Security Directory

Best Programs is a small, non-subsidized, and non-affiliated educational service provider specializing in budget internship and experiential learning programs worldwide, with a focus on language enhancement, edutravel, NGO, and work experience. The company targets students and young professionals seeking affordable international internship opportunities, primarily operating from Spain. The website is professionally designed using WordPress CMS and incorporates modern plugins for SEO, analytics, and user engagement. It offers clear navigation, mobile optimization, and comprehensive content relevant to its audience. Security posture is solid with HTTPS enabled and cookie consent implemented, though some security headers could be improved. Privacy policies and GDPR compliance are addressed adequately. WHOIS data is unavailable due to privacy protection, which is typical for small businesses. Overall, the site presents a trustworthy and professional front with moderate technical sophistication and good business credibility.

C

Cytognos, S.L.

cytognos.com

0

Cytognos, S.L. is a specialized healthcare company focused on providing clinical flow cytometry solutions, including reagents, devices, and software tailored for flow cytometer laboratories. The company leverages partnerships such as EuroFlow™ to offer advanced Next Generation Flow™ solutions, positioning itself as a niche provider in the clinical diagnostics sector. The website reflects a medium-sized enterprise with a professional digital presence built on WordPress and WooCommerce, incorporating modern plugins and SEO optimizations. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service pages. The absence of public WHOIS data introduces some uncertainty about domain registration transparency, but the website content and business information appear consistent and credible. Overall, the security posture is moderate with room for improvement in policy disclosures and incident response readiness.

M

MasterBase®

masterbase.com

0

MasterBase® is a Spanish technology company specializing in providing access to multi-skilled automation tools designed to enhance productivity and improve quality of life. The website is professionally designed using WordPress and Elementor, targeting Spanish-speaking professionals and businesses interested in automation solutions. The company has a mature domain presence dating back to 2002, indicating a stable market position within its niche. Technically, the website leverages modern technologies including Cloudflare DNS, Cookiebot for cookie consent, Google Tag Manager for analytics, and Rank Math for SEO optimization. Hosting is provided by WordPress.com, ensuring reliable infrastructure. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. From a security perspective, the website enforces HTTPS with a strong SSL configuration and employs clientTransferProhibited status on the domain to prevent unauthorized transfers. Cookie consent mechanisms are in place, but the absence of DNSSEC and lack of published security policies or incident response contacts represent areas for enhancement. No critical vulnerabilities or suspicious activities were detected. Overall, the website presents a moderate risk profile with good business credibility and technical implementation. Strategic improvements in privacy compliance, explicit contact information, and security policy transparency would further strengthen trust and compliance posture.

C

Clínica Dermaline

dermaline.es

0

Clínica Dermaline is a well-established medical aesthetic clinic based in Madrid, Spain, operating since 2008. The website presents a professional and comprehensive overview of their services, including laser treatments, varicose veins care, and facial and body aesthetic procedures. The clinic targets individuals seeking quality medical aesthetic solutions and has built a strong local reputation with over 10,000 patients and media presence. Technically, the site is built on WordPress using common plugins and libraries, with moderate performance and good mobile optimization. Security is generally good with HTTPS enforced and no exposed sensitive data, but there are areas for improvement such as updating outdated JavaScript libraries and implementing stronger security headers. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service policies found. Overall, the site is trustworthy and professional but should address compliance and security best practices to enhance user trust and regulatory adherence.

B

BLUESEA Hotels

blueseahotels.com

0

BlueSea Hotels is a hospitality company operating a chain of hotels primarily in Spain and nearby destinations such as the Canary Islands and Marrakech. The company offers a variety of hotel accommodations including all-inclusive, adults-only, family-friendly, and urban hotels, targeting tourists seeking quality stays with exclusive online deals. Their market position is that of a regional hotel chain with a solid online presence and multiple properties. Technically, the website is built on Magnolia CMS with modern JavaScript frameworks and includes integrations with Google Tag Manager and Sentry for analytics and error tracking. The site is mobile optimized and provides a good user experience with clear navigation and booking functionalities. Security posture is good with HTTPS enforced and secure payment mentions, though explicit security headers and policies could be improved. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. However, the lack of WHOIS data for the domain reduces trustworthiness and suggests a need for further domain registration verification. Overall, the website is professional and trustworthy but could benefit from enhanced security transparency and domain legitimacy confirmation.

