Security Directory

F

Fundación Universitaria San Pablo CEU

ceu.es

0

Fundación Universitaria San Pablo CEU is a well-established Spanish educational institution operating multiple centers across Spain, including universities, vocational training, and schools. The website reflects a professional and comprehensive digital presence targeting students and academic communities. The institution leverages modern web technologies such as Bootstrap, jQuery, and integrates analytics and marketing tools like Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The website is well-structured, mobile-optimized, and provides clear privacy and cookie policies, demonstrating a commitment to GDPR compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could enhance protection. Overall, the domain and website present a trustworthy and credible educational entity with no signs of malicious activity or content blocking.

E

Euractiv.es

euractiv.es

0

Euractiv.es is a Spanish-language European news media website specializing in European political, economic, technological, and environmental news. It serves a general audience interested in European affairs and operates as part of the broader Euractiv network with related domains for events and job listings. The website employs a modern technical infrastructure based on WordPress, enhanced with SEO tools, consent management, and push notification services. Security measures include HTTPS, security headers, and anti-bot protections, reflecting a mature security posture. However, the absence of explicit privacy and cookie policies and lack of direct contact emails or phone numbers indicate areas for compliance and transparency improvement. Overall, Euractiv.es presents a professional and trustworthy media presence with moderate tracking and advertising typical for its industry.

Ford Spain operates a comprehensive and professionally designed website serving as the official portal for Ford vehicles in Spain. The site provides detailed vehicle specifications, pricing, and promotional information tailored to the Spanish market. The use of Adobe Experience Manager and Akamai service workers indicates a mature technical infrastructure supporting performance and scalability. Privacy and cookie policies are well implemented, reflecting compliance with GDPR requirements. However, explicit contact information and security incident response policies are not readily visible in the provided content, which could be improved to enhance user trust and compliance transparency. Overall, the website demonstrates a strong security posture with HTTPS enforcement and modern web technologies, positioning it as a reliable and authoritative source for Ford customers in Spain.

V

VentoByte SL

qrvpn.com

0

Qrvpn.com is a technology-focused website offering a multi-platform VPN solution that enables individuals and businesses to deploy their own VPN servers and clients quickly and easily. The company behind the website is VentoByte SL, a small-sized technology firm based in Spain, founded in 2023. The website targets users seeking privacy and security by avoiding third-party VPN providers, emphasizing ease of use and security. The business model revolves around distributing VPN client and server software in beta versions across major platforms including Windows, Android, Linux, and iOS/macOS. Technically, the website employs modern frontend technologies such as Bootstrap 5, Font Awesome, and Google Fonts, delivering a responsive and well-structured user experience. The site is hosted with HTTPS enabled and uses reputable DNS providers, though no CMS or advanced backend technologies are detected. Performance is moderate with good mobile optimization but basic accessibility features. No analytics or tracking scripts are present, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks security headers and a published security policy or incident response plan. Privacy compliance is partial, with a privacy policy present but no cookie policy or consent mechanism. Contact information and incident response contacts are absent, limiting user trust and support avenues. Overall, the website presents a trustworthy and professional front for a niche VPN software provider with room for improvement in security policies, privacy compliance, and user contact options. The domain registration details align well with the business claims, supporting legitimacy. Strategic enhancements in security posture and transparency would strengthen the company's market position and user confidence.

V

VentoByte SL

yogadns.com

0

YogaDNS is a specialized software product developed by VentoByte SL, targeting Windows users who require advanced DNS client capabilities. The product supports multiple modern DNS protocols and offers flexible DNS server and network interface rules, positioning itself as a niche solution in the DNS security and networking space. The website is professionally designed with clear navigation and relevant content focused on the product features and use cases. Technical infrastructure appears standard with no CMS detected and hosting details not explicitly disclosed, but DNS Made Easy name servers are used. Security posture is moderate; while domain registration is consistent and trustworthy, the website lacks visible security headers, cookie consent mechanisms, and published security policies. No contact information or social media presence is evident, which may impact user trust and support accessibility. Overall, the site is safe with no adult or questionable content and presents a credible business offering in the technology sector.

A

Allfunds Bank S.A.U.

webfg.com

0

Allfunds Bank S.A.U. operates as a leading WealthTech platform with over 20 years of experience, providing a comprehensive digital ecosystem for fund distribution and wealth management. The company offers advanced tools including dealing, execution, ESG analytics, compliance, and blockchain technology to a global clientele of fund houses, distributors, and investors. Positioned as a major player in the finance sector, Allfunds manages assets exceeding €1.6 trillion and maintains a strong market presence with a large distributor network across 66 countries. Technically, the website leverages modern web technologies such as React and Emotion CSS, supported by Akamai CDN for hosting and performance. It integrates Google Analytics, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing, all managed with user consent mechanisms. The site is mobile-optimized, SEO-friendly, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS with a strong SSL configuration and implements cookie consent for privacy compliance. While some security headers are not explicitly confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The domain is well-established since 2000, registered through a reputable registrar, and consistent with the company's operational claims. Overall, Allfunds demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable and credible platform in the WealthTech industry. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen security and trust.

