Security Directory

3

3fera

3fera.com

0

3fera is a Spanish technology company specializing in blockchain solutions for businesses. Established in 2006, it offers consulting, development, and integration services to help enterprises leverage blockchain technology. The website is built on WordPress using Elementor, hosted behind Cloudflare DNS, and presents a professional design targeted at business clients. Security posture is moderate with HTTPS enabled and domain registration protections, but lacks advanced security headers and explicit privacy or cookie policies. Contact options are limited to a contact form without direct emails or phone numbers. Overall, the website reflects a legitimate small business with room for improvement in privacy compliance and security best practices.

The website uev.es is currently a parked domain page offered for sale via the Sedo domain marketplace. It does not represent an active business or service but rather serves as a placeholder with minimal content and advertising links. The site uses Sedo's parking platform and Google Adsense for monetization. There is no identifiable company information, contact details, or security policies beyond basic Sedo templates. Technically, the site uses standard HTML, CSS, and JavaScript with embedded iframes for ads and search functionality. Security posture is weak due to lack of HTTPS and security headers. Privacy compliance is minimal with only a basic privacy policy and cookie consent mechanism provided by Sedo. Overall, the site is low trust and low content quality, suitable only as a domain sale landing page.

I

i2CAT Foundation

i2cat.net

0

i2CAT Foundation is a well-established non-profit research and innovation center based in Catalonia, Spain, focused on advanced Internet architectures, applications, and services. The organization has a strong market position as a CERCA research center, actively participating and leading European and local R&D projects in emerging technologies such as 5G/6G, AI, cybersecurity, and digital society technologies. Their target audience includes researchers, businesses, public administrations, and citizens interested in digital innovation. The website reflects a professional and consistent brand image with good content quality and clear navigation.

F

Fundació iSocial

isocial.cat

0

Fundació iSocial is a non-profit organization established in 2017, focused on promoting innovation in the social services sector primarily in Catalonia, Spain. The organization connects the third sector, administrations, universities, and companies to foster knowledge sharing, innovation, and transformative impact in social welfare. Their key services include training programs, innovation labs, research projects, and publications. The website reflects a professional and consistent brand presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with WooCommerce and several plugins enhancing functionality and user experience. Hosting is provided by Dinahosting s.l., and the domain registration details align well with the organization's identity, indicating legitimacy.

The Banc de Bones Pràctiques website is a government/non-profit platform dedicated to identifying and disseminating innovative local government practices in the province of Barcelona, Catalonia. It serves local municipalities and government entities by providing a searchable database of best practices, evaluation criteria, and resources to promote governance innovation. The site is supported by recognized local institutions such as the Diputació de Barcelona and the Fundació Carles Pi i Sunyer, enhancing its credibility and trustworthiness. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, and FontAwesome, ensuring responsive design and good user experience across devices. Hosting and domain registration are consistent with the business purpose, with a mature domain age since 2010. However, the site lacks advanced security headers and DNSSEC, which are recommended for improved security posture. Security-wise, the site uses HTTPS (assumed from domain and external resources) but does not implement visible security policies or incident response contacts. No privacy policy page was found, though a cookie consent banner is present, indicating some level of GDPR awareness. Contact information is limited to an official email and contact form, with no phone or physical address explicitly listed. Overall, the website is professional and trustworthy for its niche audience but would benefit from enhanced security measures, explicit privacy and terms policies, and improved transparency regarding data protection and incident response.

U

Universitat Politècnica de Catalunya - BarcelonaTech

upc.edu

0

The Universitat Politècnica de Catalunya - BarcelonaTech (UPC) is a prominent public university specializing in engineering, architecture, and technology education and research. The website serves a broad audience including prospective and current students, researchers, academic staff, and industry partners. It offers comprehensive information on undergraduate, master's, doctoral, and continuing education programs, as well as research and innovation services. The university holds a strong market position in Catalonia and Spain with international recognition and certifications such as HR Excellence in Research. Technically, the website is built on the Plone CMS platform and employs modern web technologies including Usercentrics for consent management, Google Analytics, Microsoft Clarity for analytics, and Bootstrap for responsive design. The site demonstrates good performance, mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the exact queried domain 'www.upc.edu' was not found, which is unusual but likely due to querying the subdomain rather than the root domain. Despite this, the website's legitimacy is supported by consistent branding, official social media presence, and comprehensive institutional content. Privacy policies and cookie consent mechanisms indicate GDPR compliance. Overall, the website is professional, secure, and trustworthy, serving as a reliable digital presence for the university. Strategic recommendations include enhancing security headers, publishing a dedicated security policy, and adding a vulnerability disclosure mechanism to further strengthen security posture.

