Security Directory

C

Câmara Municipal de Felgueiras

cm-felgueiras.pt

0

The Câmara Municipal de Felgueiras website serves as the official online portal for the municipal government of Felgueiras, Portugal. It provides residents and visitors with information about the municipality, public services, news, and event agendas. The site targets a general audience including local citizens and stakeholders interested in municipal affairs. The business model is that of a government service provider with a focus on transparency and community engagement. Technically, the website is built on the WordPress CMS platform, utilizing a variety of plugins such as Gravity Forms for data collection, Yoast SEO for search engine optimization, and Google reCAPTCHA for bot protection. The infrastructure includes integration with social media platforms and multimedia content delivery via YouTube. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA, indicating a baseline security posture. However, it lacks several standard security headers and does not publicly expose privacy or security policies, which are areas for improvement. No critical vulnerabilities or blocking mechanisms were detected, and the WHOIS data confirms the legitimacy and consistency of the domain registration with the municipal government entity. Overall, the website is professional, trustworthy, and serves its purpose effectively. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and improving accessibility to strengthen compliance and user trust.

M

Município de Cabeceiras de Basto

cabeceirasdebasto.pt

0

The website cabeceirasdebasto.pt serves as the official online presence of the Município de Cabeceiras de Basto, a local government entity in Portugal. It provides residents, tourists, and local businesses with comprehensive information about municipal services, cultural events, tourism, and administrative contacts. The site features a structured navigation system, regular news updates, and integration with social media platforms to engage its audience effectively. The business model is centered on public service and community engagement, positioning the municipality as a trusted source of local information and services. Technically, the website employs a mix of traditional web technologies including jQuery, LayerSlider for interactive content, Google Fonts for typography, and Piwik/Matomo for analytics. The CMS appears to be a proprietary or specialized platform (Omnisinal) tailored for municipal websites. The site is moderately optimized for performance and mobile responsiveness, with basic accessibility features implemented. SEO practices are present but could be enhanced with richer metadata and structured data. From a security perspective, the site uses HTTPS and includes a cookie consent banner, indicating awareness of privacy regulations. However, there is no visible security policy or incident response contact information, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data aligns well with the municipal identity, reinforcing legitimacy and trustworthiness. Overall, the website is a well-maintained government portal with good content quality and user experience. Security posture is adequate but could benefit from additional policies and technical hardening. Privacy compliance is basic but present. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing security policies, improving accessibility, and enriching SEO metadata to further strengthen the site’s digital maturity and trust.

Comunidade Intermunicipal do Ave is a public association of municipalities in the Ave region of Portugal, serving as a regional government entity focused on intermunicipal cooperation and development. The organization manages various projects spanning education, economy, culture, mobility, and civil protection, targeting local governments and regional stakeholders. The website reflects a medium-sized public sector entity with a consistent brand and clear communication channels, including social media presence and comprehensive contact information. Technically, the website is built on WordPress 6.5, utilizing common plugins such as LayerSlider and WPBakery Page Builder. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and published incident response policies. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism is detected. Overall, the website is trustworthy and professional, with no signs of malicious content or vulnerabilities. The WHOIS data aligns with the website's claims, confirming legitimacy and consistent registration information. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security and incident response policies to strengthen compliance and trust.

A

Associação Empresarial da Póvoa de Varzim

aepvz.pt

0

Associação Empresarial da Póvoa de Varzim is a historic regional business association in Portugal, founded in 1893, providing support, training, events, and partnership services to local businesses and entrepreneurs. The website reflects a well-structured, content-rich platform targeting the regional business community with clear contact information and social media presence. Technically, the site uses a modern but straightforward tech stack including jQuery, Bootstrap, and various UI components, integrated with a membership management platform (Liga-te.org). Security posture is solid with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit incident response policies. Overall, the site is trustworthy, professional, and compliant with privacy regulations, supporting its legitimacy and business credibility.

The Associação Comercial e Industrial de Vizela (ACIV) is a well-established regional business association founded in 1986, serving the commercial and industrial sectors of the Vale de Vizela region in Portugal. The organization focuses on representing and promoting the interests of local businesses through services such as legal and financial consultancy, professional training, job insertion support, and event organization. The website reflects a professional and community-oriented approach, targeting local entrepreneurs and business stakeholders. Technically, the website employs a traditional web stack with Bootstrap, jQuery, and various UI libraries to deliver a responsive and user-friendly experience. While the site is functional and moderately optimized for mobile devices, there is room for improvement in performance and accessibility. The absence of a known CMS suggests a custom-built platform maintained by the developer acastro dev. From a security perspective, the site uses HTTPS and includes basic form validation but lacks critical security headers and anti-CSRF protections. No privacy or cookie policies are present, which is a compliance gap under GDPR. The integration of Facebook SDK indicates some level of user tracking, but overall tracking is minimal. The WHOIS data aligns well with the business identity, supporting legitimacy and trustworthiness. Overall, the site is a credible and useful resource for its target audience but would benefit from enhanced security measures and privacy compliance to strengthen trust and regulatory adherence.

