsive design and integrates Google Maps for location services. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Analytics are handled via Matomo with anonymized statistics, respecting user privacy. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism with opt-in for non-essential cookies. However, it lacks explicit HTTP security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The domain registration data aligns well with the website’s government affiliation and Luxembourg location, indicating high legitimacy. Overall, colonies.lu is a well-maintained, secure, and privacy-conscious government portal providing valuable services to youth in Luxembourg. Strategic improvements include adding security headers, publishing a security policy, and providing incident response contact information to enhance trust and compliance.