D

DFDS Iberia S.L.U.

frs.es

0

FRS Ferry, operated by DFDS Iberia S.L.U., is a well-established ferry transportation company with over 150 years of experience, primarily serving routes between Spain and Morocco. The company offers passenger, vehicle, and freight transport services, supported by a modern online booking system and multilingual website. Their market position is strong regionally, with a focus on reliable ferry services and customer convenience. Technically, the website is built on TYPO3 CMS and integrates modern analytics and tracking tools, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement, reCAPTCHA on forms, and appropriate security headers, reflecting a mature security posture. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Overall, the website presents a professional and trustworthy digital presence, though WHOIS data is unavailable due to query restrictions, limiting domain registration insights.

E

Ebísum

ebisum.com

0

Ebísum is a Spanish-based company founded in 2021 specializing in comprehensive compliance solutions for businesses across various sectors. Their offerings include a document management system, whistleblowing channel, and eLearning platform, all designed to help companies meet regulatory requirements efficiently. The company positions itself as a trusted partner fostering ethical culture and regulatory adherence. Technically, the website is built on WordPress with Elementor and integrates modern tools such as Google Tag Manager and reCAPTCHA for security and analytics. The security posture is strong with HTTPS enforced and clientTransferProhibited domain status, although some security headers could be added for enhanced protection. Privacy compliance is robust, featuring clear privacy and cookie policies with user consent mechanisms. Overall, Ebísum presents a professional, trustworthy online presence with good technical and security maturity.

D

Diputación de Málaga

malaga.es

0

Diputación de Málaga is the official provincial government entity for Málaga, Spain, providing a comprehensive digital portal with news, services, cultural events, and administrative information for residents and visitors. The website serves as a central hub for government transparency, social programs, tourism, employment, and local development initiatives. It maintains a strong market position as an authoritative source for provincial information and services. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, Hotjar, and responsive design frameworks, hosted on regional infrastructure. The site demonstrates good performance and mobile optimization, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not published. Overall, the site is trustworthy, professional, and compliant with GDPR and cookie regulations, reflecting a mature digital presence for a government institution.

A

Ayuntamiento de Málaga

malaga.eu

0

The Ayuntamiento de Málaga website serves as the official digital portal for the municipal government of Málaga, Spain. It provides comprehensive information about the city's governance, news, events, and citizen services including an electronic headquarters for administrative procedures. The site targets local citizens, businesses, and visitors, positioning itself as a trusted source for municipal information and services. The presence of multiple official social media channels and integration of modern web technologies reflects a mature digital infrastructure. Technically, the website employs a combination of established JavaScript libraries such as jQuery and Bootstrap, along with specialized tools like TinyMCE and Google reCAPTCHA, indicating a focus on usability and security. The CMS appears to be a proprietary or specialized platform (SAGA Suite), tailored for municipal needs. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS and includes bot protection mechanisms. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and enhanced security posture. The WHOIS data is privacy-protected as per EURid policies, which is typical for .eu domains and justified for a government entity. No signs of blocking or WAF interference were detected, allowing full content access. Overall, the website demonstrates a solid business credibility and technical foundation, with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would further strengthen trust and regulatory adherence.

F

Fundación Telefónica España

fundaciontelefonica.com

0

Fundación Telefónica España is a well-established non-profit organization focused on digital education, social action, and cultural initiatives primarily in Spain and Latin America. The foundation operates multiple programs aimed at improving digital skills and social inclusion, leveraging technology as a key enabler. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to a broad audience including students, educators, and social organizations. Technically, the site is built on WordPress with modern libraries and includes accessibility and SEO best practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although no explicit security policy or vulnerability disclosure is publicly available. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website's content and social media presence. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure channel, and enhancing incident response contact visibility to further strengthen trust and compliance.

