Security Directory

I

INDIZEN OPTICAL TECHNOLOGIES SL

iot.es

0

INDIZEN OPTICAL TECHNOLOGIES SL, operating the iotlenses.com website, is a well-established company specializing in innovative optical lens solutions including advanced lens designs, photochromic lenses, and myopia management products. With over 20 years of market presence and a strong R&D focus, the company supports a global network of optical businesses and professionals through technical consulting, manufacturing assistance, and marketing services. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the website is built on the Magnolia CMS platform, utilizing modern frameworks like Bootstrap and integrating multiple analytics and marketing tools such as Google Tag Manager, HubSpot, and LinkedIn Insight. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and domain registration protections, though improvements in security headers and DNSSEC are recommended. Privacy compliance is strong, featuring detailed privacy and cookie policies with user consent mechanisms aligned with GDPR requirements. Contact information is clearly presented, including company email, phone, and physical address. No critical vulnerabilities or suspicious indicators were found, supporting a high trustworthiness rating. Overall, the website and business demonstrate a professional, secure, and compliant digital footprint suitable for their industry and audience.

C

Culligan Water Spain

aguaeden.es

0

Culligan Water Spain operates as a provider of hydration and water treatment solutions, targeting both business and consumer markets within Spain. The website reflects a professional presence with multilingual support and integration of customer trust elements such as Trustpilot. The company appears to be part of a larger European network with multiple country-specific domains. Technically, the site is built on WordPress and employs modern marketing and analytics tools including Google Tag Manager and Visual Website Optimizer, indicating a mature digital marketing strategy. Security measures include HTTPS and bot protection via Google reCAPTCHA, though explicit security headers and policies are not evident in the provided content. Privacy and compliance documentation such as privacy and cookie policies are not clearly present, which may impact GDPR compliance perception. Overall, the site is functional and professional but would benefit from enhanced transparency in privacy and security policies.

L

Laboratorios Espinos Y Bofill SA

lebsa.com

0

Lebsa is a well-established European manufacturer and supplier of Active Pharmaceutical Ingredients (APIs), operating since 1951 and headquartered in Barcelona, Spain. The company specializes in niche and tailor-made APIs, offering scalable production, regulatory support, and strategic R&D including flow chemistry. Their market position is that of a trusted, quality-focused API partner serving pharmaceutical and healthcare industries across Europe. Technically, the website is built on WordPress with modern tools such as Google Tag Manager and OneTrust for cookie consent, indicating a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, content-rich, and GDPR compliant, reflecting a credible and trustworthy business presence.

L

LEBSA and SELECTCHEMIE

ccureapi.com

0

CCURE API® is a European-focused pharmaceutical API provider specializing in Venetoclax and Letermovir, leveraging the combined expertise of LEBSA and SELECTCHEMIE. The company positions itself as a secure, sustainable, and quality-driven supplier with a strong emphasis on client relationships and supply chain control. The website reflects a medium-sized business with a professional digital presence, though lacking explicit privacy and security policy disclosures. Technically, the site uses established but somewhat dated technologies and integrates Google Analytics and Tag Manager for tracking. Security posture is moderate with room for improvement, especially regarding HTTPS enforcement on all resources and security headers. Overall, the domain registration and business information align well, supporting legitimacy.

P

Peanuts & Monkeys

peanutsmonkeys.com

0

Peanuts & Monkeys is a creative agency based in Madrid specializing in audiovisual production, branding, and advertising campaigns. The company positions itself as a unique and innovative player in the media industry, targeting businesses seeking comprehensive 360º communication services. The website is professionally designed using WordPress and Elementor, with good SEO and accessibility features. Social media integration and GDPR-compliant cookie consent mechanisms are implemented, reflecting a mature digital presence. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as DNSSEC and explicit security policies are recommended. Overall, the domain registration data supports the legitimacy and stability of the business.

I

iRobot

irobot.es

0

iRobot.es is the official Spanish e-commerce website for iRobot, a leading global brand specializing in robotic vacuum cleaners and mops. The site offers a comprehensive catalog of products including Roomba and Braava robots, accessories, and promotional deals tailored for the Spanish market. The website demonstrates a mature digital infrastructure leveraging Salesforce Commerce Cloud, integrated payment gateways like Braintree, and advanced customer identity management via Gigya. Privacy and cookie compliance are robustly implemented using TrustArc, reflecting adherence to GDPR requirements. Security posture is strong with HTTPS enforcement, modern security headers, and secure payment processing. However, WHOIS data is restricted due to .es domain policies, limiting transparency on domain registration details. Overall, the site presents a professional, trustworthy, and user-friendly platform for consumers in Spain seeking robotic cleaning solutions.