U

U.COLLEGE OF NEW TECHNOLOGIES, S.L.

enti.cat

0

ENTI-UB is a specialized university center in Barcelona focused on new technologies education, offering undergraduate, higher cycle, master's, and postgraduate programs. The institution is positioned as a medium-sized educational entity with a consistent brand presence and active social media engagement. Technically, the website is built on WordPress using Elementor and Gravity Forms, with Cloudflare DNS and Google Tag Manager integrations, reflecting a modern and moderately performant digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protection, though improvements are needed in DNSSEC and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

I

IslaWEB S.L.

islaweb.com

0

IslaWEB S.L. is a Spanish web hosting provider with over 20 years of experience offering professional internet presence solutions including web hosting, dedicated servers, and domain registration. The company targets businesses and professionals primarily in Spain, positioning itself as an early and established player in the Spanish hosting market. The website is well-structured, mobile-optimized, and provides clear service plans and contact options. However, the absence of WHOIS registration data raises concerns about domain legitimacy despite the professional presentation and detailed legal disclosures. Technically, the site uses legacy JavaScript libraries such as jQuery 1.12.4 and custom scripts, with no detected CMS or advanced frameworks. Performance is moderate with good mobile optimization and basic accessibility. Security posture is average; forms are secured with consent checkboxes, but no security headers or cookie consent mechanisms are detected. SSL status is unknown from the data provided, which is a critical gap. From a security perspective, the site lacks explicit incident response contacts and published security policies. The privacy policy is comprehensive and GDPR compliant, reflecting good data protection awareness. No vulnerabilities or tracking technologies were detected, indicating minimal user tracking and advertising. Overall, the website presents a professional and trustworthy front for a small technology business but requires verification of domain registration and improvements in security headers and cookie consent to enhance trust and compliance.

A

AOC (Administració Oberta de Catalunya)

digicanvis.cat

0

Digicanvis is a government-affiliated digital observatory platform focused on showcasing best practices and innovative initiatives in the digital transformation of local administrations in Catalonia, Spain. It is supported by the Administració Oberta de Catalunya (AOC), which is evident from branding and linked partner domains. The platform provides a searchable database of projects and encourages submissions of new digital transformation initiatives. Technically, the website is built on WordPress using modern frameworks like Bootstrap and WPBakery Page Builder, with integration of Google Tag Manager and GTranslate for multilingual support. The site is mobile optimized and presents a professional design with clear navigation. Security posture is good with HTTPS enforced and no visible vulnerabilities, though it lacks explicit privacy and cookie policies and security headers, which are recommended for compliance and enhanced security. WHOIS data is unavailable publicly, likely due to privacy protection, which is common for government-related domains. Overall, the site is trustworthy, well-maintained, and serves a niche government audience effectively.

I

Instituto de la Juventud (Injuve)

injuve.es

0

Instituto de la Juventud (Injuve) is a Spanish government agency dedicated to youth policies and programs. It operates under the Ministry of Youth and Childhood and offers a wide range of services including grants, awards, youth information centers, and international youth programs such as Erasmus+. The website is well-structured, multilingual, and professionally designed to serve young people and youth organizations in Spain. Technically, the site uses Drupal 10 with modern frontend frameworks and integrates Google Tag Manager for analytics. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present and GDPR compliant. Overall, the site is trustworthy, transparent, and serves its public sector mission effectively.

Z

ZEISS

zeiss.es

0

ZEISS España is the Spanish branch of ZEISS, a globally recognized leader in optics and optoelectronics technology. The website presents a professional corporate presence with a focus on vision care, medical technology, and industrial applications. The site is well-structured, mobile-optimized, and includes modern tracking and consent technologies, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident in the provided data. The absence of WHOIS data limits domain registration verification, but the branding and content strongly support legitimacy. Overall, the site is a reliable and professional representation of a major technology company in Spain.

W

World Challenge Game

worldchallengegame.com

0

World Challenge Game is an innovative company offering a hybrid board game integrated with a mobile app and Artificial Intelligence, targeting both traditional board game players and digital gamers worldwide. Their business model includes physical game sales, a free mobile app, NFT avatar collections, and upcoming merchandise with royalty incentives. The company has established partnerships and a registered trademark with EUIPO, supporting its international ambitions. Technically, the website uses modern frameworks like Next.js and React, hosted on AWS infrastructure, with good mobile optimization and basic SEO. Security posture is solid with HTTPS and security headers, though DNSSEC is not enabled and privacy policies are missing, indicating areas for compliance improvement. Overall, the website is professional and trustworthy, with moderate user tracking and advertising practices. Strategic recommendations include adding privacy and terms policies, enabling DNSSEC, and enhancing accessibility and SEO.

A

ACCIONA Energía

acciona-energia.com

0

ACCIONA Energía is a leading global renewable energy company exclusively focused on sustainable energy solutions. The website presents a comprehensive portfolio of renewable technologies including wind, solar, hydroelectric, biomass, and emerging solutions like green hydrogen and electric mobility. The company positions itself as a pioneer in decarbonization with a strong commitment to innovation and environmental impact. Technically, the site is built on Adobe Experience Manager, leveraging modern analytics and marketing tools such as Google Analytics, Hotjar, TikTok, and Twitter tracking, alongside robust cookie consent management via Cookiebot. Security posture is strong with HTTPS, reCAPTCHA, and consent mechanisms, though explicit security headers should be verified. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for large enterprises. Overall, the site is professional, well-structured, and compliant with GDPR, targeting businesses and consumers interested in renewable energy solutions.