O

Overalia

overalia.com

0

Overalia is a specialized digital marketing agency based in Spain, with a strong focus on online marketing strategies, web development, traffic acquisition, and analytics. The company positions itself as a Google Analytics Certified Partner and Google Partner, serving a diverse client base with over 1,200 projects completed. Their website demonstrates a professional and modern digital presence, utilizing contemporary web technologies and providing comprehensive content including case studies and detailed service descriptions. The technical infrastructure is solid, with HTTPS enforced and integration of security features like Google reCAPTCHA. Privacy and cookie policies are well implemented, reflecting good compliance with GDPR standards. However, the absence of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy, although the website content and certifications strongly support the business's credibility.

F

Footshop a.s.

footshop.es

0

Footshop a.s. operates a professional e-commerce platform specializing in sneakers, footwear, apparel, and accessories, targeting consumers interested in fashion and streetwear. The website presents a strong market position in Spain and other European countries, supported by multiple physical stores and a loyalty program. The business model focuses on retail sales through an online storefront with a broad brand portfolio and seasonal offerings. Technically, the website leverages modern web technologies including Google Tag Manager, Cookiebot for consent management, Typekit fonts, and a PrestaShop CMS backend. The site is well-optimized for mobile devices and includes SEO best practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed. Security posture is solid with HTTPS enforced and cookie consent implemented. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present and should be added to strengthen defenses. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained, with good privacy compliance and clear business information. The lack of publicly available WHOIS data is due to registry restrictions common for .es domains and does not detract from legitimacy. Strategic recommendations include enhancing security headers, continuous monitoring of third-party scripts, and improving accessibility compliance.

E

EZARRI, S.A.

ezarri.com

0

Ezarri, S.A. is a specialized manufacturer of glass mosaic tiles serving markets including swimming pools, large projects, interior design, wellness, and spas. The company positions itself as a leader with over 30 years of international experience and offers a broad range of mosaic collections, custom designs, and technical resources for architects and designers. Their business model focuses on manufacturing with direct engagement through digital tools such as a mosaic configurator and calculator, supported by certifications like ISO 9001 and ISO 14021, underscoring quality and environmental responsibility. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Matomo, and Google reCAPTCHA for security and analytics. The site is mobile-optimized with a professional design and good SEO practices. However, some security headers are not explicitly detected, and no CMS or hosting provider information is evident from the source. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, which is positive. There is no exposed sensitive data or vulnerable libraries detected. The absence of explicit security policies or incident response contacts is noted. The missing WHOIS data for the domain is a concern for domain legitimacy verification, although the website content and certifications suggest a legitimate business. Overall, the website presents a professional and trustworthy front with good privacy compliance and user experience. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and verifying domain registration details to improve trust and compliance.

Astralpool is a well-established company specializing in innovative solutions for pools and wellness, targeting both residential and commercial markets. Their website demonstrates a professional digital presence with a comprehensive product catalog and multilingual support, indicating a mature business model focused on manufacturing and retail of pool-related products and wellness equipment. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is generally good with HTTPS enforced and cookie consent implemented; however, the absence of security headers and visible privacy policies suggests room for improvement. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration transparency but does not detract significantly from the website's operational professionalism. Overall, the site is well-designed, user-friendly, and trustworthy from a business perspective, though enhancing security and compliance disclosures would strengthen its risk profile.

Enterprise Mobility is a well-established global leader in mobility services, offering a broad portfolio including vehicle rental, fleet management, and innovative mobility solutions. The website reflects a mature digital presence with a professional design, comprehensive content, and strong branding consistent with its parent company, Enterprise Holdings. The technical infrastructure leverages modern web technologies such as Next.js, Google Tag Manager, and Adobe DTM, ensuring good performance, mobile optimization, and SEO. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response details are not published. The domain WHOIS data is restricted due to registry policies, but the overall trustworthiness is high based on content and external references. Strategic recommendations include publishing security policies, adding vulnerability disclosure information, and enhancing direct contact options for security and privacy concerns.

Enterprise Rent-A-Car España operates a professional and well-structured website offering car rental services across Spain. The site is built on Adobe Experience Manager and integrates Adobe marketing and analytics tools, indicating a mature digital infrastructure. The website content is localized for the Spanish market and reflects the branding of Enterprise Holdings, a globally recognized car rental company. Security posture is solid with HTTPS enforced, though some security headers could be improved. Privacy and cookie policies are not explicitly detected in the provided content, suggesting room for compliance enhancement. Overall, the site presents a trustworthy and professional front for its business operations.

Alamo Rent a Car, operated under Enterprise Holdings, is a major global vehicle rental company offering competitive pricing and services across multiple continents including Europe, the Americas, and Asia-Pacific. The website is professionally designed, mobile-optimized, and provides a comprehensive booking system with clear navigation and multilingual support. The technical infrastructure leverages modern frameworks such as React and Adobe Experience Manager, supported by robust analytics and privacy compliance tools like Google Tag Manager and OneTrust. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. The domain WHOIS data is restricted due to registry policies for .es domains, but the website content and branding strongly indicate legitimacy and alignment with the parent company. Overall, the site demonstrates a mature digital presence suitable for an enterprise-level transportation service provider.

E

elPetit - festival internacional d'arts per a la primera infància

elpetit.cat

0

elPetit is an international arts festival focused on early childhood, operating primarily in Catalonia, Spain. The festival emphasizes live artistic experiences for young children and runs events across multiple cities. The website reflects a niche cultural organization with a clear target audience of families and early childhood educators. The digital infrastructure is built on modern web technologies including jQuery, Foundation, and Matomo analytics, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though security headers could be improved. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional web presence and active social media channels. Strategic recommendations include enhancing security headers, publishing explicit security policies, and improving direct contact information visibility.

P

pasch.es

pasch.es

0

Pasch.es is a Spanish company specializing in supplying industrial equipment and solutions across sectors such as naval, energy, railway, and process industries. Their website showcases a broad product catalog including marine engines, turbines, compressors, and related equipment, targeting industrial clients and businesses. The company maintains a professional online presence with comprehensive company policies and structured navigation. Technically, the website is built on WordPress using popular plugins like Elementor, Slider Revolution, and Contact Form 7, indicating a mature digital infrastructure. The site is mobile-optimized and performs moderately well, though some accessibility and SEO enhancements could be made. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The security posture is solid but could be enhanced by implementing recommended headers and explicit privacy compliance features. The absence of WHOIS data due to Red.es restrictions limits domain trust analysis, but the website content and structure suggest a legitimate and established business. Overall, the site scores well in business credibility and technical implementation but should address privacy and security best practices to improve compliance and trust.

T

TIPSA

tip-sa.com

0

TIPSA is a well-established logistics and urgent parcel delivery company operating primarily in Spain and Portugal, offering a wide range of services including express deliveries, healthcare logistics, eCommerce specialized shipping, and international transport. The website is professionally designed using Drupal CMS, with modern technologies and good mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place. However, the WHOIS data is missing or inconsistent, which raises concerns about domain registration legitimacy. Overall, the website presents a trustworthy and professional front but requires verification of domain registration details to fully confirm legitimacy.

G

GRUP MEDIAPRO

mediapro.es

0

GRUP MEDIAPRO is a leading European audiovisual group specializing in integrated content creation, production, and distribution. The company operates internationally with 50 offices across 28 countries and offers a broad range of services including broadcast media services, digital innovation, rights management, and content production through The Mediapro Studio. Their market position is strong, supported by a large professional workforce and a comprehensive network of subsidiaries. Technically, the website employs modern JavaScript libraries such as React and Swiper, ensuring a responsive and engaging user experience, although some security headers could be improved. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, reflecting good privacy compliance aligned with GDPR. Overall, the company presents a professional and trustworthy digital presence with clear business credibility.

K

KTC

kt-global.com

0

KTC is a Spanish consulting firm specializing in talent management, leadership development, organizational design, coaching, executive search, and compliance advisory. Established in 2006, the company serves a diverse client base including multinational corporations and family-owned businesses, focusing on enhancing competitive advantage through effective people management and organizational strategies. The website presents a professional and comprehensive overview of their services, targeting organizations seeking to optimize their human capital and leadership capabilities. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a trustworthy and credible business presence with clear compliance to privacy regulations.

T

inicio

topogeo.es

0

Topogeo.es is a small professional service provider specializing in topography, civil engineering, building, and surveying services in Spain. The company leverages over 20 years of sector experience and offers solutions including drone-based surveying and design services. The website is built using Mobirise with Bootstrap and common JavaScript libraries, providing a basic but functional online presence. However, the site lacks comprehensive privacy, cookie, and terms of service policies, and does not provide explicit contact information, which limits user trust and compliance. Security posture is minimal with no detected security headers and unknown SSL configuration. The WHOIS data is inaccessible due to registry restrictions typical for .es domains, which limits domain registration transparency but is not unusual. Overall, the website serves as a basic informational platform for a niche engineering service provider but requires improvements in security, privacy, and contact transparency to enhance trust and compliance.

A

Ardanuy Ingeniería, S.A.

ardanuy.com

0

Ardanuy Ingeniería, S.A. is a well-established Spanish engineering consultancy specializing in infrastructure sectors including railways, urban transport, energy, roads, and architecture. Founded in 1992, the company has a strong market presence with over 1,800 projects completed worldwide and significant annual revenues. Their website reflects a professional and consistent brand image targeting clients seeking comprehensive engineering and project management services. The business model focuses on consulting, design, and construction supervision with international reach. Technically, the website is built on a modern tech stack including Bootstrap, jQuery, and various UI and analytics tools, hosted by Nominalia Internet SL. The site is mobile-optimized and provides a good user experience, although accessibility and SEO could be further enhanced. The use of ASP.NET technology is indicated by form structures and hidden fields. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks DNSSEC and explicit security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with privacy and cookie policies available. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. Social media presence on LinkedIn and YouTube supports trust. Overall, the website demonstrates a solid business credibility and technical foundation with room for security and privacy improvements. The domain registration data supports the legitimacy and maturity of the business. Strategic recommendations include enhancing DNS security, implementing security headers, and expanding privacy and incident response disclosures.

R

ReDI School

redi-school.org

0

ReDI School is a non-profit organization focused on providing free technology education through a variety of courses including web development, cybersecurity, cloud computing, and AI. The organization targets diverse audiences including women, kids, and teens, and offers career support services to help students transition into the tech industry. The website is built on Squarespace, featuring a modern and responsive design with clear navigation and multiple location-specific pages across Europe. Security posture is strong with HTTPS and HSTS enabled, though some advanced security headers and policies are missing. Privacy compliance is partially addressed with a cookie consent banner but lacks a visible privacy policy or terms of service. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for non-profits. Overall, the site demonstrates good professionalism, trustworthiness, and technical implementation.

C

Casinoble

casinoble.es

0

Casinoble is a well-established Spanish-language online guide specializing in the iGaming industry, including online casinos, sports betting, and esports. It offers comprehensive reviews, educational content, and payment method guides, positioning itself as a trusted resource for Spanish-speaking players. The website demonstrates a mature digital infrastructure built on WordPress with modern SEO and tracking tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and age verification mechanisms, though additional HTTP security headers could enhance protection. Privacy and cookie policies are present and GDPR compliant, reflecting a commitment to regulatory adherence. Overall, Casinoble presents a professional, trustworthy, and content-rich platform with a strong market position in Spain's iGaming media sector.

Plukon Food Group is a leading European company in the poultry sector, specializing in the production and supply of chicken products and ready-to-eat meals to major food market partners across Europe. The website reflects a mature business with a strong emphasis on sustainability, corporate responsibility, and quality assurance, as evidenced by multiple sustainability reports and the Beter Leven quality mark. The company operates multiple subsidiaries across Europe, reinforcing its market presence and operational scale. Technically, the website is built on a modern WordPress platform utilizing popular plugins such as WPBakery Page Builder and Slider Revolution. It integrates Google Analytics and Tag Manager for tracking and performance monitoring. The site is mobile-optimized and SEO-friendly, with structured data implemented via JSON-LD for enhanced search engine understanding. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, indicating a baseline security posture. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, suggesting potential areas for enhancement. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website presents a professional and trustworthy digital presence aligned with the company's business stature. The main limitation is the lack of accessible WHOIS data, which restricts domain trust verification. Strategic recommendations include implementing additional security headers, enhancing accessibility, and publishing explicit incident response and vulnerability disclosure policies to further strengthen security and compliance posture.