K

Knox Media Hub

knoxmediahub.com

0

Knox Media Hub operates as a cloud-native media asset management platform designed to streamline media workflows across the supply chain. Positioned within the media industry, it targets companies requiring efficient media management, global distribution, and monetization capabilities. The website presents a professional and consistent brand image, supported by active social media profiles and clear contact information. Technically, the site is built on Squarespace, leveraging modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and LinkedIn Insight Tag, with good mobile optimization and SEO practices. Security posture is strong with HTTPS and HSTS enabled, cookie consent mechanisms, and use of reCAPTCHA Enterprise, although explicit security policies and incident response contacts are absent. The lack of WHOIS registration data is a notable gap, potentially indicating a new or privacy-protected domain, which slightly impacts trust but does not negate the professional online presence. Overall, Knox Media Hub demonstrates a mature digital footprint suitable for its niche market, with room for improvement in transparency and formal security documentation.

K

knowmad mood

knowmadmood.com

0

knowmad mood is a multinational leader in digital transformation, providing tailored technology solutions and services across multiple sectors including transportation, finance, education, energy, retail, and healthcare. The company emphasizes innovation, sustainability, and talent development to deliver value to its clients. The website reflects a mature digital presence with comprehensive service offerings and strong branding consistency. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and HubSpot marketing tools, hosted on a CMS platform identified as Magnolia. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and a published security policy are areas for improvement. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency but does not detract from the professional appearance and trust signals on the site. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, supporting the company's market position as a reputable technology services provider.

T

TecnoFor

tecnofor.es

0

TecnoFor is a Spanish technology consultancy specializing in process automation and digital transformation, operating as a subsidiary of Sngular. The company holds a strong market position as an Atlassian Platinum Partner and Scaled Agile Partner, offering services including process intelligence, Atlassian consulting, DevOps, and professional training. Their website demonstrates a high level of digital maturity, built on WordPress with modern tools and analytics integrations. Security posture is solid with HTTPS and privacy compliance mechanisms, though explicit security policies and incident response contacts are absent. Overall, TecnoFor presents a professional and trustworthy digital presence with room for enhanced security transparency.

D

Deiser

deiser.com

0

Deiser is a medium-sized technology company specializing in digital transformation services with a focus on Atlassian solutions. The company offers consulting, solutions, support, licensing, and cloud migration services to businesses aiming to optimize processes and enhance team collaboration. Their website demonstrates a strong market position with a professional design, clear navigation, and a portfolio of notable clients, indicating a reputable presence in the Atlassian ecosystem. Technically, the website is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools such as Google Analytics 4, Hotjar, and various advertising pixels. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs standard security headers, with no exposed sensitive data or vulnerable libraries found. However, explicit security policies, incident response procedures, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Privacy compliance is well-handled with cookie consent mechanisms and a comprehensive privacy policy. Overall, the website presents a low to moderate risk profile, though the absence of WHOIS registration data raises some concerns about domain legitimacy. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure information, and verifying domain registration details to enhance trust and compliance.

MatrikonOPC Inc., a Honeywell International Inc. company, is a leading global provider of industrial connectivity solutions specializing in OPC servers, clients, and historians. The website targets industrial automation professionals and system integrators, offering over 500 OPC products and emphasizing secure, reliable OPC UA and IIoT technologies. The company holds a strong market position as a charter member of the OPC Foundation and serves a large international customer base. Technically, the website is built on ASP.NET Web Forms with JavaScript and jQuery libraries, including an outdated Flash component that poses compatibility and security risks. The site includes modern tracking tools like Google Analytics and implements cookie consent mechanisms, reflecting a moderate level of digital maturity. Mobile optimization and accessibility are basic but functional. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers and contains deprecated technologies. No explicit incident response or security policy pages were found, indicating room for improvement in security transparency and compliance. The WHOIS data is unavailable due to query restrictions, but the domain aligns with Honeywell branding and is likely legitimate. Overall, the website presents a professional and trustworthy front with good content quality and business credibility. However, technical modernization and enhanced security practices are recommended to improve resilience and compliance.

D

DEHN IBÉRICA Protecciones Eléctricas, S.A. Unipersonal

dehn.es

0

DEHN IBÉRICA Protecciones Eléctricas, S.A. Unipersonal is a well-established company specializing in electrical protection solutions including lightning protection, surge protection, and personal protective equipment for electrical installations. With over 100 years of experience, the company serves industrial clients and infrastructure operators primarily in Spain and Europe, positioning itself as a leader in the energy and transport sectors. Their offerings include products, engineering services, software tools, and training programs, reflecting a comprehensive approach to electrical safety and system reliability. The website is built on Drupal 10, featuring modern web technologies and responsive design optimized for mobile devices. It employs Google Tag Manager for analytics and tracking, and implements strong security headers and HTTPS encryption, indicating a mature digital infrastructure. The site provides clear navigation, rich content, and multiple contact channels, including phone, email, and contact forms, enhancing user engagement and trust. Security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant, demonstrating commitment to data protection. However, WHOIS data is inaccessible due to registry restrictions, limiting domain registration transparency. Despite this, the website content and business information align with a legitimate, professional enterprise. Overall, the company exhibits a robust security and compliance stance, a professional digital presence, and a clear market focus. Strategic recommendations include publishing a dedicated security policy, enhancing incident response visibility, and continuous monitoring of third-party scripts to maintain security integrity.

