Security Directory

A

Anticimex

anticimex.shop

0

Anticimex.shop is a professionally developed e-commerce website focused on selling pest control, hygiene, and disinfection products primarily to the Spanish market. The site leverages Shopify as its platform, integrating multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Marketo Munchkin to optimize user engagement and sales. The business presents itself as a reputable entity with consistent branding and a clear market position in Spain. The website content is well-structured, mobile-optimized, and provides a good user experience with clear navigation and product presentation. Privacy and cookie policies are present and appear GDPR compliant, supporting regulatory adherence. However, direct contact information such as emails or phone numbers is not prominently displayed on the homepage, which could be improved for customer trust and support.

S

Stena Line

stenaline.es

0

Stena Line operates as a major ferry transportation company serving routes across the United Kingdom, Ireland, the Netherlands, and Northern Europe. The website provides comprehensive information about ferry routes, onboard services, and online booking options, targeting general travelers in Europe. The company maintains a strong market position with a clear business model focused on transportation services and customer convenience. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies and third-party integrations for analytics, advertising, and consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is robust, with HTTPS enforcement, security headers, bot protection mechanisms, and GDPR-compliant cookie consent. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting Stena Line's reputation as a reliable transportation provider.

F

FazWaz.es

fazwaz.es

0

FazWaz.es is a professional real estate portal specializing in property sales and rentals, primarily targeting the Spanish-speaking market with international listings focused on Southeast Asia. The website offers a comprehensive platform with over 1.6 million properties, supporting multiple languages and featuring virtual tours and project directories. Technically, the site employs modern web technologies including Vue.js and jQuery, integrates real-time features via Pusher, and uses Google Tag Manager and OneSignal for analytics and notifications. Security posture is strong with HTTPS, security headers, and CSRF protections, though some security policy documentation is absent. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, making it a trustworthy platform for real estate transactions.

C

Control de Plagas

anticimex.es

0

Anticimex is a well-established pest control and hygiene services company operating primarily in Spain. The company offers a wide range of services including intelligent pest control, disinfection, legionella control, and sector-specific solutions for industries such as hospitality, retail, logistics, and healthcare. Their digital presence is supported by a modern website built with React and Gatsby, optimized for performance and mobile devices. The site includes comprehensive resources such as webinars, ebooks, and training courses, targeting both businesses and homeowners. Technically, the website employs modern tracking and marketing tools including Google Tag Manager, Marketo, and Adobe Experience Platform, with a strong focus on GDPR compliance and user consent mechanisms. Security posture is robust with HTTPS enforced and appropriate security headers, although explicit incident response and vulnerability disclosure information are not publicly available. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, Anticimex presents a professional, trustworthy, and technically sound online presence.

R

Retail Rocket

retailrocket.es

0

Retail Rocket is a Spain-based technology company specializing in retention management and marketing automation platforms for e-commerce and other industries. Their platform leverages AI and big data to personalize customer experiences, increase lifetime value, and automate omnichannel marketing campaigns. The company has a strong market presence with over 1,600 clients worldwide and multiple international localized websites. Technically, the website is built on WordPress with modern marketing and analytics integrations, including Google Analytics, Tag Manager, Optimize, and LinkedIn Insight Tag. Security posture is good with HTTPS and reCAPTCHA usage, though explicit security headers and incident response policies are not publicly documented. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the website is professional, well-structured, and trustworthy, supporting Retail Rocket's position as a credible SaaS provider in the marketing technology space.

I

Icons8

iconos8.es

0

Icons8 (iconos8.es) is a localized Spanish version of the global Icons8 brand, offering a comprehensive suite of free and premium design resources including icons, illustrations, photos, music, and AI-powered design tools. The website targets creatives and developers seeking high-quality, consistent design assets and innovative AI applications to enhance their projects. The platform demonstrates a mature digital presence with a modern tech stack based on Vue.js and Nuxt.js, ensuring fast performance and excellent mobile optimization. However, the absence of visible privacy and cookie policies, security headers, and WHOIS data limits the full assessment of compliance and security posture. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security best practices.

L

Lifull Connect

trovit.es

0

Trovit is a well-established online classified ads aggregator operating primarily in Spain, offering listings in real estate, automotive, and employment sectors. The website is part of the Lifull Connect group, which provides a strong corporate backing and consistent branding. The platform targets a broad general audience seeking aggregated listings from multiple sources, enhancing user convenience and search efficiency. Technically, the website employs modern JavaScript frameworks and integrates Google Tag Manager and Didomi for consent management, reflecting a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses a consent management platform to comply with GDPR, but lacks some advanced security headers which could improve its security posture. The absence of WHOIS data limits full domain legitimacy verification, but the overall trust signals and corporate association suggest a legitimate and professional operation. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving contact information transparency.

A

Amaury Sport Organisation

lavuelta.es

0

La Vuelta is a premier international cycling race organized by Amaury Sport Organisation, prominently featuring 21 stages across Spain and neighboring countries. The website serves as an official platform providing race information, multimedia content, and fan engagement tools. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and multiple tracking pixels, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks some security headers and explicit security policies. Privacy compliance is partial, with no visible privacy or terms of service pages on the homepage. Overall, the site is professional, trustworthy, and well-positioned in the sports event market.

