Security Directory

S

Sociedade Portuguesa de Esclerose Múltipla

spem.pt

0

The Sociedade Portuguesa de Esclerose Múltipla (SPEM) is a Portuguese non-profit organization dedicated to supporting individuals affected by Multiple Sclerosis. The website serves as an official platform providing comprehensive information, resources, and community engagement opportunities related to the disease. SPEM positions itself as a trusted authority in the healthcare non-profit sector in Portugal, offering educational materials, advocacy, and support services. The site targets patients, families, healthcare professionals, and volunteers, fostering inclusion and awareness. Technically, the website is built on WordPress with modern plugins and technologies such as WPBakery Page Builder, Google reCAPTCHA, and lazy loading for performance optimization. The site demonstrates good mobile responsiveness, SEO optimization, and accessibility features, although some areas could be enhanced. Security measures include HTTPS enforcement, security headers, and cookie consent mechanisms, reflecting a mature security posture for a non-profit entity. No critical vulnerabilities or security issues were detected. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. Contact information is transparent and accessible, enhancing business credibility. The WHOIS data confirms domain registration consistency with the organization's identity, supporting legitimacy. Overall, SPEM's website is a well-maintained, secure, and user-friendly platform that effectively supports its mission. Strategic recommendations include publishing a dedicated security policy, enhancing accessibility, and introducing a vulnerability disclosure program to further strengthen trust and security.

A

Associação Portuguesa dos Enfermeiros Obstetras

apeo.pt

0

The Associação Portuguesa dos Enfermeiros Obstetras (APEO) is a Portuguese non-profit association founded in 1997, dedicated to representing midwives and obstetric nurses. The organization provides professional development through congresses, courses, workshops, and publications, including hosting the International Confederation of Midwives Congress in Lisbon in 2026. The website reflects a professional and consistent brand image targeting healthcare professionals and the general public interested in midwifery. Technically, the site is built on WordPress with Elementor and Astra theme, using modern libraries and ensuring HTTPS security. However, it lacks explicit privacy and cookie policies, security headers, and direct contact information, which are areas for improvement. Overall, the site is well-designed, mobile-optimized, and trustworthy, with minimal tracking or advertising.

Instituto Politécnico de Bragança (IPB) is a Portuguese public higher education institution focused on delivering a wide range of academic programs including undergraduate, master's, doctoral, and continuing education courses. The institution also emphasizes research, innovation, and internationalization through programs like Erasmus+ and dual degrees. IPB serves students, academic staff, and international partners, positioning itself as a regional leader in polytechnic education in Portugal. The website reflects this with comprehensive content, clear navigation, and consistent branding. Technically, the website employs modern front-end technologies such as Bootstrap 4.6, jQuery, and Google Fonts, and is built on WordPress CMS. The site is mobile-optimized and offers moderate performance. However, there is room for improvement in accessibility and SEO optimization. The hosting provider is not explicitly identified, but the site uses HTTPS with a good SSL configuration. From a security perspective, the site uses HTTPS and modern libraries but lacks visible security headers and explicit security policies. There is no cookie consent mechanism detected, which is a GDPR compliance gap. No forms collecting personal data were found on the homepage, reducing immediate risk. The WHOIS data aligns well with the institution's identity, indicating high legitimacy. Overall, the security posture is moderate but could be enhanced with better headers, policies, and compliance mechanisms. The overall risk is low given the nature of the institution and the website's content. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and improving accessibility and SEO. These steps will enhance trust, compliance, and security maturity.

C

CMM - Associação Portuguesa de Construção Metálica e Mista

cmm.pt

0

CMM - Associação Portuguesa de Construção Metálica e Mista is a Portuguese non-profit association dedicated to the promotion and technical dissemination in the steel construction sector. It serves a membership base of over 430 members including metalworking companies, design offices, distributors, and educational and research institutions. The association offers training courses, organizes industry events, publishes technical guides, and supports collaborative projects and clusters within the sector. It holds a recognized position in the Portuguese steel construction industry as a key facilitator and knowledge hub. Technically, the website is built on a custom CMS platform utilizing legacy JavaScript libraries such as jQuery 1.5.1 and jQuery UI 1.8.x, along with TinyMCE for content editing and Fancybox for UI elements. The site employs AJAX for dynamic content loading and includes basic SEO and accessibility features. Performance is moderate, with basic mobile optimization and a consistent branding approach. Analytics are implemented via Google Analytics (gtag.js), with a cookie consent mechanism in place. From a security perspective, the site lacks visible modern security headers and uses outdated JavaScript libraries with known vulnerabilities, which could expose it to risks. There is no explicit security policy or incident response information available. HTTPS usage is assumed but not explicitly enforced or detailed in the content. Privacy compliance is addressed with a privacy policy and cookie consent banner, indicating GDPR awareness. Contact information is limited but includes a verified company email and phone number. Overall, the security posture is moderate but could be improved with updates and enhanced policies. The overall risk assessment suggests the site is trustworthy and professional but would benefit from technical modernization and enhanced security practices. Strategic recommendations include upgrading JavaScript libraries, implementing security headers, enforcing HTTPS, and publishing clear security and incident response policies to strengthen trust and compliance.