A

Associação Empresarial de Fafe, Cabeceiras de Basto e Celorico de Basto

aefafe.pt

0

Associação Empresarial de Fafe, Cabeceiras de Basto e Celorico de Basto is a regional non-profit business association in Portugal focused on supporting local businesses through professional education, training, and internationalization services. The website serves as an informative and promotional platform for the association's activities, projects, and events, targeting local entrepreneurs and companies in the Fafe, Cabeceiras de Basto, and Celorico de Basto regions. The association operates professional schools and offers various business support programs, positioning itself as a key regional player in business development and education. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Revolution Slider, ensuring good SEO and user experience. The site is mobile-optimized and uses HTTPS with reCAPTCHA v3 for form protection, reflecting a moderate to good digital maturity. However, some accessibility and security headers could be improved. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks explicit security policies and some recommended HTTP security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy, which is a compliance gap. Overall, the website is professional, trustworthy, and serves its business purpose well, but it would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

A

Associação Empresarial de Felgueiras

aef.pt

0

Associação Empresarial de Felgueiras (AEF) is a regional non-profit business association based in Portugal, focused on supporting local businesses through a variety of services including administrative, fiscal, legal, training, and internationalization support. The organization actively manages multiple projects and provides a platform for business networking and development. The website reflects a mature digital presence built on WordPress with modern plugins and design elements, targeting local entrepreneurs and companies. The site is well-structured, mobile-optimized, and provides clear contact information and policy disclosures, although some compliance mechanisms like cookie consent are not fully implemented. Security posture is adequate with HTTPS and modern libraries, but lacks explicit security headers and incident response policies. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate and established business association.

R

Região de Turismo do Algarve

visitalgarve.pt

0

VisitAlgarve.pt is the official tourism portal for the Algarve region in Portugal, providing comprehensive information about the region's attractions, events, and travel services. The website serves as a key marketing platform to promote Algarve as a premier holiday destination in Europe, targeting tourists and travel professionals. It offers event promotion, corporate and convention services, and travel trade support, positioning itself as a leading regional tourism authority. Technically, the site is built on modern web technologies including React and integrates Google services for analytics and translation, reflecting a moderate to good level of digital maturity. The website is mobile optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a solid security posture with room for improvement in security best practices and incident response readiness. The domain registration data aligns well with the website's regional tourism focus, indicating high legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility compliance to further strengthen the site's security and compliance posture.

C

Comunidade Intermunicipal do Algarve (AMAL)

amal.pt

0

AMAL (Comunidade Intermunicipal do Algarve) is a regional governmental entity coordinating 16 municipalities in the Algarve region of Portugal. The website serves as an official portal providing information on regional governance, environmental initiatives, social development, cultural programs, economic projects, mobility, and digital transformation efforts. It targets residents, municipal authorities, and stakeholders interested in Algarve's regional affairs. The site is well-structured, regularly updated with news, and maintains a consistent brand identity aligned with its governmental role. Technically, it is built on Joomla CMS with modern front-end technologies and includes accessibility features such as a screen reader plugin. Security posture is adequate with HTTPS and HSTS enabled, but lacks some security headers and a vulnerability disclosure mechanism. Privacy compliance is supported by a comprehensive GDPR policy, though cookie consent mechanisms are absent. Overall, the site is trustworthy and professional, reflecting its official status.

A

ACRAL - Associação do Comércio e Serviços da Região do Algarve

acral.pt

0

ACRAL is a regional non-profit association representing commerce and services in the Algarve region of Portugal. The organization provides a variety of services including member advantages, training, project support, events, and advocacy for local businesses. The website reflects a well-established regional presence with consistent branding and clear communication targeted at retailers and service providers in the Algarve. Technically, the site is built on Joomla CMS with a modern tech stack including jQuery, Bootstrap, and various UI libraries, delivering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and email cloaking, though it lacks advanced security headers and explicit incident response policies. Privacy compliance is addressed with visible privacy and cookie policies and a consent mechanism. Overall, the site is professional, trustworthy, and suitable for its audience.

R

R.A.C.E.

race.pt

0

R.A.C.E. is a small Portuguese company specializing in the promotion, advertising, and rental of competition vehicles, particularly classic and historic racing cars. The company has a notable presence in national classic car racing championships and offers services targeting motorsport enthusiasts and sponsors. The website reflects a focused business model with clear content about their vehicles and achievements, supported by active social media channels. Technically, the site uses modern web technologies including HTTPS, service workers for PWA capabilities, and a responsive design, although some SEO and accessibility features could be improved. Security posture is adequate with HTTPS and cookie consent, but lacks advanced security headers and incident response information. Privacy compliance is weak due to the absence of a privacy policy and terms of service. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security transparency.