S

SiteGround

siteground.es

0

SiteGround is a large, established web hosting provider offering a range of hosting services including domain hosting, security, and expert 24/7 support. The company targets individuals and businesses seeking reliable and fast web hosting solutions, with a strong market presence in Spain and globally. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and policies. Technically, the site uses modern technologies such as Cookiebot for consent management, Google Tag Manager, and integrates with multiple third-party analytics and marketing platforms. Security practices are robust, with HTTPS enforced, bot detection, and a detailed cookie consent mechanism. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and demonstrates a mature digital infrastructure.

F

Flowbox AB

photoslurp.com

0

Flowbox AB is a medium-sized European SaaS company specializing in a User-Generated Content platform designed to help brands integrate social content across the buyer journey to increase engagement and sales. Founded in 2016 and headquartered in Barcelona, Spain, Flowbox has established itself as a leading marketing technology provider with over 850 customers worldwide. The company offers advanced AI-powered tools, multi-platform integrations, and comprehensive analytics to optimize user-generated content management for demanding e-commerce brands. Technically, the website is built on WordPress with modern SEO and analytics tools, hosted under Amazon Registrar with a secure HTTPS configuration. Security posture is solid but could be improved by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, well-branded, and trustworthy, with no signs of blocking or suspicious activity.

R

Red Arbor Holding, S.L.

redarbor.net

0

Redarbor is a leading HR technology holding company founded in 2013 by David González Castro. It operates the second largest group of employment sites globally and the largest in Latin America, offering digital recruitment platforms and HR SaaS solutions. The company serves millions of users monthly and thousands of businesses, with a strong presence across Latin American countries and Spain. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and a consent management platform (Didomi), hosted on AWS infrastructure. The site is well-optimized for mobile and accessibility, with comprehensive privacy and cookie policies reflecting GDPR compliance. Security-wise, Redarbor holds ISO 27001 certification, indicating a mature security posture, though DNSSEC is not enabled and no public incident response contacts are found. Overall, the website is professional, trustworthy, and technically sound, supporting the company's market leadership and business credibility.

F

Flowbox AB

getflowbox.com

0

Flowbox AB is a medium-sized SaaS company specializing in a User-Generated Content platform designed to help brands integrate and leverage social content across the buyer journey to increase engagement and sales. Established in 2016 and headquartered in Barcelona, Spain, Flowbox has grown rapidly and merged with Photoslurp in 2022, expanding its market reach to over 850 customers in 40 markets. The company offers advanced AI-driven tools, seamless eCommerce integrations, and a comprehensive analytics suite, positioning itself as a leading marketing technology provider in Europe. Technically, the website is built on WordPress with a modern tech stack including HubSpot, Google Tag Manager, Drift chat, and Cookiebot for consent management. The site is well-optimized for SEO, mobile responsiveness, and accessibility, with fast performance and clear navigation. Hosting and DNS are managed via Amazon Registrar, Inc., indicating reliable infrastructure. From a security perspective, the site uses HTTPS with strong domain registration protections but lacks DNSSEC and explicit security headers. Privacy compliance is robust with clear GDPR and cookie policies and consent mechanisms. However, no explicit security or incident response policies are published. No vulnerabilities or suspicious content were detected. Overall, Flowbox presents a trustworthy, professional online presence with strong business credibility and digital maturity. Strategic improvements could include enhancing DNS security, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

BBVA Spark is a specialized unit of BBVA focused on supporting innovative and technological companies, particularly startups and venture capital investors, with tailored financial services including venture debt and credit solutions. The website is professionally designed, well-branded, and optimized for SEO and mobile use, reflecting a mature digital presence. The technical infrastructure leverages WordPress CMS, Adobe Launch for marketing, Google reCAPTCHA for security, and OneTrust for cookie consent, indicating a modern and compliant setup. Security posture is strong with HTTPS enforced and security headers present, though explicit security policies and incident response information are not published, representing an area for improvement. The absence of WHOIS data raises questions about domain registration status, but the website's branding and content strongly align with BBVA's corporate identity, suggesting legitimacy. Overall, the site is low risk but would benefit from enhanced transparency on security and ownership details.

C

Cadwork Ibérica & Latinoamérica

cadwork-software.com

0

Cadwork Ibérica & Latinoamérica operates as a specialized software provider focused on CAD/CAM/BIM solutions for the design, fabrication, and assembly of wooden structures. With over 30 years of industry presence, the company targets construction professionals and enterprises in Spain and Latin America, positioning itself as a leader in wood construction software. The website reflects a professional and consistent brand image, offering detailed product information and educational resources. Technically, the site is built on WordPress with modern plugins and frameworks, hosted by Webempresa, and optimized for mobile and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and vulnerability disclosure channels. Overall, the domain registration is legitimate and consistent with the business profile, supporting trustworthiness. Recommendations include enhancing security transparency and enabling DNSSEC.

G

GtresOnline

stockfood.es

0

StockFood is a leading global agency specializing in food photography, videos, reports, and recipes, serving professional clients worldwide. The company offers a broad portfolio of content created by over 1,500 professional photographers, catering primarily to the food and media industries. Their business model includes licensing rights-protected and royalty-free content, alongside custom production services and an online ArtShop for printed products. The website targets food industry professionals and media companies seeking high-quality culinary imagery and related services. Technically, the site uses a combination of jQuery and React 15.4.0, with a moderate performance profile and good mobile optimization. SEO and accessibility are basic to good, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and secure forms, but lacks visible security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-branded, with a strong international presence through multiple country domains.