H

hansgrohe

hansgrohe.es

0

Hansgrohe is a premium brand specializing in high-quality bathroom and kitchen fixtures, including faucets and showers. The website targets consumers and professionals seeking modern, durable, and design-oriented products. The company maintains a strong market position in the retail sector with a global presence indicated by multiple localized domains. Technically, the website is built on a robust SAP Hybris platform, leveraging modern JavaScript frameworks and analytics tools such as Google Tag Manager and Piwik PRO. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security-wise, the site enforces HTTPS, uses secure cookies, and implements GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response information are not publicly available, which could be improved to enhance transparency and trust. Overall, the domain registration data is not accessible, but the website's professional presentation and technical maturity suggest legitimacy and reliability.

G

Gamma

gammacom.es

0

Gamma is a Spanish telecommunications operator specializing in communication and collaboration services for businesses. Their offerings include virtual PBX (centralita virtual Centrex), IP telephony, CRM integrations, Microsoft Teams telephony, and contact center solutions. The company targets enterprises seeking unified communication solutions with professional support and advanced analytics. The website reflects a medium-sized, established business with a professional digital presence and active content updates. Technically, the site is built on WordPress with modern plugins and SEO tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA, though some security headers and explicit privacy policies are missing. Overall, Gamma demonstrates a trustworthy and credible online presence with room for improvement in compliance documentation and security best practices.

O

Open Administration Consortium of Catalonia (AOC Consortium)

aoc.cat

0

The Open Administration Consortium of Catalonia (AOC Consortium) is a government-backed organization focused on facilitating the digital transformation of local administrations in Catalonia. The website provides comprehensive information about their services, including digital maturity assessment, change management, innovation initiatives, and support tools. The consortium positions itself as a key regional player in public sector digital services, targeting local government entities to improve administrative efficiency, citizen satisfaction, and transparency. Technically, the website is built on WordPress, utilizing modern plugins such as Slider Revolution, EventON, and Ajax Search Lite. It integrates analytics and tracking tools like Google Tag Manager and Hotjar, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with multilingual support enhancing its reach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. The WHOIS data is unavailable, likely due to privacy or registry policies, which slightly reduces domain trustworthiness. Nevertheless, the presence of official government logos, partner links, and comprehensive privacy and cookie policies supports a strong trust profile. Overall, the website demonstrates a professional, secure, and user-friendly platform aligned with its mission to support digital government transformation. Strategic recommendations include enhancing security headers, auditing third-party plugins regularly, and publishing explicit security and incident response policies to further strengthen trust and compliance.

The website valescolar.cat is registered to Consell De Cambres De Catalunya, a Spanish organization likely involved in the education sector. The domain is relatively new, created in May 2023, and uses Cloudflare for DNS and security services. However, the website content is inaccessible due to a Cloudflare WAF geographic restriction, displaying only a minimal message 'country not allowed'. This prevents any meaningful content or service analysis. The lack of accessible content also means no privacy, cookie, or terms of service policies are available, and no contact information or business details are present on the site itself. From a technical perspective, the site is hosted behind Cloudflare but does not have DNSSEC enabled, and no security headers or HTTPS status could be verified due to content blocking. The WHOIS data is transparent and consistent with the registrant organization, indicating legitimacy. However, the new domain age suggests a recently launched service or initiative. Security posture is weak as no security best practices can be confirmed on the site, and the geographic blocking may impact user trust and accessibility. The absence of privacy and cookie policies also indicates non-compliance with GDPR requirements. Overall, the site currently offers minimal digital maturity and poor user experience due to content inaccessibility. Strategic recommendations include enabling full HTTPS with proper security headers, publishing privacy and cookie policies, providing clear contact and incident response information, and reviewing geographic access restrictions to improve accessibility and trust.

S

Stratos

stratos-ad.com

0

Stratos is a well-established online community platform founded in 1998, serving video game and multimedia developers primarily in Spain. The website offers industry news, job listings, collaboration opportunities, forums, and educational resources, positioning itself as a niche hub for professionals and enthusiasts in the multimedia development sector. The platform maintains active engagement through frequent job and collaboration postings and integrates social media channels for broader community interaction. Technically, the site employs modern web standards including responsive design, Google Fonts, FontAwesome icons, and Google Tag Manager for analytics, hosted by DonDominio. The website is mobile-optimized and provides a consistent user experience with clear navigation and professional design. Security-wise, the site uses HTTPS with good SSL configuration but lacks some advanced security headers and DNSSEC. Privacy compliance is addressed with dedicated pages for privacy policy, cookie policy with consent mechanisms, and terms of service, though incident response and vulnerability disclosure policies are absent. Overall, the site demonstrates a solid security posture with room for improvement in security headers and incident response transparency. The domain's long registration history and consistent WHOIS data reinforce the site's legitimacy and trustworthiness.