F

Freguesia de Viseu

freguesiadeviseu.pt

0

Freguesia de Viseu operates a local government portal serving the residents and stakeholders of the Viseu parish in Portugal. The website provides comprehensive information on social support programs, local events, regulatory documents, and contact channels, positioning itself as an essential governmental resource for the community. The site leverages Joomla CMS with Helix Ultimate framework and integrates modern JavaScript libraries such as jQuery and Swiper.js to deliver a responsive and user-friendly experience. Social media integration includes official Facebook, YouTube, and Instagram accounts, enhancing community engagement. Security posture is adequate with HTTPS enforced and CSRF protections in place, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. Overall, the website is trustworthy and professionally maintained, reflecting the legitimacy of the local government entity it represents.

C

Cáritas Portuguesa

caritas.pt

0

Cáritas Portuguesa is a well-established non-profit organization in Portugal focused on social intervention, institutional development, international projects, and community support. The website serves as a platform to communicate their mission, programs, and opportunities for collaboration such as volunteering and donations. The organization maintains a consistent brand presence with active social media links and a professional website design. Technically, the site is built on WordPress with popular plugins like WooCommerce and BuddyPress, indicating a mature digital infrastructure. The site is mobile optimized and includes SEO best practices via Yoast SEO. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. No critical vulnerabilities or blocking mechanisms were detected, and the site content is safe for general audiences. Overall, the website reflects a credible and professional non-profit entity with moderate to good technical and security maturity.

A

AIRV

airv.pt

0

AIRV is a well-established Portuguese non-profit business association founded in 1982, serving over 500 member companies primarily in the Viseu region. The organization focuses on supporting regional businesses through innovation, training, legal assistance, incubation, and entrepreneurship development. Their website reflects a mature digital presence built on WordPress with modern technologies and SEO optimizations. Privacy and cookie compliance are well implemented, including GDPR consent mechanisms. The security posture is solid with HTTPS and no critical vulnerabilities detected, though some security headers could be improved. Overall, AIRV demonstrates a credible and trustworthy online presence aligned with its mission to promote regional economic and social development.

NET.mede is an official internet speed testing service operated by ANACOM, the Portuguese national communications authority. The website provides users with tools to measure fixed and mobile internet speeds, test for traffic shaping, and access aggregated statistics. It also offers a mobile app for regular testing and a user account area called My NET.mede. The service targets residential internet users in Portugal and positions itself as a trusted, government-backed resource for internet quality assessment. Technically, the website employs modern JavaScript libraries such as jQuery and Handlebars, with custom scripts for speed testing functionality. It supports mobile platforms via dedicated apps on iOS and Android. The site is well-optimized for performance, accessibility, and SEO, with clear navigation and responsive design. Privacy and cookie policies are implemented with consent mechanisms, and analytics are used responsibly. From a security perspective, the site uses HTTPS with good SSL configuration and basic security headers. No critical vulnerabilities or exposed sensitive data were detected. However, there is no explicit security policy or incident response contact information published, which could be improved. The WHOIS data confirms the domain is legitimately registered to ANACOM, consistent with the website's official nature. Overall, NET.mede presents a professional, trustworthy, and secure platform for internet speed testing in Portugal. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, and enhancing HTTP security headers to further strengthen security posture.

P

Portal 5G

portal5g.pt

0

Portal 5G is a specialized Portuguese informational website focused on the dissemination of news, thematic content, and updates related to 5G technology deployment and applications in Portugal. It serves a niche audience interested in telecommunications advancements and provides a structured portal with news, event agendas, and educational resources. The website uses WordPress CMS with a modern theme and plugins to deliver content effectively, including push notifications and cookie compliance mechanisms. While the site is well-designed and mobile-optimized, it lacks explicit privacy and security policies, which are important for compliance and user trust. Security posture is adequate with HTTPS enforced, but additional security headers and incident response information would strengthen its security maturity. Overall, the site is legitimate, trustworthy, and provides valuable content to its target audience, but could improve in privacy transparency and security disclosures.

Communications 4 Expats is an official Portuguese government service provided by ANACOM, designed to assist expatriates with telecommunications contracts and services in Portugal. The website offers comprehensive guidance on topics such as arriving in Portugal, choosing operators, contracting, usage, switching, and cancelling services. It serves as a trusted consumer resource with links to official regulatory and consumer protection bodies. The platform is positioned as a government-backed consumer assistance portal targeting expatriates and consumers in Portugal.

P

Plataforma de Cessação de Contratos

cessacaodecontratos.pt

0

The Plataforma de Cessação de Contratos is a Portuguese government-supported online platform designed to facilitate consumers' access to information regarding their electronic communications contracts and to enable the cessation of such contracts. The platform targets Portuguese consumers seeking to manage or terminate their telecommunications contracts and provides key services including contract information retrieval and contract termination requests. The site is supported by reputable government entities and EU funding programs, which enhances its trustworthiness and market position. From a technical perspective, the website employs standard web technologies such as HTML5, CSS3, and JavaScript, with a responsive design suitable for mobile devices. While the site demonstrates good content quality and user experience, there is room for improvement in accessibility and SEO optimization. No advanced frameworks or CMS platforms were detected, suggesting a custom or lightweight implementation. Security posture is moderate; the site uses HTTPS and modal confirmations for form submissions but lacks visible security headers and explicit security policies. There is no evidence of cookie consent mechanisms or detailed privacy compliance features beyond a basic privacy policy. No contact information or incident response details are provided, which could be improved to enhance user trust and compliance. Overall, the platform presents a low-risk profile with a solid business credibility foundation due to its government backing. Strategic recommendations include implementing comprehensive security headers, adding cookie consent mechanisms, publishing security and incident response policies, and enhancing accessibility features to meet compliance standards and improve user trust.

