Security Directory

Mondragon Unibertsitatea is a cooperative university based in Spain, offering a broad range of educational programs including undergraduate, master's, doctoral, and professional training. The institution emphasizes applied learning, entrepreneurship, and innovation, positioning itself as a medium-sized educational entity with a strong regional and international presence. The website reflects a professional and modern digital infrastructure built on the Liferay platform, incorporating contemporary web technologies and privacy compliance mechanisms such as Cookiebot and GDPR-aligned policies. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though some security headers and formal security policies could be improved. Contact information and social media presence are comprehensive, supporting trust and engagement. Overall, the site is well-designed, content-rich, and accessible, serving its target audience effectively.

W

WMOC 2025

wmoc2025.es

0

WMOC 2025 is a specialized event website dedicated to the World Masters Orienteering Championships scheduled for August 2025. The site provides comprehensive information about the event, including registration, competition schedules, accommodation, and supporting services. It targets orienteering athletes and enthusiasts globally, offering multilingual support in Catalan, Spanish, and English. The business model centers on event organization and information dissemination, supported by partnerships with merchandising and registration platforms. Technically, the website is built on WordPress using Elementor and WooCommerce, integrating modern tools such as Google Tag Manager and Vimeo for video content. The site is mobile-optimized and SEO-friendly, with good content quality and consistent branding. Security posture is solid with HTTPS and reCAPTCHA usage, but lacks some security headers and formal policies. WHOIS data is unavailable, which slightly impacts trust but does not negate the site's legitimacy given the professional presentation and event nature.

T

TIENDA DE ORIENTACIÓN

tiendadeorientacion.com

0

Tienda de Orientación is a specialized e-commerce retailer focused on providing sports equipment for orienteering and outdoor navigation activities. The website offers a wide range of products including compasses, maps, clothing, and accessories tailored for enthusiasts and practitioners of orienteering. The business targets a niche market within Spain and operates primarily through its online platform. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. It features a responsive design and integrates Google Analytics and reCAPTCHA for analytics and security. Security posture is generally good with HTTPS enforced and some security best practices observed, though there is room for improvement in implementing security headers and formal privacy policies. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues, which impacts trustworthiness. Overall, the site is professional and functional but would benefit from enhanced compliance and security transparency.

N

Notino, s.r.o.

notino.es

0

Notino, s.r.o. operates a large-scale e-commerce platform specializing in perfumes, cosmetics, and beauty products primarily targeting the Spanish market. The website offers a broad product range with weekly promotions, fast delivery, and additional services such as gift wrapping and a mobile application. The company positions itself as a leading beauty retailer in Europe with a strong online presence and customer engagement through social media and customer service channels. Technically, the website employs a modern React-based frontend with robust analytics and marketing integrations including Google Analytics, New Relic, Bloomreach Exponea, and AppsFlyer. The site demonstrates good performance, mobile optimization, and accessibility features, ensuring a positive user experience. Privacy compliance is well addressed with explicit cookie consent mechanisms and comprehensive privacy policies. From a security perspective, the site enforces HTTPS, employs security monitoring tools, and has implemented content security policies. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure program is evident. The WHOIS data is unavailable due to query restrictions, but the website's professionalism and trust signals indicate legitimacy. Overall, Notino.es presents a mature, secure, and privacy-conscious e-commerce platform with strong business credibility. Strategic improvements could focus on enhancing transparency around security policies and incident response to further build user trust.

W

WMOC 2025

wmoc2025.com

0

WMOC 2025 is a specialized event website dedicated to the World Masters Orienteering Championships scheduled for August 2025. The site provides comprehensive information about the competition, registration, program, and related services targeting orienteering athletes and enthusiasts. The multilingual support (Catalan, Spanish, English) and structured data indicate a professional approach to event promotion. Technically, the site is built on WordPress with popular plugins such as WooCommerce and Elementor, integrating Google Tag Manager and Vimeo for media and analytics. Security posture is generally good with HTTPS and reCAPTCHA usage, though the absence of security headers and explicit privacy policies are areas for improvement. The WHOIS data is missing, which raises some concerns about domain registration transparency but does not directly impact the site's operational legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy for its intended audience.

R

Regeneron

regeneron.es

0

Regeneron Spain is a biotechnology company focused on inventing, developing, and commercializing medicines that transform the lives of people with serious diseases. The website positions Regeneron as a leader in science and technology with a strong global presence and multiple drug candidates under development. The site targets Spanish residents and healthcare professionals, providing corporate information, career opportunities, and contact avenues. Technically, the website is built on Salesforce Experience Cloud using Lightning Web Components, integrating modern third-party services such as Stripe, PayPal, Adyen, and Google Analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS, strict Content-Security-Policy, and bot protection via reCAPTCHA, although explicit security policies and incident response information are not published. Overall, the website is professional, trustworthy, and compliant with privacy regulations, although WHOIS data is unavailable due to registry restrictions. Strategic recommendations include publishing security policies and vulnerability disclosure information to enhance transparency and trust.

V

Visma España

visma.es

0

Visma España is a large, established SaaS software provider focused on simplifying and digitalizing business processes for freelancers, small to large enterprises, and accounting firms in Spain and Europe. The company is part of the larger Visma Group, a recognized leader in the European SaaS market. Their website demonstrates a mature digital presence with comprehensive content, modern technology stack, and strong branding consistency. The technical infrastructure leverages Webflow CMS, Google Tag Manager, and other modern web technologies ensuring good performance and mobile optimization. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, although explicit security and incident response policies are not published. Privacy compliance is well addressed with clear privacy and cookie policies indicating GDPR adherence. Overall, the website and business presence reflect a trustworthy and professional organization with a strong market position in the technology sector.