D

DEVICAT

devi.cat

0

DeviCAT is a professional association dedicated to supporting and promoting the video game industry in Catalonia, Spain. Founded in 2022, it serves as a horizontal association that brings together local and international companies with a presence in Catalonia. The organization focuses on enhancing the social recognition of video games, strengthening the ecosystem, fostering internationalization and innovation, promoting local talent, and attracting foreign companies. Their market position is that of a key industry connector and promoter within the regional technology sector. Technically, the website is built on WordPress with modern SEO and security plugins, hosted by Dinahosting s.l., and demonstrates good mobile optimization and performance. Security posture is solid with HTTPS and firewall plugins, though improvements like DNSSEC and security headers are recommended. Privacy compliance is basic, with policies present but lacking explicit consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

G

Generalitat de Catalunya

gencat.cat

0

The website web.gencat.cat serves as the official digital portal for the Generalitat de Catalunya, the regional government of Catalonia, Spain. It provides comprehensive information, public services, and electronic procedures to citizens and businesses within the region. The site is well-positioned as a trusted government resource, offering multilingual support and a broad range of thematic content covering government administration, citizen services, and sector-specific information. The business model is centered on public service delivery and digital government transformation.

S

SERVICIO ESTUDIOS

servicioestudiosugt.com

0

Servicio de Estudios de UGT is a Spanish union-affiliated research organization focused on labor market analysis, legal jurisprudence, and economic studies to support workers' rights. The website serves as a platform to disseminate reports, analyses, and guides primarily targeting union members and labor market stakeholders. The organization benefits from its affiliation with the well-established UGT union, enhancing its credibility and market position. Technically, the website is built on WordPress with Elementor and integrates modern SEO and performance optimization tools. It employs standard tracking and analytics services while maintaining GDPR compliance through cookie consent mechanisms and accessible privacy policies. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Overall, the site is professional, trustworthy, and serves its informational purpose effectively.

S

Sindicato Unión General de Trabajadoras y Trabajadores de España

ugt.es

0

The Sindicato Unión General de Trabajadoras y Trabajadores de España (UGT) is a prominent Spanish trade union organization dedicated to representing workers and providing labor-related services. The website serves as a comprehensive platform offering information about the union's structure, services, news, and communication channels. It targets workers, union members, and affiliates, positioning itself as a leading labor organization in Spain. The business model is non-profit, focusing on advocacy, social dialogue, and member services. Technically, the website is built on Drupal 10, leveraging modern web technologies including Font Awesome for icons, Google Tag Manager, and Matomo for analytics. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR and related privacy regulations. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and security communication. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's credibility and commitment to its audience. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and providing clear contact information for data protection and security matters to enhance trust and compliance further.

G

Gamelab

gamelab.es

0

Gamelab is a well-established event organizer specializing in the videogames industry, with over 20 years of history and a strong reputation for connecting industry leaders and professionals through conferences and networking events. The website reflects a professional and consistent brand image targeting gaming professionals and enthusiasts, primarily in Spain. Technically, the site uses modern front-end technologies such as Bootstrap, jQuery, and Owl Carousel, providing a responsive and user-friendly experience. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. Security-wise, the site uses HTTPS and secure forms with CSRF tokens but lacks visible security headers and published security policies, indicating room for improvement in security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

R

Rifles Bergara International

bergara.online

0

Bergara.online is the official website for Rifles Bergara International, a company specializing in the manufacture and sale of rifles and related accessories. The site serves as an e-commerce platform and information hub, offering product catalogs, blogs, events, and an international network of authorized dealers. The business targets shooting sports enthusiasts and hunters, positioning itself as a reputable international brand in the firearms retail sector. The website is built on WordPress with a modern tech stack including popular plugins and analytics tools, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS and age verification in place, but lacks comprehensive privacy policies and explicit security headers. The site uses extensive third-party marketing and analytics services, indicating a focus on customer engagement and data-driven marketing. Overall, the website is professional and trustworthy, though improvements in privacy compliance and security transparency are recommended.

S

SECCIÓN SINDICAL UGT BBVA

fesmcugt.online

0

SECCIÓN SINDICAL UGT BBVA is a union section representing employees of BBVA under the umbrella of the Unión General de Trabajadores (UGT) in Spain. The website serves as an information portal providing updates on labor rights, collective bargaining, union activities, and member services. It targets BBVA employees and union members, offering resources such as circulars, negotiation updates, and affiliation information. The business model is focused on union representation and member engagement within the finance sector. The website is medium-sized, founded in 2018, and maintains consistent branding aligned with UGT standards. Technically, the website is built on WordPress using the GeneratePress theme and several plugins including GDPR Cookie Compliance, Contact Form 7, and The Events Calendar. It employs modern web technologies such as jQuery and Google Tag Manager for analytics. Hosting is provided by Dinahosting SL, a Spanish registrar and hosting provider. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain status protections to prevent unauthorized transfers or deletions. However, it lacks advanced security headers and DNSSEC is not enabled. The site includes a GDPR-compliant cookie consent mechanism and privacy policy but does not publish a dedicated security policy or incident response contacts. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its niche audience with relevant content and functional features. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance.