ANACOM's Portal do Consumidor is an official Portuguese government website dedicated to providing consumers with comprehensive information and tools related to electronic communications and postal services. The portal offers services such as internet speed comparison, tariff simulations, consumer rights education, complaint submission, and updates on telecommunications developments like 5G and roaming. It serves as a trusted resource for Portuguese consumers seeking guidance and support in these sectors. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Google Tag Manager, and Alloy UI. The site demonstrates good digital maturity with responsive design, accessibility features, and SEO optimization. Performance is moderate, with room for improvements in modernizing some JavaScript libraries. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting compliance with GDPR and privacy best practices. However, it lacks explicit security policies, incident response contacts, and security headers, which could enhance its security posture. No vulnerabilities or suspicious content were detected. Overall, the portal is a professional, trustworthy, and well-maintained government resource with strong business credibility and good privacy compliance. Strategic improvements in security transparency and technical modernization would further strengthen its position.

E

Ergomotion® Plus

ergomotionplus.com

0

Ergomotion® Plus operates an e-commerce platform specializing in smart beds designed to improve sleep quality and health. The website targets consumers interested in advanced sleep solutions, offering a range of smart beds through a Shopify-based online store. The business positions itself in a niche market with a focus on comfort and health benefits, leveraging multilingual support to cater to European markets. The company employs modern marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Trustpilot to enhance customer engagement and trust. Technically, the website is built on the Shopify platform using the Dawn theme, ensuring a responsive and user-friendly experience across devices. The infrastructure includes integrations with multiple third-party services for marketing, analytics, and cookie consent management. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses CAPTCHA on forms, indicating a baseline security posture. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no published security or incident response policies are available. The absence of WHOIS registration data raises concerns about domain legitimacy and transparency, which impacts overall trustworthiness. Overall, Ergomotion® Plus presents a professional and functional e-commerce presence with good privacy compliance and marketing sophistication. The main risks relate to domain registration opacity and limited published security policies. Strategic improvements in security transparency and direct contact information would enhance trust and compliance.

APED is a Portuguese association representing distribution companies, providing a member login portal for access to reserved services. The website is primarily targeted at Portuguese distribution companies and their associates, offering account management and new member registration functionalities. The business model centers on membership services and industry representation within Portugal. Technically, the site uses Semantic UI and jQuery with Google Analytics for tracking, presenting a basic but functional user interface with moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced and password fields secured, but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. Overall, the site is legitimate, consistent with the association's identity, and free from malicious or adult content, but could improve in privacy compliance and security best practices.

W

WebView

webview.pt

0

WebView is a Portuguese digital communication company specializing in creating and developing digital experiences including UI/UX design, websites, microsites, and mobile applications. The company positions itself as a full-service agency offering end-to-end solutions from design and development to hosting and SEO. Their portfolio indicates a mature business with over 20 years of experience and a substantial client base. Technically, the website is built on Joomla CMS with modern JavaScript libraries and uses Matomo analytics, reflecting a moderate level of digital maturity and privacy awareness. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible incident response mechanisms. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve transparency and security practices.

P

Participa

participa.pt

0

Participa.pt is an official Portuguese government portal dedicated to facilitating public participation in public consultations, primarily related to environmental, energy, and territorial management topics. The website serves as a centralized platform for citizens and entities to access information about ongoing and past public consultations, submit contributions, and follow consultation processes. It also offers educational resources related to environmental awareness. The portal is well-positioned as the authoritative source for public consultation participation in Portugal, supported by government partnerships and official branding. From a technical perspective, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries such as Select2 and Toastr.js, and integrates Google Analytics for user tracking. The site is mobile-optimized with responsive design and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and performance optimization. Security-wise, the site uses HTTPS ensuring encrypted communication, and the login forms enforce password requirements. Nonetheless, the absence of security headers and lack of published security policies or incident response contacts indicate areas for enhancement. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partially addressed with a privacy policy and terms of service, but the lack of a cookie consent mechanism is a compliance gap. Overall, participa.pt demonstrates a solid business credibility and trustworthy presence as a government platform. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security and incident response policies, and enhancing accessibility features to improve compliance and user trust.