L

L'Idem Animation School

lidembarcelona.com

0

L'Idem Animation School is an international digital arts educational institution with over 25 years of experience, operating campuses in Spain and France. The website presents a professional and well-structured digital presence, leveraging WordPress with the Divi theme and integrating multiple marketing and analytics tools such as TikTok Pixel, LinkedIn Insight, and Google Tag Manager. While the technical infrastructure is modern and the site is mobile-optimized with good SEO practices, there is a notable absence of publicly available WHOIS domain registration data, which raises concerns about domain legitimacy and registration transparency. Security measures include HTTPS and reCAPTCHA, but the lack of comprehensive security headers and published security policies suggests room for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy policy or contact information visible. Overall, the website is functional and trustworthy from a user perspective but requires enhanced transparency and security documentation to strengthen its risk profile.

G

Grupo Domingo Alonso

daxauto.es

0

The website daxauto.es represents a vehicle sales platform focused on second-hand, occasion, and Km 0 vehicles in the Canary Islands, operating under the Grupo Domingo Alonso brand. The business targets customers looking for used vehicles in this regional market, leveraging the reputation of its parent company. The site content is minimal but clearly oriented towards automotive sales with basic branding and meta information supporting its business purpose. Technically, the site uses a custom CMS with Tailwind CSS for styling and includes JavaScript for translation hooks, indicating some level of digital maturity but lacks advanced frameworks or platforms. Performance and mobile optimization are basic but functional. Security posture is moderate; HTTPS is used but no security headers were detected in the provided HTML snippet, and no visible forms or input fields limit attack surface but also reduce interactivity. Privacy and cookie policies are absent, which is a compliance gap. No contact information or incident response channels are visible, limiting user trust and security transparency. Overall, the site is functional but would benefit from enhanced security practices, compliance documentation, and richer content to improve user experience and trust.

D

Das WeltAuto Canarias

dwacanarias.com

0

Das WeltAuto Canarias operates as a regional automotive retailer specializing in used and km 0 vehicles within the Canary Islands, under the reputable Grupo Domingo Alonso brand. The website presents a professional and user-friendly interface, offering comprehensive vehicle listings, financing options, and contact channels tailored to the local market. The technical infrastructure leverages modern frontend technologies such as Vue.js and Tailwind CSS, supported by Google Tag Manager for analytics and Didomi for GDPR-compliant consent management. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements such as enabling DNSSEC and additional security headers are recommended. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business presence.

F

French Tech Barcelona

frenchtechbarcelona.com

0

French Tech Barcelona is a non-profit association dedicated to promoting and supporting the French technology ecosystem in Barcelona. It is part of the official French Tech network, recognized among 48 labeled cities. The association helps French tech talents and companies to settle, recruit, network, and grow within the vibrant Barcelona tech scene. Their services include welcoming new members, facilitating recruitment, organizing events, and fostering synergies among over 250 member companies. The website is professionally designed using Squarespace CMS, with good mobile optimization and clear navigation. Social media presence on LinkedIn and YouTube supports community engagement. Technically, the site uses modern web technologies and enforces HTTPS with HSTS, ensuring secure communication. However, it lacks some advanced security headers and formal security policies such as incident response or vulnerability disclosure. Privacy compliance is partial, with a cookie banner present but no dedicated privacy or terms of service pages. The WHOIS data for the domain is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the security posture is good but could be improved with additional headers and published policies. The business credibility is supported by clear contact information and official branding, but the domain registration inconsistency should be addressed. The site content is safe for general audiences, with no adult or questionable material detected.

V

Volkswagen Comerciales Canarias

vwcomerciales.com

0

Volkswagen Comerciales Canarias operates as the official regional website for Volkswagen commercial vehicles in the Canary Islands, providing comprehensive information on vehicle models, promotions, after-sales services, and electric mobility options. The site is well-branded, professionally designed, and targets commercial vehicle customers in the region. Technically, the website leverages modern web technologies including React and Adobe Experience Manager, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and some security best practices, though there is room for improvement in HTTP security headers. Privacy and cookie policies are comprehensive and GDPR compliant. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which should be further investigated to ensure trustworthiness. Overall, the website presents a professional and trustworthy front for Volkswagen's commercial vehicle offerings in the Canary Islands.

D

Domingo Alonso Group

domingoalonsoocasion.com

0

Domingo Alonso Ocasión operates a professional online platform specializing in the sale and purchase of used and Km 0 vehicles in the Canary Islands. The website positions itself as the largest used car portal in the region, offering a variety of automotive brands and services including vehicle comparison and direct purchase from customers. The business is part of the larger Grupo Domingo Alonso, a recognized entity in the automotive sector. Technically, the website employs modern frontend technologies such as Vue.js and Tailwind CSS, integrates Matomo and Google Tag Manager for analytics, and uses Didomi for GDPR-compliant cookie consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and has basic security best practices in place, though it lacks explicit security policies and could improve DNS security by enabling DNSSEC. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is trustworthy, compliant with privacy regulations, and professionally maintained.