M

Mateos Legal

mateos.legal

0

Mateos Legal is a professional legal and economic advisory firm based in Barcelona, Spain, founded in 2001. The firm offers a broad range of legal services including fiscal, civil, commercial, corporate, and family law, supported by a multidisciplinary team of lawyers and economists. The website reflects a mature and professional business with a clear market position serving businesses and individuals seeking comprehensive legal and economic consulting. Technically, the website is built on WordPress using modern plugins such as Elementor and JetEngine, with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. WHOIS data is unavailable due to unsupported TLD or privacy protection, but the website content and structure indicate legitimacy. Overall, the site is well-designed, trustworthy, and compliant with GDPR regulations.

Ciberpyme Barcelona S.L. is a small technology company based in Spain, specializing in internet solutions including web design, digital marketing, SEO, hosting, and e-commerce services. With over 25 years in IT and 15 years focused on internet solutions, they serve a diverse clientele from small businesses to public entities primarily in the Barcelona region. The website is built on WordPress with Elementor, reflecting a moderate level of digital maturity and good mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and formal privacy documentation. Overall, the business appears legitimate and well-established with a professional online presence but should improve privacy compliance and security best practices.

B

Barcelona Activa

barcelonactiva.cat

0

Barcelona Activa is the official local economic development agency of Barcelona, providing services to citizens, entrepreneurs, and businesses to promote employment, entrepreneurship, business growth, and training. The website is professionally designed, multilingual, and integrates well with the Barcelona city government branding. Technically, it uses a modern CMS (Liferay) and includes various JavaScript libraries and analytics tools with proper consent mechanisms. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and a published security policy are absent. WHOIS data is not publicly available due to the .cat domain registry policies, but the website content and branding strongly indicate legitimacy. Overall, the site is trustworthy, well-maintained, and serves as a comprehensive resource for economic development in Barcelona.

3

3Cat

3cat.cat

0

3Cat is a digital media platform focused on delivering quality Catalan language content including exclusive digital premieres, original programs, and live streams from TV3, Catalunya Ràdio, and SX3. It serves a regional audience with a strong cultural focus and operates under the umbrella of CCMA, a known Catalan media corporation. The platform uses a modern technology stack including React (Next.js), Bitmovin Player, and various analytics and advertising tools. Security posture is strong with HTTPS and security headers properly configured, and a consent management platform is implemented to comply with cookie regulations. However, the absence of publicly available WHOIS data and lack of explicit privacy policy or contact information pages reduce trust from a compliance and transparency perspective. Overall, the site is professional, well-branded, and technically sound but could improve privacy disclosures and domain registration transparency.

The website serves as a private access portal for member entities of the 'Acord Ciutadà', a local government initiative in Barcelona focused on social inclusion and reducing social inequalities. It allows members to update their organizational data, request official seals, and participate in strategic social programs. The site targets non-profit and governmental organizations involved in this agreement. The business model is membership-based, supporting collaboration and data management within a defined community. Technically, the website uses basic HTML, CSS, and JavaScript without advanced frameworks or CMS detected. The design is functional but basic, with limited mobile optimization and accessibility features. No analytics or advertising technologies are present, indicating a focus on privacy and minimal tracking. However, the absence of HTTPS enforcement and security headers is a notable technical gap. From a security perspective, the site uses POST for login but lacks visible protections such as CSRF tokens or security headers. No privacy or cookie policies are present, which is a compliance concern under GDPR. The WHOIS data is unavailable due to .es domain restrictions, but the domain aligns with the local government context, suggesting legitimacy. Overall, the security posture is moderate but requires improvements to meet modern standards. The overall risk is moderate with recommendations to implement HTTPS, add security headers, introduce privacy and cookie policies, and enhance form security. These steps will improve trust, compliance, and protection for users accessing sensitive organizational data.

D

Dab Pumps Spa

dabpumps.es

0

Dab Pumps Spa is a well-established company specializing in water technology solutions, focusing on the manufacturing and distribution of water pumps and related services. With over 40 years of experience and a strong presence in Spain and Italy, the company targets both professional sector users and end consumers. Their website reflects a mature digital presence built on Drupal 9, featuring comprehensive content, clear navigation, and a consistent brand image. The site integrates modern web technologies and provides extensive resources including technical advisory, training, and digital tools for pump selection and connectivity.