P

PricewaterhouseCoopers

pwc.es

0

PwC España operates as a leading professional services firm offering audit, consulting, tax, legal advisory, and transaction services within Spain. The website reflects a mature digital presence consistent with a global brand, featuring comprehensive service descriptions and a strong focus on generating trust and solving important societal problems. The technical infrastructure leverages Adobe Experience Manager CMS, Adobe Analytics, and OneTrust for cookie consent, indicating a modern and compliant digital environment. Security posture is adequate with HTTPS usage and cookie consent mechanisms, though explicit security headers and WHOIS data are not available for full verification. Overall, the website demonstrates high professionalism and business credibility, with room for improvement in explicit contact information and enhanced security header implementation.

I

IMEFY S.L.

imefy.com

0

IMEFY S.L. is a medium-sized, family-owned manufacturer specializing in dielectric liquid immersed transformers, cast resin encapsulated transformers, and power transformers, with over 50 years of industry experience. The company targets industrial and commercial clients requiring high-quality distribution and power transformers, positioning itself as an established player in the energy sector. The website reflects a professional digital presence built on WordPress with the Avada theme, incorporating modern SEO and analytics tools such as Yoast SEO and Google Analytics. Hosting is provided by Acens Technologies, a reputable registrar and hosting provider. Security posture is generally good with HTTPS enabled and domain transfer protections in place; however, DNSSEC is not enabled, and security headers are not evident, indicating room for improvement. Privacy compliance is basic, with a cookie policy and consent mechanism present but lacking a clear privacy policy or terms of service. No explicit security or incident response policies are published, which could be enhanced to improve trust and compliance. Overall, the website is well-designed, mobile-optimized, and trustworthy, supporting the company's credibility and market position.

G

Global New Energy Finance, S.L.

gnesolutions.com

0

GNE Solutions is a Spanish company specializing in providing comprehensive technical support and consultancy services for energy-efficient building renovations and rehabilitation projects. They collaborate closely with a variety of stakeholders including architects, engineers, construction professionals, public administrations, and real estate investors to promote decarbonization and energy rehabilitation in the residential building sector. Their business model focuses on supporting the integral rehabilitation agent model, particularly aiding small and medium enterprises in successfully implementing innovative rehabilitation solutions. The company positions itself as a key player in the energy rehabilitation market in Spain, aligning with European Union sustainability and energy efficiency goals. Technically, the website is built on the Strikingly CMS platform, utilizing modern web technologies such as JavaScript, Vimeo for video content, Google reCAPTCHA and hCaptcha for form security, and analytics tools like Google Analytics and Keen.io. The site is mobile responsive and optimized for good SEO performance, though accessibility features are basic. Hosting is managed by Strikingly, ensuring reliable uptime and SSL encryption. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes security headers such as Content-Security-Policy and X-Frame-Options. Forms are protected with spam verification mechanisms. However, there is no explicit security policy or incident response information publicly available, and the WHOIS data for the domain is missing, which raises some concerns about domain registration transparency. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front with good privacy compliance and clear business information. The main risk lies in the lack of WHOIS data, which should be monitored. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, enhancing accessibility, and establishing a vulnerability disclosure program to further strengthen trust and security posture.

L

Labiana Life Sciences S.A.

labiana.com

0

Labiana Life Sciences S.A. is a well-established pharmaceutical company based in Spain, specializing in both animal and human health sectors. The company offers a broad portfolio of products and contract development and manufacturing services (CDMO), supported by multiple subsidiaries including Veterinarski Zavod Subotica and Zoleant Pharmaceuticals International. The website reflects a professional and consistent brand image, targeting pharmaceutical companies, investors, and health professionals. Technically, the site is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust with comprehensive policies and GDPR adherence. The absence of WHOIS data reduces domain trust slightly but does not detract from the overall credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility.

I

IE University

ie.edu

0

IE University is a prominent higher education institution based in Spain, offering a wide range of academic programs including undergraduate, master's, doctorate, lifelong learning, and summer school courses. The university emphasizes innovation, entrepreneurship, and a humanistic approach to education, positioning itself as a global leader in shaping future leaders. The website reflects a mature digital presence with a modern tech stack, including Gatsby and React, and integrates advanced tools such as OpenAI and Google Tag Manager for analytics and user engagement. Security posture is strong with HTTPS enforcement and comprehensive security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and user experience quality.