M

Meetic SAS

meetic.es

0

Meetic.es is a mature, enterprise-level online dating platform operated by Meetic SAS, targeting Spanish-speaking adults seeking relationships. The site offers matchmaking and communication services with a subscription-based business model. Technically, the website uses modern frameworks such as React and integrates Google Analytics and Tag Manager for marketing and analytics. The site is well-optimized for mobile and desktop with good SEO and accessibility basics. Security posture is strong with HTTPS enforced and appropriate security headers, though no explicit security.txt or incident response contacts are found. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the site is professional, trustworthy, and well-positioned in the European dating market.

Z

Zendesk

zendesk.es

0

Zendesk is a leading enterprise software company specializing in comprehensive customer service solutions powered by artificial intelligence. Their platform supports multichannel communication including SMS, email, chat, voice, and social media, serving over 200,000 customers globally. The website reflects a mature digital presence with multiple language options and a strong emphasis on AI-driven service enhancements. Technically, the site leverages modern frameworks such as Next.js, integrates marketing and analytics tools like Marketo and Google Tag Manager, and uses Amazon Cloudfront for content delivery, ensuring fast and responsive user experience. Security posture is solid with HTTPS enforcement and key security headers, though improvements like CSP and DNSSEC could enhance protection. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site demonstrates high professionalism and trustworthiness, though WHOIS data is unavailable due to registry restrictions, limiting domain registration verification.

S

SEAT

seat.com

0

SEAT's official website presents a professional and comprehensive platform showcasing their range of new and used cars. The site targets consumers interested in automotive products, offering detailed model information and facilitating vehicle discovery. The brand is well-established in the transportation sector, primarily serving the Spanish market with localized versions for other countries. Technically, the website leverages Adobe Experience Manager CMS, integrates advanced analytics and marketing tools such as Google Tag Manager, Adobe Analytics, and Hotjar, and implements GDPR-compliant cookie consent via OneTrust. Accessibility features are also incorporated, enhancing usability for visually impaired users. Security posture is strong with HTTPS enforced and privacy frameworks in place, though explicit security headers and incident response contacts are not clearly visible. The absence of WHOIS data is notable but likely due to registry privacy policies rather than malicious intent. Overall, the website is trustworthy, well-designed, and compliant with privacy regulations, supporting SEAT's market position as a reputable automotive brand.

F

Fontventa S.L.

fontventa.com

0

Fontventa S.L. is a Spanish IT consulting and services company specializing in digital transformation, IT maintenance, custom software development, web design, and multimedia applications. With over 25 years of experience, the company serves businesses and individuals primarily in Spain, offering a broad portfolio of IT solutions including e-commerce, mobile applications, and IT audits. The website reflects a professional and trustworthy business with clear service offerings and client testimonials. Technically, the site uses modern web technologies such as jQuery, Bootstrap, and Swiper, and implements HTTPS with cookie consent mechanisms, indicating a mature digital presence. Security posture is solid with certifications like ISO 27001 and ENS, though some improvements in security headers and incident response disclosures are recommended. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not overshadow the overall professional presentation. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving accessibility compliance to further strengthen the company's security and compliance posture.

F

Fontventa S.L.

trackpeople.es

0

Track People, developed by Fontventa S.L., is a mature SaaS platform focused on employee work hour registration and human resources management, primarily serving Spanish businesses. The website demonstrates a strong market position with over 2,000 companies relying on its technology, offering a comprehensive suite of services including digital time tracking, geolocation, leave management, project tracking, internal communication, and digital signature capabilities. The platform emphasizes compliance with Spanish labor laws and data protection regulations, supported by ISO 27001 and ENS Alta certifications. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and various analytics and marketing tools, ensuring a responsive and user-friendly experience across devices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data due to registry restrictions limits domain legitimacy verification, but the professional presentation and certifications provide strong trust signals. Overall, the site is well-designed, secure, and compliant, positioning Track People as a credible solution in the HR technology market.

K

Knight Frank

knightfrank.es

0

Knight Frank is a leading global private real estate consultancy with a strong presence in Spain and worldwide. The company offers a wide range of commercial and residential property services, including capital markets, valuations, tenant representation, and ESG consulting. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to property owners, investors, and corporate clients. Technically, the site uses modern JavaScript libraries, a proprietary CMS, and implements security best practices such as HTTPS and Google reCAPTCHA on forms. Privacy and cookie policies are clearly presented with consent mechanisms, indicating good GDPR compliance. However, WHOIS data is unavailable due to .es domain registry restrictions, but the overall trustworthiness remains high based on brand reputation and website professionalism.

