Security Directory

B'lizzard is a small media production company based in Portugal, specializing in cinema and advertising video production. Their website showcases a diverse portfolio of creative projects including documentaries, commercials, and video installations for various clients. The company targets advertising agencies, cultural institutions, and corporate clients seeking professional media content. Technically, the website is built on WordPress using the Sinatra theme and common plugins such as WPBakery and Google Maps API. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Security-wise, the site uses HTTPS but lacks important security headers and does not provide privacy or cookie policies, indicating compliance gaps. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is professional and functional but could improve in privacy compliance and security best practices.

Critical Software is a well-established technology company specializing in safety, mission, and business-critical software and system services. With over 25 years of experience, it serves demanding industries such as aviation, automotive, defence, energy, finance, government, medical devices, railway, and space. The company is recognized for its expertise in safety-critical software development, testing, verification, and validation, and is trusted by leading global brands including Airbus, Leonardo, BMW, Siemens, ESA, and Thales. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support.

N

NDC

ndcporto.com

0

NDC Porto 2025 is a well-established software developer conference scheduled for October 2025 in Porto, Portugal. The website serves as an event information and registration platform targeting software developers. It leverages modern web technologies including React and Next.js, and integrates with third-party services such as HubSpot and Google Analytics for marketing and analytics purposes. The site is hosted behind Cloudflare, ensuring good performance and security. The presence of a comprehensive cookie consent banner and privacy policy indicates a strong commitment to GDPR compliance. However, explicit terms of service and security policy pages are not found, and no direct contact information is provided on the homepage, which could be improved for better user trust and support. Overall, the website demonstrates a solid technical infrastructure and a professional presentation suitable for its audience and business model.

A

Azure Dev Summit

azuredevsummit.com

0

Azure Dev Summit is a specialized technology conference focused on Microsoft Azure and related developer technologies, scheduled for October 2025 in Lisbon, Portugal. It targets software developers and the Microsoft Azure community, offering a 4-day event with workshops, sessions, and networking opportunities. The event is organized by NDC Conferences Portugal, a recognized entity in the tech conference space, with strong partnerships including Microsoft and other industry players. The website reflects a mature digital presence with comprehensive content, professional design, and clear business information. Technically, the website leverages modern web technologies including Next.js, React, and Sanity CMS, hosted behind Cloudflare DNS and CDN services. It integrates multiple analytics and marketing tools such as Microsoft Clarity, Google Tag Manager, HubSpot, and Mailchimp, indicating a sophisticated approach to user engagement and data collection. The site is mobile-optimized, fast-loading, and SEO-friendly, providing a positive user experience. From a security perspective, the site enforces HTTPS, employs domain locking status flags, and includes a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and no explicit security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is strong but could be improved with additional transparency and DNS security enhancements. The overall risk assessment is low, with the site demonstrating high professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding a vulnerability disclosure page to further enhance trust and security maturity.

Bwin Portugal, operated by Gobet Entretenimento, S.A and part of the Entain group, is a prominent online sports betting and casino platform targeting the Portuguese market. The website offers a wide range of betting options including football, tennis, basketball, and live betting, alongside a comprehensive online casino with slots, roulette, and blackjack. The platform is well-positioned in the Portuguese online gambling sector with a strong brand presence and legal compliance. Technically, the site leverages modern web technologies such as Angular and Partytown for script optimization, ensuring a responsive and performant user experience across devices. The integration of advanced analytics and marketing tools is balanced with GDPR-compliant cookie consent mechanisms, reflecting a mature approach to privacy and user data management. Security posture is robust with HTTPS enforcement and no visible vulnerabilities, although explicit security policy and incident response information are not publicly disclosed. Overall, bwin.pt demonstrates a professional, secure, and user-friendly online gambling service with strong business credibility and digital maturity.

E

expert.pt

expert.pt

0

The website expert.pt is currently in maintenance mode, displaying a message in Portuguese indicating that the store is being updated and will be back online soon. There is minimal content available, no metadata such as title or description, and no visible contact or policy information. The business appears to be an e-commerce entity based in Portugal, but no further business details or market positioning can be determined from the current content. Technically, the site uses basic HTML and CSS with no detected advanced frameworks or CMS. There is no evidence of analytics, tracking, or advertising technologies. Security posture cannot be fully assessed due to lack of data, but no HTTPS or security headers were detected in the provided content. Overall, the site lacks essential compliance and trust indicators, resulting in a low risk and quality score.

Á

Ávoris

avoristravel.pt

0

Ávoris is a large, established tourism ecosystem headquartered in Portugal, operating multiple specialized brands that cater to a wide range of travelers including corporate clients. The company offers a comprehensive suite of services including travel agency networks, hotel distribution platforms, corporate travel and event management, tour operation, and passenger transportation. Their global presence spans 23 countries with over 6,300 employees and a significant annual turnover, positioning them as a major player in the travel and transportation industry. Technically, the website is built using modern technologies such as Astro and leverages Amazon Cloudfront for content delivery, ensuring moderate performance and good mobile optimization. The site includes standard tracking and consent mechanisms, notably Google Tag Manager and a cookie consent script, indicating a baseline level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks advanced security headers and publicly available security policies or incident response contacts. No critical vulnerabilities or suspicious patterns were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration with the business profile. Overall, the website demonstrates a solid business credibility and technical foundation, though improvements in privacy policy transparency, security headers, and accessibility would enhance compliance and user trust. The risk profile is moderate with no immediate critical issues, but strategic enhancements are recommended to maintain and improve security and compliance posture.