V

Volkswagen Canarias

vwcanarias.com

0

Volkswagen Canarias operates as the official Volkswagen dealership and service provider in the Canary Islands, offering a comprehensive range of automotive products and services including new vehicle sales, financing, after-sales support, and accessories. The website is professionally designed, well-structured, and targets consumers in the Canary Islands interested in Volkswagen vehicles, including electric and hybrid models. The company is part of the larger Volkswagen AG group and is supported by the Domingo Alonso Group, indicating a strong market position and reputable backing. Technically, the website leverages modern web technologies such as Adobe Experience Manager CMS, React-based components, and advanced lazy loading techniques to deliver a performant and accessible user experience. Security posture is robust with HTTPS enforcement, security headers, and client-side guards against unauthorized content loading. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. However, the absence of publicly available WHOIS data and lack of explicit security policy or incident response contacts slightly reduce trust. Overall, the site demonstrates a mature digital presence aligned with corporate standards and regional market needs.

V

Volkswagen

volkswagen.es

0

Volkswagen España operates a comprehensive and professionally designed website offering new, electric, and hybrid vehicles tailored for the Spanish market. The site provides detailed product information, financing options, after-sales services, and customer engagement platforms, reflecting a mature digital presence aligned with a leading automotive brand. Technically, the website leverages modern frameworks such as React and Adobe Experience Manager, ensuring fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies are not publicly disclosed. Overall, the site demonstrates high trustworthiness and compliance with GDPR, supporting Volkswagen's market leadership in Spain.

B

BOSCH

bosch-home.es

0

Bosch Home Spain operates a professional and comprehensive e-commerce and customer service website dedicated to Bosch home appliances. The site offers product sales, support services, manuals, spare parts, and promotional offers, targeting general consumers in Spain. The website reflects a strong market position as a leading brand in home appliances, supported by consistent branding and a robust digital presence. Technically, the site employs modern web technologies including Adobe DTM for tag management, Fredhopper for search suggestions, and a GDPR-compliant cookie consent mechanism. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers could be further verified. No WHOIS data was accessible due to registry restrictions, but the website's branding and content strongly indicate legitimacy. Overall, the site scores highly in content quality, technical implementation, security, privacy compliance, and business credibility.

Z

ZARA

zara.net

0

ZARA is a leading global fashion retailer operating an extensive e-commerce platform alongside physical stores worldwide. The company offers a wide range of clothing, footwear, and accessories targeting a general audience with a focus on fast fashion. The website demonstrates a high level of digital maturity, employing modern web technologies such as React and advanced script protection tools like Jscrambler. It supports multiple languages and regions, indicating a strong global presence. Security posture is robust with HTTPS enforcement, comprehensive security headers, and cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance transparency. Overall, the website is professional, secure, and trustworthy, reflecting the enterprise status of the brand.

El Corte Inglés S.A. is a leading Spanish retail and e-commerce company founded in 1940, offering a wide range of products including fashion, electronics, books, sports equipment, groceries, and more. The company operates both physical department stores and a comprehensive online platform targeting general consumers primarily in Spain and Portugal. The website reflects a mature digital presence with extensive product categories and services, supported by a large enterprise infrastructure and multiple subsidiaries.

Z

ZARA

zara.com

0

ZARA is a leading global fashion retailer specializing in fast-fashion clothing, footwear, and accessories for men, women, and children. The website reflects a mature e-commerce platform with extensive international reach, supporting multiple languages and currencies. The brand is part of the Inditex group, a major player in the retail industry. The site is professionally designed with excellent content quality and user experience, targeting a broad general audience interested in fashion products. Technically, the website employs modern web technologies including React, JavaScript, and CSS, supported by analytics and marketing tools such as Google Tag Manager, Riskified, and OneTrust for cookie consent. The site is optimized for performance and mobile responsiveness, with good SEO and accessibility features. Security best practices are observed, including HTTPS enforcement, security headers, and obfuscation tools like Jscrambler. From a security perspective, the site demonstrates a strong posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms aligned with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Overall, the website presents a low-risk profile with high trustworthiness and professionalism. The absence of WHOIS data is noted but likely due to privacy protection common among large brands. Strategic recommendations include enhancing transparency around security policies and incident response to further strengthen user trust and compliance.

C

CUPRA

cupraofficial.com

0

CUPRAofficial.com is the official website for CUPRA, a premium automotive brand specializing in electrified sporty vehicles under the Volkswagen Group umbrella. The site offers comprehensive information on new electric and hybrid car models, financial services, after-sales support, and technical assistance. The website is well-designed, mobile-optimized, and provides a rich user experience with clear navigation and professional branding. Technically, the site leverages Adobe Experience Manager, Google Tag Manager, and OneTrust for cookie consent, hosted on Volkswagen Group's cloud platform, ensuring fast performance and modern infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is good, with cookie consent and privacy policies in place, indicating GDPR adherence. However, the absence of WHOIS data for the domain is unusual and slightly reduces trust, though the website content and branding strongly support legitimacy. Overall, the site represents a mature digital presence for a large automotive brand with room for improvement in transparency around security and contact information.