F

Fabrica Studio

fabrica.studio

0

Fabrica Studio is a Spanish digital agency specializing in web development, SaaS, mobile applications, branding, and digital marketing services. Founded in 2025, the company targets entrepreneurs, startups, and growing businesses, offering comprehensive digital transformation solutions with over 20 years of combined experience and €15M+ in managed campaigns. The website demonstrates a strong market position with clear service offerings and client testimonials, emphasizing transparency and measurable results. Technically, the website is built using modern frameworks such as Astro and Partytown, ensuring fast performance, mobile optimization, and good SEO practices. The site employs HTTPS and secure form handling but lacks some advanced security headers and explicit incident response information. Privacy and terms of service pages are present and comprehensive, indicating good compliance with GDPR. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though improvements in security headers and vulnerability disclosure mechanisms are recommended. The domain WHOIS data is limited due to TLD restrictions but shows no suspicious patterns. Contact information is clear and professional, enhancing business credibility. Overall, Fabrica Studio presents a professional, trustworthy, and technically sound digital presence suitable for its target market, with minor recommendations to enhance security and privacy transparency.

J

JBL

jbl.es

0

JBL's official Spanish e-commerce website offers a comprehensive online retail platform for audio products including speakers and headphones. The site targets consumers in Spain and the broader EMEA region, providing product customization, customer support, and warranty services. The business operates under the reputable JBL brand, part of Harman International, and maintains a strong market position as an official brand store. Technically, the website leverages Salesforce Commerce Cloud, integrates multiple marketing and analytics tools such as Google Tag Manager and Bazaarvoice, and employs bot protection and consent management solutions. The site demonstrates good digital maturity with responsive design, SEO optimization, and accessibility considerations. Security-wise, the website enforces HTTPS, implements modern security headers, and uses cookie consent mechanisms, though it lacks a dedicated security policy or incident response contact. Overall, the site is professional, trustworthy, and compliant with GDPR, with recommendations to enhance security transparency and incident readiness.

1

10dencehispahard, S.L.

threejs.org

0

Three.js is a well-established open-source JavaScript 3D library that enables developers to create interactive 3D graphics in web browsers using WebGL technology. The website serves as a hub for documentation, examples, developer tools, and community engagement, positioning itself as a leading resource in the web 3D graphics space. The business model is primarily community-driven with educational resources and merchandising as supplementary revenue streams. The domain is mature and registered to a Spanish company, consistent with the website's technical and community focus. Technically, the website employs modern web technologies including JavaScript and WebGL, with integration of Google Analytics and Tag Manager for user tracking. The site is performant, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, it lacks some advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and domain registration protections in place, but could be improved by enabling DNSSEC and adding security headers. From a security and compliance perspective, the site does not provide visible privacy, cookie, or terms of service policies, nor does it have a vulnerability disclosure or security incident response contact. This represents a compliance gap, especially regarding GDPR and user privacy. No contact emails or phone numbers are provided, which may limit direct communication channels. No adult or unsafe content is present, making the site safe for general audiences. Overall, the website is credible, technically sound, and trusted within its niche, but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

Barcelona Activa's mobile website (barcelonactiva.mobi) is currently non-operational, serving only as a redirect notice to the main Barcelona Activa website. The business behind the domain is CIBERPYME BARCELONA, S.L., a local government or non-profit entity focused on supporting entrepreneurship and business development in Barcelona. The domain is aged since 2014 but has been expired for over 8 months, which poses a risk to trust and continuity. The website itself is minimalistic, with no interactive elements, forms, or contact information, indicating a low level of digital maturity and technical sophistication. Hosting is provided by SiteGround, a reputable provider, but no advanced security or privacy features are implemented.

M

Meetmaps

meetmaps.com

0

Meetmaps is a technology company specializing in event and congress management software, offering a comprehensive SaaS platform that simplifies event organization and enhances attendee digital experiences. Their product suite includes event registration, event websites, email marketing, event apps with interactive modules, access control, virtual venues, networking tools, and gamification features. The company targets event organizers and conference managers primarily in Spain, with a professional and consistent online presence. Technically, the website is built on WordPress using the Divi theme, integrating multiple marketing and analytics tools such as HubSpot, Google Analytics, Hotjar, and LinkedIn Insight. The site is secured with HTTPS and loads trusted external scripts, indicating a mature digital infrastructure. Security posture is good with no visible vulnerabilities, but lacks some security headers and explicit privacy and cookie policies. Overall, the website is professional and trustworthy, though improvements in privacy compliance and security transparency are recommended.

F

Fira de Barcelona

firabarcelona.com

0

Fira de Barcelona is a prominent event management organization specializing in hosting trade fairs, exhibitions, and conferences in Barcelona, Spain. The website presents a professional and well-structured digital presence, targeting a general audience interested in upcoming events and venue information. The business operates in the government sector and is recognized as a large entity within its market. Technically, the site is built on WordPress using Elementor, with modern JavaScript libraries such as jQuery and FontAwesome, and includes a cookie consent mechanism via Usercentrics. Analytics are managed through Google Tag Manager, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and consent management in place; however, the absence of security headers and explicit privacy policies suggests room for improvement. The WHOIS data is notably missing, which raises questions about domain registration transparency but does not necessarily indicate malicious intent given the professional nature of the site. Overall, the website is trustworthy and functional but would benefit from enhanced transparency and security practices.

A

Ajuntament de Barcelona

barcelona.cat

0

Ajuntament de Barcelona operates the official municipal website for the city of Barcelona, providing residents and visitors with comprehensive information about city services, news, cultural events, transport, and business resources. The website is positioned as a key digital gateway for public services and community engagement in Barcelona. The site targets a broad audience including residents, businesses, and tourists, offering multilingual support and extensive navigation options. Technically, the site is built on Drupal 10 with modern frontend frameworks like Bootstrap, and integrates multiple analytics platforms including Matomo and Plausible, alongside marketing and tracking tools such as Adobe Visitor Tracking and Google Analytics. The site demonstrates a mature digital infrastructure with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and anti-CSRF protections evident, though explicit security headers are not visible in the provided content and should be verified. Privacy compliance is well addressed with a detailed cookie consent mechanism and granular cookie categorization, although no explicit privacy policy or terms of service URLs were found in the provided content. WHOIS data is privacy protected by puntCAT, which is typical for government domains under the .cat TLD, and does not raise legitimacy concerns. Overall, the website is a professional, secure, and trustworthy government portal with extensive content and good user experience.

B

Barcelona Deep Tech Summit

barcelonadeeptechsummit.com

0

Barcelona Deep Tech Summit is a professionally organized annual event focused on the deep technology ecosystem, bringing together startups, researchers, corporates, investors, and institutions to foster innovation and technology transfer. The event is positioned as a key European summit hosted in Barcelona, a city recognized as a global tech leader. The website is well designed, mobile optimized, and uses modern web technologies including WordPress, Bootstrap, and various JavaScript libraries. SEO and social media integration are strong, enhancing visibility and engagement. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and DNSSEC could be improved. No critical vulnerabilities or suspicious content were detected. Privacy and cookie policies are comprehensive and GDPR compliant, linked to the organizer's authoritative domains. Overall, the site reflects a credible and trustworthy business presence with a clear focus on technology and innovation events.

W

Webedia Group

weblogssl.com

0

Webedia Spain operates as a regional branch of the global Webedia Group, a prominent media and technology company specializing in digital entertainment content distribution and partnerships. The website presents a professional and modern digital presence, leveraging WordPress with the Divi theme and integrating advanced SEO and analytics tools such as Yoast SEO and Google Tag Manager. Despite the polished front-end and clear business focus, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy or privacy protection usage. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy compliance documentation. Overall, the site is functional and targets a general audience interested in digital media content and partnerships.

X

Xataka

xataka.com

0

Xataka is a leading Spanish-language technology news website specializing in gadgets, consumer electronics, and IT news. It operates under the parent company Webedia and targets technology enthusiasts and general consumers interested in the latest tech trends. The website offers comprehensive news coverage, reviews, and updates on mobile devices, computing, and electronics. Technically, Xataka employs a modern web stack with extensive use of JavaScript libraries, analytics tools, and advertising networks, ensuring a fast, mobile-optimized, and SEO-friendly experience. Security-wise, the site enforces HTTPS, uses modern security headers, and implements GDPR-compliant consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, Xataka presents a professional, trustworthy, and well-maintained digital presence with strong business credibility and compliance posture.

S

Schwing Stetter

schwing.es

0

Schwing Stetter is a well-established manufacturing company specializing in concrete pumps, stationary pumps, concrete plants, recycling plants, and truck-mounted concrete pumps. With over 80 years of experience, the company targets professionals in the construction and concrete industry, offering a comprehensive range of equipment to optimize production and ecological recycling. The website reflects a medium-sized enterprise based in Spain, with consistent branding and professional content. Technically, the site is built on WordPress using modern plugins such as Elementor and Smart Slider 3, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are missing and incident response information is absent. WHOIS data is not publicly accessible due to registry restrictions, which is typical for .es domains, slightly impacting trust but not indicating suspicious activity. Overall, the website is professional, secure, and compliant with privacy regulations, supporting the legitimacy of the business.

V

Viajes Atalaya

viajesatalaya.com

0

Viajes Atalaya is a small, established travel agency based in Ibiza, Spain, with over thirty years of experience providing personalized travel services including business trips, congresses, incentives, and leisure travel for various customer segments. The website is professionally designed using Adobe Experience Manager CMS and integrates modern analytics and consent management tools such as Adobe Launch and CookiePro. The site is accessible, mobile-optimized, and includes clear contact information and privacy compliance features. However, the WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy. No explicit security policy or incident response information is provided, which could be improved to enhance trust and compliance. Overall, the website presents a good security posture with HTTPS and cookie consent mechanisms in place, but could benefit from additional security headers and transparency about security practices.