V

Vue.js Meetup Valencia

vuejsvalencia.com

0

Vue.js Meetup Valencia is a community-driven website focused on organizing meetups and sharing knowledge about the Vue.js ecosystem in Valencia, Spain. The site targets developers and community members interested in Vue.js technology, providing a platform for events and expert talks. The business model is community meetup organization without commercial transactions or services. Technically, the site uses modern frontend technologies including Vue.js, Buefy, and Bulma CSS, hosted likely via DonDominio. The site is mobile optimized and has good design quality but lacks advanced SEO and accessibility features. Security posture is basic with no detected security headers or privacy policies, and DNSSEC is not enabled. No contact or incident response information is provided, limiting trust and compliance. Overall, the domain registration is consistent and legitimate for a community site. Strategic improvements include adding privacy and cookie policies, security headers, and contact information to enhance trust and compliance.

Raiola Networks SL is a Spanish technology company specializing in web hosting, domain registration, and VPS cloud services. The company offers a broad portfolio of hosting products including SSD hosting, reseller hosting, and specialized VPS servers, targeting individuals and businesses seeking reliable internet infrastructure solutions. Their market position is that of an established hosting provider with their own data center and a professional online presence. Technically, the website is built on a modern stack including WHMCS for client management, uses HTTPS, and integrates multiple tracking and marketing pixels. The site is mobile optimized and provides clear navigation, although some SEO and accessibility features could be improved. Security-wise, the website uses HTTPS and CSRF tokens but lacks visible security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and publishing incident response contacts to improve compliance and trust.

T

Trustlocal

trustlocal.es

0

Trustlocal is a Spanish online platform specializing in connecting consumers with local service providers across various sectors such as cleaning, photography, legal, and more. It operates under the parent company Trustoo and holds a leading market position in Spain for local service comparison. The platform offers users the ability to compare providers, read reviews, and contact companies directly, enhancing transparency and convenience in local service procurement. Technically, the website is built on a modern React and Next.js stack, ensuring fast performance and excellent mobile optimization. The site integrates multiple third-party analytics and marketing tools with proper cookie consent mechanisms, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs standard security headers, and manages user privacy responsibly, though it lacks a dedicated security policy or incident response information. Overall, Trustlocal presents a professional, trustworthy, and user-friendly service with strong business credibility and compliance with privacy regulations.

V

Vue Málaga

vuemalaga.com

0

Vue Málaga is a small technology community focused on Vue.js developers in Málaga, Spain. The website serves as a hub for organizing events, talks, and workshops to promote learning and networking within the Vue.js ecosystem. The community is open to collaboration and sponsorship, aiming to foster technological knowledge sharing locally. The site content is primarily in Spanish and targets developers and technology enthusiasts interested in Vue.js. Technically, the website is built using modern JavaScript frameworks including Vue.js and Nuxt.js, indicating a contemporary digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility features could be improved. Security posture is moderate with no visible security headers or published security policies, and WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

H

HACK A BOSS

hackaboss.com

0

HACK A BOSS is an online education provider specializing in intensive bootcamps focused on software programming, data science, and artificial intelligence. The company targets individuals seeking to enter or advance in the technology sector, offering practical, project-based learning with career support and flexible financing options. Their market position is strengthened by partnerships with major companies and positive student testimonials. Technically, the website is built on modern platforms such as Webflow and integrates marketing and analytics tools like HubSpot and Google Tag Manager. The site is well-designed, mobile-optimized, and provides a good user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy and terms of service documentation. WHOIS data is unavailable, which raises questions about domain registration transparency. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance disclosures.

R

Raiola Networks

raiolanetworks.com

0

Raiola Networks is a Spanish web hosting and domain registration company established in 2014, offering high-quality SSD hosting, VPS, dedicated servers, and specialized WordPress hosting. The company targets Spanish-speaking customers seeking reliable and fast hosting solutions with 24/7 technical support. Their market position is solid within Spain, supported by a consistent brand presence and active social media engagement. Technically, the website is modern, fast, and mobile-optimized, leveraging technologies such as Livewire, Cookiebot, and multiple tracking pixels for analytics and marketing. Security posture is good with HTTPS enforced and CSRF protections, though some security headers could be improved. Privacy compliance is strong with a comprehensive cookie consent mechanism and a detailed privacy/legal notice. Overall, Raiola Networks demonstrates a professional and trustworthy online presence with room for enhanced security policies and incident response transparency.

Agencia Horia is a small Spanish digital marketing agency specializing in honest and transparent marketing services including influencer campaigns, event organization, social media strategy, and consulting. The company positions itself as a trustworthy partner that works closely with clients to deliver tailored marketing solutions without overpromising. The website is built on modern technologies such as Nuxt.js and Tailwind CSS, providing a good user experience with responsive design and clear navigation. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit incident response policies. Privacy and cookie policies are present, indicating awareness of GDPR compliance, though cookie consent mechanisms could be improved. Overall, the website is professional and trustworthy, but the absence of WHOIS data and direct contact details slightly reduce confidence in business transparency.