C

Confilegal

confilegal.com

0

Confilegal is a well-established Spanish legal news media platform founded in 2014, providing comprehensive judicial and legal news targeted at legal professionals, judicial sector members, administration, and companies. The website offers subscription services and generates revenue primarily through advertising and partnerships. It maintains a consistent brand presence and delivers quality content relevant to its audience. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and various advertising and analytics integrations. The site is mobile-optimized and SEO-friendly, though some lazy loading image errors were detected. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, but DNSSEC is not enabled and some security headers are not explicitly set. Privacy compliance is partially implemented with a cookie consent mechanism but lacks a visible privacy policy or terms of service. No direct contact information or security incident response contacts are found. Overall, the domain registration data is consistent with the website's claims, supporting legitimacy.

F

Fundación Global Nature

fundacionglobalnature.org

0

Fundación Global Nature is a well-established Spanish non-profit organization dedicated since 1993 to the conservation of nature and ecosystem functionality. The organization provides technical guidance, publishes environmental reports, and runs biodiversity protection projects. Their website reflects a mature digital presence built on WordPress with modern plugins supporting donations and event management. The site targets environmental stakeholders, companies interested in biodiversity, and the general public. The organization maintains a consistent brand and professional content quality, supporting its credibility in the non-profit environmental sector. Technically, the website uses a robust WordPress infrastructure with Elementor, WooCommerce, and GiveWP plugins. It integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting is provided by Dinahosting s.l., with a domain age consistent with the organization's history. From a security perspective, the website enforces HTTPS and has domain status protections but lacks DNSSEC and some recommended security headers. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Cookie consent and privacy policies are comprehensive and GDPR compliant, reflecting good privacy compliance. No critical vulnerabilities or suspicious content were detected. Overall, Fundación Global Nature's website presents a trustworthy, professional, and compliant digital front for a medium-sized non-profit organization. Strategic improvements in security headers, DNSSEC, and incident response transparency would enhance their security posture and trust further.

S

SEAT S.A.

seat-mediacenter.com

0

SEAT S.A.'s Media Center website serves as the official platform for distributing press releases, photos, videos, and other editorial assets related to the SEAT and CUPRA automotive brands. The site targets media professionals and automotive enthusiasts, providing comprehensive and up-to-date brand information. Technically, the site is built on Adobe Experience Manager with modern JavaScript libraries and integrates advanced analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data for the domain is a notable anomaly, suggesting either privacy protection or data retrieval issues, which should be further investigated. Overall, the website is professional, trustworthy, and well-optimized for user experience and compliance.

EFEAGRO is a specialized Spanish media agency focused on providing multi-format information about the agro-food sector. Established in 2007, it serves professionals and stakeholders in agriculture, livestock, fishing, food, and related industries. The website offers news, sector analysis, multimedia content, and a newsletter subscription, positioning itself as a niche media outlet with a consistent brand and a strong social media presence. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and integrating Google Tag Manager, Google Analytics, and advertising platforms such as Google Ad Manager and InMobi. The site is mobile-optimized and SEO-friendly, with good content quality and user experience. Security-wise, the site uses HTTPS and a consent management platform for GDPR compliance but lacks some advanced security headers and explicit security policies. The domain registration is consistent and legitimate, supporting the business credibility. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve transparency by publishing privacy and terms policies explicitly.

E

EFE Sport business

efesportbusiness.com

0

EFE Sport business is a newly launched sports business news platform created by Agencia EFE, a reputable Spanish news agency. The website provides industry-specific information and news targeting professionals and stakeholders in the sports business sector. It positions itself as a specialized information highway to satisfy demand in the sports industry. Technically, the site is built on WordPress using the Elementor page builder, hosted on WordPress.com infrastructure, and integrates common marketing and analytics tools such as Google Tag Manager, Jetpack Stats, and Brevo for email marketing. The site is mobile optimized and has good SEO practices but lacks explicit privacy and cookie policies. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and DNSSEC. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency.

E

EFEMINISTA

efeminista.com

0

EFEMINISTA is a Spanish-language feminist news portal affiliated with Agencia EFE, focusing on feminism, gender equality, and women's rights. The website offers news articles, interviews, videos, and galleries targeting a Spanish-speaking audience interested in social issues and equality. It holds a niche market position as a specialized media outlet with consistent branding and good content quality. Technically, the site is built on WordPress with modern plugins and frameworks such as Elementor and Yoast SEO, supported by Google Analytics and push notification services. The hosting environment appears stable and moderately performant with good mobile optimization. Security posture is solid with HTTPS enforced and basic security best practices, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms, but lacks explicit incident response or security policy disclosures. Overall, the domain registration data aligns well with the website's business claims, indicating legitimacy and trustworthiness. Recommendations include enhancing DNS security, adding security.txt, and improving security headers and accessibility.

E

EFEVERDE

efeverde.com

0

EFEverde.com is a well-established Spanish environmental news platform operated by Entorno Digital, S.A., founded in 2008. The website serves as a leading source for environmental journalism, ecological transition, and sustainable development news, targeting a general audience interested in these topics. The platform offers news articles, reports, blogs, and audiovisual content, supported by a professional WordPress-based technical infrastructure with Elementor and Yoast SEO plugins. The site integrates advertising via Google Ad Manager and uses push notifications through OneSignal to engage users. While the technical setup is modern and performance is moderate, the site lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is adequate with HTTPS but could be improved with additional headers and vulnerability disclosures. Overall, the domain registration is consistent and trustworthy, supporting the site's legitimacy.

E

EFESALUD

efesalud.com

0

EFESALUD is a Spanish-language health news portal affiliated with Agencia EFE, providing specialized content on health and wellness topics. The website offers news articles, videoblogs, and health-related information targeting the general public interested in healthcare and wellbeing. Established in 2012, the site maintains a consistent brand presence and leverages social media platforms to extend its reach. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Bootstrap, Google Tag Manager, and OneSignal for push notifications. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. Hosting details are not explicit but DNS points to wordpress.com nameservers. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. There is no published security policy, incident response contact, or vulnerability disclosure mechanism. Advertising is integrated primarily through Google AdSense and related networks, with moderate user tracking via analytics and tracking pixels. Overall, the website is trustworthy and professional with good content quality and business credibility. However, it lacks formal privacy and cookie policies, which impacts privacy compliance scores. Strategic improvements in security transparency and privacy compliance would enhance the site's trustworthiness and regulatory adherence.

A

Agencia Efe

efeservicios.com

0

Agencia Efe operates the website efs.efeservicios.com as a professional media content distribution platform offering a wide range of news formats including video, audio, infographics, photos, text, multimedia, and stories. The site targets news media and content consumers, positioning itself as a reputable and established agency news provider in Spain. The business model revolves around providing access and downloads of Agencia Efe's content in multiple formats, supporting media outlets and professionals. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Modernizr, and integrates analytics and tracking tools such as Microsoft Clarity and Google Tag Manager. The site is mobile optimized with good SEO and accessibility basics, though some improvements in accessibility and performance could be made. The site uses HTTPS with strong SSL configuration but lacks some security headers and explicit security policies. From a security perspective, the site demonstrates good practices with secure forms and no exposed sensitive data. However, it lacks visible incident response information, vulnerability disclosure mechanisms, and cookie consent mechanisms which are important for GDPR compliance. The WHOIS data is unavailable or missing, which raises some concerns about domain registration transparency, though the website content and branding strongly indicate legitimacy. Overall, the website is professional, trustworthy, and well-structured for its media service purpose. Strategic recommendations include enhancing security headers, publishing security and incident response policies, implementing cookie consent, and verifying domain registration details to improve trust and compliance.

CUMPLEN is a Spanish association dedicated to promoting compliance, ethics, and regulatory adherence among professionals and organizations. The website serves as a comprehensive platform offering certifications, training courses, events, and networking opportunities tailored for compliance officers and related professionals. The association positions itself as a key player in the compliance sector in Spain, providing valuable resources and fostering a professional community. Technically, the website employs a moderate technology stack including jQuery, Font Awesome, and third-party widgets such as Lex4Web and Contentsquare for user engagement and analytics. The site is well-structured, mobile-optimized, and uses HTTPS, ensuring secure communications. However, some security headers are missing, and there is no explicit incident response or security policy page, which could be improved. From a security perspective, the site demonstrates good practices such as secure forms with privacy consent and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly that raises questions about domain legitimacy, although the professional content and active social presence mitigate some concerns. Overall, the website is a credible and professional resource for compliance professionals, but it would benefit from enhanced transparency regarding domain registration and improved security headers to strengthen trust and resilience.

E

Europa Press

europapress.es

0

Europa Press is a prominent Spanish news agency providing comprehensive news coverage across politics, economy, sports, culture, science, leisure, and society. The website serves a general audience interested in current events in Spain and worldwide. It operates a subscription-based model with cookie-free subscription options, indicating a hybrid revenue model combining advertising and paid content. The brand is well-established and recognized in the Spanish media landscape. Technically, the website employs modern web technologies including Firebase for user authentication and subscription management, Didomi for GDPR-compliant consent management, Google Analytics and Tag Manager for analytics, and various advertising and tracking services such as ComScore and GFK S2S. The site is optimized for mobile devices and demonstrates good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and integrates a robust consent management platform to comply with GDPR. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. However, security headers are not explicitly visible and could be improved. The WHOIS data is unavailable due to Red.es restrictions, but the domain is likely privacy-protected, which is justified for a media entity. Overall, Europa Press presents a low-risk profile with strong business credibility, good technical implementation, and solid privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

A

Agencia EFE

efe.com

0

Agencia EFE operates as the leading Spanish language news agency, distributing millions of news items annually across multiple media formats including text, photography, video, and audio. The website efe.com serves as a comprehensive digital platform for news dissemination, targeting a broad general audience primarily in Spain and Spanish-speaking regions. The business model centers on media content distribution and thematic news services, supported by a network of related domains and specialized content sites. The company is well-established with a domain age dating back to 1998, reinforcing its market position and credibility. Technically, the website is built on WordPress CMS, leveraging modern SEO tools such as Yoast SEO Premium and interactive elements like Smart Slider 3. The infrastructure includes integrations with Google Tag Manager, Microsoft Clarity, and other analytics and marketing tools, indicating a mature digital presence. Hosting and DNS services utilize Cloudflare, though DNSSEC is not enabled, representing a minor security gap. The site is mobile optimized with good performance and accessibility features, though some improvements are possible. From a security perspective, the site enforces HTTPS and includes standard security headers, contributing to a solid security posture. However, the absence of explicit privacy and terms of service pages, as well as lack of a published security policy or incident response contacts, suggests areas for compliance and transparency enhancement. The cookie consent mechanism is present and functional, indicating GDPR awareness. Overall, efe.com presents a professional, trustworthy, and content-rich platform with a strong business foundation. Strategic improvements in privacy documentation, DNS security, and security policy transparency would further strengthen its security and compliance posture.

H

Howden Iberia

howdeniberia.com

0

Howden Iberia operates as a subsidiary of the international Howden Broking Group, providing specialized insurance brokerage and employee benefits services primarily in Spain. The company targets SMEs, large enterprises, and public sector entities, positioning itself as a global insurance broker with local expertise. The website reflects a professional and well-structured digital presence, leveraging Drupal 10 CMS and integrating modern analytics and cookie consent technologies. Security posture is strong with HTTPS, CSP nonce usage, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The absence of WHOIS registration data raises some legitimacy concerns, warranting further verification. Overall, the site demonstrates good compliance with privacy regulations and offers clear contact information, supporting trustworthiness and business credibility.

G

Global Switch

globalswitch.es

0

Global Switch is a leading provider of world-class data centre infrastructure, specializing in mission-critical solutions for enterprises, AI, and HPC markets. Established in 1998, the company operates globally with a strong presence in major connectivity hubs, offering highly resilient and flexible data centre environments. Their partnerships, including with NVIDIA, underscore their commitment to cutting-edge technology and infrastructure excellence. The website demonstrates a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern plugins and frameworks, delivering good performance and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response details could be improved. Privacy compliance is well addressed with clear policies and GDPR considerations. Overall, the security posture is strong with no visible vulnerabilities or suspicious indicators. The lack of WHOIS data limits domain registration insights, but the professional presentation and consistent branding support legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and providing clearer incident response contacts to further strengthen trust and compliance.

G

Groupon

groupon.es

0

Groupon.es is the Spanish localized website of Groupon, a global e-commerce marketplace offering discounted deals and coupons for local services, products, and experiences. The site targets consumers in Spain seeking savings on a wide range of categories including beauty, gastronomy, travel, and entertainment. The platform supports online and in-person redemption and provides a mobile app for enhanced user experience. Technically, the website employs modern JavaScript frameworks such as React/Preact, integrates advanced fraud detection services like Signifyd and Riskified, and uses Google services for analytics and advertising. Security posture is strong with HTTPS, security headers, and CAPTCHA protections in place. Privacy compliance is evident with GDPR-aligned policies and cookie consent mechanisms. However, WHOIS data is unavailable due to query restrictions, though the site’s branding and infrastructure indicate legitimacy. Overall, Groupon.es presents a professional, secure, and user-friendly e-commerce platform with a solid market position in Spain.

D

Dinahosting s.l.

dinahosting.com

0

Dinahosting s.l. is a well-established Spanish technology company specializing in domain registration, web hosting, VPS, dedicated servers, and cloud services. With over 20 years of experience, it holds a strong market position as a leading independent provider in Spain, offering a comprehensive portfolio of IT infrastructure solutions tailored to individuals, SMEs, and professional agencies. The company emphasizes quality, customer support, and technological innovation, including AI-assisted services and green hosting initiatives. The website demonstrates a mature technical infrastructure with modern web technologies such as jQuery and SVG graphics, optimized for performance and mobile responsiveness. The presence of multiple language versions and a well-structured navigation system reflects a high level of digital maturity and user experience focus. Security posture is robust, with HTTPS enforced, strong domain registration protections, and ISO 27001 certification. However, DNSSEC is not enabled, and there is no published security.txt file, which are areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR adherence, and transparent contact channels. Overall, Dinahosting presents a low-risk profile with strong business credibility, technical competence, and customer trust. Strategic recommendations include enabling DNSSEC, publishing vulnerability disclosure policies, and enhancing incident response visibility to further strengthen security and compliance.

D

Deutsche Handelskammer für Spanien

ahk.es

0

The Deutsche Handelskammer für Spanien (German Chamber of Commerce for Spain) operates as a bilateral chamber supporting German-Spanish economic relations. It offers a broad range of services including market entry consulting, business development, legal and tax advisory, certification, and event organization. The website targets companies and professionals interested in fostering business ties between Germany and Spain, positioning itself as a trusted intermediary with strong governmental and industry partnerships. Technically, the site is built on the Ibexa DXP CMS platform, employs modern JavaScript frameworks, and integrates Piwik PRO for analytics, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the site demonstrates a professional, secure, and user-friendly digital presence suitable for its business objectives.

A

Asociación de Compliance Española

asociacioncompliance.com

0

Asociación de Compliance Española (ASCOM) is a Spanish non-profit association dedicated to professionals in the Compliance field across various economic sectors. Established in 2014, ASCOM positions itself as an independent organization offering networking, training, and resources to Compliance practitioners. The website reflects a professional and consistent brand image, targeting Compliance professionals in Spain. Technically, the site is built on WordPress using popular plugins such as Elementor and WooCommerce, hosted by Dinahosting s.l., a Spanish hosting provider. The site is mobile-optimized and incorporates cookie consent mechanisms to comply with privacy regulations. Security posture is moderate with HTTPS enabled and domain protections in place, though DNSSEC is not enabled and security headers are not evident. No explicit privacy policy or terms of service were found in the analyzed content, which is a gap in compliance documentation. Overall, the site is trustworthy and professionally maintained but could improve in transparency and security best practices.

I

IONOS Cloud S.L.U.

ionos.es

0

IONOS Cloud S.L.U. operates the website www.ionos.es, positioning itself as the largest hosting provider in Europe and a specialist in cloud solutions. The company offers a broad range of services including domain registration, web hosting, cloud infrastructure, email and office solutions, and e-commerce platforms. The website targets businesses and individuals seeking reliable and scalable web services. The business is well-established, founded in 2001, and operates primarily in Spain with enterprise scale. The website content is professionally presented, with clear navigation and consistent branding, supporting its market position as a trusted technology provider. From a technical perspective, the website leverages modern web technologies such as Next.js and React, ensuring a responsive and performant user experience. The site is mobile-optimized and includes SEO best practices, although accessibility features are basic. Security is well-handled with HTTPS and asynchronous script loading, but explicit security headers and policies are not disclosed. Marketing tools like Kameleoon and Adobe Target are used for A/B testing and user engagement, with moderate user tracking observed. Security posture is solid but could be improved by publishing explicit security policies, incident response contacts, and vulnerability disclosure programs. Privacy compliance is currently weak due to the absence of visible privacy and cookie policies or consent mechanisms, which is a critical area for improvement given GDPR requirements. Contact information is clearly provided, enhancing business credibility. Overall, the website is a professional, trustworthy platform with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security transparency would enhance its security posture and regulatory adherence.

U

University of the Basque Country - EHU

ehu.eus

0

The University of the Basque Country (EHU) website serves as an official digital presence for a large educational institution in Spain. It provides academic and research information targeted at students, faculty, and the public. The site is built on a modern technical infrastructure using Liferay CMS, React, and ClayUI, with integration of Google Tag Manager and Cookiebot for analytics and cookie consent management. The website is well-branded and professionally designed, offering a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit privacy policies are not evident in the provided data. WHOIS data is privacy protected, which is typical for such institutions, and no suspicious indicators were found. Overall, the site is trustworthy and safe for general audiences.

S

Schindler España

schindler.es

0

Schindler España operates as a leading manufacturer and service provider of elevators, escalators, and moving walkways in Spain, supporting urban mobility with safe, comfortable, and efficient solutions. The company offers a broad portfolio including passenger elevators, special elevators, modernization services, and digital media services, targeting building owners, developers, and facility managers. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with an enterprise-level organization. Technically, the site is built on Adobe Experience Manager, leveraging Adobe's marketing and analytics ecosystem, and integrates multiple trusted third-party services for analytics, marketing, and social media. Security posture is strong with HTTPS, strict Content Security Policy, and no visible vulnerabilities, although some script-src policies could be tightened. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. WHOIS data is unavailable due to registry restrictions, limiting domain legitimacy verification, but the website content and structure indicate a legitimate and professional business presence.

Rich Audience is a programmatic advertising technology company operating a marketplace that connects advertisers and publishers globally. Founded in 2015 and headquartered in Spain, it offers advanced programmatic solutions including private premium ecosystems (#core technology), advanced targeting, and reporting tools. The company targets advertisers seeking transparent and secure brand communication and publishers aiming to monetize their websites effectively. The website demonstrates a mature digital presence with modern technologies such as Yii Framework, Bootstrap 4, and Google Tag Manager integration. Security practices include HTTPS enforcement, CSRF protection, and consent management integration, though DNSSEC is not enabled and security headers are not explicitly detected. Legal and privacy policies are comprehensive and GDPR compliant, supporting trust and compliance. Overall, the website is professional, well-structured, and accessible, reflecting a credible and established business in the media and advertising technology sector.

D

Dosdoce.com

dosdoce.com

0

Dosdoce.com is a Spanish digital cultural media portal established in 2004, focusing on trends and news in the book and cultural sectors. It serves as a digital nexus for publishers, bookstores, libraries, museums, and foundations, providing news, studies, interviews, and training services. The website demonstrates a mature digital infrastructure built on WordPress with common plugins for SEO, analytics, and user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response contacts. The absence of WHOIS data is a notable anomaly but does not detract from the site's professional content and user trust. Overall, Dosdoce.com presents a credible and well-maintained platform for its niche audience.

A

ANETVA Asociación Nacional de Empresas de Trabajos Verticales

anetva.org

0

ANETVA is a well-established Spanish national association representing over 100 companies specializing in vertical work techniques, focusing on professionalization, training, and safety. The website reflects a mature digital presence with comprehensive content, clear navigation, and active engagement through social media and newsletters. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security measures include HTTPS, reCAPTCHA, and cookie consent management, though some security headers could be improved. The lack of WHOIS transparency slightly impacts trust but does not detract significantly from the overall legitimacy. Privacy policies are comprehensive and GDPR compliant, with a designated data protection officer contact provided.

D

DUXIANA

duxiana.es

0

DUXIANA is a premium luxury bedding and furniture brand with a heritage dating back to 1926. The company focuses on delivering high-quality beds and furniture products designed for superior sleep comfort and sustainability. Their market position is that of a well-established, reputable retailer targeting consumers seeking luxury and innovation in sleep solutions. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site uses modern tracking and consent management tools, including Google Tag Manager and Cookietractor, and employs HTTPS with secure cookie settings. However, some security best practices such as security headers and explicit privacy policies are missing or not detected in the provided content. The WHOIS data is unavailable due to query restrictions, limiting full verification of domain legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy, with room for improvement in transparency and security disclosures.

D

DUXIANA

duxiana.shop

0

DUXIANA is a premium retailer specializing in Boxspring beds, furniture, and bedding accessories, operating both physical stores and an online e-commerce platform hosted on Shopify. The company targets consumers seeking high-quality sleep products and furniture, with a market presence dating back to 1926, emphasizing Scandinavian design and comfort. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content to support its business model. Technically, the site leverages modern web technologies including Shopify's platform, jQuery, and integrates multiple analytics and advertising pixels such as Google Analytics and Facebook Pixel, ensuring robust marketing and user tracking capabilities. Security posture is strong with HTTPS enforced and hCaptcha protecting forms, though explicit security headers and a published security policy are absent. Privacy compliance is addressed with accessible privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the domain registration details corroborate the business claims, enhancing trustworthiness. Strategic improvements include enhancing security headers and publishing incident response information to further strengthen security and compliance.

F

Freepik Company, S.L.

freepik.com

0

Freepik Company, S.L. operates a comprehensive AI-powered creative suite and stock asset platform, targeting designers, marketers, and content creators globally. The website offers a wide range of AI tools including image, video, and audio generators, alongside traditional stock assets such as photos, vectors, and icons. The business model is subscription and credit-based, supporting professional and personal creative projects. Freepik holds a strong market position as a leading provider in the creative technology space with a consistent brand presence and extensive social media engagement. Technically, the website is built on modern frameworks like Next.js and React, leveraging CDN hosting and advanced consent management tools such as OneTrust. The site demonstrates excellent performance, mobile optimization, and SEO practices, ensuring a high-quality user experience. Analytics and tracking are implemented moderately with Google Tag Manager and Apollo Tracker, balanced with privacy compliance mechanisms. From a security perspective, Freepik enforces HTTPS, employs standard security headers, and integrates cookie consent management. However, explicit security policies and incident response information are not publicly available, which could be improved to enhance transparency and trust. The absence of WHOIS data reduces domain registration transparency but does not significantly detract from the overall legitimacy given the brand's maturity and external trust signals. Overall, Freepik presents a secure, professional, and privacy-conscious platform with strong business credibility. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and improving WHOIS transparency to further strengthen trust and compliance.

P

Pinterest

pinterest.es

0

Pinterest is a leading visual discovery and social media platform that enables users to find and share ideas such as recipes, home decor, and style inspiration. The Spanish localized site caters to the Spanish-speaking audience with tailored content and user experience. Pinterest operates primarily on an advertising-based business model, leveraging its large user base and content discovery capabilities to generate revenue. The company is a well-established enterprise with a strong global presence and brand recognition. Technically, the website employs modern web technologies including React and ES modules, with a strong emphasis on security through HTTPS and a robust Content Security Policy. The site is optimized for performance and mobile responsiveness, providing an excellent user experience. The use of multiple third-party services for analytics, advertising, and user engagement is evident, with appropriate privacy and cookie policies in place to comply with GDPR and other regulations. From a security perspective, Pinterest demonstrates a mature posture with enforced HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, there is an opportunity to improve transparency by publishing explicit incident response contacts and a vulnerability disclosure policy. Overall, the site is safe for general audiences with no adult or explicit content detected. The overall risk assessment is low, with strong business credibility and technical implementation. Strategic recommendations include enhancing incident response visibility, maintaining up-to-date security practices, and considering a public security.txt file to facilitate vulnerability reporting.