S

Securitas

securitas.es

0

Securitas Spain operates as a leading provider of customized security solutions for businesses, leveraging advanced technology, risk analysis, and continuous monitoring through its Securitas Operation Centre (SOC). The company offers a broad portfolio of services including consulting, mobile security, remote surveillance, digital services, electronic security, and fire protection, targeting enterprises primarily within Spain. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to business clients. Technically, the site employs modern technologies such as EPiServer CMS, Google Tag Manager, Microsoft Application Insights, and OneTrust for cookie consent, indicating a well-maintained infrastructure with good performance and accessibility. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring GDPR-aligned privacy and cookie policies with active consent mechanisms. However, the absence of a public security policy or incident response contact details suggests room for improvement in transparency and security communication. Overall, the domain appears legitimate and consistent with the business profile, though WHOIS data is unavailable due to query restrictions. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

M

MSC Cruceros España

msccruceros.es

0

MSC Cruceros España operates as the Spanish localized website for MSC Cruises, a major international cruise line. The site offers cruise vacation bookings, deals, onboard experiences, and customer account management tailored for the Spanish market. It is part of the larger MSC Cruises group, reflecting a strong market position in the transportation and hospitality sectors. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content to serve its target audience effectively. Technically, the site leverages modern web technologies including Vue.js, Marketo for marketing automation, Didomi for consent management, and Akamai for hosting and CDN services. It integrates multiple analytics and marketing tools such as Google Tag Manager, Adobe DTM, and Abtasty, indicating a mature digital marketing infrastructure. Performance is moderate with good mobile responsiveness and SEO practices. From a security perspective, the website enforces HTTPS and employs consent management for cookies, reflecting GDPR compliance. While explicit security headers are not fully confirmed, the site follows best practices by avoiding exposed sensitive data and using service workers for performance. No critical vulnerabilities or suspicious content were detected. However, the site lacks publicly available security policies or incident response contacts, which could be improved. Overall, MSC Cruceros España presents a low-risk profile with a strong business credibility and good privacy compliance. Recommendations include enhancing security header implementation, publishing security and incident response policies, and maintaining regular audits of third-party scripts to sustain security posture.

F

Franz Kaldewei GmbH & Co. KG

kaldewei.es

0

KALDEWEI is a well-established manufacturer specializing in high-quality bathroom fixtures including bathtubs, shower trays, and washbasins. The company operates internationally with localized websites, including the Spanish domain analyzed here. Their business model focuses on manufacturing and retail, targeting general consumers and professionals in bathroom planning and renovation. The website reflects a professional brand presence with consistent branding and good content quality. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery, Google reCAPTCHA for bot protection, and Usercentrics for cookie consent management. The site is mobile-optimized and integrates Google Tag Manager for analytics and marketing purposes. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, which are positive indicators. However, it lacks visible security headers and does not publish a privacy policy or terms of service pages, which are important for compliance and user trust. WHOIS data is unavailable due to registrar restrictions, limiting domain trust verification. No direct contact emails or phone numbers are exposed on the site, with contact facilitated through a dedicated contact page. Overall, the website presents a low-risk profile with good business credibility but would benefit from enhanced transparency in privacy and security policies. Strategic improvements in security headers, policy disclosures, and incident response information would strengthen the security posture and compliance standing.

The website thefork.es is currently inaccessible due to a bot protection mechanism implemented via captcha-delivery.com services, which blocks direct access to the site's content. As a result, no business-specific information, metadata, or contact details could be extracted from the provided HTML content. The site appears to be protected by a Web Application Firewall or similar security layer that requires CAPTCHA validation before granting access. Without access to the actual content, a detailed assessment of the business, technical infrastructure, or security posture is not feasible. From the limited data, the site uses JavaScript and external CAPTCHA scripts for bot mitigation. No privacy, cookie, or terms of service policies were found in the provided content, nor were any contact details or social media links. The lack of accessible content prevents evaluation of SEO, accessibility, or performance metrics. Security-wise, the presence of a CAPTCHA challenge indicates an effort to mitigate automated attacks or abuse, which is a positive security control. However, no further security headers or SSL details were available to assess the overall security posture. The absence of visible business or compliance information limits trust and credibility evaluation. Overall, the site is currently blocked from analysis due to security controls, resulting in a low AI score and incomplete insights. For a comprehensive evaluation, access to the full website content without WAF restrictions is necessary.

A

AHB Tooling & Machinery

ahbwaterjet.es

0

AHB Tooling & Machinery operates the website ahbwaterjet.es, providing OEM replacement parts and consumables for waterjet propulsion systems primarily targeting manufacturers and workshops in Spain. The company positions itself as a specialized supplier with technical expertise and offers a distributor program. The website is built on WordPress with WooCommerce, featuring modern plugins such as WPBakery Page Builder and Slider Revolution. It integrates Google Analytics and Google reCAPTCHA for analytics and security purposes. The site is mobile-optimized and presents a professional design with clear navigation and consistent branding. Security posture is adequate with HTTPS and reCAPTCHA but lacks advanced security headers and explicit incident response policies. Privacy and cookie policies exist but lack active consent mechanisms, indicating partial GDPR compliance. Overall, the website is trustworthy and functional with room for security and compliance improvements.

D

Doofinder SL

doofinder.com

0

Doofinder SL operates a professional website offering AI-powered search and discovery solutions tailored for eCommerce platforms. The company positions itself as a leader in the eCommerce search market with over 10,000 customers and a comprehensive suite of services including AI visual tagging, personalized recommendations, and advanced analytics. The website is built on WordPress with modern technologies and integrates multiple marketing and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data limits domain registration trust verification, but the website content and business information strongly indicate a legitimate and professional operation.