R

Raja SA

rajapack.pt

0

Raja SA operates the website www.rajapack.pt, a leading European e-commerce platform specializing in packaging products and equipment for businesses in Portugal. The company offers a wide range of packaging solutions, including cardboard boxes, envelopes, tapes, and protective materials, with a focus on fast delivery and customer service. The website is well-branded, professionally designed, and targets B2B customers requiring packaging supplies. Technically, the site leverages modern technologies such as Algolia for search, Dynatrace for performance monitoring, and integrates marketing tools like Google Tag Manager and AB Tasty. Security measures include HTTPS enforcement, secure cookies, and reCAPTCHA on login forms, reflecting a mature security posture. Privacy compliance is robust, with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the site demonstrates a strong digital presence with good performance and user experience.

4

42 | Lisboa

42lisboa.com

0

42 | Lisboa is an educational website offering free coding education based on a peer-to-peer learning methodology. It is part of the global 42 network, targeting individuals seeking to develop coding skills for modern job markets. The website is built on WordPress using Astra theme and Elementor, with integrations for donations and email marketing. The technical infrastructure is modern and supports mobile optimization and SEO best practices. Security posture is good with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent banner, but no clear privacy policy or terms of service pages are found. WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite professional website content.

I

Instituto Português do Mar e da Atmosfera

ipma.pt

0

The Instituto Português do Mar e da Atmosfera (IPMA) is a Portuguese government entity specializing in meteorology, oceanography, climate monitoring, and seismic activity. The website serves as the national authoritative source for weather forecasts, marine conditions, seismic alerts, and climate data, targeting the general public, researchers, and governmental sectors. It provides comprehensive scientific and public service information, including interactive maps and detailed forecasts. The site is well-branded and consistent with its government affiliation, offering a professional and trustworthy user experience. Technically, the website is built on the OpenCms content management system and utilizes JavaScript libraries such as Leaflet for mapping and jQuery for interactivity. It integrates Google Analytics for user tracking but lacks explicit cookie consent mechanisms. The site performs moderately well with basic mobile optimization and accessibility features. However, some technologies like jQuery are outdated, and security headers are not visibly implemented, which could be improved. From a security perspective, the site uses HTTPS and does not expose sensitive data. There are no detected vulnerabilities or WAF challenges, indicating a stable security posture. However, the absence of privacy and cookie policies, as well as incident response information, suggests gaps in compliance and transparency. The WHOIS data confirms the domain's legitimacy as a government entity, reinforcing trust. Overall, the IPMA website is a credible and authoritative source for meteorological and oceanographic information in Portugal, with room for improvement in privacy compliance, security best practices, and modernization of technical components.

R

REN - Redes Energéticas Nacionais

ren.pt

0

REN - Redes Energéticas Nacionais is a leading Portuguese company responsible for the transmission of electricity and natural gas at very high voltages and pressures, managing the national electric and gas systems. The company serves a broad audience including investors, suppliers, and the general public, positioning itself as a key player in Portugal's energy infrastructure sector. The website reflects a mature digital presence with comprehensive information on services, sustainability, innovation, and corporate governance. Technically, the site uses modern web technologies including jQuery, Highcharts, Cookiebot for consent management, and Umbraco CMS, delivering a responsive and accessible user experience. Security posture is strong with HTTPS enforced, anti-CSRF cookies, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust with clear GDPR-aligned policies and consent dialogs. Overall, REN's website demonstrates high professionalism, trustworthiness, and alignment with its business stature.

A

APEG - Associação Portuguesa de Empresas de Gás

apeg.pt

0

APEG - Associação Portuguesa de Empresas de Gás is a non-profit scientific, technical, and professional association representing twenty-six companies in the Portuguese natural gas sector. The website serves as an information hub for industry stakeholders, providing news, events, and resources related to natural gas and renewable gases. The organization holds a solid market position within Portugal's energy sector, focusing on advocacy and sector development. Technically, the website employs AngularJS and jQuery with Google Analytics and Cookiebot for analytics and consent management, reflecting a moderate level of digital maturity. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks visible advanced security headers and uses an outdated jQuery version, which could pose minor risks. Overall, the site is professional, compliant with GDPR, and trustworthy, with room for security enhancements.

W

Winncare

winncare.pt

0

Winncare's website is currently in maintenance mode, displaying a placeholder page with minimal content and no direct business or contact information. The company appears to operate in Portugal with a Spanish site variant, suggesting a regional presence. The website is built on WordPress using a maintenance plugin and includes basic frontend technologies such as jQuery. However, the site lacks visible privacy, cookie, or terms of service policies, and no contact details are provided, limiting user engagement and trust. Technically, the site uses HTTPS URLs and standard WordPress scripts but does not expose advanced security headers or analytics tools. The maintenance mode limits content quality and user experience, resulting in a basic mobile optimization and poor SEO readiness. No signs of tracking or advertising technologies were detected, indicating minimal data collection and user tracking. From a security perspective, the site shows no immediate vulnerabilities but lacks visible security best practices such as security headers and incident response information. The absence of privacy and cookie policies also indicates potential compliance gaps with GDPR and related regulations. The domain's WHOIS data was not provided, restricting detailed legitimacy analysis, but no suspicious indicators were found in the accessible content. Overall, the site currently presents a low-risk profile due to limited exposure but requires significant improvements in content, compliance, and security posture to support business credibility and user trust once fully operational.