U

Universidade do Algarve

ualg.pt

0

The Universidade do Algarve operates a comprehensive and professionally designed website that serves as the official portal for academic programs, research activities, international collaborations, and student services. The site targets students, researchers, and academic staff, providing detailed information about courses, research units, and institutional services. The university holds a solid market position as a regional public higher education institution in Portugal, founded in 1979. Technically, the website is built on Drupal 10, incorporating modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and TikTok Pixel. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The absence of explicit security headers and privacy/cookie policies indicates areas for improvement in security and compliance. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data confirms the domain's legitimacy and consistency with the university's identity, supporting a high trustworthiness rating. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, security header implementation, and clearer contact information to strengthen user trust and regulatory adherence.

A

alpine

alpinecars.pt

0

Alpinecars.pt is the official Portuguese website for the Alpine brand, specializing in sports vehicles and motorsport competition engagement including Formula 1 and WEC. The site targets Portuguese-speaking automotive enthusiasts and potential customers, offering detailed information on vehicle models, connected services, financing, insurance, and brand experiences. It operates under the Renault Group umbrella, reflecting a medium-sized regional presence with consistent branding and good content quality. Technically, the website leverages modern web technologies including React, optimized image formats, and CDN hosting by Renault Group. It integrates Google Analytics and Tag Manager for user tracking and employs OneTrust for cookie consent management. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS with excellent SSL configuration and implements multiple security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy policy, terms of service, and contact information for security or incident response reduces privacy compliance and user trust slightly. Overall, the website presents a professional and trustworthy digital presence with a strong security posture but would benefit from enhanced transparency regarding privacy and contact details to improve compliance and user confidence.

W

Web Summit

websummit.net

0

Web Summit is a globally recognized technology conference organizer, hosting the world's largest tech event annually in Lisbon. The company connects over 70,000 attendees including startups, investors, media, and industry leaders. Their business model revolves around event ticket sales, startup programs, and partnerships. The website demonstrates a mature digital infrastructure using modern technologies such as Next.js and Google Tag Manager, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly detailed. Overall, the site reflects a professional and trustworthy brand with extensive industry reach.

R

Retail Consult

retail-consult.com

0

Retail Consult is a specialized technology consulting firm focused on retail transformation, offering strategy, implementation, deployment, training, and support services. The company serves a diverse client base across multiple retail sectors and has a strong market presence supported by client testimonials and certifications such as the Great Place To Work 2024. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and CookieYes for cookie consent management, providing a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS enforced, use of CAPTCHA for forms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with comprehensive GDPR-aligned privacy and cookie policies. Overall, the website reflects a professional and trustworthy business with good digital maturity and security awareness.

T

Teleperformance Portugal

teleperformance.pt

0

Teleperformance Portugal operates a professional multilingual job portal focused on customer service and support roles, positioning itself as a leading provider of omnichannel customer solutions. The website targets job seekers interested in careers with Teleperformance, offering detailed job listings and a streamlined application process. The company maintains a strong market presence with recognized certifications and partnerships with major brands such as Spotify and Pinterest. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, enhanced by SEO and GDPR compliance plugins. It demonstrates good mobile optimization and moderate performance, with comprehensive cookie consent and privacy policy implementations. The use of tracking pixels and analytics tools is balanced with privacy considerations. From a security perspective, the site enforces HTTPS and employs consent management but lacks some advanced security headers and incident response disclosures. No critical vulnerabilities or blocking mechanisms were detected, indicating a solid security posture suitable for its business model. Overall, the website reflects a credible and professional digital presence for Teleperformance Portugal, with recommendations to enhance security headers and incident response transparency to further strengthen trust and compliance.

R

RE/MAX Portugal

remax.pt

0

RE/MAX Portugal is a leading real estate brokerage and franchising company operating in Portugal since 2000. The website offers a comprehensive portfolio of properties for sale and rent, including luxury listings and developments. It targets property buyers, sellers, renters, and investors, providing personalized services and a strong network of agents and agencies. The site is well-structured, multilingual, and optimized for both desktop and mobile users, reflecting a mature digital presence. Technically, it leverages modern frameworks like React and Next.js, with integration of Google Tag Manager for analytics and marketing. Security measures are robust, with HTTPS enforced and appropriate security headers in place. Privacy and cookie policies are present and compliant with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and business credibility.