MadVue is a specialized event organizer focused on hosting Vue.js conferences in Madrid, Spain, targeting the European Vue.js developer community. The website presents a professional and well-structured platform promoting the 2026 edition of the conference, featuring detailed speaker profiles, sponsors, and event information. The business model revolves around event ticket sales and sponsorship partnerships, positioning MadVue as a growing key player in the Vue.js ecosystem in Europe. Technically, the website leverages modern JavaScript frameworks including Vue.js and Nuxt.js, with additional technologies like Pinia and Vite, ensuring a fast, responsive, and accessible user experience. The site is well-optimized for SEO and mobile devices, with structured data enhancing search engine visibility. From a security perspective, the site employs HTTPS with strong SSL configuration and appropriate security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy and cookie policies, as well as a cookie consent mechanism, indicates room for improvement in privacy compliance. Overall, the website demonstrates a mature digital presence with strong business credibility and technical implementation. The lack of WHOIS data limits domain registration trust verification but does not detract from the site's evident legitimacy and professionalism.

J

Jordi Villar - Data, sports, and code

jordivillar.com

0

Jordi Villar's website is a personal professional blog focused on data, sports, and coding topics. The site serves as a platform for sharing technical articles, notes, and curated reads, targeting a general audience interested in data science and technology. The business model revolves around content creation and personal branding, supported by a newsletter subscription service. The domain is well-established since 2006, indicating a mature online presence. Technically, the site uses modern frameworks such as Astro and includes Tinybird's Flock.js for web vitals. Hosting appears to be managed via NameCheap with DNS servers consistent with the registrar. The website is well-optimized for performance, mobile responsiveness, and accessibility, with good SEO practices evident from meta tags and structured content. No CMS or heavy third-party analytics are detected, indicating a lightweight and privacy-conscious setup. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and security headers which could enhance its security posture. No privacy or cookie policies are published, representing compliance gaps especially under GDPR. Contact information is limited to email and social media links, with no phone or physical address provided. No vulnerability disclosure or incident response information is available. Overall, the website is trustworthy and professional with good content quality and technical implementation. The main risks relate to privacy compliance and security hardening. Strategic improvements in these areas would enhance user trust and regulatory adherence.

B

bastidaforwork.com

bastidaforwork.com

0

Bastida For Work is a small Spanish design studio and e-commerce business specializing in premium, sustainable workwear and bespoke textile product design. Founded in 2020, the company targets contemporary workers and businesses seeking high-quality, locally produced workwear with a focus on environmental impact. The website is built on WordPress with WooCommerce, integrating modern technologies such as Google Analytics, Facebook Pixel, and reCAPTCHA for security and marketing. GDPR compliance is evident through privacy and cookie policies with consent mechanisms. Security posture is good with HTTPS and secure forms, though improvements could be made by enabling DNSSEC and adding security headers. The domain registration is consistent and transparent, supporting the legitimacy of the business.

A

Arsys Internet S.L.U.

arsys.net

0

Arsys Internet S.L.U. is a well-established European technology company specializing in domain registration, web hosting, cloud computing, and managed IT services. Founded in 1996 and headquartered in Logroño, Spain, Arsys positions itself as a trusted provider with 25 years of experience, offering a broad portfolio of services including email hosting, SSL certificates, and ecommerce solutions. The company targets businesses and individuals seeking reliable internet presence solutions, emphasizing European data sovereignty and comprehensive cloud infrastructure. Technically, the website employs modern web technologies including JavaScript, CSS3, and HTML5, with integrations of error tracking (Sentry) and marketing analytics (Tune.js). Hosting appears to be managed by IONOS, indicating a robust infrastructure. The site is well-optimized for mobile devices and SEO, with structured data enhancing search engine understanding. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses SSL certificates, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the domain WHOIS data is unavailable or protected, which slightly reduces transparency and trustworthiness. However, the professional presentation, consistent branding, and comprehensive service offerings support a positive risk assessment. Strategic recommendations include enhancing security headers, publishing detailed security policies, and improving accessibility to further strengthen the security posture and user trust.

A

Arsys Internet S.L.U.

arsys.pt

0

Arsys Internet S.L.U. is a well-established European technology company specializing in domain registration, web hosting, cloud computing, and managed IT services. Founded in 1996 and headquartered in Spain, Arsys offers a comprehensive portfolio of services targeting both individual and business customers seeking reliable internet presence solutions. The company emphasizes European data sovereignty and operates a large infrastructure with over 100,000 servers across 30 data centers. Technically, the website demonstrates modern web standards, responsive design, and good SEO practices, supported by structured data and multilingual support. Security posture is solid with HTTPS enforcement and secure cookie practices, although explicit security policies and incident response information are not publicly detailed. Overall, Arsys presents a trustworthy and professional digital presence aligned with its market position as a leading European hosting provider.

A

Arsys Internet S.L.U.

arsys.es

0

Arsys Internet S.L.U. is a well-established Spanish technology company founded in 1996, specializing in domain registration, web hosting, cloud services, and managed IT solutions. The company targets businesses and individuals seeking reliable internet presence solutions, offering a comprehensive portfolio including email hosting, SSL certificates, and online store hosting. Their market position is strong within Spain and they maintain sister sites for other language markets. Technically, the website employs modern web standards with good mobile optimization and SEO practices, hosted likely by Ionos, and uses structured data for enhanced search engine visibility. Security posture is solid with HTTPS enforced and secure cookie practices, though explicit security headers and policies are not evident in the provided data. Privacy compliance is limited by the absence of visible privacy and cookie policies in the analyzed content. Overall, the website is professional, trustworthy, and content-rich, with clear contact information and social media presence. Recommendations include publishing explicit privacy and cookie policies, adding security headers, and establishing a vulnerability disclosure process to enhance compliance and security transparency.