T

Talk to Dasha

talktodasha.com

0

Talk to Dasha is a personal brand website representing Dasha Dzisko, a product and brand strategist based in Lisbon. The site highlights her roles as a university lecturer, mentor for designers and teams, and founder of a fashion tech startup called RYSA. The business operates in the technology sector with a focus on consulting, education, and startup development. The website is built using modern technologies such as Framer and React, hosted on Framer's platform, and demonstrates good design and mobile optimization. However, it lacks formal privacy, cookie, and terms of service policies, as well as explicit contact information, which impacts compliance and trust. The absence of WHOIS data for the domain raises questions about domain registration transparency, although the site content appears professional and legitimate.

A

Anticimex Portugal

anticimex.pt

0

Anticimex Portugal is a specialized company providing pest control, hygiene, and food safety services to both residential and commercial clients. The company leverages advanced digital technologies such as the Anticimex Smart system to offer innovative pest control solutions. It holds a strong market position in Portugal, supported by multiple acquisitions and a broad service portfolio including desratization, desbaratization, disinfection, and HACCP compliance services. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the website is built using modern frameworks like Gatsby and React, ensuring fast performance and mobile responsiveness. It integrates Google Tag Manager and CookieHub for analytics and cookie consent management, demonstrating compliance with privacy regulations. Security headers and HTTPS are properly implemented, contributing to a robust security posture. However, the site lacks a dedicated security policy and incident response contact information, which are recommended for enhanced transparency. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by certifications, client testimonials, and consistent branding. Overall, the website is trustworthy, professional, and well-optimized for user experience and SEO. Strategic recommendations include publishing a formal security policy, providing incident response contacts, and considering a vulnerability disclosure program to further strengthen security transparency and trust.

R

Retail Rocket

retailrocket.pt

0

Retail Rocket is a technology company specializing in retention management platforms designed to help businesses increase customer lifetime value and repeat purchases through AI-driven personalization and marketing automation. The company operates globally with a strong presence in multiple regions via localized partner sites. Their platform includes modules such as Data Warehouse, AI Personalization Engine, Campaign Management System, and Customer Intelligence Platform, targeting medium to large enterprises across sectors like e-commerce, banking, insurance, and SaaS. Technically, the website is built on WordPress with modern marketing and analytics integrations including Google Tag Manager and LinkedIn Insight. The site is well-optimized for SEO and mobile devices, featuring professional design and clear navigation. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the security posture is mature with no critical vulnerabilities detected, and privacy compliance is strong with clear policies and consent mechanisms. The domain registration is consistent with the business claims, enhancing trustworthiness. Strategic recommendations include enhancing security headers, publishing explicit security policies, and adding vulnerability disclosure information. This analysis indicates a professional, trustworthy, and technically competent online presence suitable for its B2B audience.

L

Lifull Connect

trovit.pt

0

Trovit Portugal operates as a classified ads search engine specializing in real estate, automobiles, and employment listings. It is part of the Lifull Connect group, which provides global privacy and legal frameworks supporting the site. The platform aggregates listings from multiple portals, offering users a centralized search experience. The website targets Portuguese consumers seeking property, vehicles, or jobs, leveraging advertising as its primary revenue model. Technically, the site employs modern JavaScript frameworks, integrates Google Tag Manager and Didomi for consent management, and maintains good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is strong, with comprehensive policies and consent mechanisms in place. Overall, the site presents a professional, trustworthy, and user-friendly experience with a medium-sized business footprint in the Portuguese market.

D

Das WeltAuto®

dasweltauto.pt

0

Das WeltAuto Portugal operates as a certified used car sales platform under the Volkswagen Group umbrella, targeting customers in Portugal seeking reliable pre-owned Volkswagen vehicles. The website reflects a strong brand presence consistent with Volkswagen's standards, offering vehicle certification and warranty services. The technical infrastructure is modern, leveraging Angular and Material Design components, with good mobile optimization and SEO practices. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

V

Volkswagen Financial Services Portugal

vwfs.pt

0

Volkswagen Financial Services Portugal is a leading automotive financial services provider offering a broad range of products including auto credit, leasing, renting, insurance, maintenance, and fleet management. The company operates under the Volkswagen Group umbrella, serving both private customers and businesses in Portugal with strong brand consistency and comprehensive service offerings. The website reflects a mature digital presence with modern technologies such as Adobe Experience Manager and React, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR and other relevant regulations.