E

Eventbrite

eventbrite.es

0

Eventbrite is a leading global online platform that facilitates event discovery, creation, and ticket sales. The company targets a broad audience interested in live experiences and event organization, offering comprehensive tools for event marketing and management. The website is professionally designed, mobile-optimized, and provides rich content in Spanish tailored for the Spanish market. Technically, the site leverages modern web technologies including React, Google Analytics, and advanced consent management tools, ensuring a robust digital infrastructure. Security measures such as HTTPS, security headers, and consent mechanisms are well implemented, reflecting a mature security posture. However, WHOIS data is unavailable due to .es domain query restrictions, limiting domain registration verification. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

K

Kaspersky

kaspersky.es

0

Kaspersky is a globally recognized cybersecurity company founded in 1997, offering advanced security solutions for both consumers and businesses. The Spanish localized website provides comprehensive information about their premium antivirus products, VPN services, password management, and parental controls. The company positions itself as a leader in cybersecurity with numerous industry awards and certifications, emphasizing protection, privacy, and performance. The website is well-designed, mobile-optimized, and rich in content, targeting Spanish-speaking users in Spain and Latin America. Technically, the site uses modern frameworks like React and Next.js, integrates analytics and marketing tools such as Google Tag Manager, Cookiebot, and Kameleoon, and enforces strong security practices including HTTPS and security headers. Privacy compliance is robust with clear policies and consent mechanisms. However, WHOIS data is unavailable due to query restrictions, limiting domain registration verification. Overall, the site reflects a mature, trustworthy business with a strong security posture and professional digital presence.

Post Affiliate Pro is a mature and professional SaaS provider specializing in affiliate marketing software. The company offers a comprehensive platform for managing affiliate programs, tracking performance, automating workflows, and generating detailed reports. The website is well-designed, mobile-optimized, and provides rich content in Spanish with multilingual support, indicating a broad international target audience. The technical infrastructure leverages modern web technologies including Hugo static site generation, JavaScript libraries for search and tracking, and integrates with multiple third-party services for analytics and marketing. Security posture is strong with HTTPS enforced and appropriate security headers implied, though explicit security and privacy policies are not prominently found. The absence of WHOIS data is due to Red.es query restrictions, but the domain and website content suggest a legitimate and established business. Overall, the site demonstrates high professionalism and trustworthiness, suitable for business customers seeking affiliate marketing solutions.

E

Eventbrite

ticketea.com

0

Ticketea.com is a Spanish localized event ticketing and management website integrated into the global Eventbrite platform since 2018. It offers users the ability to discover and purchase tickets for concerts, festivals, and other events, while also providing event organizers tools to create and sell tickets online. The website serves as a regional portal redirecting users to Eventbrite's main event listings and services, maintaining consistent branding and professional presentation aligned with Eventbrite's global standards. Technically, the site uses modern JavaScript libraries such as jQuery and Google Tag Manager for analytics and marketing, hosted on AWS infrastructure as indicated by DNS servers. The site is mobile optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and cookie consent mechanisms. Security posture is solid with HTTPS enforced and domain transfer protections, but lacks DNSSEC and visible security headers in the HTML content. Privacy policies and terms of service are comprehensive and GDPR compliant, though explicit cookie consent is missing. Overall, the site reflects a mature, trustworthy e-commerce platform with strong business credibility and moderate technical sophistication.

W

Welbilt Iberia SAU

welbilt.es

0

Welbilt Iberia SAU operates a professional website focused on providing high-tech equipment solutions for the hospitality industry in Spain. The company offers a wide range of products and services including multiple well-known brands, warranty registration, and technical support services. The website targets hospitality businesses such as cafes, hotels, catering, bakeries, and quick service restaurants. Technically, the website employs modern web technologies including jQuery, Bootstrap, Usercentrics for consent management, Google Tag Manager, HubSpot, and Microsoft Application Insights for analytics and monitoring. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is strong with HTTPS enforced and privacy compliance mechanisms in place, although explicit security headers and incident response information are not publicly disclosed. WHOIS data is restricted due to Red.es policies, but no suspicious indicators are present. Overall, the website reflects a credible and established business with good digital maturity and compliance practices.

B

BDO España

bdo.es

0

BDO España is a professional services firm specializing in audit, legal, fiscal, outsourcing, and advisory services. It operates as part of the global BDO network, serving businesses and professionals in Spain. The website reflects a mature digital presence with consistent branding and a clear focus on its core services. The technical infrastructure leverages modern analytics and marketing technologies including Google Analytics, LinkedIn Insight, and Microsoft Application Insights, hosted likely on Microsoft Azure. The site implements GDPR-compliant cookie consent mechanisms with detailed cookie categorization and user control. Security posture is generally strong with HTTPS enforced and IP anonymization in analytics, though explicit security headers are not detected and could be improved. No WHOIS data was accessible due to Red.es query restrictions, but the domain appears legitimate and consistent with the business profile. Overall, the website is professional, secure, and compliant, suitable for its target audience of business clients seeking professional advisory services.