I

Ilusión3D

ilusion3d.com

0

Ilusión3D is a small digital marketing and design agency based in Málaga, Spain, specializing in web design, SEO, 3D infographics, and digital advertising services. The company targets businesses seeking creative digital solutions to enhance their market presence and competitiveness. The website is built on WordPress using modern tools such as Elementor and Astra theme, with SEO optimization and Google Analytics integration. The technical infrastructure is solid with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy policies. WHOIS data is missing, which raises concerns about domain registration transparency. Overall, the website is professional and functional but would benefit from improved compliance and security disclosures.

Z

Zitu

zitu.net

0

Zitu is a Spanish technology company specializing in digital transformation products and ERP solutions tailored for businesses. Established in 2003, it offers a range of services including custom applications, consulting, AI, cloud IT, and sector-specific management tools. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. Privacy and cookie policies are comprehensive and GDPR compliant, featuring a consent mechanism. Security posture is solid with HTTPS and no exposed sensitive data, though additional security headers and incident response policies could enhance trust. Overall, Zitu presents a credible and mature digital presence suitable for its B2B target audience.

W

Whale Maritime

whalemaritime.com

0

Whale Maritime is a medium-sized, Spain-based company specializing in global ship supply and maritime services. The company operates warehouses strategically located in Southern Europe and the Caribbean, focusing on sourcing rare technical spare parts and delivering them directly to vessels. Their service portfolio includes technical stores, fresh provisions, ship agency, repair services, and marine chemicals, catering to various vessel types including container ships and fishing boats. Whale Maritime holds ISO certifications and is a member of recognized maritime associations, reinforcing its market position as a reliable and quality-focused provider. Technically, the website is built on WordPress using Elementor, with modern web technologies and moderate performance. Security posture is good with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Privacy compliance is basic, with a privacy policy inferred from a code of conduct page but lacking explicit cookie consent mechanisms. Overall, Whale Maritime presents a professional and trustworthy online presence suitable for its B2B maritime audience.

F

Faro Barcelona

faro.es

0

Faro Barcelona is a Spanish company specializing in the design and production of lighting and ceiling fans, positioning itself as an expert in lighting and ventilation solutions. The website presents a professional and consistent brand image targeting consumers and businesses interested in lighting products. The technical infrastructure is based on standard web technologies including HTML5, CSS3, and JavaScript, with custom fonts and icons enhancing the user experience. Mobile optimization and SEO practices are adequately implemented, though accessibility features are basic. Security posture is limited with no visible security headers or explicit SSL/TLS configuration details in the provided data. Privacy and cookie policies are not found, indicating potential compliance gaps. Overall, the website is functional and credible but would benefit from enhanced security and privacy transparency.

D

Diseño y Estudio

disenoyestudio.com

0

Diseño y Estudio is a Spanish design and construction company specializing in ephemeral spaces, interior design, and retail environments. Established in 2008, the company positions itself as a comprehensive partner offering creative, constructive, technological, and production expertise to optimize client investments. Their portfolio showcases diverse projects emphasizing effectiveness and profitability. Technically, the website is built on WordPress using the Avada theme and several plugins like Yoast SEO and Visual Portfolio, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and secure forms, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in privacy and security practices.

F

Freesports Marketing, S.L.U.

free-motion.com

0

Free Motion Gran Canaria, operated by Freesports Marketing, S.L.U., is a specialized bike rental and guided tour service focused on the Gran Canaria region. The company offers high-end bike rentals, guided cycling tours, and sales of used Cannondale bikes, targeting cycling enthusiasts and tourists. The website is professionally designed with consistent branding and good content quality, reflecting a small but established local business. Technically, the site uses modern frontend technologies such as Tailwind CSS, Glide.js, and Turbo framework, with integrated Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and SEO-friendly, providing a good user experience.

Fundación SAFA operates as a non-profit educational foundation in Spain, providing a centralized login portal named Brocal for its community of professors, families, and students. The website serves as a gateway to multiple educational applications and resources, reinforcing its role as a digital facilitator for the foundation's educational services. The foundation maintains an established regional presence with multiple campuses, targeting the Spanish educational sector. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and visually consistent user experience. While the site demonstrates good mobile optimization and a professional design, some accessibility and SEO optimizations are basic and could be improved. The hosting and CMS details are not explicitly disclosed. From a security perspective, the site uses HTTPS and secure form submission but lacks critical HTTP security headers such as Content Security Policy and HSTS. There is no visible cookie consent mechanism, which is a compliance gap under GDPR. No contact information or security policies are published on the login page, limiting transparency. No critical vulnerabilities were detected in the visible content, but improvements in security headers and privacy compliance are recommended. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures to strengthen trust and regulatory adherence. Strategic improvements in these areas will support Fundación SAFA's digital maturity and protect its user community effectively.