S

SUNSEEKER MALLORCA

sunseekermallorca.es

0

Sunseeker Mallorca operates as a luxury motor yacht brand specializing in the sale and servicing of high-end yachts. The company positions itself as a world leader in luxury motor yachts, targeting affluent customers seeking premium marine vessels. The website reflects a strong brand identity with professional design and multilingual support, indicating a mature digital presence. Technically, the site leverages modern frameworks such as Next.js and Chakra UI, integrates Google Analytics and Tag Manager for marketing insights, and employs OneTrust for privacy compliance. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and incident response details are absent. Overall, the site demonstrates a high level of professionalism and trustworthiness, though the lack of accessible WHOIS data limits full domain legitimacy verification.

B

Bstadium

bstadium.es

0

Bstadium.es operates as a specialized online marketplace offering sports and leisure experiences primarily linked to football clubs in Spain. The platform combines ticket sales for football matches, stadium tours, and other related activities such as tourism and gastronomy, targeting sports enthusiasts and tourists interested in unique football-related experiences. The website demonstrates a consistent brand presence with clear navigation and a professional design, supporting a small-sized business model focused on niche e-commerce within the sports sector. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and uses libraries such as HTMX and FontAwesome. It is mobile-optimized and includes structured data for SEO enhancement. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some improvements in accessibility and security headers could enhance the technical maturity. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating a baseline security posture. No explicit security headers were detected, and no vulnerability disclosures or incident response contacts are published. Privacy compliance is partially addressed through a cookie consent banner, but lacks a visible privacy policy or terms of service, which are critical for GDPR compliance and user trust. Overall, the website presents a moderate risk profile with no critical security issues detected but with room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and enhancing accessibility to improve trust and compliance.

S

Scientiffic Nutrition

scientifficnutrition.com

0

Scientiffic Nutrition is a Spanish-based e-commerce business specializing in sports nutrition supplements and related products. Established in 2018, the company has positioned itself as a reputable provider within the sports nutrition retail sector, leveraging official partnerships with prominent sports teams to enhance brand credibility. Their website offers a comprehensive product catalog, targeting both professional athletes and fitness enthusiasts. Technically, the site is built on WordPress with WooCommerce, integrating modern plugins and tracking tools such as Google Analytics and Probance, while maintaining GDPR-compliant privacy and cookie policies with active consent mechanisms. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and explicit security headers could be improved. Overall, the website demonstrates good design, usability, and trustworthiness, supporting a medium-sized retail operation with a clear market focus.

F

Fontarel

fontarel.es

0

Fontarel is a Spanish brand specializing in natural mineral water with low mineralization. The website serves as a brand promotion platform highlighting the product's origin and qualities. The site targets Spanish-speaking consumers interested in natural mineral water, positioning itself as a niche regional brand. Technically, the website leverages Adobe Experience Manager, Cookiebot for cookie consent, and integrates multiple third-party analytics and advertising services including Google Analytics, Adobe Analytics, and social media pixels. The site is moderately optimized for mobile and SEO, with good content quality and consistent branding. Security posture is moderate with cookie consent implemented but lacking visible security headers and explicit privacy policies. WHOIS data is unavailable due to Red.es restrictions, but the domain appears legitimate with privacy protection likely justified. Overall, the website is professional and functional but could improve transparency and security practices.

U

UniversiDATA

universidata.es

0

UniversiDATA is a specialized open data portal focused on the higher education sector in Spain, aggregating datasets from multiple universities to promote transparency and data reuse. The platform offers a catalog of datasets, analytical applications, and news updates, targeting universities, researchers, and data reusers. The website is built on Drupal 7 with modern front-end technologies and integrates Google Analytics with privacy-conscious configurations. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the site is professional, trustworthy, and well-positioned within its niche.