S

Sealmetrics

sealmetrics.com

0

Sealmetrics is a privacy-first web analytics company offering a cookieless, GDPR-compliant analytics platform designed to capture 100% of website traffic without requiring user consent banners. Positioned as a pro-marketer alternative to Google Analytics 4, Sealmetrics targets CMOs and marketing professionals seeking complete and accurate data for decision-making. The company is based in Spain and founded in 2020, with a small but growing team. Their platform emphasizes legal compliance, complete attribution, and robust data capture, supported by customer testimonials and case studies. Technically, the website is built using modern web technologies including React and custom JavaScript trackers, with good performance, mobile optimization, and SEO practices. The site uses HTTPS and avoids cookies for tracking, enhancing privacy compliance. However, no explicit security policy or incident response information is publicly available, and DNSSEC is not enabled on the domain. Security posture is solid with HTTPS and privacy-first tracking, but could be improved by adding security headers, a vulnerability disclosure policy, and a published security framework. The WHOIS data aligns well with the website's claims, showing consistent registration details and no suspicious patterns. Overall, Sealmetrics presents a professional, trustworthy, and privacy-conscious analytics solution with strong business credibility and technical maturity. Strategic recommendations include enhancing security transparency, enabling DNSSEC, and publishing incident response and security policies to further strengthen trust and compliance.

F

Fagor Digital Suite

fagordigitalsuite.com

0

Fagor Digital Suite is a B2B technology company specializing in digitalization platforms for smart manufacturing. Their platform integrates machines with production and management systems to unify data and optimize manufacturing processes, targeting manufacturers seeking productivity and agility improvements. The website is professionally designed using WordPress and Elementor, reflecting a modern digital infrastructure with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and domain transfer protection, though improvements are recommended in security headers and privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a trustworthy and professional digital presence aligned with its business objectives.

F

Fagor Automation

fagorautomation.com

0

Fagor Automation is a well-established global company specializing in the development and manufacture of automation and machinery control products, including CNC systems and feedback systems. With over 45 years of industry experience, it holds a strong market position as a benchmark in manufacturing technology. The company targets industrial manufacturers and machine tool builders, offering a comprehensive suite of products and services such as technical support, training, and digital solutions. The website reflects a professional and consistent brand image with multilingual support and rich content.

W

Webwiki

webwikis.es

0

Webwiki is a Spanish-language web directory and search engine that aggregates and ranks websites based on popularity and user reviews. It targets Spanish-speaking users seeking trusted websites and user-generated feedback. The platform offers search functionality, user ratings, and a categorized directory, monetized primarily through advertising. Technically, the site uses Bootstrap, jQuery, Google Tag Manager, and Google Publisher Tags, with a cookie consent mechanism compliant with GDPR. The site is mobile optimized with moderate performance and basic accessibility features. Security posture is good with HTTPS and standard security headers, though no explicit security policy or incident response contacts are published. Advertising is extensive, involving multiple major ad networks and tracking vendors. WHOIS data is consistent with the website's claims, indicating legitimacy and stable domain registration.

A

AmRest Holdings SE

amrest.eu

0

AmRest Holdings SE operates as one of the largest restaurant operators in Europe, managing a portfolio of global and proprietary brands such as KFC, Starbucks, Burger King, Pizza Hut, and others. The company targets a broad audience including restaurant customers and investors, positioning itself as a market leader in the hospitality sector with a strong European presence. The website reflects a mature digital infrastructure built on Drupal 10, incorporating modern analytics and tracking tools like Piwik PRO, Google Tag Manager, and Microsoft Application Insights. Security posture is strong with HTTPS, CSP, and other security headers implemented, though explicit security policies and incident response information are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and active consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company's enterprise-level operations.

M

Messer Iberica de Gases S.A

messer.es

0

Messer Iberica de Gases S.A is a leading manufacturer and supplier of industrial, medicinal, food-grade, and specialty gases in Spain and globally. The company offers tailored solutions across multiple industries including healthcare, manufacturing, and energy. Their website reflects a mature digital presence built on the Liferay CMS platform, integrating modern web technologies and marketing tools such as HubSpot and Facebook Pixel. The site is well-structured, professionally designed, and provides comprehensive information about products, services, compliance, and corporate responsibility. Security posture is strong with HTTPS enforced and standard security headers present, though there is room for improvement in incident response transparency and vulnerability disclosure. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Overall, the website and business presence indicate a trustworthy and established company with a solid market position.

G

Grupo Tuinbit SL

tuinbit.com

0

Grupo Tuinbit SL operates the website tuinbit.com, providing specialized no-code and low-code development services including mobile app creation, web and ecommerce development, marketing, and digital transformation solutions. The company targets businesses and organizations seeking to innovate with reduced coding effort, time, and cost. The website is professionally designed, primarily in Spanish, and demonstrates a clear market niche in technology services focused on no-code solutions. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS and reCAPTCHA usage, though security headers and incident response policies are not evident. Privacy compliance is strong with comprehensive policies and a cookie consent mechanism. Overall, the site is trustworthy and well-positioned for its market segment.