E

Exartia Auditores Informáticos, S.L.

exartia.net

0

Exartia Auditores Informáticos, S.L. is a specialized consulting firm based in Spain, offering expert services in IT auditing, forensic IT analysis, legal compliance, and comprehensive IT security solutions. With over 20 years of experience and multiple professional certifications such as CISA, CISM, and ISO 27001 Lead Auditor, the company positions itself as a trusted advisor for organizations seeking to secure their IT environments and comply with regulations like RGPD and PCI-DSS. Their business model focuses on providing tailored consulting and managed services to businesses requiring expert guidance in technology governance and risk management. The website infrastructure is built on WordPress using the Avada theme, enhanced with SEO and multilingual plugins, and integrates Google Analytics and Tag Manager for performance and user behavior tracking. The site is well-optimized for mobile devices and provides a professional user experience with clear navigation and comprehensive content. Security measures include HTTPS, reCAPTCHA for forms, and cookie consent mechanisms aligned with GDPR requirements. Security posture is strong with no evident vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Despite this, the website's professional content, certifications, and compliance policies indicate a credible and trustworthy business. Strategic recommendations include implementing additional security headers, conducting regular security audits, and enhancing accessibility features to further strengthen the site's security and compliance stance. Overall, Exartia presents a mature and professional digital presence suitable for its target audience of businesses needing IT audit and compliance services, with a solid foundation for trust and security.

A

Arsys Internet S.L.U.

servidoresdns.net

0

Arsys Internet S.L.U. is a well-established Spanish technology company founded in 1996, specializing in domain registration, web hosting, cloud computing, email services, and managed IT solutions. The company positions itself as a leading European provider with a strong focus on data sovereignty and comprehensive cloud infrastructure. Their website reflects a mature digital presence with professional design, clear navigation, and extensive service offerings targeting businesses and individuals seeking reliable internet presence solutions. Technically, the site employs modern web technologies, asynchronous loading of analytics and error tracking scripts, and is hosted likely by IONOS, indicating robust infrastructure. Security posture is strong with HTTPS enforced and secure cookie settings, though explicit security headers and incident response contacts are not publicly evident. The WHOIS data for the domain www.arsys.net is incomplete or missing, which raises some concerns about domain registration transparency but does not detract significantly from the overall legitimacy given the company's established brand and presence. Overall, Arsys demonstrates a solid business and technical foundation with room for improvement in security transparency and WHOIS data clarity.

G

Grupo Pacífico

pacifico-meetings.com

0

Grupo Pacífico is a well-established Spanish company specializing in event management, communication, and technology services with over 40 years of experience. Their market position is strong in organizing national and international congresses, corporate incentives, and providing integrated marketing and communication solutions. The website reflects a professional and consistent brand image targeting corporate clients and event organizers. Technically, the site is built on a modern React/Next.js stack with good mobile optimization and SEO practices, hosted partially on Google Cloud Storage for media content. Security posture is adequate with HTTPS and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. No critical vulnerabilities or blocking mechanisms were detected, and WHOIS data confirms domain legitimacy and alignment with business claims. Overall, the site is trustworthy and professionally maintained.

Acens Technologies, S.L.U. is a technology company established in 2000, operating the domain acens.net. The company likely provides hosting and internet-related services, supported by the domain registration data and name servers. However, the website content is currently inaccessible, displaying only a minimal error page indicating restricted access or a missing page. This limits the ability to assess the company's digital presence and service offerings in detail. The technical infrastructure appears to be managed by Acens Technologies itself, but no modern web technologies or CMS are detectable from the provided HTML content. Security posture cannot be fully evaluated due to lack of accessible content and security headers. The WHOIS data shows a legitimate and consistent registration with no privacy protection, which supports trust in the domain ownership. Overall, the website is currently non-functional or blocked, resulting in a low AI score and limited insights.

V

Vall d’Hebron Institute of Oncology (VHIO)

vhio.net

0

The Vall d’Hebron Institute of Oncology (VHIO) operates as a leading European center specializing in personalized oncology medicine and translational research. Founded in 2006, VHIO has established a strong market position through multidisciplinary research and early clinical trials, targeting patients and healthcare professionals in the oncology sector. The website reflects this professional focus with relevant content and a clear business model centered on healthcare research and patient services. Technically, the site is built on WordPress, leveraging modern plugins such as EventPrime for event management and Cookiebot for cookie consent, hosted by Acens Technologies. The infrastructure supports moderate performance and good mobile optimization, with SEO and accessibility at a basic to good level. Security posture is adequate with HTTPS and reCAPTCHA implementations; however, the absence of DNSSEC and security headers presents areas for improvement. Privacy compliance is partial, with cookie consent mechanisms present but no visible privacy policy or terms of service. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing comprehensive privacy and terms policies to improve compliance and trust.