F

Fundación Universidad de Jaén-Empresa

fundacionujaenempresa.es

0

Fundación Universidad de Jaén-Empresa is a private foundation focused on fostering cooperation between the University of Jaén and the socio-economic environment, emphasizing research, innovation, training, entrepreneurship, and employment. The website reflects a regional educational non-profit entity with clear mission and services aimed at students, researchers, and local businesses. Technically, the site uses a traditional jQuery-based stack with common UI libraries and demonstrates good mobile responsiveness and SEO practices. Security posture is solid with HTTPS and form validation, though it lacks advanced security headers and incident response disclosures. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

C

CRUE

crue.org

0

CRUE (Conferencia de Rectores de las Universidades Españolas) is a prominent non-profit organization representing Spanish universities. The website serves as a central hub for information about the organization’s governance, activities, policies, and events, targeting academic institutions, students, researchers, and education stakeholders in Spain. It offers comprehensive resources including agendas, publications, and institutional representation. The organization holds a leading market position within the Spanish higher education sector. Technically, the website is built on WordPress with a modern plugin ecosystem including GDPR compliance tools, event management, and multimedia integration. The site demonstrates good mobile optimization, accessibility, and SEO practices, supported by structured data and social media integration. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, reflecting compliance with GDPR. While explicit security headers are not fully visible in the HTML, the use of security/privacy plugins and absence of exposed sensitive data indicate a solid security posture. No critical vulnerabilities or suspicious WHOIS patterns were detected, though WHOIS data is privacy protected, which is typical for such organizations. Overall, CRUE’s website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include enhancing security headers, publishing explicit security policies, and enabling DNSSEC to further strengthen domain security.

U

Universidad Autónoma de Madrid

uam.es

0

The Universidad Autónoma de Madrid (UAM) is a prominent public university in Spain, offering a wide range of undergraduate, postgraduate, and research programs. It holds a strong market position as one of Spain's leading universities, ranked 206 worldwide in the QS World University Rankings 2026. The institution targets students, researchers, academic staff, and prospective students, providing education, research, innovation, and cultural services. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, with good mobile optimization and accessibility features. The site uses HTTPS with strong SSL configuration, though it lacks some advanced security headers. No CMS or hosting provider details were explicitly detected. Performance is moderate, with room for optimization. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy, incident response contacts, or vulnerability disclosure mechanisms suggests areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, supporting the university's reputation. The WHOIS data is restricted by the Spanish registry policy, which is typical and does not detract from legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and implementing vulnerability disclosure practices to further strengthen trust and security.

F

Fundación ICO

fundacionico.es

0

Fundación ICO is a Spanish non-profit foundation affiliated with the Instituto de Crédito Oficial (ICO), focusing on promoting cultural activities, financial education, and sustainable economic development. The website serves as a portal for information on their educational programs, art exhibitions, publications, and institutional collaborations. It targets a broad audience including educators, students, professionals in finance, and the general public interested in sustainability and culture. The foundation holds a recognized position in Spain's public and cultural sectors, leveraging its connection to ICO to deliver impactful programs and resources. Technically, the website is built on the Liferay CMS platform with custom theming and uses a mix of legacy and modern JavaScript libraries including jQuery and Google Tag Manager for analytics and marketing. The site is mobile optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with room for improvement in modernizing the tech stack and enhancing accessibility. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR and Spanish regulations. However, it lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. Analytics usage is moderate, primarily through Google services, with a reasonable privacy compliance posture. Overall, Fundación ICO's website is professional, trustworthy, and aligned with its public foundation status. Strategic improvements in security headers, updated libraries, and enhanced transparency on security policies would further strengthen its posture and user trust.

B

BME Bolsas y Mercados Españoles

bolsasymercados.es

0

BME Bolsas y Mercados Españoles is the leading operator of financial markets in Spain, providing a comprehensive range of services including stock exchange operations, securities clearing and settlement, market data, and financial education. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site is built on Adobe Experience Manager, uses modern tracking and consent management tools, and implements HTTPS with appropriate security headers, indicating a solid security posture. However, the absence of publicly accessible WHOIS data and lack of explicit security policies or incident response contacts suggest areas for improvement in transparency and security communication. Overall, the site is trustworthy and well-positioned in the finance sector, serving investors, issuers, and financial institutions effectively.