N

Natural.PT

natural.pt

0

Natural.PT is a Portuguese platform dedicated to promoting the country's protected natural areas, offering detailed information on pathways, places to stay, eat, and buy, as well as membership options for community engagement. The platform targets nature enthusiasts and tourists interested in sustainable exploration of Portugal's natural heritage. Technically, the website is a modern React single-page application utilizing Google Analytics, Google Tag Manager, and reCAPTCHA v3 for bot protection. The site is well-optimized for mobile devices and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses reCAPTCHA, but lacks some security headers and explicit security policies. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, indicating GDPR awareness. Overall, the website is trustworthy, professional, and serves its niche effectively.

ALEA - Ação Local de Estatística Aplicada is an educational project affiliated with the Instituto Nacional de Estatística in Portugal. It provides educational resources, challenges, and statistical information aimed primarily at students, educators, and the general public interested in statistics and civic education. The platform is well-positioned as a government-supported initiative to enhance statistical literacy and education in Portugal. Technically, the website is built on Joomla! CMS with Bootstrap and jQuery frameworks, offering a responsive and moderately performant user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and explicit incident response policies. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable resource for its audience.

A

AMT - Autoridade da Mobilidade e dos Transportes

amt-autoridade.pt

0

AMT - Autoridade da Mobilidade e dos Transportes is a Portuguese government regulatory authority responsible for overseeing and supervising the mobility and transport sectors including terrestrial, railway, maritime, and fluvial transport. The organization provides regulatory frameworks, consumer protection, public consultations, and knowledge management services. It holds a strong national position as the official transport regulator in Portugal, serving a broad audience including consumers, transport operators, and government stakeholders. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Video.js, ensuring good mobile optimization and accessibility. The site uses HTTPS with an excellent SSL configuration and integrates Google Analytics for user tracking with appropriate cookie consent mechanisms. However, some security headers are missing, and there is no explicit security policy or incident response information published. From a security perspective, the site demonstrates good practices including secure video embedding and no exposed sensitive data. The absence of a security.txt file and incident response contact points are areas for improvement. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business purpose and country. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing a security policy, and improving incident response transparency to further strengthen the security posture and user trust.

E

ERSAR

ersar.pt

0

ERSAR is the Portuguese Water and Waste Services Regulation Authority, tasked with regulating and supervising water supply and waste services across Portugal. The website serves as an official communication channel providing regulatory information, public consultations, complaint management, and sector data. It targets Portuguese consumers, regulated entities, and government bodies, positioning itself as a national authority with legal powers in its sector. The business model is government-funded and focused on regulatory oversight. Technically, the website is built on Microsoft SharePoint, leveraging standard web technologies including jQuery and modern UI components. The site demonstrates good digital maturity with responsive design, accessibility features, and SEO best practices. Performance is moderate, typical for SharePoint-based sites. From a security perspective, the site enforces HTTPS, uses form digest tokens for CSRF protection, and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers like Content-Security-Policy are not evident, and there is no visible vulnerability disclosure or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It lacks some advanced security disclosures and terms of service documentation but maintains a solid security posture appropriate for a government regulatory entity.

A

ANACOM - Autoridade Nacional de Comunicações

anacom.pt

0

ANACOM is the national regulatory authority for postal and electronic communications in Portugal. It serves as a government entity overseeing regulation, consumer protection, spectrum management, and licensing within the telecommunications sector. The website is professionally designed, content-rich, and targets Portuguese consumers, businesses, and international stakeholders. It provides comprehensive regulatory information, public consultations, and consumer resources. Technically, the site uses established libraries such as jQuery and Bootstrap, integrates Google Tag Manager for analytics, and is mobile optimized with good accessibility and SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though it lacks explicit security headers and a formal security policy page. The domain registration aligns with the official Portuguese authority, confirming legitimacy. Overall, the website is trustworthy, professional, and well-maintained, supporting ANACOM's authoritative role in Portugal's communications sector.

C

CICAP

cicap.pt

0

CICAP is a Portuguese arbitration center specializing in consumer conflict resolution, offering services such as information, mediation, conciliation, and arbitration primarily within the Porto Metropolitan Area. The website is professionally designed using WordPress and modern plugins, providing a clear presentation of its services and legal framework. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance. The absence of direct contact emails and phone numbers on the analyzed content limits immediate user engagement. Technically, the site uses HTTPS and standard security practices but could improve by adding security headers and a vulnerability disclosure policy. Overall, CICAP presents a trustworthy and regionally focused service with room for enhanced privacy and security transparency.

Associação Nacional do Ramo Automóvel (ARAN) is a Portuguese national association representing the automotive sector. The organization provides member support, training, publications, and events to automotive professionals and companies in Portugal. The website reflects a mature and professional digital presence with clear branding and comprehensive content tailored to its target audience. The association recently renewed its leadership, signaling ongoing organizational vitality. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap, jQuery, and Font Awesome. It incorporates GDPR-compliant cookie consent mechanisms and uses Google Analytics for traffic analysis. The site is mobile-optimized and structured with SEO best practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating good baseline security hygiene. However, no advanced security headers were detected, and there is no public security policy or incident response contact information. The absence of a vulnerability disclosure or security.txt file suggests room for improvement in transparency and security maturity. Overall, ARAN's website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers and incident response disclosures would further strengthen its security posture and stakeholder confidence.