S

SivaOnline

siva.pt

0

The website siva.pt, titled 'SivaOnline', appears to be a small business site based in Portugal. The content is minimal and primarily technical, focusing on cookie consent and analytics integration. The site uses modern technologies such as Google Tag Manager, OneTrust for cookie consent, and D3.js for data visualization. However, there is a lack of explicit business information, contact details, and privacy or terms of service policies, which limits transparency and user trust. The technical infrastructure is moderately modern but lacks visible security headers and comprehensive privacy compliance indicators. Overall, the security posture is average with room for improvement in policy disclosures and security best practices. The domain registration data is consistent with the website's country and business presence, supporting legitimacy. Strategic recommendations include enhancing privacy disclosures, adding contact information, and implementing security headers to improve trust and compliance.

V

Volkswagen Portugal

volkswagen.pt

0

Volkswagen Portugal operates as the official national website for Volkswagen automotive products and services, targeting Portuguese consumers and businesses. The site offers comprehensive information on vehicle models, electric mobility, financing options, and after-sales services, reflecting a strong market position as a leading automotive brand in Portugal. Technically, the website leverages modern frameworks such as Next.js and React, ensuring good performance, mobile optimization, and accessibility. Security posture is robust with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity, supporting Volkswagen's brand reputation in the region.

B

BOSCH

bosch-home.pt

0

Bosch Home Portugal operates a professional e-commerce platform specializing in household appliances including kitchen, laundry, and cleaning products. The website reflects a strong market position as a localized branch of the global Bosch brand, offering product sales, customer support, warranty services, and repair scheduling. The site targets general consumers in Portugal with a comprehensive product catalog and service offerings. Technically, the site uses modern web technologies such as Adobe DTM for analytics, Fredhopper for search suggestions, and a SAP Commerce (Hybris) CMS backend, delivering a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS, CSRF protections, and cookie consent mechanisms, though explicit security policies and vulnerability disclosure information are absent. Overall, the site is trustworthy, professionally designed, and compliant with GDPR, but could improve transparency around security policies and incident response.

C

CUF

cuf.pt

0

CUF is a leading healthcare provider in Portugal, operating numerous hospitals, clinics, and health centers nationwide. The website reflects a mature digital presence with comprehensive service offerings including online appointment booking and teleconsultations. CUF targets the general public and families seeking quality healthcare services. The company holds a strong market position as a trusted healthcare leader in Portugal.

L

Lusa

lusa.pt

0

Lusa.pt is the official website of Lusa, the largest Portuguese language news agency worldwide. The site offers news content, press releases, photo and video galleries, and podcast services targeting Portuguese-speaking audiences. The business model centers on news distribution and media services, positioning Lusa as a key player in the Portuguese media industry. The website is professionally designed with consistent branding and good content quality, catering to a general audience interested in news.

O

OPCR

opcr.pt

0

OPCR (Observatório Português de Compliance e Regulatório) is a Portuguese observatory dedicated to promoting best practices in compliance and regulatory matters within Portugal. The organization operates primarily as a non-profit entity focused on providing information, organizing conferences, and publishing news related to compliance and regulatory frameworks. Their market position is specialized and niche, targeting professionals and organizations interested in regulatory compliance in Portugal. The website is built on a modern WordPress platform using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO and content management capabilities. The presence of Google Analytics and a comprehensive cookie consent mechanism reflects attention to privacy compliance and user tracking transparency. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The website lacks explicit security policies or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the site is professional, well-branded, and trustworthy, serving its target audience effectively with relevant content and events.

S

Schindler Portugal

schindler.pt

0

Schindler Portugal is a leading enterprise in the manufacturing and servicing of elevators, escalators, and moving walkways, operating as part of the global Schindler Group. The company offers a comprehensive range of products and modernization services tailored to residential, commercial, and industrial buildings. Their market position is strong, supported by a well-established brand and extensive service network. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, targeting building owners, architects, and facility managers. Technically, the site leverages Adobe Experience Manager and integrates advanced analytics and consent management tools, indicating a high level of digital maturity. Security posture is robust with HTTPS, CSP, and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR, and provides a safe browsing experience.

I

INTEGRITY S.A.

integritygrc.com

0

IntegrityGRC is a governance, risk, and compliance platform developed by INTEGRITY S.A., a certified information security consulting and auditing company based in Portugal. The company has a strong market position supported by ISO and CREST certifications and serves a diverse client base across multiple industries including banking, healthcare, government, and technology. Their platform offers comprehensive features such as risk management, document management, third-party risk assessment, and compliance self-assessment, targeting organizations seeking structured and robust GRC solutions. The business model combines SaaS offerings with consulting services, positioning the company as a trusted partner in information security and compliance. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google reCAPTCHA, and Google Tag Manager, hosted behind Cloudflare DNS services. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Security measures include HTTPS enforcement, Content Security Policy headers, and GDPR-compliant consent mechanisms. The contact form is secured with reCAPTCHA and includes explicit user consent for data processing. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, improvements such as enabling DNSSEC and adding additional security headers could further enhance security. The absence of an incident response contact or vulnerability disclosure policy is noted as an area for improvement. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and consistent ownership. The overall risk assessment is low, with the company demonstrating a mature security and compliance culture. Strategic recommendations include enhancing DNS security, publishing incident response contacts, and expanding security headers to maintain and improve trust and resilience in the digital environment.