BIAL is a well-established pharmaceutical company founded in 1924, focused on discovering, developing, and commercializing innovative therapeutic solutions. The company maintains a strong global presence and targets healthcare professionals, researchers, and patients. The website reflects a mature digital presence with comprehensive content, clear navigation, and multi-language support. Technically, the site uses modern frameworks such as Next.js and React, integrates multiple analytics and marketing tools, and follows good performance and accessibility practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not found. Overall, the website demonstrates high professionalism and trustworthiness, supporting BIAL's market position as a leading pharmaceutical entity.

M

Mintt Studio

minttstudio.com

0

Mintt Studio is a technology company specializing in developing enterprise-grade Shopify apps designed to enhance engagement, social proof, and sales for Shopify merchants. With over 300,000 merchants trusting their solutions, Mintt Studio positions itself as a leading provider in the e-commerce app market, offering seamless integrations and expert support. Their key products include Instafeed - Instagram Feed and Juniper - TikTok Feed, which enable merchants to showcase social media content directly on their stores. The website is built on Squarespace 7.1, reflecting a modern and professional digital presence optimized for performance and mobile devices. Security measures such as HTTPS and HSTS are properly implemented, ensuring secure user interactions. However, the site lacks explicit terms of service and detailed security or incident response policies, which could be improved to enhance trust and compliance. Overall, Mintt Studio demonstrates a strong market position with good technical infrastructure and a solid security posture, though privacy compliance and contact transparency could be enhanced.

A

AICEP

portugalglobal.pt

0

AICEP is a Portuguese public agency dedicated to promoting productive investment and the internationalization of the Portuguese economy. It supports export growth and the international expansion of companies through its offices in Portugal and an external network spanning approximately 50 markets. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. The technical infrastructure leverages modern JavaScript libraries, marketing automation via Mautic, and cookie consent management through OneTrust, ensuring compliance with GDPR and user privacy standards. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit incident response policies are absent. Overall, the site presents a trustworthy, professional, and well-maintained platform aligned with its government agency role.

KAICIID is an intergovernmental organization dedicated to promoting intercultural and interreligious dialogue to foster peace globally. The website reflects a mature organization with a clear mission, targeting religious leaders, educators, and policymakers. It offers capacity building, dialogue platforms, and regional initiatives. Technically, the site is built on Drupal 10 with modern frontend libraries and hosted on Pantheon, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security posture. Privacy compliance is basic, with no cookie consent mechanisms despite tracking scripts. Contact information and social media presence are well established, supporting business credibility. Overall, the site is professional and content-rich but requires urgent security improvements.

B

BIGagency

bigagency.es

0

BIGagency is a digital marketing franchise business offering a comprehensive suite of services including branding, social media management, web design, digital marketing, content and video production, and e-commerce solutions. The company targets marketing professionals and commercial agents seeking to establish their own digital agency with low upfront investment. The website is built on WordPress using Elementor and integrates marketing tools such as ActiveCampaign and Google Tag Manager. However, the site lacks a valid SSL certificate, which is a critical security concern. Contact information is clearly provided with multiple physical locations in Portugal, Germany, and Spain, supporting a European market presence. Privacy and cookie policies are absent, indicating compliance gaps.

P

pbbr | Sociedade de Advogados RL, Lda.

pbbr.pt

0

pbbr | Sociedade de Advogados RL, Lda. is a small full service law firm based in Lisbon, Portugal, established in 2006. The firm offers comprehensive legal advice and assistance with a national and international client base. Their website reflects a professional and consistent brand image, targeting clients seeking high-quality legal services. The firm maintains a presence on LinkedIn and provides newsletter subscriptions to engage clients and partners. Technically, the website uses a modern tech stack including nginx, PHP, Bootstrap, Google Tag Manager, and Cookiebot for consent management. The site is mobile optimized and SEO friendly, though performance metrics are unavailable. Hosting is managed via host-redirect.com DNS servers. However, the website lacks a valid SSL certificate, resulting in no proper HTTPS support, which is a significant security concern. Security posture is moderate with good use of security headers and content security policies, but the absence of valid SSL/TLS and modern TLS protocols severely undermines security. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. Contact information is limited to forms, with no explicit emails or phone numbers displayed. Overall, the website is functional and professional but requires urgent remediation of SSL/TLS issues to improve security and trustworthiness. Strategic improvements in security and contact transparency will enhance the firm's digital maturity and client confidence.

G

GLS Portugal

gls-portugal.pt

0

GLS Portugal is a well-established parcel delivery and logistics company operating since 2005, serving both business and private customers with a broad range of national and international shipping services. It is part of the GLS Group, leveraging a large European logistics network. The website demonstrates a mature digital presence with multilingual support, comprehensive parcel tracking tools, and client portals. Technically, the site is built on WordPress with modern libraries and hosted on Google Cloud, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, HSTS, and reCAPTCHA Enterprise integration, though some security headers and OCSP stapling could be improved. Privacy compliance is strong with GDPR-aligned cookie consent and detailed policies. Overall, GLS Portugal presents a professional, trustworthy, and user-friendly online platform supporting its logistics business effectively.