The website wfns-madrid2025.com serves as the official online presence for the WFNS 2025, the XIX World Congress of Neurosurgery scheduled for September 7-11, 2025 in Madrid, Spain. The site currently functions as a placeholder with a 'Coming Soon' message and basic event branding. It targets neurosurgeons and medical professionals interested in attending the congress. The business model centers on event organization and promotion within the healthcare sector. The site is relatively new, consistent with the event timeline, and provides essential contact information and social media links to engage potential attendees. Technically, the website is built on Joomla CMS using the Yootheme template and UIkit framework, indicating a modern but basic infrastructure. The site is mobile optimized and includes standard web technologies such as FontAwesome and Webcomponents. Performance is moderate with basic SEO and accessibility features. Hosting is provided by Arsys Internet, a reputable registrar and hosting provider. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks advanced security headers and DNSSEC. No forms or sensitive data collection mechanisms are present, reducing immediate risk exposure. Cookie consent is implemented, but no privacy policy or terms of service pages are available, indicating gaps in compliance. The WHOIS data shows consistent domain registration aligned with the event schedule, with no suspicious patterns detected. Overall, the website is functional for its current purpose but requires enhancements in privacy compliance, security hardening, and content development to improve trust and user engagement. Strategic recommendations include implementing comprehensive privacy and terms policies, enabling DNSSEC, adding security headers, and expanding content to better serve the target audience.

I

Institut d'Estadística de Catalunya

idescat.cat

0

Institut d'Estadística de Catalunya (Idescat) is the official statistics institute of Catalonia, providing comprehensive demographic, economic, social, and environmental data to support government, researchers, media, and the public. The website serves as a central hub for accessing statistical indicators, publications, APIs, and educational resources. It is positioned as a trusted government entity under the Generalitat de Catalunya, offering authoritative data and transparency in its operations. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics 4, and Piwik PRO for analytics, alongside YouTube API for embedded video content. The site demonstrates good mobile optimization, accessibility features, and SEO practices, ensuring a positive user experience across devices. Hosting appears to be managed by the regional government infrastructure, contributing to stable performance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security headers are not visible in the provided data, no vulnerabilities or exposed sensitive information were detected. The absence of a security.txt file and incident response contacts suggests room for improvement in transparency and vulnerability management. Overall, the website is a well-maintained, professional government portal with high trustworthiness and compliance. The lack of WHOIS data due to privacy protection is typical for such domains and does not detract from legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and providing clearer incident response contacts to further strengthen security posture.

A

Avera - Landing

averagedood.xyz

0

The website averagedood.xyz is a minimal personal landing page primarily serving as a language selection gateway for a personal or creative online presence named 'Avera' or 'AverageDood'. The site offers content in Spanish and English and includes basic Open Graph metadata for social sharing. The domain is registered through Cloudflare with transparent WHOIS data indicating a registrant located in Murcia, Spain, and was created in May 2023, consistent with a new personal site. The technical infrastructure is simple, relying on basic HTML and CSS without any detected CMS or advanced frameworks. Hosting is via Cloudflare, providing HTTPS and domain transfer protection, but DNSSEC is not enabled. No security headers or privacy-related policies are present, and no contact information or forms are provided, limiting business credibility and privacy compliance. No analytics or advertising technologies are detected, and the site does not appear to collect user data.

S

Soluciones Corporativas IP, c/o Whois Proxy

nadia.moe

0

Nadia.moe is a personal website representing Nadia Santalla, a systems programmer and container enthusiast. The site serves as a professional portfolio and contact hub, linking to social media profiles and providing downloadable CV content. The business model is personal branding within the technology sector, targeting a general audience interested in software engineering. The website is newly established in 2024 and uses privacy protection for domain registration, which is common for personal sites. Technically, the site employs modern CSS frameworks such as matcha.css and XP.css, along with Material Design icons, resulting in a visually appealing and mobile-optimized experience. The site is simple, with no complex CMS or analytics tools detected, which reduces attack surface but also limits tracking and marketing capabilities. Performance is moderate with good mobile responsiveness and basic accessibility. From a security perspective, the domain is protected with clientTransferProhibited status, but DNSSEC is not enabled. No security headers were detected in the provided data, and no privacy or cookie policies are present, indicating room for improvement in compliance and security best practices. No forms or data collection mechanisms are present, reducing risk exposure. The site content is safe and professional with no adult or questionable material. Overall, the website is trustworthy and professionally presented but would benefit from enhanced security headers, privacy policies, and DNS security improvements. The domain registration is legitimate and consistent with the website's personal branding purpose.

S

Soluciones Corporativas IP, c/o Whois Proxy

owo.cafe

0

owo.cafe is an independent Mastodon server providing a decentralized social media platform focused on a transinclusive, antifascist, and anticapitalist community centered around hobbies such as gaming, cinema, books, and technology. The platform leverages the open-source Mastodon software to offer users a safe and engaging environment within the fediverse. The website is well-structured with good content quality and consistent branding, targeting a niche audience interested in decentralized social networking and hobby discussions. Technically, the site uses modern web technologies including React and ES modules, delivering a moderate performance with good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements are needed in DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms and terms of service. Contact information is limited to an administrative email. Overall, the site is trustworthy and professionally maintained but could enhance compliance and security practices.

A

lexd0g's website

alice.tf

0

The website alice.tf is a personal site representing an individual named Alice, also known as lexd0g. It serves as a personal portfolio and social hub showcasing interests in technology, music, and various hobbies. The site is simple, static, and non-commercial, targeting a general audience interested in the owner's personal projects and social profiles. The domain is recently registered and consistent with the personal nature of the site. Technically, the site is built with basic HTML and CSS, hosted via OVH with Cloudflare nameservers. There is no evidence of advanced frameworks, CMS, or analytics tools. The site is mobile-friendly and has good content quality but lacks advanced SEO and accessibility features. Security posture is minimal with no security headers detected and no privacy or cookie policies present. From a security perspective, the site does not expose sensitive data or use vulnerable libraries but lacks formal security policies and incident response information. The absence of privacy and cookie policies indicates low privacy compliance. No WAF or blocking mechanisms are detected, allowing full content access. Overall, the site is low risk due to its personal nature and lack of commercial transactions or sensitive data. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and improving accessibility and SEO to enhance trust and compliance.