D

Dune

dunetechnology.com

0

Dune Technology is a Spanish IT consulting company established in 2011, offering tailored technology solutions primarily to SMEs and larger enterprises. Their services include private cloud infrastructure, cybersecurity audits, network solutions, IT equipment sales and rentals, and comprehensive IT consulting and service desk support. The company positions itself as a trusted technology partner with a focus on innovation and client success. Technically, the website is built on WordPress with Elementor and Yoast SEO, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain status protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms of service pages. Business credibility is supported by consistent branding, testimonials, and a domain age matching the company's history. Overall, the website is professional and functional but could improve in privacy transparency and security best practices.

L

Lucentia Research Group

lucentia.es

0

Lucentia Research Group is an academic research entity affiliated with the University of Alicante, specializing in business intelligence, big data, artificial intelligence, and e-learning solutions. Established in 2008, the group has a strong national and international presence demonstrated by numerous high-impact publications and competitive project participation. Their services target both academic and business audiences, focusing on innovative data analytics and AI applications across multiple sectors including education, healthcare, and industry. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder, Contact Form 7, and integrates Google services for fonts, analytics, and reCAPTCHA. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and security headers. Security posture is solid with HTTPS enforced and spam protection via reCAPTCHA, but the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and defense-in-depth. The lack of WHOIS data due to query restrictions limits domain trust assessment but the website content and structure suggest legitimacy. Overall, the site is professional and trustworthy, serving as a credible platform for the research group. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and improving accessibility to strengthen compliance and user trust.

Compararcoche.com is a Spanish online platform specializing in new car price comparison and personalized offers from official dealerships. Founded in 2022, it targets consumers in Spain seeking to purchase or rent new vehicles efficiently. The website provides detailed guides, comparisons, and facilitates lead generation for car dealerships. Technically, the site is built on WordPress using Elementor and Jet Engine plugins, hosted via GoDaddy, and employs Google Tag Manager for analytics. The site is well-structured with good SEO practices and mobile optimization. Security posture is adequate with HTTPS and domain locks, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms policies. Overall, the site is professional and trustworthy but could improve transparency and security measures.

M

MAPFRE

mapfre.es

0

MAPFRE is a well-established Spanish insurance company offering a broad range of insurance products including home, life, health, car, motorcycle insurance, and pension plans. The website targets individual consumers in Spain, providing an easy-to-use online platform for insurance quotes and purchases. The company holds a strong market position as a large enterprise with consistent branding and a professional online presence. Technically, the website is built on WordPress with the Divi theme and integrates modern analytics and cookie consent tools, ensuring compliance with GDPR and good SEO practices. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is trustworthy, well-designed, and compliant with privacy regulations, supporting MAPFRE's reputation as a leading insurer in Spain.

I

IndesIA

indesia.org

0

IndesIA is a Spanish industry association focused on promoting the use of data and artificial intelligence among companies and SMEs in the Spanish manufacturing sector. The website positions the organization as a key enabler for the digital transformation of industry, targeting primarily Spanish industrial SMEs. The business model is that of an association providing advocacy, support, and promotion of AI technologies within the industrial ecosystem. The website content is professionally presented, with consistent branding and a clear focus on its mission. Technically, the website is built on WordPress using a modern stack including Elementor, Yoast SEO, Google Analytics, and Cookiebot for cookie consent management. The site is mobile optimized and uses structured data (JSON-LD) for SEO enhancement. Performance is moderate, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS, uses security headers, and integrates reCAPTCHA to protect forms. Cookie consent is implemented, supporting privacy compliance. However, the absence of explicit privacy and terms of service pages, as well as the lack of publicly available WHOIS data, reduces transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with good technical and security foundations but could improve transparency and compliance by publishing privacy and terms policies and providing clearer contact information. The domain's WHOIS privacy protection is common but limits trust verification. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving contact transparency.