Beira Amiga is a small non-profit association based in Portugal focused on consumer defense and legal support. The organization collaborates with local government and legal entities to promote consumer rights and awareness. Their website serves as an informational and community engagement platform, primarily targeting consumers and legal professionals in the Viseu region. The site is built on WordPress and uses common JavaScript libraries such as jQuery and bxSlider for UI elements. While the site is functional and provides clear contact information, it lacks key compliance documents such as privacy and cookie policies, which are critical for GDPR compliance. Security posture is basic with no advanced security headers or DNSSEC enabled, though HTTPS is used throughout. No signs of tracking or advertising scripts were found, indicating minimal user tracking.

C

Centro de Arbitragem de Conflitos de Consumo do Algarve (CIMAAL)

consumidoronline.pt

0

The Centro de Arbitragem de Conflitos de Consumo do Algarve (CIMAAL) operates as a regional consumer arbitration center in the Algarve region of Portugal, providing an accessible, low-cost, and efficient dispute resolution service between consumers and businesses. The website clearly targets local consumers and companies, offering information, complaint submission, and arbitration services under Portuguese law. The business model is public service-oriented, with strong ties to government and consumer protection entities, reinforcing its authoritative market position. Technically, the website is built on Joomla CMS with modern frontend frameworks like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Integration of Google reCAPTCHA v3 and Google Analytics indicates a moderate level of digital maturity and user tracking, balanced with privacy compliance. The site is well-structured with multilingual support (Portuguese and English) and includes embedded data visualization via Power BI. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, with clear user consent mechanisms. Overall, the website presents a trustworthy and professional front for a government-related consumer arbitration service. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its security posture and user trust.

T

TRIAVE - Centro de Conflitos de Consumo do Vale do Ave/Tribunal Arbitral

triave.pt

0

TRIAVE is a regional consumer arbitration tribunal serving the Vale do Ave area in Portugal, integrated within the national consumer arbitration network. It provides dispute resolution services, complaint handling, and consumer support, targeting local consumers and municipalities. The website is professionally designed using WordPress and modern web technologies, with good mobile optimization and clear navigation. Privacy and cookie policies are implemented with GDPR compliance, and contact information is clearly presented. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and a vulnerability disclosure policy. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

C

Confederação do Comércio e Serviços de Portugal

ccp.pt

0

Confederação do Comércio e Serviços de Portugal (CCP) is a well-established Portuguese confederation representing the commerce and services sectors. The organization provides economic data, legal information, events, and member support services, positioning itself as a key player in promoting competitiveness and innovation within Portugal's commerce and service industries. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders in these sectors. Technically, the website is built on WordPress with modern libraries such as jQuery, Owl Carousel, and FancyBox. It employs Google Analytics for tracking and uses a cookie consent mechanism compliant with GDPR. The site is hosted likely on SiteGround, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

UGC - União Geral de Consumidores is a Portuguese non-profit organization dedicated to consumer rights advocacy, debt counseling, and education on essential public services. The website provides informational content including podcasts, news, and downloadable brochures aimed at Portuguese consumers. The organization holds public utility status and collaborates with governmental consumer protection entities, reinforcing its legitimacy and trustworthiness. Technically, the website uses legacy JavaScript libraries and a custom PHP-based CMS, with moderate performance and basic mobile optimization. Security posture is moderate with HTTPS enabled but mixed content risks and outdated libraries present. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could improve technical and privacy aspects.

A

ASFAC

asfac.pt

0

ASFAC is a Portuguese association representing specialized credit institutions, focusing on industry representation, financial education, legislative updates, and statistical information. The website serves as an information hub for consumers and financial entities interested in specialized credit. Technically, the site is built on WordPress with Bootstrap and jQuery, incorporating modern analytics (Matomo) and a robust cookie consent mechanism (Cookiebot), reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, though formal security and incident response policies are not published. Overall, the site is professional, compliant with GDPR, and trustworthy, with room for improvement in explicit security policy disclosures and contact information transparency.

A

APED - Associação Portuguesa de Empresas de Distribuição

aped.pt

0

APED (Associação Portuguesa de Empresas de Distribuição) is a Portuguese association representing retail distribution companies. The website serves as a portal for information about the association's strategic axes, social organs, member areas, news, and initiatives. It targets retail companies and stakeholders in Portugal, providing documentation and support to its members. The site is built on WordPress using the Divi theme, leveraging common web technologies such as jQuery and Swiper for interactive elements. The technical infrastructure is modern and mobile-optimized, with good SEO and accessibility basics. Security posture is solid with HTTPS and standard security headers, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is addressed with cookie consent and a privacy policy, but terms of service and vulnerability disclosure policies are absent. Overall, the site is professional, trustworthy, and well-aligned with the business it represents.