S

stage7

stage7.net

0

Stage7.net is a personal website operated by an individual known as stage7, a Spain-based web developer and part-time demoscener. The site serves as a portfolio and blog sharing personal interests including demoscene productions, music, downloads, and zines. The website targets a niche audience interested in demoscene culture and related hobbies. The business model is primarily personal content sharing without commercial transactions or services. Technically, the site is lightweight, JavaScript-free, and hosted by DreamHost, LLC. It uses basic HTML5 and CSS3 technologies with no detected CMS or advanced frameworks. The site is mobile-optimized at a basic level and features good SEO practices through meta tags and Open Graph data. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. No cookie or tracking mechanisms are present, aligning with the site's privacy-conscious design. No formal privacy compliance beyond a basic privacy policy is evident. Overall, the site is trustworthy and professional for a personal project but could improve security and compliance documentation. Recommendations include enabling DNSSEC, adding security headers, and implementing cookie consent if cookies are introduced.

C

Claws Mail - The user-friendly, lightweight, and fast e-mail client

claws-mail.org

0

Claws Mail is an established open source email client project founded in 2006, offering a lightweight, fast, and user-friendly email and news reading experience based on GTK+. The website provides detailed descriptions of the software's features, plugins, and user documentation, targeting both new and experienced users seeking a robust email client alternative. Technically, the site is simple with basic JavaScript and CSS, hosted by Gandi SAS, and shows moderate performance and basic mobile optimization. Security posture is moderate with domain transfer protection but lacks DNSSEC and security headers. No privacy or cookie policies are published, and no contact or incident response information is provided, which limits compliance and transparency. Overall, the site is trustworthy and legitimate but could improve in security and privacy compliance.

A

Ayuntamiento de Avilés

avilesvoluntariado.org

0

Avilés Voluntariado is a municipal government initiative by the Ayuntamiento de Avilés, Spain, focused on promoting and coordinating volunteer activities within the city. The website serves as an information hub connecting volunteers with local entities and projects, offering training, recognition, and resources to foster community participation. The platform is positioned as a trusted local government service with a clear target audience of citizens interested in volunteering and social engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, BuddyPress, and various plugins for community and GDPR compliance. It is hosted by Acens Technologies, S.L.U., and uses HTTPS with a good security posture, although some security headers could be improved. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing discoverability. From a security perspective, the site demonstrates solid practices such as HTTPS enforcement, GDPR cookie consent, and secure form handling. No critical vulnerabilities or suspicious activities were detected. The WHOIS data aligns well with the website's municipal nature, showing consistent registration details and no privacy protection, which is appropriate for a public entity. Overall, the website is professional, trustworthy, and well-maintained, serving its community-oriented mission effectively. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance.

A

Ayuntamiento de Avilés

avilesparticipa.org

0

Avilés Participa is a government-backed community participation and social change project managed by the Ayuntamiento de Avilés in Spain. The website serves as a platform to engage local citizens, provide information on community projects, events, and volunteering opportunities, and facilitate participation in municipal budget proposals and local councils. The site is well-branded, consistent, and targets the local population with relevant content and resources. Technically, it is built on WordPress with a modern tech stack including Bootstrap, BuddyPress, and various plugins for enhanced functionality. The site is hosted by Acens Technologies and uses HTTPS with a good SSL configuration, though DNSSEC is not enabled. Security best practices are partially implemented, with room for improvement in security headers and vulnerability disclosure. Privacy compliance is lacking as no privacy or cookie policies are found, which is a notable gap. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Centro Niemeyer

centroniemeyer.es

0

Centro Niemeyer is a cultural center located in Avilés, Asturias, Spain, designed by the renowned architect Óscar Niemeyer. It serves as a hub for arts and cultural manifestations including music, cinema, theater, dance, and exhibitions. The website reflects a well-established institution with a clear focus on cultural programming and public engagement through events and guided visits. The site targets a general audience interested in cultural activities and provides ticket sales and newsletter subscriptions as part of its business model. Technically, the website is built on WordPress with modern plugins for SEO, event management, and GDPR compliance. It uses Google Analytics and Google Tag Manager for analytics and tracking, with a cookie consent mechanism in place, indicating good privacy compliance. Security posture is solid with HTTPS enforced, though some security headers are missing. The WHOIS data is unavailable due to registry restrictions, but the website's professional presentation and consistent branding support its legitimacy. Overall, the site is well-maintained, user-friendly, and trustworthy.

1

1 Million Bot

1millionbot.com

0

1 Million Bot is a Spanish-based technology company specializing in advanced AI solutions, including generative AI, conversational assistants, and custom AI agents. Founded in 2018, the company targets enterprises, universities, and public administrations with a SaaS platform named Millie and bespoke AI services. Their market position is strong within Spanish-speaking markets, supported by numerous awards and a professional online presence. Technically, the website is built on WordPress with the Divi theme, integrating modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar. The hosting and DNS infrastructure leverage Google Cloud services, ensuring reliable performance and scalability. Security posture is good with HTTPS enforced and domain transfer protections, but could be improved by enabling DNSSEC and publishing explicit security policies. Privacy compliance is basic, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the website is professional, content-rich, and trustworthy, though it lacks some compliance documentation and explicit security disclosures.