Integrity S.A. operates DSSManager, a PCI-DSS compliance management platform designed to provide continuous and structured services beyond traditional audits. The company targets organizations seeking to maintain PCI-DSS compliance through a combination of a SaaS platform and expert consulting services. The website presents a professional and consistent brand image, emphasizing specialized support, risk assessments, and continuous compliance monitoring. Technically, the site leverages modern frontend frameworks such as Bootstrap and jQuery, integrates Google Analytics and Tag Manager for analytics, and uses Cloudflare for DNS services. The site is mobile-optimized with good performance and basic accessibility features. Security-wise, the website enforces HTTPS, implements a Content-Security-Policy header, and includes GDPR-compliant privacy and cookie consent mechanisms. However, DNSSEC is not enabled, and there is no published security policy or incident response contact information. WHOIS data is transparent and consistent with the company's identity and domain age, supporting legitimacy. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility.

I

Integrity S.A.

keepitsecure24.com

0

Keep IT Secure 24, operated by Integrity S.A. under the Devoteam Cyber Trust brand, is a cybersecurity service provider specializing in continuous penetration testing and vulnerability management. Their unique managed service model offers continuous security testing synchronized with change management processes, differentiating them from traditional annual penetration testing approaches. The company holds multiple prestigious certifications including ISO 27001, CREST, and PCI-DSS QSA, reinforcing their credibility and expertise in the cybersecurity domain. Technically, the website employs modern frameworks such as Bootstrap and integrates essential analytics and security technologies including Google Analytics, Google Tag Manager, and a robust Content Security Policy. The site is well-structured, mobile-optimized, and provides clear navigation, contributing to a positive user experience. Privacy and cookie policies are comprehensive and include a consent mechanism, demonstrating compliance with GDPR and related regulations. From a security perspective, the site shows good practices with HTTPS enforcement and CSP headers, though additional security headers could enhance protection. No vulnerabilities or exposed sensitive data were detected in the content. However, the absence of WHOIS registrant data and lack of explicit incident response or vulnerability disclosure contacts slightly reduce trustworthiness. Overall, the risk posture is strong but could benefit from improved transparency in domain registration and incident handling. Strategically, the company should focus on enhancing domain registration transparency, publishing a vulnerability disclosure policy, and providing more direct contact channels such as phone numbers or dedicated security contacts to further build trust and compliance.

I

Integrity S.A.

integrity.pt

0

Integrity S.A. is a specialized cybersecurity company operating internationally with a strong focus on pentesting, consulting, auditing, training, and managed security services. The company is positioned as a trusted provider with recognized certifications such as ISO 27001, CREST, and PCI QSA, serving a diverse range of sectors including banking, energy, government, and healthcare. Their business model revolves around delivering comprehensive cybersecurity solutions and compliance advisory to organizations worldwide. Technically, the website employs modern frameworks like Bootstrap and jQuery, integrates Google Analytics and reCAPTCHA for security and analytics, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, Content Security Policy, and consent-based cookie management, though some security headers could be enhanced. Overall, the site reflects a mature digital presence with professional branding and clear trust signals. The domain registration aligns well with the business claims, reinforcing legitimacy. No critical vulnerabilities or suspicious content were detected.

D

DUXIANA

duxiana.pt

0

DUXIANA is a premium bedding and furniture company with a heritage dating back to 1926, offering innovative and sustainable sleep solutions primarily targeting consumers seeking high-quality beds and furniture. The website is well-structured, professionally designed, and optimized for mobile, with clear navigation and rich product content. Technically, the site uses modern tracking and monitoring tools such as Google Tag Manager and Azure Application Insights, and is hosted likely on Microsoft Azure with Episerver CMS. Security posture is strong with HTTPS enforced, secure cookie settings, and security headers present, although explicit privacy and security policies are not found in the provided content. Overall, the site is trustworthy and aligns well with the business claims, supported by consistent WHOIS data. Strategic improvements include publishing comprehensive privacy and terms of service pages and providing incident response contacts.

G

Great Place To Work® Institute

greatplacetowork.pt

0

Great Place To Work® Portugal operates as a recognized global authority on workplace culture, providing certification services, employer branding solutions, and rankings of the best workplaces in Portugal and internationally. The company targets organizations seeking to improve and certify their workplace environment, leveraging data-driven insights from employee feedback. Their market position is strong as a leader in workplace culture certification, supported by a professional website with clear service offerings and client engagement portals. Technically, the website is built on Joomla CMS with modern front-end technologies including Bootstrap, jQuery, and Video.js. It integrates Google Tag Manager and Google Analytics for tracking and marketing automation via Marketo. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and accessibility compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR requirements. Contact information is available, though no direct security contact or vulnerability disclosure policy is present. Overall, the website presents a professional and trustworthy digital presence with a solid business model and good technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility would enhance the security posture and user trust further.