N

NH HOTELS

nh-hotels.com

0

NH Hotels is a well-established international hospitality company operating a large portfolio of 4 and 5 star hotels across major global capitals. The website serves as a professional online booking platform targeting travelers seeking premium accommodations. The company demonstrates strong market positioning with over 350 hotels in 36 countries and a loyalty program to engage customers. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, reCAPTCHA, and Akamai CDN services, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and consent management, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data reduces transparency but does not detract significantly from the overall legitimacy given the professional branding and content quality. Strategic recommendations include enhancing security header implementation and publishing security and incident response policies to improve trust and compliance.

E

Electronic Cash Conference 2025 | Barcelona

ecashconference.com

0

The Electronic Cash Conference 2025 website serves as an informational and ticketing platform for a specialized event focused on digital cash and decentralized finance, scheduled in Barcelona. The site targets developers, researchers, and advocates in the blockchain and digital currency space, offering talks, panels, and workshops. The business model revolves around event organization and community engagement within a niche technology sector. The domain is newly registered in 2025, consistent with the event timeline, and hosted with reputable infrastructure. Technically, the website is built using modern frameworks such as Next.js and React, ensuring good performance, mobile optimization, and accessibility. The site is well-structured with clear navigation and professional design, enhancing user experience. However, it lacks some standard compliance elements such as privacy and cookie policies, and no contact information is provided, which limits user trust and regulatory compliance. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended to enhance security posture. No vulnerability disclosures or incident response contacts are published, which could be improved to increase transparency and readiness. No tracking or analytics scripts were detected, indicating minimal user data collection. Overall, the website is professional and trustworthy for its purpose but would benefit from adding privacy and cookie policies, contact information, and enhanced security headers to improve compliance and user trust. The domain registration is appropriate and consistent with the event's nature, supporting legitimacy.

Z

Zentiva Group, a.s.

zentiva.es

0

Zentiva Group, a.s. operates a professional and comprehensive pharmaceutical website focused on providing affordable healthcare and pharmaceutical products across multiple countries, primarily in Europe. The company emphasizes innovation, manufacturing, and sustainability in its business model, targeting a broad audience including healthcare professionals and the general public. The website is well-structured, multilingual, and links to numerous country-specific subsidiaries, reflecting a large multinational presence. Technically, the site uses a modern technology stack including jQuery, Google Tag Manager, Cookiebot for consent management, and other JavaScript libraries to enhance user experience and analytics. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are not explicitly detected. HTTPS is enforced, and cookie consent mechanisms are implemented, indicating good privacy compliance. Security posture is solid with no critical vulnerabilities detected in the content. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and security maturity. The WHOIS data is unavailable due to query restrictions, but the domain and website content are consistent with a legitimate, established pharmaceutical company. Overall, the website presents a trustworthy, professional front with good compliance and technical standards, suitable for its industry and audience.

K

Kymos Group

kymos.com

0

Kymos Group is a well-established Contract Research Organization (CRO) specializing in bioanalytical and CMC services for small molecules, biologics, TIDES, and advanced therapies. With a strong European presence through laboratories in Spain, Italy, Germany, and South Korea, the company serves a broad range of industries including pharmaceutical, biotechnology, veterinary, and cosmetics. Their services cover the entire product lifecycle from early research to commercialization, supported by GLP and GMP certifications and inspections by FDA, EMA, and ANVISA. The website reflects a professional and comprehensive digital presence with clear service offerings and strong trust indicators. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering good performance and mobile responsiveness. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and DNSSEC are recommended. Privacy compliance is evident with privacy and cookie policies and consent mechanisms in place. Overall, the site demonstrates high business credibility and digital maturity.

Cardinal Health España is a localized Spanish website of Cardinal Health, a large multinational healthcare services and products company. The site offers medical products and logistical solutions tailored for healthcare providers in Spain. The business is positioned as a key player in healthcare supply chain and patient care solutions, targeting professional healthcare organizations. Technically, the website uses modern web technologies including Adobe Experience Manager CMS, Adobe DTM for tag management, Coveo for search, and OneTrust for cookie consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and use of reCAPTCHA for form protection, though explicit security headers and policies could be improved. Privacy compliance is partially addressed with cookie consent but lacks visible privacy policy and terms of service links in the provided content. Overall, the domain registration data aligns well with the business identity, supporting legitimacy. The site is professional, well-branded, and safe for general audiences.

I

International Generic and Biosimilar medicines Association - IGBA

igbamedicines.org

0

The International Generic and Biosimilar Medicines Association (IGBA) is a globally recognized industry association representing manufacturers and associations involved in generic and biosimilar medicines. Founded in 2015 and headquartered in Spain with operational presence in Geneva, Switzerland, IGBA focuses on advocacy, policy development, and promoting access to affordable, quality medicines worldwide. The website serves as a professional platform providing industry news, reports, events, and educational resources targeted at stakeholders in the pharmaceutical sector. Technically, the website is built on the Joomla CMS platform, utilizing JavaScript frameworks such as MooTools and jQuery, alongside third-party tools like Widgetkit and RokSprocket for enhanced UI components. The site is hosted by Hosting Concepts B.V. and employs HTTPS with a valid SSL certificate, ensuring secure communications. While the site demonstrates good mobile optimization and SEO practices, some technical debt is evident through the use of outdated JavaScript libraries, which could pose security risks. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks advanced security headers and does not publicly disclose a security policy or incident response contacts. DNSSEC is not enabled, and the presence of older JavaScript libraries suggests potential vulnerabilities. The WHOIS data is consistent and transparent, reinforcing the legitimacy of the domain and organization. Overall, IGBA's website is a credible and professional resource for the generic and biosimilar medicines industry, with a solid foundation in privacy compliance and business credibility. Security posture is moderate, with room for improvement in modernizing technical components and enhancing security policies. Strategic recommendations include updating libraries, enabling DNSSEC, implementing security headers, and publishing security and incident response information to strengthen trust and resilience.