A

AFINANCE FINANCIAL CONSULTING SL

afinance.es

0

aFinance is a specialized mortgage brokerage company based in Spain, offering comprehensive mortgage management and negotiation services. The company positions itself as a market reference, providing services such as mortgage simulators, debt consolidation, and personalized real estate shopping assistance. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, targeting individuals seeking mortgage solutions in Spain. Technically, the site employs modern analytics and tracking tools with appropriate consent mechanisms, ensuring GDPR compliance. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, although no explicit security policy or incident response information is published. WHOIS data confirms the legitimacy of the domain and its alignment with the business identity. Overall, the site demonstrates high professionalism, trustworthiness, and compliance, suitable for its financial services sector.

V

Vass

ecenta.com

0

Vass is a Spain-based technology consulting firm specializing in digital transformation services across a wide range of industries including banking, energy, insurance, retail, telecommunications, education, automotive, life sciences, logistics, travel, manufacturing, and public administration. The company offers a comprehensive portfolio of solutions such as customer experience, marketing, cloud services, business automation, cybersecurity, software engineering, AI and data analytics, and SAP business suite implementations. Their market position is that of a large, established player with a broad industry focus and multiple global technology partnerships. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies including Google reCAPTCHA, Google Tag Manager, LinkedIn Insight Tag, Facebook Pixel, and OneTrust for cookie consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The hosting is provided by Hosting Concepts B.V., with a domain registered since 2018, consistent with the company's founding year. From a security perspective, the website enforces HTTPS and uses reCAPTCHA to protect forms. Cookie consent mechanisms are in place, indicating GDPR compliance. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and no public security policy or incident response contacts are published. There is no vulnerability disclosure or security.txt file found, which could be improved to enhance transparency. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with a strong business credibility and technical foundation. Strategic recommendations include enabling DNSSEC, implementing additional security headers, publishing a security policy and incident response contacts, and adding a vulnerability disclosure program to further strengthen security posture and trust.

Pearl Bookers SL operates as a specialized contact centre based in Spain, focusing on smartbound inbound and outbound customer contact services primarily for the IT sector. Their business model revolves around outsourcing marketing, sales, customer service, and back office functions to help clients increase sales and reduce administrative costs. The company leverages a multilingual international workforce and modern digital tools to deliver B2B and B2C solutions, digital sales, and nearshoring services. The website presents a professional image with clear service descriptions and contact information, targeting businesses seeking outsourcing partners. Technically, the website uses a modern tech stack including Bootstrap, jQuery, Google Fonts, and integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, Pipedrive Web Forms, and Tawk.to live chat. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS and secure third-party services for forms and chat. However, no explicit security headers were detected, and there is no published security or incident response policy. Privacy compliance is basic with a privacy policy present but lacking a cookie policy or consent mechanism despite active tracking scripts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, impacting overall trust. Overall, Pearl Bookers SL presents a credible business with good digital maturity but should address domain registration transparency, enhance security headers, implement cookie consent, and publish security policies to improve trust and compliance.

E

Enlit Europe

enlit-europe.com

0

Enlit Europe is a leading event organizer specializing in sustainable energy, energy transition, and decarbonization sectors. The website promotes the 2025 event in Bilbao, Spain, targeting industry professionals, exhibitors, and visitors interested in energy transition. The platform offers exhibition opportunities, conferences, and multimedia engagement, positioning itself as a premier European event in this sector. Technically, the website uses a modern JavaScript stack with jQuery, Google Tag Manager, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile-optimized and well-structured, providing a good user experience. Security-wise, HTTPS is enforced, and cookie consent is implemented, but there is a lack of visible security headers and explicit security policies, which could be improved. The absence of WHOIS data for the domain is a concern, as it reduces trust in domain legitimacy despite the professional website presence. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

L

LoxamHune

loxamhune.com

0

LoxamHune is a leading equipment rental company specializing in machinery and lifting platforms for construction, events, and private use in Spain and Portugal. The company offers 24/7 rental services including electric generators and platforms, positioning itself as a market leader in its sector. The website is built on a modern WordPress platform using WooCommerce and Avada theme, integrating SEO best practices and structured data for enhanced search visibility. The technical infrastructure supports moderate performance with good mobile optimization and accessibility. Security posture is solid with HTTPS and security headers implemented, though explicit security policies and incident response contacts are absent. The domain WHOIS data is unavailable, which raises concerns about domain registration legitimacy and reduces overall trust. Contact information and social media presence are clear and professional, supporting business credibility. Overall, the website reflects a professional business with room for improvement in transparency and security documentation.

The World Karate Federation (WKF) is a globally recognized international sports federation dedicated to promoting karate as a sport. It is the only karate organization recognized by the International Olympic Committee and boasts 198 member countries and over a hundred million members worldwide. The organization operates primarily as a non-profit entity focused on organizing karate events, managing rankings, accrediting approved brands, and running educational programs. The website reflects a professional and authoritative presence consistent with a large international sports federation headquartered in Spain. Technically, the WKF website employs modern web technologies including Blazor, Bootstrap 5, and various JavaScript libraries for enhanced user experience and performance. The site is mobile-optimized, accessible, and SEO-friendly, with structured data and comprehensive metadata supporting discoverability and rich search results. Privacy and cookie policies are clearly presented with consent mechanisms, indicating good compliance with GDPR and related regulations. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent. While explicit security headers are not fully confirmed, no vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response information is noted as an area for improvement. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy; however, the website content and social media presence strongly support the authenticity of the organization. Overall, the WKF website demonstrates a high level of professionalism, technical maturity, and compliance with privacy standards. The main risk factor is the lack of WHOIS transparency, which should be investigated further to ensure domain legitimacy and trustworthiness.

M

Material para Crossfit®, Gimnasio y Fitness | Maniak Fitness

maniakfitness.com

0

Maniak Fitness operates a professional e-commerce website specializing in Crossfit®, gym, and fitness equipment primarily targeting the Spanish market and European customers. The site offers a broad catalog of products including Cross Training gear, Functional training equipment, Weightlifting and Powerlifting accessories, Cardio machines, and Apparel. The business appears established with a domain age of over 10 years and consistent registration data. Technically, the website uses modern JavaScript libraries, Google Tag Manager for analytics, and is mobile optimized with good SEO practices. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks explicit privacy policy, terms of service, and security headers. No blocking or WAF mechanisms were detected, allowing full content access. Overall, the site demonstrates a solid business presence with room for improvement in privacy and security transparency.

E

European Karate Federation

europeankaratefederation.net

0

The European Karate Federation website serves as the official digital presence for the continental karate governing body in Europe. It provides comprehensive news, event calendars, organizational structure details, and contact information targeted at athletes, coaches, referees, and karate enthusiasts. The site is built on WordPress with modern plugins for SEO, cookie compliance, and user engagement, reflecting a moderate to advanced digital maturity. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The absence of WHOIS registration data is a notable anomaly that slightly impacts trust but does not detract from the professional presentation and compliance evident on the site. Overall, the website effectively supports the federation's mission and community engagement.

SODECA is a medium-sized Spanish manufacturing company specializing in industrial ventilation solutions, including smoke extraction, pressurization systems, and air quality improvement. The company maintains a strong international presence with multiple country-specific websites, indicating a well-established market position. Their website offers comprehensive product information, technical resources, and consulting services, targeting industrial clients and engineering professionals. Technically, the website employs modern web technologies such as Bootstrap, Font Awesome, and Google Analytics, ensuring a responsive and user-friendly experience. The site is well-structured with clear navigation and multilingual support. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented, though some security headers are missing. No critical vulnerabilities or exposed sensitive data were detected. The lack of accessible WHOIS data due to Red.es restrictions limits domain registration transparency, but the professional presentation and consistent branding support the site's legitimacy. Contact information is clearly provided, enhancing business credibility. Overall, the website demonstrates good digital maturity with room for improvement in security policies and incident response disclosures. Strategically, SODECA should focus on enhancing security headers, publishing explicit security and incident response policies, and maintaining GDPR compliance to strengthen trust and regulatory adherence.

A

Airlan

airlan.es

0

Airlan is a Spanish manufacturer specializing in climate control equipment, emphasizing technological innovation, energy efficiency, and comprehensive product offerings for centralized water installations. The company targets installers and businesses primarily in Spain and Latin America, offering products adapted to different electrical frequencies (50 Hz and 60 Hz). The website reflects a medium-sized enterprise with a professional online presence, including clear contact information and social media engagement. Technically, the site is built on WordPress with WooCommerce and uses modern plugins such as Slider Revolution and Google reCAPTCHA for security. While HTTPS is enforced and cookie consent mechanisms are in place, the absence of explicit security headers suggests room for improvement in security hardening. The WHOIS data is not publicly accessible due to Red.es restrictions, but the website content and business details appear consistent and trustworthy. Overall, the site scores well in content quality, business credibility, and privacy compliance, with moderate technical and security posture scores.

SODECA is an international manufacturer specializing in industrial ventilation solutions, including smoke exhaust, tunnel ventilation, and pressurisation systems for staircases and evacuation routes. The company supports its product offerings with technical consulting and digital tools such as product selectors and CAD models, targeting industrial clients and engineering firms globally. The website is professionally designed, multilingual, and provides comprehensive product and corporate information, reflecting a mature business presence. Technically, the website employs modern frameworks like Bootstrap and FontAwesome, integrates Google Analytics for user insights, and implements a cookie consent mechanism aligned with GDPR requirements. The site is mobile-optimized and offers good SEO and accessibility features, although some security headers are missing. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site shows good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data for the domain is a notable concern, reducing trustworthiness and suggesting the need for further verification. Overall, SODECA presents a solid digital presence with good security and privacy compliance but should address WHOIS transparency and enhance security headers to improve trust and resilience.

T

The Hertz Corporation

hertz.es

0

The website www.hertz.es is the official Spanish portal for The Hertz Corporation, a globally recognized car and van rental company. It offers online reservation services tailored to the Spanish market and integrates with a broad international network of Hertz websites. The site targets consumers and businesses seeking vehicle rentals in Spain and worldwide, providing a professional and localized user experience. The business model centers on vehicle rental services supported by a loyalty program and business rental solutions. Technically, the site employs modern JavaScript frameworks, Google analytics and tag management, and security tools such as reCAPTCHA Enterprise, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with a comprehensive privacy policy and GDPR-aligned cookie consent. However, WHOIS data is restricted due to .es registry policies, limiting public domain registration transparency. Overall, the site is professional, secure, and trustworthy, suitable for enterprise-level operations.

T

The Hertz Corporation

thrifty.es

0

Thrifty.es is the Spanish localized website for Thrifty Car Rental, a well-established car rental brand operating under The Hertz Corporation. The website offers comprehensive car rental services across Spain and Europe, targeting travelers seeking affordable and flexible vehicle rentals. The site is professionally designed with a clear focus on user experience, featuring booking forms, promotional offers, and multilingual support. Technically, the website employs modern web technologies including jQuery, Bootstrap 5, and Google Tag Manager, ensuring a responsive and functional user interface. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements, although some security headers could be improved. The WHOIS data is unavailable due to .es domain restrictions but the domain and branding strongly align with the parent company, indicating legitimacy. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its large-scale commercial operations.

G

Goldcar Spain S.L.

goldcar.es

0

Goldcar Spain S.L. operates a large car rental service with over 95 offices across multiple countries, primarily in Southern Europe. The company is a subsidiary of Europcar, positioning it as a significant player in the transportation rental sector. The website offers multilingual support, currency selection, and a comprehensive booking system, targeting travelers seeking affordable car rentals. Technically, the site uses modern frameworks such as Bootstrap and integrates performance and consent management tools like Akamai Boomerang and Didomi SDK. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be verified further. The absence of WHOIS domain registration data is a transparency concern but does not detract from the overall legitimacy indicated by the brand presence and structured data. Overall, the website is professional, user-friendly, and compliant with GDPR requirements.

G

Goldcar

ongoldroad.com

0

Goldcar is a large car rental company operating over 115 offices primarily in Europe and the United States, targeting travelers and tourists. The company is part of the Europcar Mobility Group, which enhances its market credibility and operational scale. The website is professionally designed, mobile-optimized, and provides comprehensive information about office locations and services. Technically, the site uses modern frameworks such as Bootstrap, integrates Google Tag Manager and Akamai Boomerang for analytics and performance monitoring, and employs Didomi for consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and association with Europcar support its legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

G

Goldcar

goldcarhelp.com

0

Goldcar is a well-established car rental company operating primarily in Spain with a strong presence in major tourist destinations. The company offers a variety of car rental services, including innovative features like the Key'n Go automatic key pickup system and a loyalty program called GO Club. The website serves as a comprehensive help center supporting customers with FAQs, booking assistance, and contact options. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and Google Tag Manager, hosted on a CDN likely provided by Akamai, ensuring moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced and secure forms, but lacks some security headers and explicit cookie consent mechanisms. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessments. Overall, the site is professional and functional but would benefit from enhanced security and privacy compliance measures.

G

Goldcar Spain S.L.

goldcar.com

0

Goldcar Spain S.L. operates a large car rental service with over 95 offices across multiple countries, primarily in Europe. The company is a subsidiary of Europcar, positioning it as a significant player in the transportation rental industry. The website is professionally designed, mobile-optimized, and provides comprehensive content including offers, destinations, and customer reviews. Technically, the site uses modern frameworks like Bootstrap and integrates third-party services such as Google Tag Manager and Didomi for consent management, hosted likely on Akamai infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and corporate affiliations. Privacy compliance is well addressed with GDPR-consistent cookie policies and consent banners.

CAACI Iberoamérica is a regional international organization specializing in audiovisual and cinematographic matters across Ibero-America. It serves as a collaborative platform for audiovisual authorities and stakeholders in 21 member countries, promoting cooperation, regulatory frameworks, and cultural exchange. The website reflects a professional presence with good content quality and consistent branding, targeting industry professionals and governmental bodies. Technically, the site is built on WordPress with common plugins and frameworks, hosted on SiteGround, and shows moderate performance with good mobile optimization. Security posture is adequate with HTTPS and domain protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Contact is available via a web form but lacks direct email or phone contacts. Overall, the site is trustworthy and credible within its niche, though improvements in security and privacy documentation are recommended.