C

CIAB

ciab.pt

0

CIAB is a Portuguese arbitration center specializing in alternative dispute resolution for consumer conflicts, offering mediation, conciliation, and arbitration services. It serves consumers and companies primarily in Portugal, with a strong regional presence and a track record of over 20,000 complaints handled. The website is professionally designed, mobile-optimized, and provides comprehensive information about the services and processes. Social media presence and testimonials enhance trust. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring a stable and responsive user experience. Security posture is good with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and functional but could improve in privacy and security transparency.

R

Repsol

repsol.pt

0

Repsol Portugal operates as a major energy supplier providing electricity, gas, and related services to individual consumers. The website is well-branded and professionally designed, targeting retail customers with a clear focus on energy solutions and customer benefits. The technical infrastructure leverages Adobe Experience Manager CMS, integrates multiple analytics and marketing tools including Google Tag Manager, Adobe Web SDK, and Gigya, and employs security best practices such as HTTPS and reCAPTCHA. However, the absence of explicit privacy and terms of service policies on the accessible pages indicates room for improvement in compliance transparency. Overall, the security posture is strong with proper headers and no detected vulnerabilities, but privacy compliance could be enhanced by publishing comprehensive policies and contact points for incident response.

E

Ergomotion®

ergomotion.com

0

Ergomotion® is a leading global manufacturer and provider of smart and adjustable bed bases, focusing on enhancing comfort, style, and well-being through innovative sleep technology. The company operates primarily in the B2B space, offering private label solutions and retail partnerships to expand its market reach. Their market position is strong, supported by a large global retailer network and the world's largest adjustable base manufacturing facility. Technically, the website is built on modern Webflow CMS infrastructure, integrating advanced tools such as HubSpot forms and Google Tag Manager, ensuring a fast, mobile-optimized, and accessible user experience. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response information are not publicly available. Overall, the website and business demonstrate high professionalism and trustworthiness, with recommendations to enhance transparency by adding terms of service and security disclosures.

C

Conselho Empresarial Para O Desenvolvimento Sustentavel

bcsdportugal.org

0

BCSD Portugal is a well-established business council focused on sustainability, representing over 190 Portuguese companies committed to sustainable transition. The organization operates as a non-profit entity, providing advocacy, networking, and support services to its members. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders interested in sustainability. Technically, the site is built on WordPress using the Divi theme, with integrations such as Google Analytics and Tag Manager for tracking. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring a secure connection. Security posture is generally good, though improvements can be made by enabling DNSSEC and implementing comprehensive security headers. Privacy compliance is lacking, with no visible privacy or cookie policies, which is a notable gap given the GDPR context. Overall, the domain registration data aligns well with the website's business claims, supporting its legitimacy.

O

Operações Municipais Ambientais E.I.M. S.A.

musami.pt

0

Operações Municipais Ambientais E.I.M. S.A. (MUSAMI) is a Portuguese municipal environmental services company specializing in selective and non-selective waste management and valorization. Positioned as a top player in the Azores region and recognized among the top 5% of Portuguese SMEs, MUSAMI offers comprehensive waste management solutions, environmental education, and public procurement services. The website reflects a professional and consistent brand presence targeting the general public and municipal stakeholders. Technically, the site is built on Drupal 7 with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and incident response disclosures are recommended. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

Á

Área Metropolitana de Lisboa

aml.pt

0

Área Metropolitana de Lisboa (AML) is a regional government organization coordinating development policies across 18 municipalities in the Lisbon metropolitan area. The website serves as an official portal providing information on regional initiatives, cultural events, social development, and transport authority functions. AML holds a key position as a metropolitan authority facilitating economic, social, and environmental strategies in coordination with local governments. The site targets residents, local authorities, and stakeholders interested in regional development and public services. Technically, the website is built on WordPress with Bootstrap and jQuery, optimized for performance using WP Rocket, and supports multilingual content via Weglot. It employs modern web standards, including HTTPS, CSP, and cookie consent mechanisms, ensuring a secure and privacy-compliant user experience. Security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence for a government entity.

E

EEM - Empresa de Eletricidade da Madeira

eem.pt

0

EEM - Empresa de Eletricidade da Madeira is a regional energy company focused on the production, transport, distribution, and commercialization of electricity in the Autonomous Region of Madeira, Portugal. The company positions itself as an environmentally sustainable energy provider, serving residential and commercial customers in the region. Their website reflects a medium-sized enterprise with a clear business model centered on energy services and sustainability. The digital presence is professional, with good content quality and consistent branding.

2

2adapt

mapadapt.com

0

MapAdapt is a recently launched geospatial data visualization and analysis platform developed by 2adapt, targeting insurers, researchers, and organizations handling complex geospatial datasets. The platform supports multiple data formats and offers an API for automated data extraction, positioning itself as a niche B2B SaaS provider in the technology sector. The website is professionally designed with a modern tech stack including Tailwind CSS and PMTiles, hosted on Amenworld infrastructure, and optimized for mobile devices. Security posture is solid with HTTPS enforced and secure API authorization, though it lacks published privacy and cookie policies as well as security headers, representing compliance and security improvement opportunities. The domain registration is transparent and consistent with the business's recent founding, supporting legitimacy. Overall, the website scores well on content quality, technical implementation, and business credibility but needs enhancements in privacy compliance and security best practices.

E-Risk is a climate risk early warning and assessment platform developed by 2adapt, a Portuguese company specializing in environmental and energy solutions. The platform offers dynamic calculation of various climate risks such as floods, landslides, and other meteorological hazards, tailored to user needs. It targets municipalities, infrastructure managers, and other stakeholders requiring early risk information to mitigate impacts. The website presents a professional and consistent brand image aligned with its parent company 2adapt. Technically, the site leverages modern JavaScript libraries including Mapbox GL JS for interactive mapping and storytelling, with a responsive design suitable for desktop and mobile users. Analytics are implemented via plausible.io, a privacy-focused service, indicating a moderate level of user tracking. Security posture is moderate; while HTTPS is implied and no sensitive data is exposed, the site lacks explicit security headers and published privacy or cookie policies, which are critical for GDPR compliance and user trust. WHOIS data confirms the domain is registered to 2adapt with consistent and transparent registrant information, supporting legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures to improve compliance and trust.

The Centro Nacional de Informação e Arbitragem de Conflitos de Consumo (CNIACC) is a Portuguese national center dedicated to consumer conflict resolution through information, mediation, and arbitration services. It operates primarily in regions not covered by other dispute resolution entities, serving consumers and companies across Portugal. The website reflects a government/non-profit organization with a clear mission and multiple partner affiliations, positioning itself as a trusted authority in consumer arbitration. Technically, the website employs a traditional tech stack including jQuery, Modernizr, and Swiper.js, with Google Analytics for user tracking. While the site is functional and well-structured, it uses an outdated jQuery version and lacks some modern security headers and cookie consent mechanisms. Security posture is generally good with HTTPS enforced, but improvements are recommended in security headers and privacy compliance. Overall, the site is professional, trustworthy, and serves its target audience effectively.

S

SOGILUB – Sociedade de Gestão Integrada de Óleos Lubrificantes Usados, Lda.

sogilub.pt

0

Sogilub is a licensed non-profit entity operating in Portugal since 2005, managing the integrated system for used lubricating oils (SIGOU). It serves producers of new and used oils, ensuring environmental compliance and efficient waste management. The organization maintains a strong market position as the official system manager in Portugal Continental, providing contractual frameworks, educational resources, and operational tools for stakeholders. The website reflects a mature digital presence with comprehensive content, clear navigation, and active communication channels. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering moderate performance and good mobile responsiveness. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates high trustworthiness and compliance with GDPR, supporting Sogilub's role as a key environmental management entity in the energy sector.

L

Lusavouga

lusavouga.pt

0

Lusavouga is a well-established Portuguese company founded in 1967, specializing in the supply and distribution of industrial equipment, tools, chemical products, and safety gear primarily for the metalworking, construction, and manufacturing sectors. With a presence in over 30 countries, Lusavouga holds a strong market position as a trusted supplier offering a broad range of products and services tailored to professional and industrial clients. The website reflects this business focus with comprehensive product categories, brand partnerships, and clear contact channels. Technically, the website employs a modern front-end technology stack including jQuery, Materialize CSS, Bootstrap, and Owl Carousel, combined with analytics tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Privacy and cookie policies are implemented with GDPR compliance mechanisms, including consent banners and newsletter subscription forms with explicit consent checkboxes. From a security perspective, the site uses HTTPS with an excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security policy documentation and incident response contact information, which are recommended for enhanced transparency and trust. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration details are consistent with the business claims, supporting the legitimacy of the website. Overall, Lusavouga's website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic improvements in security policy transparency and incident response readiness would further strengthen its security posture and trustworthiness.

T

Toyota Portugal

toyota.pt

0

Toyota Portugal operates as the official regional website for Toyota's automobile sales and services in Portugal, offering new and used vehicles along with customer support and dealer location services. The website reflects a strong brand presence consistent with Toyota's global identity and targets consumers in Portugal interested in automotive products. The business model centers on vehicle sales and after-sales services, positioning Toyota as a major player in the Portuguese transportation sector. Technically, the website is built on Adobe Experience Manager, leveraging advanced digital asset management via Adobe Scene7, and integrates monitoring and analytics tools such as Datadog RUM and Google Tag Manager. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. Hosting and content delivery utilize Toyota Europe infrastructure and cloud services, ensuring reliable performance. From a security perspective, the site enforces HTTPS, employs reCAPTCHA for form protection, and uses session replay with input masking to safeguard user data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not evident, representing areas for improvement. The absence of a visible privacy policy and terms of service pages also suggests incomplete privacy compliance documentation. Overall, the website is professional, trustworthy, and technically sound, with moderate to high security posture. Strategic recommendations include publishing comprehensive privacy and terms policies, adding security.txt files, enhancing accessibility, and maintaining vigilant third-party script audits to sustain security and compliance.