The website turbulence.org is currently inaccessible due to an access restriction message in Spanish, indicating that the content is blocked by the hosting provider or a firewall. The domain is registered since 1997 with a Spanish registrant country, suggesting an established presence, but no further business or contact information is available from the site. The lack of accessible content prevents a full assessment of the business model, services, or market position. Technically, the site lacks DNSSEC and no security headers or HTTPS status are provided, indicating potential security weaknesses. The absence of privacy, cookie, or terms policies and contact details further limits compliance and trust evaluation. Overall, the site’s security posture is weak due to minimal information and blocked access, resulting in a low AI score and high uncertainty in analysis.

C

Confianza Online

confianzaonline.es

0

Confianza Online is a Spanish organization dedicated to promoting transparency and responsibility in e-commerce. The website serves as an informational platform offering resources on who they are, how consumers can file claims, partnership opportunities, and membership information. The organization appears to be a recognized entity within Spain's e-commerce ecosystem, focusing on consumer protection and dispute resolution. Technically, the website is built on WordPress using the Divi theme and several plugins that enhance functionality and user experience. It employs modern web technologies including HTTPS, Google reCAPTCHA v3 for spam protection, and caching mechanisms for performance. The site is mobile-optimized and presents a professional design with clear navigation. From a security perspective, the site uses HTTPS and implements reCAPTCHA, but lacks visible advanced security headers and explicit security or incident response policies. Privacy and cookie policies are present and appear comprehensive, indicating good GDPR compliance. No WHOIS data was accessible due to registry restrictions, limiting domain legitimacy verification. Overall, the website is professional, trustworthy, and serves its purpose well. Recommendations include enhancing security headers, adding explicit security policies, and implementing cookie consent mechanisms to further improve compliance and security posture.

G

Grupo SICOR

gruposicor.com

0

Grupo SICOR is a Spanish security services company with over 20 years of experience, specializing in protection of large infrastructures and events. The company is backed by the reputable El Corte Inglés group, positioning it as a trusted provider in the security sector. The website reflects a professional business model targeting organizations requiring integral security solutions. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, OneTrust for cookie consent, and Weglot for multilingual support, hosted by Acens Technologies. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and a published security policy or incident response contacts. The domain registration is transparent but relatively new compared to the company's claimed history, suggesting a possible rebranding or domain change. Overall, the website is professional, secure, and compliant with basic privacy standards, but could enhance transparency and security posture further.

El Corte Inglés is a leading Spanish retail and e-commerce company offering a wide range of products including electronics, home appliances, sports goods, and more through its online platform 'La Tienda en Casa'. The website demonstrates a mature digital presence with a modern tech stack including Vue.js, Google Analytics, and accessibility tools, ensuring a good user experience and compliance with accessibility standards. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security headers and policies could be more visible. The absence of WHOIS data is due to Red.es restrictions common for .es domains, but the website branding and content strongly indicate legitimacy. Overall, the site is professional, secure, and well-positioned in the Spanish retail market.

Sfera is a retail fashion brand operating an online platform primarily targeting Spanish-speaking countries with some English-speaking markets. The website serves as a login and country selection portal for customers. The business model focuses on e-commerce sales of apparel and accessories. The website's market position appears established but lacks visible trust signals or detailed business information on the landing page. Technically, the site uses common web technologies such as jQuery, Google Tag Manager, and Ensighten for tracking and tag management, with Akamai as a CDN provider. The site shows basic mobile optimization and moderate performance but lacks advanced SEO optimization due to restrictive meta robots tags. No CMS or specific frameworks were detected. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are critical for GDPR compliance. The WHOIS data is missing, raising concerns about domain legitimacy. No WAF or blocking mechanisms were detected, and the site content is accessible. The security posture is moderate but requires improvements in SSL configuration, header implementation, and privacy compliance. Overall, the site scores moderately low on AI scoring due to missing WHOIS data, lack of privacy policies, and poor SEO. Strategic recommendations include improving transparency with privacy and cookie policies, enhancing security headers, and verifying domain registration details to build trust.

V

Viajes El Corte Inglés

viajeselcorteingles.es

0

Viajes El Corte Inglés is a prominent Spanish travel agency offering a wide range of travel-related services including flights, hotels, vacation packages, cruises, and train travel. The website reflects a strong market position within Spain's hospitality and transportation sectors, leveraging the well-known El Corte Inglés brand. The business targets general consumers seeking travel deals and comprehensive vacation planning services. Technically, the website employs a custom CMS and integrates multiple modern analytics and advertising technologies, ensuring a robust digital presence. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though some security headers could be enhanced for improved protection. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, with no indications of malicious or adult content.