V

Valencia Innovation Capital

valenciainnovationcapital.com

0

Valencia Innovation Capital is a municipal platform launched by the Innovation Department of the Valencia City Council to foster a dynamic, diverse, and creative city ecosystem. It aims to unite all stakeholders in Valencia's innovation and technological entrepreneurship ecosystem to collaboratively drive political and economic transformation towards a sustainable and technologically advanced future. The website is built on WordPress using modern plugins and frameworks, featuring multilingual support and active event programming. Security posture is solid with HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though DNSSEC is not enabled and security headers are not evident. The domain is newly registered in 2024, consistent with the initiative's launch. Overall, the site demonstrates good technical maturity, privacy compliance, and business credibility.

J

Jill Arcaro

jillarcaro.com

0

Jill Arcaro operates a specialized wellness and educational business focused on holistic therapies such as Thai Massage, Reiki, and Access Bars, complemented by educational travel experiences and an artisan retail store. The website is professionally designed using WordPress and WooCommerce, offering a good user experience with clear navigation and mobile optimization. Privacy and cookie policies are well implemented, indicating GDPR compliance. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site presents a credible business front but requires domain registration verification and enhanced security measures.

1

10dencehispahard, S.L.

014on.com

0

014 ON is a Spanish media company specializing in premium omnichannel data management and advertising solutions. They leverage proprietary technology to detect users in physical environments via wifi and Bluetooth signals, enabling highly precise audience targeting and activation through online campaigns. Their business model centers on a Data Management Platform (DMP) combined with an in-house Trading Desk to operate cross-device advertising campaigns. The company positions itself as a leader in exclusive advertising supports in specific environments, focusing on affinity and precision rather than broad coverage. The website content is professionally presented, targeting brands and advertisers seeking advanced omnichannel marketing solutions.

M

Montibello – Skin

montibello.com

0

Montibello is a Spanish-based company specializing in hair care, facial, and body treatment products, targeting professionals in the beauty and aesthetics industry. The website provides product information, professional courses, and inspiration for hairdressers and aesthetic professionals, positioning itself as a reputable brand in the retail beauty sector. The digital presence is built on WordPress with WooCommerce, indicating a mature e-commerce platform with integrated marketing and analytics tools such as Google Tag Manager and Cookiebot for consent management. Security is enhanced by the Wordfence plugin, and HTTPS is enforced, reflecting a good security posture. However, the absence of publicly available WHOIS data raises concerns about domain registration transparency. Additionally, the lack of explicit privacy policy, terms of service, and contact information limits the website's compliance and trustworthiness from a privacy and regulatory perspective. Overall, the website is professionally designed and functional but would benefit from enhanced transparency and compliance documentation.

A

Ajuntament de Barcelona

bcn.cat

0

The website www.barcelona.cat serves as the official digital portal for the Ajuntament de Barcelona, providing comprehensive information and services for residents and visitors of Barcelona city. It offers a wide range of resources including news, cultural events, public services, transport information, and business support, positioning itself as a key government communication channel. The site is well-branded, professionally designed, and targets a broad audience interested in city life and governance. Technically, the site is built on Drupal 10, leveraging modern web technologies such as Bootstrap for responsive design, and integrates multiple analytics platforms including Google Analytics, Matomo, and Plausible. Cookiebot is used for cookie consent management, ensuring GDPR compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, uses security headers, and implements anti-CSRF tokens. However, explicit security policies and incident response contacts are not published, and no security.txt file is found. The WHOIS data is unavailable, likely due to registry policies, but the domain and content strongly indicate legitimacy. Overall, the security posture is solid but could benefit from enhanced transparency and formalized vulnerability disclosure mechanisms. The overall risk assessment is low, with the site representing a trustworthy government resource. Strategic recommendations include publishing detailed security and incident response policies, adding a security.txt file, and maintaining vigilance on third-party scripts. These steps will further strengthen trust and compliance in the evolving regulatory landscape.

W

Wanna Marketing

wannamarketing.es

0

Wanna Marketing is a small marketing agency based in Málaga, Spain, specializing in web design, client acquisition campaigns, graphic design, and content creation. The company positions itself as a strategic and innovative partner for businesses seeking tailored marketing solutions. It holds a recognized position in the Spanish independent media agency rankings, indicating a credible market presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, with performance optimizations via WP Rocket and GDPR compliance mechanisms in place. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and explicit privacy policies would enhance trust. Overall, the site is professional, well-structured, and user-friendly, targeting businesses in Málaga and surrounding regions.