A

Ayuntamiento de Avilés

aviles.es

0

The website aviles.es serves as the official municipal government portal for the city of Avilés in Spain. It provides comprehensive information and services related to local government, culture, social services, education, sports, tourism, and citizen engagement. The site targets residents and visitors, offering multilingual content primarily in Spanish, English, and Asturian. The business model is public sector focused, delivering government services and information digitally. The website demonstrates consistent branding and good content quality, supported by structured data markup and official contact details. Technically, the site is built on the Liferay CMS platform, utilizing modern web technologies including jQuery, React components, FontAwesome icons, and Google Tag Manager for analytics and marketing. The site is mobile optimized and accessible, with good SEO practices evident. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site enforces HTTPS and uses asynchronous loading for analytics scripts, but lacks visible security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are not explicitly found, indicating a compliance gap. WHOIS data could not be retrieved due to registry restrictions, limiting domain trust verification. Overall, the website is a trustworthy and professional government portal with solid technical infrastructure but would benefit from enhanced security headers, explicit privacy compliance documentation, and WHOIS transparency to improve trust and compliance posture.

OCHOIMEDIO Tecnología Creativa is a Spanish digital agency specializing in design, web development, multimedia, and digital marketing services targeted primarily at freelancers and small to medium-sized enterprises (SMEs) in Spain. The company leverages government subsidy programs such as KIT Digital to offer cost-effective digital transformation solutions including websites, e-commerce platforms, and social media management. Their market position is that of a niche regional agency focused on helping local businesses increase their digital presence. Technically, the website is built on WordPress using the Divi theme and incorporates modern plugins for SEO, analytics, and GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS, uses CAPTCHA on contact forms, and includes cookie consent mechanisms, but lacks advanced security headers and explicit security policies. The WHOIS data for the domain is unavailable, which raises some concerns about domain legitimacy, although the website content and contact information appear professional and trustworthy. Overall, the site scores well on content quality and technical implementation but could improve in security transparency and domain registration clarity.

D

Diputación de Cáceres

dip-caceres.es

0

Diputación de Cáceres is the official provincial government institution serving the province of Cáceres, Spain. The website functions as a comprehensive portal providing public services, information, and resources to citizens, public employees, and local government entities. Key services include tax collection, public employment, procurement, and integrity reporting. The site targets local residents and government stakeholders, positioning itself as a trusted government resource. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Select2, and Toolset Blocks plugins. It employs Google Analytics and Metricool for traffic analysis and uses Yoast SEO for search engine optimization. The site is mobile-optimized, accessible, and uses HTTPS with a valid SSL certificate, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, cookie consent mechanisms compliant with GDPR, and obfuscated email addresses to reduce spam. However, it lacks visible security headers like CSP or HSTS and does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML source. Overall, the website is legitimate, professional, and trustworthy, consistent with an official government entity. The absence of WHOIS data due to query restrictions is mitigated by the site's content quality and official social media presence. Strategic recommendations include enhancing security headers, publishing security policies, and adding a security.txt file to improve vulnerability disclosure transparency.

D

Diputación de Badajoz

dip-badajoz.es

0

Diputación de Badajoz is the official provincial government institution serving the Badajoz province in Spain. The website provides comprehensive information about government activities, cultural events, employment services, municipal assistance, and social programs. It targets citizens, local municipalities, and stakeholders within the province. The site is positioned as a key public service portal with a large-scale government operational scope. Technically, the website uses a modern frontend stack including Bootstrap 4.4.1, jQuery 3.4.1, and FontAwesome 5.12.0. The site is mobile responsive and well-structured, though some accessibility and SEO optimizations are basic. Performance is moderate, with no evident blocking or WAF interference. Security posture is adequate with HTTPS enforced and some best practices observed, but lacks explicit security headers such as CSP and HSTS. No privacy or cookie policies were found, indicating room for compliance improvement. No vulnerabilities or malicious content were detected. Overall, the website is trustworthy and professional, but should enhance privacy compliance and security headers to improve its security and regulatory posture. The domain registration aligns well with the official government nature, supporting legitimacy.

J

Junta de Extremadura

juntaex.es

0

Juntaex.es is the official digital portal for the Junta de Extremadura, a regional government entity in Spain. The website provides citizens with streamlined access to public information, administrative procedures, transparency data, and current news relevant to the Extremadura region. It serves as a comprehensive gateway for residents and interested parties to engage with government services and information efficiently. The site is well-structured with thematic navigation and highlights key public services and data. Technically, the website leverages modern web technologies including Liferay CMS, Bootstrap, Swiper.js, and Matomo analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and employs standard web performance practices. Security is implemented with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be enhanced. From a security posture perspective, the site shows good practices such as encrypted connections and no visible sensitive data exposure. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for transparency and trust. Privacy compliance is supported by cookie policies and GDPR-aligned consent, but contact information for privacy or security concerns is not evident. Overall, Juntaex.es is a credible and professional government website with a solid technical foundation and good user experience. Strategic improvements in security transparency and contact availability would further strengthen trust and compliance.

F

FUNDACIÓN YUSTE

fundacionyuste.org

0

Fundación Yuste operates as a cultural and educational non-profit foundation, likely focused on promoting Spanish heritage and historical preservation related to the Yuste Monastery. The website serves as an official portal providing information about the foundation's activities and events. The technical infrastructure is based on WordPress CMS with several plugins for event management and multilingual content, indicating a moderate level of digital maturity. However, the website lacks visible advanced security measures such as security headers and privacy policies, which suggests room for improvement in security posture. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the site content and structure align with a legitimate cultural foundation. Overall, the website is accessible, safe, and functional but would benefit from enhanced security and privacy compliance to improve trust and user confidence.