El Corte Inglés S.A., operating the Hipercor brand, is a leading Spanish retail and e-commerce enterprise specializing in supermarkets, fashion, electronics, and home goods. The website hipercor.es serves as a comprehensive online platform offering a wide range of products to general consumers in Spain, supported by a strong brand presence and multiple subsidiaries. The company has a long-standing history since 1940 and maintains a significant market position in the retail sector. Technically, the website employs modern web technologies including Vue.js, Google Tag Manager, Adobe DTM, and OneTrust for cookie compliance, hosted on Akamai CDN ensuring fast and reliable performance. The site is well optimized for mobile and accessibility standards, with good SEO practices and structured data enhancing search visibility. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is robust, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity, supporting the enterprise's business objectives effectively.

S

SuperCOR · El Corte Inglés

supercor.es

0

SuperCOR is a supermarket brand operating under the El Corte Inglés retail group in Spain, offering a wide range of products including food, personal hygiene, and pet supplies. The website serves as a digital storefront providing product catalogs, store locators, and promotional information. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and slick carousel, with integration of analytics and tracking tools like Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site is mobile optimized and presents a professional design with consistent branding. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit privacy policy pages. WHOIS data is unavailable due to registry restrictions, but the domain appears legitimate and consistent with the business identity. Overall, the site is trustworthy and well-positioned in the retail market, though improvements in privacy transparency and security headers are recommended.

Primeriti is a flash sales e-commerce platform operated by El Corte Inglés, S.A., a leading retail company in Spain. The website offers discounted branded fashion, sportswear, accessories, and home products targeting consumers looking for exclusive deals. The platform leverages the strong brand reputation of El Corte Inglés and integrates secure user authentication via the parent company's OAuth system. The site is well-branded, professionally designed, and provides comprehensive privacy and cookie policies in Spanish, demonstrating compliance with GDPR requirements. Contact information and a designated Data Protection Officer are clearly provided, enhancing trust and transparency. Technically, the website employs modern JavaScript libraries, tag management tools like Google Tag Manager and Adobe DTM, and a content delivery network associated with the parent company. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced, encrypted data transmission, and secure login mechanisms. However, explicit security headers and a public incident response policy are not evident, and a cookie consent mechanism is missing, which are areas for improvement. Overall, the website presents a high level of professionalism, security, and compliance suitable for an enterprise retail business. The domain registration data aligns with the business entity, confirming legitimacy. Strategic recommendations include implementing explicit cookie consent, publishing a security policy, and enhancing security headers to further strengthen the security posture and compliance.

P

Prensa Ibérica

prensaiberica.es

0

Prensa Ibérica is a prominent Spanish media group operating a diverse portfolio of newspapers, magazines, digital portals, audiovisual content, and event management services. The company targets a broad audience interested in regional and national news, emphasizing pluralism and local relevance. The website reflects a mature digital presence with a professional design and clear navigation, supporting its market position as a large media entity in Spain. Technically, the site is built on WordPress with modern plugins and tracking tools, including Google Tag Manager and Piano for analytics and paywall management. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good privacy compliance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers suggests room for improvement. WHOIS data is unavailable due to registrar restrictions, limiting domain registration verification, but the website's content and corporate signals support legitimacy. Overall, the site is well-structured, privacy-conscious, and professionally maintained, suitable for its business purpose.

The website cstmapp.com currently serves as a basic placeholder page indicating that web hosting has been activated and instructs the user to upload their website content via FTP. The domain is registered with a Spanish registrar since 2013, suggesting a legitimate and established domain. However, the website itself lacks substantive content, business information, or any customer-facing features. There are no privacy policies, cookie notices, or contact details, which limits trust and compliance. Technically, the site appears minimal with no detected frameworks or CMS, hosted likely on Google Cloud DNS infrastructure. Security posture is weak due to lack of HTTPS confirmation and missing security headers. Overall, the site is safe but underdeveloped, likely representing a newly provisioned hosting account or a placeholder awaiting content deployment.

F

Fundación Oxfam Intermón

oxfamintermon.org

0

Oxfam Intermón is a well-established non-profit organization focused on international cooperation to eradicate poverty and inequality. The website serves as a comprehensive platform for advocacy, fundraising, and promoting fair trade commerce. It targets a broad audience interested in social justice and humanitarian causes, primarily Spanish-speaking users. The site is professionally designed, mobile-optimized, and uses HubSpot CMS and marketing tools to manage content and user engagement. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable due to query restrictions, but the website's professional appearance and consistent branding support its legitimacy. Overall, the site demonstrates a mature digital presence suitable for a large NGO.

Gartner is a leading global research and advisory company providing practical insights, strategic guidance, and tools to executives and their teams to make faster, smarter decisions. The Spanish localized website offers comprehensive business content, including strategic planning resources, market analysis, and benchmarking tools. The site is professionally designed, mobile-optimized, and integrates modern technologies such as Google Analytics, Google Tag Manager, Dynatrace monitoring, and A/B testing tools. Security posture is strong with HTTPS enforcement, reCAPTCHA on forms, and no visible vulnerabilities or exposed sensitive data. Privacy policies and terms of service are clearly linked and GDPR compliant, although explicit security policies and incident response contacts are not published. Overall, the website reflects Gartner's enterprise-level maturity, strong market position, and commitment to delivering trusted business insights.