J

Jaguar Land Rover Limited

jaguarportugal.pt

0

Jaguar Portugal's website represents the official Portuguese portal for Jaguar Land Rover Limited, a globally recognized premium automotive manufacturer established in 1935. The site offers comprehensive information about Jaguar's vehicle range, including electric and hybrid models, financing options, vehicle servicing, and approved used cars. It targets Portuguese consumers interested in luxury vehicles and related services. The website is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence aligned with Jaguar's global standards. Technically, the site leverages Adobe Experience Manager as its CMS, integrates advanced analytics and marketing tools such as Adobe Target and Google Tag Manager, and employs modern web technologies ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and consent-based tracking mechanisms, although explicit security policy and incident response information are not publicly available. Overall, the domain registration and website content are consistent and trustworthy, with no signs of malicious activity or content safety concerns.

S

Switzerland Cheese Marketing Ibérica, SL

queijosdasuica.pt

0

The website www.queijosdasuica.pt serves as a regional marketing platform for Switzerland Cheese Marketing Ibérica, SL, focusing on promoting authentic Swiss cheeses in the Portuguese market. It provides rich content including cheese varieties, production insights, recipes, and cultural stories, targeting consumers and culinary enthusiasts interested in Swiss cheese. The site is built on TYPO3 CMS and integrates modern technologies such as Usercentrics for consent management and Sentry for error tracking, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident through cookie consent and GDPR-aligned policies. Contact information and social media presence enhance business credibility. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance.

A

ActiveMedia, Digital Designers

activemedia.pt

0

ActiveMedia is a well-established digital agency based in Portugal, specializing in web design, UX/UI, content creation, and digital signage. With over 22 years of experience, the company positions itself as a trusted partner for brands seeking authentic and effective digital solutions. The website reflects a mature digital presence with professional design, clear branding, and comprehensive service offerings tailored to businesses and brands. Technically, the site is built on WordPress with modern integrations such as Weglot for multilingual support, Sendinblue for marketing automation, and Hotjar for user behavior analytics, indicating a good level of digital maturity. Security posture is strong with HTTPS enforced and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, secure, and compliant with privacy regulations, making it a credible digital agency in its market.

F

FCCN, Unidade FCT

fccn.pt

0

FCCN, Unidade FCT is a Portuguese digital services unit under the Fundação para Ciência e Tecnologia (FCT), providing technological infrastructure and services to the scientific and academic community in Portugal. The organization manages the national research and education network (Rede RCTS) and offers key services such as online learning platforms, secure file sharing, and digital content publication. The website reflects a strong market position with strategic partnerships and a clear focus on supporting research and education through technology. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and user experience tools such as Google Analytics, Hotjar, and Cookie Script for compliance and tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are not publicly detailed. Overall, the site is professional, accessible, and trustworthy, serving a specialized audience effectively.

A

Airbnb, Inc.

airbnb.pt

0

Airbnb, Inc. operates a leading global online marketplace for short-term vacation rentals and experiences, connecting travelers with hosts worldwide. The www.airbnb.pt website serves the Portuguese market, offering localized content and services consistent with Airbnb's global brand. The platform supports millions of listings and provides a seamless user experience for booking accommodations and activities. Technically, the site employs modern web technologies including React and advanced performance optimizations, ensuring fast load times and mobile responsiveness. Security measures such as HTTPS, comprehensive security headers, and error monitoring via Bugsnag demonstrate a mature security posture. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting strong regulatory adherence. Overall, the website is professional, trustworthy, and well-aligned with Airbnb's enterprise stature.

b-on is a Portuguese digital knowledge platform operated by the Fundação para a Ciência e a Tecnologia (FCT) and developed by FCCN. It provides access to scientific journals, e-books, and other academic resources primarily targeting students, researchers, health professionals, and publishers within Portugal. The platform is positioned as a key national resource for academic content access and open access initiatives. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics tools such as Google Analytics and Hotjar. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and secure forms, but lacks visible security headers and vulnerability disclosure mechanisms. Privacy compliance is basic, with no cookie consent banner detected and limited explicit GDPR indicators. Overall, the website is trustworthy and professionally maintained, with strong government and research institution affiliations.

C

CIÊNCIAVITAE

cienciavitae.pt

0

CIÊNCIAVITAE is a Portuguese national platform dedicated to managing scientific curricula, providing visibility and integration of researchers' academic and scientific information. The platform serves students, researchers, and institutions, offering tools for CV creation, visualization, and institutional management. It is supported by Portuguese governmental and European funding entities, positioning it as a trusted and authoritative resource in the national scientific ecosystem. Technically, the website is built on WordPress with modern web technologies including jQuery, Bootstrap, and Google Fonts, and incorporates GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and published incident response policies. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional, trustworthy, and compliant digital presence aligned with its governmental and scientific mission.

R

República Portuguesa

gov.pt

0

The website gov.pt serves as the official digital portal for the Portuguese government, providing citizens, residents, and businesses with access to a wide range of public services and institutional information. It holds a strong market position as the primary gateway for government digital services in Portugal, targeting a broad audience including individuals and economic entities. The portal's business model revolves around government digital transformation and public service delivery online. Technically, the site leverages modern web technologies such as React and Next.js, ensuring fast performance, mobile optimization, and accessibility compliance. The infrastructure appears robust, with secure HTTPS connections and comprehensive security headers, reflecting a mature digital presence. From a security perspective, the portal demonstrates a solid posture with enforced HTTPS, security best practices, and no visible vulnerabilities. However, explicit security policies and incident response details are not prominently published, which could be improved to enhance transparency and trust. Overall, the risk assessment is low given the official nature, strong security measures, and compliance with privacy regulations. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure program, and enhancing data protection officer visibility to further strengthen trust and compliance.

U

Universidade da Beira Interior

ubi.pt

0

Universidade da Beira Interior (UBI) is a Portuguese public higher education institution located in Covilhã, Portugal. It offers a wide range of undergraduate, graduate, and doctoral programs, alongside active research and innovation initiatives. The university targets students, researchers, academic staff, and international candidates, positioning itself as a regional leader with international partnerships such as UNITA. The website reflects a well-established academic institution with comprehensive educational services and student support.

E

Editorial Bubok

bubok.pt

0

Bubok Portugal is a well-established self-publishing platform and editorial group that empowers independent authors to publish and distribute their books with ease and professionalism. The company offers a comprehensive suite of services including editorial support, book distribution, and a dedicated bookstore for new authors. With a strong market position in Portuguese-speaking countries and a network of subsidiaries, Bubok provides a trusted and user-friendly environment for authors and readers alike. The website reflects a mature digital presence with integrated marketing and analytics tools, clear contact channels, and a focus on user experience.

U

UNITA - Universitas Montium

univ-unita.eu

0

UNITA - Universitas Montium is a collaborative alliance of six research universities across five countries, serving a large academic community with over 160,000 students and 13,000 staff. The alliance focuses on cross-border cooperation, research, and educational mobility, supported by European Union funding. The website serves as a portal for students, researchers, and partners, providing news, events, program details, and virtual campus access. Technically, the site uses a modern tech stack including Bootstrap, jQuery, Owl Carousel, and Google Analytics, hosted by OVH SAS. The site is mobile-optimized with good navigation and consistent branding. However, it lacks explicit privacy and terms of service pages and does not implement advanced security headers, which are areas for improvement. Security posture is moderate with basic protections like email obfuscation and cookie consent but missing HTTP security headers and explicit security policies. No WAF or blocking mechanisms were detected, and the domain registration is consistent and legitimate. Overall, the site is professional and trustworthy but would benefit from enhanced security measures, privacy compliance documentation, and improved accessibility to strengthen its risk profile and user trust.

J

Jaguar Land Rover Portugal Veículos e Peças Lda.

landrover.pt

0

Jaguar Land Rover Portugal Veículos e Peças Lda. operates the official Land Rover website for Portugal, offering premium 4x4 and SUV vehicles including Range Rover, Discovery, and Defender models. The company holds a strong market position as a luxury automotive brand with a comprehensive portfolio of vehicle sales, ownership services, and software updates. The website targets Portuguese-speaking customers interested in sophisticated SUVs and 4x4 vehicles, providing detailed product information and customer support resources. The parent company is Jaguar Land Rover Limited, a globally recognized automotive manufacturer.

Ford Portugal operates as the official regional website for Ford Motor Company, providing comprehensive information about Ford vehicles, pricing, and promotions tailored to the Portuguese market. The site targets general consumers interested in purchasing or learning about Ford vehicles, leveraging a professional and consistent brand presence. The business model focuses on automotive sales and customer engagement through digital channels. Technically, the website is built on a modern stack including Adobe Experience Manager CMS and Adobe Analytics for tracking, hosted likely via Akamai CDN, ensuring moderate to good performance and mobile optimization. Security posture is strong with HTTPS and service workers implemented, though explicit security policies and contact information for incident response are not publicly visible. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. Overall, the website is trustworthy and professionally maintained, with room for improvement in transparency and compliance documentation.

M

Mintt Studio

nfcube.com

0

Mintt Studio operates a specialized SaaS application called Instafeed that integrates Instagram feeds into Shopify storefronts, enabling merchants to showcase social content, shoppable videos, and user-generated content. The company is positioned as a trusted provider with over 300,000 merchants using its app, targeting Shopify store owners seeking enhanced social proof and engagement. The website is hosted on Squarespace and leverages Cloudflare for DNS and domain registration, ensuring a stable and secure infrastructure. The site is well-designed, mobile-optimized, and includes essential marketing badges that reinforce trust. Security posture is strong with HTTPS and HSTS enabled, though DNSSEC is not configured. Privacy compliance is partial, with a cookie consent banner present but no explicit privacy policy or terms of service pages found. Contact information is not publicly listed, which may impact user trust and compliance. Overall, the website demonstrates a mature technical setup and solid business credibility but would benefit from enhanced privacy and contact transparency.

V

Visa

visa.pt

0

Visa is a globally recognized leader in digital payments, offering a broad range of payment technologies and services to consumers, businesses, and fintech innovators. The website www.visa.pt serves the Portuguese market with localized content and links to Visa's global network. The site demonstrates a mature digital presence with modern technologies, strong branding, and comprehensive privacy and cookie policies. Security measures such as HTTPS, security headers, and Cloudflare protection are in place, reflecting a robust security posture. However, explicit security policies and incident response contacts are not published, which could be improved for transparency and trust. Overall, the website is professional, secure, and compliant with GDPR, supporting Visa's market position as a trusted payment technology provider.

A

Atlantico Press

stockfood.pt

0

StockFood, operated by Atlantico Press in Portugal, is a leading global media agency specializing in food photography and related media content. The company offers a broad portfolio of food images, videos, features, and recipes sourced from over 1,500 professional photographers. Their market position is strong within the food media industry, targeting media professionals, creative agencies, and food industry clients worldwide. The website is well-structured, professionally designed, and provides clear navigation and comprehensive content relevant to its audience. Technically, the site uses established JavaScript libraries such as jQuery and React, ensuring a modern user experience with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and secure form handling, though improvements could be made by adding security headers and cookie consent mechanisms. Overall, the domain registration aligns well with the business claims, supporting legitimacy and trustworthiness.

M

Meetic SAS

meetic.pt

0

Meetic.pt is a well-established online dating platform operated by Meetic SAS, a subsidiary of the Match Group. The website targets Portuguese singles seeking relationships and offers subscription-based matchmaking services accessible via web and mobile apps. The platform is professionally designed with excellent content quality and user experience, reflecting a mature digital presence. Technically, the site uses modern frameworks such as React and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is good, with comprehensive privacy and cookie policies and consent mechanisms in place. Overall, the site demonstrates high business credibility and trustworthiness, with no signs of malicious activity or suspicious domain registration patterns.

The website www.livroreclamacoes.pt appears to be a consumer complaints platform based in Portugal, likely serving as a public or governmental service for registering complaints. The visible content is minimal in the provided HTML snapshot, with no textual content or metadata such as privacy policies or contact information. The site is built using the OutSystems low-code platform, indicating a modern but possibly template-driven technical infrastructure. There is no evidence of advanced SEO or accessibility features. Security posture is weak due to lack of visible HTTPS confirmation, security headers, and absence of privacy or cookie policies. No contact or incident response information is provided, limiting trust and compliance indicators. Overall, the site appears functional but lacks transparency and security best practices, which could impact user trust and regulatory compliance.

S

Securitas Portugal

securitas.pt

0

Securitas Portugal is a leading private security company offering a broad range of security services with a strong technological component. The company targets businesses and organizations in Portugal, providing specialized surveillance, remote monitoring, electronic security, and risk management solutions. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, indicating a well-established market position under the global Securitas brand. Technically, the site employs modern analytics and consent management tools, ensuring GDPR compliance and user privacy. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Overall, the website demonstrates a high level of professionalism and trustworthiness, supporting the company's credibility in the security sector.

M

MSC Cruzeiros

msccruzeiros.pt

0

MSC Cruzeiros Portugal operates as the localized Portuguese portal for MSC Cruises, a major international cruise line. The website offers comprehensive cruise vacation services including bookings, excursions, onboard experiences, and customer support tailored for Portuguese-speaking customers. The business is positioned as a large player in the transportation and hospitality sectors, supported by a strong parent company, MSC Cruises S.A. The site is professionally designed with consistent branding and clear trust indicators such as official social media links and contact information. Technically, the site uses modern web technologies including Vue.js, Marketo marketing tools, and Akamai CDN services, ensuring a good user experience with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. Privacy compliance is strong, with GDPR-aligned consent management and a comprehensive privacy policy. Overall, the website is trustworthy, professional, and well-suited for its target audience.

I

Imagine Virtual

imaginevirtual.com

0

Imagine Virtual is a Lisbon-based communication and marketing agency specializing in design, web development, marketing, and communication services. The company targets businesses seeking to enhance their brand image and communication strategies through creative and effective solutions. Their service offerings include social media management, online store solutions, and campaign management, positioning them as a comprehensive agency for digital and offline marketing needs. Technically, the website is built on WordPress and leverages modern web technologies such as Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA for security and analytics. The site is well-structured with good SEO practices, mobile optimization, and accessibility features, although some accessibility improvements could be made. The presence of cookie consent mechanisms and privacy policies indicates a commitment to GDPR compliance. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data raises some concerns about domain legitimacy, although the professional presentation and valid contact information mitigate this risk somewhat. Overall, the website presents a professional and trustworthy front for the agency, but the domain registration inconsistency warrants further verification. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to strengthen trust and compliance.