M

Multiaragon Servicios SL

joachim-deckarm.de

0

Autonomosegur.com is a Spanish insurance brokerage specializing in providing insurance products tailored for self-employed individuals (autónomos). The company, identified as Multiaragon Servicios SL, offers a wide range of personal and patrimonial insurance services including life, health, civil liability, business, and accident insurance. The website positions itself as a market leader with partnerships across more than 20 insurance providers, emphasizing competitive pricing and professional advisory services. The target audience is primarily self-employed workers in Spain seeking specialized insurance coverage. From a technical perspective, the website leverages modern web technologies such as Bootstrap 5, AOS for animations, Swiper for carousels, and FontAwesome for icons, ensuring a responsive and user-friendly experience across devices. SEO practices are well implemented with comprehensive metadata, Open Graph tags, and structured JSON-LD data enhancing search engine visibility. However, accessibility features are basic and could be improved. Security posture is moderate; the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. Nonetheless, the absence of explicit security headers like CSP and HSTS, and lack of visible incident response or vulnerability disclosure policies, indicate areas for improvement. The WHOIS data is unavailable or unregistered, which raises concerns about domain legitimacy despite the professional presentation of the website. Overall, autonomosegur.com presents a credible and professional front for its insurance brokerage services but should address security best practices and domain registration transparency to enhance trustworthiness and compliance.

Experian España is a regional branch of the global Experian group, specializing in data analytics, credit risk management, fraud prevention, and marketing services tailored for businesses in Spain. The website presents a professional and comprehensive portfolio of B2B services, targeting enterprises seeking data-driven decision-making solutions. The site is built on Adobe Experience Manager, indicating a mature digital infrastructure with integrated analytics and consent management tools. Security posture is solid with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a trustworthy and professional enterprise presence with room for improvement in direct contact information and security transparency.

D

Datonic

filecoindataportal.xyz

0

The Filecoin Data Portal is an open source, serverless, and local-first data platform focused on providing datasets, dashboards, and data request capabilities for the Filecoin ecosystem. Operated by Datonic, a Spanish organization, the platform targets developers, data analysts, and participants within the Filecoin blockchain community. The website offers clear navigation and structured content, emphasizing transparency through links to GitHub and personal contact pages. Technically, the site is built using the Astro framework, hosted on Cloudflare, and employs modern web technologies ensuring fast performance and good mobile optimization. Security-wise, the site enforces HTTPS and uses Cloudflare DNS and registrar services, but lacks DNSSEC and security headers, and does not publish privacy or cookie policies, which are areas for improvement. Overall, the platform is credible and trustworthy for its niche audience but would benefit from enhanced privacy compliance and security disclosures.

L

LinkStorm

linkstorm.io

0

LinkStorm is a small technology company founded in 2021, offering an AI-powered SaaS platform focused on optimizing internal linking for SEO professionals, agencies, and publishers. Their product leverages proprietary AI methods to analyze website content and suggest relevant internal links, helping users improve SEO rankings and user engagement. The company positions itself as a niche player with a clear value proposition supported by customer success stories and testimonials. Technically, the website is hosted on DigitalOcean and uses a modern tech stack including JavaScript frameworks, Bootstrap for UI, and integrates multiple marketing and analytics tools such as Google Tag Manager, Hotjar, Microsoft Clarity, Intercom, and Survser. The site is mobile-optimized with good SEO practices and a professional design, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. No explicit security or incident response policies are published, and no cookie consent mechanism is present, indicating room for improvement in privacy compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, LinkStorm presents a credible and professional online presence with a solid business model and technical foundation. Strategic improvements in security policies, privacy compliance, and security headers would enhance trust and compliance posture.

C

Comercial Einhell S.A

einhell.es

0

Comercial Einhell S.A operates a professional and consumer-focused e-commerce website specializing in high-quality power tools and gardening equipment. The company maintains a strong market position with official partnerships with prominent brands such as Mercedes-AMG Petronas F1 Team and FC Bayern, reflecting its credibility and brand strength. The website targets DIY enthusiasts, professional users, and gardeners, offering a broad range of products including battery systems, power tools, garden machinery, and accessories. The business model combines manufacturing and retail, serving a large customer base primarily in Spain.

R

renatta&go

renattandgo.com

0

renatta&go is an e-commerce retailer specializing in women's fashion, offering a variety of clothing, footwear, and accessories primarily targeting Spanish-speaking customers. The website is built on the Shopify platform, leveraging modern e-commerce technologies and marketing tools such as Google Analytics, VWO, and Connectif Cloud. The site demonstrates a good level of digital maturity with responsive design, cookie consent mechanisms, and GDPR compliance. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are not explicitly detected and no incident response information is provided. The absence of WHOIS data raises concerns about domain registration legitimacy, but the active and professional website presence suggests legitimate business operations. Overall, the site scores well on content quality, technical implementation, and security, with room for improvement in business credibility and transparency.

E

ECOALF

ecoalf.com

0

ECOALF is a medium-sized Spanish retail company specializing in sustainable fashion, operating primarily through an e-commerce platform powered by Shopify. The company positions itself as a leader in sustainable, timeless, and functional fashion aimed at protecting natural resources. The website demonstrates a mature digital infrastructure with multi-language support, modern web technologies, and comprehensive marketing and analytics integrations. Privacy compliance is robust, featuring detailed cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced and no evident vulnerabilities, though explicit security headers and policies could be improved. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience.