Security Directory

O

Obec Vrdy

obecvrdy.cz

0

Obec Vrdy operates an official municipal website serving the residents and visitors of the Vrdy municipality in the Czech Republic. The site provides comprehensive local government information including news, public notices, contact details, community events, and downloadable forms. It targets local citizens and stakeholders seeking municipal services and information. The website is well-structured with consistent branding and clear navigation, reflecting a professional government portal. Technically, the site employs a custom CMS likely based on Lego2, with modern JavaScript libraries such as jQuery, Bootstrap, Swiper, and Highslide for UI enhancements. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, some security best practices like security headers are missing, and no explicit vulnerability disclosure or security policy pages are present. From a security perspective, the site shows a moderate security posture with HTTPS and cookie consent implemented, but lacks advanced security headers and incident response contacts. The absence of WHOIS data for the domain reduces trustworthiness slightly, though the website content and official contact information support legitimacy. No adult or questionable content is present, making the site safe for general audiences. Overall, the website is a functional and professional municipal portal with room for improvement in security practices and transparency. Strategic recommendations include adding security headers, publishing vulnerability disclosure information, and verifying domain registration details to enhance trust and compliance.

L

Le Grand Ouest Toulousain Agglomération

grandouesttoulousain.fr

0

Le Grand Ouest Toulousain Agglomération is a regional public government entity in France providing a range of community services including waste management, social services, urban planning, and mobility. The website serves as an official portal for residents and businesses within the agglomeration, offering information, online procedures, and public communications. The site is well-branded, professionally designed, and provides clear navigation and relevant content for its audience. Technically, it is built on Joomla CMS with modern libraries such as Bootstrap and jQuery, hosted by OVH, and uses HTTPS with Google Analytics for visitor tracking. The cookie consent mechanism is comprehensive and GDPR-aware, although no explicit privacy policy or terms of service pages were found. Security posture is adequate with HTTPS and no visible vulnerabilities, but could be improved by adding security headers and incident response information. Overall, the site is trustworthy and aligns well with its public sector mission.

A

Bienvenue en Muretain

agglo-muretain.fr

0

The website www.agglo-muretain.fr serves as an informational and promotional platform for the Muretain region in France, focusing on tourism, living, and entrepreneurship. It targets residents, tourists, and local entrepreneurs, positioning itself as a regional government or community resource. The site uses WordPress with Elementor and jQuery, indicating a moderate level of digital maturity with a basic but functional technical infrastructure. The content is safe, general audience appropriate, and the design is basic but consistent with regional promotional goals. However, the absence of privacy, cookie, and terms of service policies, as well as lack of contact information, limits its compliance and trustworthiness from a security and privacy perspective. The WHOIS data is missing, which raises concerns about domain legitimacy and registration transparency.

The website www.loire-atlantique.fr is the official digital portal for the Département de Loire-Atlantique, a regional government entity in France. It provides comprehensive information and services related to social aids, culture, sports, environment, education, tourism, and local governance. The site targets residents and visitors of the Loire-Atlantique region, offering a broad range of public service resources and community engagement tools. The business model is that of a government information portal, focusing on public service rather than commercial revenue generation. Technically, the site is built on the Jalios JCMS platform, leveraging modern web technologies including Google Analytics and Google Tag Manager for user analytics, and Orejime for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a professional and consistent design. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers such as Content-Security-Policy and X-Content-Type-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of published security policies or incident response contacts is a gap in transparency and readiness. Overall, the site is trustworthy and professional, serving as a reliable government resource. However, the WHOIS data is missing, which limits domain legitimacy verification. This may be due to AFNIC policies or query limitations. The site should consider publishing security policies and vulnerability disclosure information to enhance trust and compliance.

The website 'Náš Jih' serves as a digital platform for the Ostrava-Jih municipal district in the Czech Republic, facilitating participatory budgeting where residents can influence the allocation of local government funds. The site provides information about ongoing projects, community engagement opportunities, and a project submission portal. It targets local residents and community members interested in civic participation. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Analytics, and Facebook Pixel for analytics and marketing. The hosting is provided by a Czech hosting provider, aligning with the local focus. Security-wise, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy or terms of service pages were found. No security headers were detected in the provided data, suggesting room for improvement in security hardening. Overall, the site is professionally designed with good user experience and mobile optimization, but could enhance privacy and security transparency.

O

Orléans Métropole

orleans-metropole.fr

0

Orléans Métropole is the official metropolitan government entity serving the Orléans area in France, providing a wide range of public services including urban mobility, waste management, water and sanitation, urban planning, and economic development. The website serves residents, local businesses, and visitors by offering comprehensive information and access to services. The site is built on TYPO3 CMS and uses modern web technologies, including Matomo for analytics, ensuring a good level of digital maturity and user experience. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is partial, with a privacy policy present but lacking a visible cookie consent mechanism. WHOIS data is unavailable, likely due to AFNIC policies, but the site shows strong trust indicators consistent with a government entity.

R

Région Centre-Val de Loire

europeocentre-valdeloire.eu

0

Europe O Centre-Val de Loire is an official regional platform operated by the Région Centre-Val de Loire, France, providing comprehensive information and access to European funding programs for project holders in the region. The website serves as a gateway to identify funding opportunities, access calls for projects, and prepare funding applications, supported by official regional and European Union branding. The platform targets residents and organizations in the Centre-Val de Loire region seeking European financial support for development projects. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and WP Rocket for optimization, with a responsive design and accessibility considerations. It employs Matomo analytics with a strong cookie consent mechanism via Tarteaucitron, reflecting good privacy compliance. The site uses HTTPS with strong SSL configuration and security headers, although explicit security policy and incident response pages are not found. Security posture is solid with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS registrant data is consistent with EURid policies for .eu domains and does not detract from the legitimacy of the site, which is well-branded and professionally maintained. Overall, the site demonstrates a high level of trustworthiness, compliance, and technical maturity. Recommendations include publishing explicit security and incident response policies, implementing a security.txt file for vulnerability disclosure, and continuing regular security audits of third-party scripts and forms to maintain a strong security posture.

C

Clermont Auvergne Métropole

clermontmetropole.eu

0

Clermont Auvergne Métropole is a public metropolitan government entity serving 21 communes in the Clermont-Ferrand region of France. The website provides comprehensive information on urban planning, waste management, mobility, cultural activities, and ecological transition initiatives. It targets residents and stakeholders within the metropolitan area, offering services and resources relevant to local governance and community development. The site is positioned as a key regional authority with a broad scope of public services.

S

Salon des maires et des Collectivités locales

salondesmaires.com

0

Salon des Maires et des Collectivités locales operates a professional event website targeting French local government officials and public sector stakeholders. The site promotes a major event with over 62,000 visitors and 1,450 exhibitors, positioning itself as a leading platform for local authorities in France. The business model centers on event organization, exhibitions, and networking services for the public sector. Technically, the website is built on WordPress using the Divi theme and incorporates modern SEO and analytics tools such as Yoast SEO and Google Analytics. The site demonstrates good design quality, mobile optimization, and user experience, although accessibility features are basic. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and explicit privacy policies. The absence of WHOIS data reduces domain registration transparency, though the website content and branding suggest legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security practices.

C

Copernicus

copernicus.eu

0

Copernicus is the European Union's flagship Earth observation program, providing environmental data and services for the benefit of European citizens and public authorities. The website reflects a mature digital presence with a professional design, multilingual support, and comprehensive content focused on environmental monitoring, climate change, security, and emergency management. The program collaborates with major European agencies and institutions, reinforcing its authoritative market position. Technically, the site is built on Drupal 10, leveraging modern JavaScript libraries and analytics tools such as Matomo, with a strong emphasis on GDPR compliance and user privacy. The infrastructure supports good performance, mobile responsiveness, and accessibility, although some security headers could be improved. Security posture is solid with HTTPS enforced and privacy-conscious cookie management, but the absence of explicit vulnerability disclosure and incident response contacts suggests room for enhancement. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and stable platform. Overall, Copernicus.eu represents a high-quality, secure, and compliant government service website with strong business credibility and technical maturity, suitable for its broad public and institutional audience.

M

Mercator Ocean International

mercator-ocean.fr

0

Mercator Ocean International is an intergovernmental organization dedicated to providing digital ocean systems and information services, endorsed by multiple European countries and linked with the UN Ocean Conference. The organization delivers global ocean data, monitoring, forecasting, and scientific insights to support climate action and ocean health. The website is professionally designed using WordPress and Elementor, with a strong focus on oceanographic data and community coordination. Social media presence and official endorsements enhance its credibility. Technically, the site uses modern web technologies and analytics tools like Matomo, ensuring moderate user tracking with some privacy considerations. Security posture is strong with HTTPS and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is partial, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy, authoritative, and well-positioned in its niche, but could enhance transparency and compliance aspects.

The domain inserm-transfert.fr is registered since 2002 under the registrar GIP RENATER, indicating a legitimate and established presence likely related to the French government or public research sector. However, the website content is currently inaccessible, returning a 404 Not Found error page with no metadata, scripts, or visible content. This lack of accessible content prevents a full assessment of the business operations, services, or compliance posture. Technically, no information about SSL, security headers, or technologies used is available, indicating either a misconfiguration or the site being offline. Security posture cannot be properly evaluated due to missing content and headers. Overall, the website is not currently functional, which poses a risk to user trust and business credibility.

L

Landesamt für Arbeitsbeschaffung

lfa.be

0

The Landesamt für Arbeitsbeschaffung (LfA) is a Belgian government agency responsible for implementing social insurance regulations related to unemployment, including labor market activation measures, career breaks, and time credit schemes. The website targets German-speaking citizens and employers in Belgium, providing information and electronic services such as online applications and electronic control cards. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence for a public sector entity. Technically, the site uses modern frameworks like Bootstrap and integrates privacy-conscious analytics (Matomo) and chatbot services, indicating a moderate to advanced digital infrastructure. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with clear cookie and privacy policies aligned with GDPR. Overall, the domain and website appear legitimate and trustworthy, consistent with a government agency, despite limited WHOIS data due to .be domain privacy restrictions.

M

Mercator Ocean International

mercator-ocean.eu

0

Mercator Ocean International is an intergovernmental organization dedicated to providing digital ocean systems and information services. It operates as a public service delivering ocean data, supporting international cooperation, and advancing ocean prediction initiatives. The organization is endorsed by multiple European governments and actively participates in global ocean health and climate monitoring efforts. The website reflects a professional and consistent brand presence with comprehensive ocean-related content targeting governments, researchers, and civil society stakeholders. Technically, the website is built on a modern WordPress platform using Elementor and Yoast SEO, with multilingual support via WPML. It employs Matomo analytics and social sharing tools, indicating a mature digital infrastructure. The site is mobile optimized and accessible, with good SEO practices, though some improvements in security headers and privacy compliance are recommended. Security posture is solid with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit privacy and cookie policies, security headers, and incident response information suggests areas for enhancement. The domain WHOIS data is privacy protected by EURid, which is typical for .eu domains and justified for this type of organization. Overall, the website presents a trustworthy and authoritative presence in the ocean data and intergovernmental domain, with recommendations to improve transparency and privacy compliance to further strengthen user trust and security posture.

C

Centre national du livre

centrenationaldulivre.fr

0

The Centre national du livre (CNL) is a French public institution under the Ministry of Culture dedicated to supporting all actors in the book industry, including authors, translators, editors, booksellers, and libraries. The website serves as a comprehensive portal for information on financial aids, literary events, studies, and resources related to the book sector in France. It maintains a strong market position as a key governmental cultural support entity. Technically, the site is built on Drupal 8, employs Matomo and Google Analytics with privacy-conscious configurations, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS, cookie consent mechanisms, and domain protections, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving a broad audience of literary professionals and cultural stakeholders.

S

STO

slovenia.info

0

The website www.slovenia.info serves as the official travel guide to Slovenia, operated by the Slovenian Tourist Organization (STO). It provides comprehensive information about destinations, activities, culture, and events in Slovenia, targeting tourists and travelers interested in exploring the country. The site is multilingual and well-structured, offering a rich user experience with clear navigation and professional design. The business model focuses on tourism promotion and information dissemination, positioning itself as the authoritative source for travel in Slovenia. From a technical perspective, the website employs modern web technologies including Google Tag Manager for analytics and marketing, Typekit fonts for typography, and AMP Travel scripts for enhanced performance. The site is mobile optimized and demonstrates good SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. Security posture is generally good with HTTPS enforced and consent defaults set to deny ad and analytics storage, indicating privacy-conscious design. However, the absence of visible security headers and lack of published privacy and cookie policies reduce the overall security maturity. No vulnerabilities or exposed sensitive data were detected. WHOIS data is not publicly available, likely due to privacy protection, which is reasonable for this type of official site. Overall, the website is trustworthy and professional, with a high-quality user experience and solid business credibility. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and providing clear incident response and vulnerability disclosure information to enhance trust and compliance.

S

Svazek obcí Dobříšska a Novoknínska

dobrisskonovokninsko.cz

0

Svazek obcí Dobříšska a Novoknínska is a regional governmental association serving municipalities in the Dobříš and Nový Knín areas of the Czech Republic. The website provides official information, documents, event calendars, and contact services aimed at local government officials and residents. The site is well-structured with clear navigation and comprehensive content relevant to its audience. Technically, it uses a CMS platform (Vismo), integrates Google Analytics with GDPR-compliant consent mechanisms, and employs Google reCAPTCHA for form security. The security posture is solid with HTTPS and form protections, though it lacks some advanced HTTP security headers. Overall, the site demonstrates good privacy compliance and business credibility consistent with a small governmental entity.

M

Musée du Luxembourg

museeduluxembourg.fr

0

Musée du Luxembourg is a well-established cultural institution in Paris, offering art exhibitions, events, and educational programs. The website reflects a professional and user-friendly digital presence, built on Drupal 10 with modern analytics and consent management tools. The museum is affiliated with the French Senate and Grand Palais RMN, reinforcing its legitimacy and trustworthiness. Privacy and cookie policies are comprehensive and GDPR compliant, with clear user consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Overall, the site provides a safe, accessible, and informative experience for a broad audience including tourists, students, and art enthusiasts.

C

CEREMA

expertises-territoires.fr

0

Expertises Territoires is a professional network platform affiliated with CEREMA, a French public organization focused on territorial expertise. The website serves elected officials, community and state agents, experts, companies, and civil society members by facilitating collaboration, knowledge sharing, and co-construction of territorial solutions. It features communities, partners, and domains of action such as territorial engineering, building, mobility, transport infrastructure, environment, and coastline management. The platform is bilingual (French and English) and emphasizes community engagement and professional networking. Technically, the website is built on the Jalios CMS platform, utilizing modern web technologies including jQuery, Bootstrap 3.4.1, Slick Carousel, and LightGallery. The site demonstrates good mobile optimization, accessibility, and SEO practices. Cookie consent is implemented with a clear banner, and privacy and legal notices are present, indicating compliance with GDPR requirements. However, no explicit security headers or incident response policies are visible in the provided content. Security posture is moderate with HTTPS implied but not explicitly confirmed in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern, reducing trustworthiness from a domain registration perspective. Despite this, the website's branding and partner affiliations suggest legitimacy. Overall, the site is professional, secure, and compliant but would benefit from enhanced transparency in security policies and domain registration information.

L

LuxDev

luxdev.lu

0

LuxDev is the Luxembourg agency for development cooperation, operating for over 45 years across Africa, Asia, Latin America, and Europe. The agency focuses on sustainable development, capacity building, climate action, digitalisation, and finance impact projects. Their market position is strong as a government agency with a medium-sized operational footprint and a clear mission to eradicate poverty and promote inclusive development. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on Drupal 10 with modern JavaScript frameworks like Alpine.js and uses Matomo for privacy-respecting analytics. Hosting is managed via EuroDNS nameservers, and the site is well-optimized for performance and mobile devices. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not publicly disclosed. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear cookie and privacy policies. The absence of direct contact information in the provided content is noted but may exist elsewhere. The domain WHOIS data aligns well with the agency's legitimacy and history. Strategically, LuxDev should consider publishing explicit security policies and incident response contacts to enhance trust further. Continuous monitoring of security headers and vulnerability disclosures will maintain a strong security posture.

M

MSA

msa.fr

0

The website www.msa.fr/lfp represents the official online portal of the MSA (Mutualité Sociale Agricole), the French agricultural social security organization. It provides comprehensive social protection services including health insurance, family benefits, retirement pensions, and work accident coverage for agricultural workers and employers in France. The portal targets individuals, exploitants, employers, partners, and elected representatives within the agricultural sector. The business model is that of a government social security entity, serving a large user base with essential social services. The website is professionally designed with clear navigation and multiple service sections tailored to different user groups. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as YUI, jQuery, Bootstrap, and Clay components. It incorporates a secure login mechanism via OpenID Connect and includes a cookie consent banner, indicating attention to privacy compliance. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses secure authentication flows. While explicit security headers and policies are not visible in the HTML, the overall posture appears strong with no evident vulnerabilities or exposed sensitive data. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and security communication. Overall, the website is a trustworthy and authoritative source for agricultural social security services in France. The lack of WHOIS data limits domain registration trust analysis but does not detract from the site's legitimacy given its government affiliation and professional presentation. Strategic recommendations include publishing privacy and security policies, adding security.txt for vulnerability reporting, and enhancing contact information for security incidents to strengthen trust and compliance.

Rijksdienst voor Ondernemend Nederland (RVO) is a Dutch government agency dedicated to supporting sustainable and strong economic development. The agency provides a wide range of services including information dissemination, advisory support, financing options, and networking opportunities to entrepreneurs, individuals, governments, and knowledge institutions. The website reflects a mature digital presence with comprehensive content tailored to its diverse audience, emphasizing sustainability, innovation, and international business growth. The agency's market position is that of a key national facilitator for economic and environmental initiatives in the Netherlands.

I

Institut de Recherche pour le Développement (IRD)

ird.fr

0

The Institut de Recherche pour le Développement (IRD) is a prominent French public research institute focused on sustainable development and scientific partnerships with countries in the Global South. The website reflects a mature digital presence with multilingual support, comprehensive content on research activities, and a strong emphasis on innovation and capacity building. The organization positions itself as a key player in international scientific cooperation and sustainable development research. Technically, the site is built on Drupal 10, leveraging modern analytics (Matomo) and cookie management tools (Tarteaucitron.js), ensuring compliance with privacy regulations such as GDPR. The website is mobile-optimized and exhibits good SEO and accessibility practices, though some improvements in accessibility compliance and security headers are recommended. Security-wise, the site uses HTTPS and cookie consent mechanisms effectively, but lacks explicit security policy documentation and incident response contacts. No vulnerabilities or suspicious activities were detected in the content or scripts. WHOIS data is not publicly available, consistent with French domain registration norms, and does not raise legitimacy concerns. Overall, the IRD website demonstrates a strong security posture, professional content quality, and good privacy compliance, making it a trustworthy and authoritative source in its domain.

I

Ifremer

ifremer.fr

0

Ifremer is the French national institute dedicated to oceanographic research, focusing on marine ecosystem protection, sustainable resource management, and marine data sharing. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with a government research entity. Technically, the site uses Drupal CMS with modern JavaScript libraries and SVG graphics, optimized for mobile and accessibility. Security posture is strong with HTTPS, security headers, and no evident vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional, serving a broad audience including scientists, policymakers, and the public.

A

Arcom

arcom.fr

0

Arcom is the French independent regulatory authority overseeing audiovisual and digital communication, formed by merging CSA and Hadopi. It serves as a government entity ensuring pluralism, protecting rights, and regulating online platforms. The website is professionally designed using Drupal 10, featuring comprehensive content, multimedia resources, and strong privacy and cookie management. Social media integration and official branding reinforce its authoritative presence. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly visible. WHOIS data is unavailable, likely due to AFNIC policies, which slightly impacts domain trust but is offset by the official nature of the site. Overall, the site is a reliable source of regulatory information for the general public and professionals in France.

A

Agora CE, o.p.s.

participativni-rozpocet.cz

0

Agora CE, o.p.s. operates the website participativni-rozpocet.cz, providing expert assistance and methodological support for participatory budgeting in Czech municipalities. The organization targets local governments, politicians, and active citizens, offering practical tools and consultancy to foster community involvement in budget decisions. The website is well-structured, professionally designed, and supported by the Czech Ministry of Regional Development, indicating a strong market position within the non-profit government sector. Technically, the site is built on WordPress with Elementor and Yoast SEO, ensuring modern infrastructure and good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies could be enhanced. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information, supporting its credibility and user trust.

H

Health Resources and Services Administration

hrsa.gov

0

The Health Resources and Services Administration (HRSA) is a U.S. government agency under the Department of Health and Human Services focused on improving access to health care for underserved and vulnerable populations. The website provides comprehensive information on HRSA's programs including scholarships, loan repayment, health centers, maternal and child health, HIV/AIDS care, and telehealth services. It targets healthcare professionals, grant applicants, and the general public seeking health services. The site is well-branded, professionally designed, and highly accessible, reflecting its role as a federal agency.

O

Obec Nová Ves pod Pleší

novavespodplesi.cz

0

Obec Nová Ves pod Pleší operates an official municipal website serving the local community in the Czech Republic. The site provides residents and visitors with essential information such as official announcements, contact details, local clubs, and municipal services. The website is well-structured, with clear navigation and up-to-date content, reflecting a professional municipal communication channel. Technically, the site employs a variety of modern JavaScript libraries including jQuery, Bootstrap, Swiper.js, and Leaflet for mapping, indicating a moderate level of digital maturity and mobile optimization. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible advanced security headers and explicit incident response or security policies. The absence of WHOIS data limits domain trust assessment, but the presence of official contact information and consistent branding supports legitimacy. Overall, the website is a reliable and safe resource for its intended audience, with room for improvement in security posture and transparency.

S

Statutární město Jihlava

jihlava.cz

0

The website jihlava.cz serves as the official digital portal for the city of Jihlava, Czech Republic. It provides comprehensive information and services related to municipal administration, social services, education, transport, tourism, and citizen engagement. The site targets residents, tourists, and local businesses, positioning itself as a trusted source of official city information and services. The business model is that of a government entity providing public services and transparent communication to its constituents. Technically, the website employs a custom CMS platform (vismo®), uses modern web standards including HTML5, CSS3, and JavaScript, and integrates Google Translate for multilingual support. The site is mobile-optimized and accessible, with good SEO practices and moderate performance. Hosting and domain registration are consistent with an official municipal entity. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, it lacks a publicly visible dedicated security policy or incident response contact information. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid but could be improved by adding security headers and formalizing incident response disclosures. Overall, jihlava.cz is a professionally maintained government website with high trustworthiness and compliance with privacy regulations. Strategic recommendations include publishing a security policy, providing incident response contacts, and enhancing security headers to further strengthen the site's security and transparency.

I

Idéomauges

ideomauges.fr

0

Idéomauges is a regional government advisory website focused on the territorial prospective council of the Mauges community in France. The site provides governance information, news updates, and a member space for collaboration, targeting local government stakeholders and community members. The business operates as a small public sector entity founded in 2023, with a clear focus on community engagement and regional planning. Technically, the website is built on WordPress using the Divi theme and enhanced with Yoast SEO for search optimization. It employs Matomo analytics for user tracking and is hosted on o2switch servers. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure is modern and well-maintained, supporting a professional online presence. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, indicating basic compliance with privacy regulations. However, it lacks explicit security headers and published policies for privacy, incident response, and vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is transparent and consistent with the organization's founding date, supporting legitimacy. Overall, the website presents a trustworthy and professional front for the Idéomauges council but would benefit from enhanced privacy and security documentation to improve compliance and user trust. Strategic recommendations include publishing privacy and terms of service policies, implementing additional security headers, and establishing incident response protocols.

Scènes de Pays is a regional cultural event platform operated as a service of Mauges Communauté in France. It focuses on programming theatrical and cultural events for the general public, families, and schools, positioning itself as a key regional promoter of cultural activities. The website provides comprehensive event information, ticketing links, and practical guides, supporting community engagement and cultural participation. Technically, the site is built on WordPress using the Divi theme, enhanced with accessibility features, SEO optimizations, and a cookie consent mechanism compliant with GDPR. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though the site lacks a dedicated security policy or incident response contact. WHOIS data is privacy protected, typical for French domains, and the domain appears legitimate and consistent with the business. Overall, the website is professional, user-friendly, and trustworthy, serving its community-oriented mission effectively.

Svazek obcí Podkrkonoší operates as a regional community and informational portal serving the Podkrkonoší area in the Czech Republic. The website provides news, event information, cultural and nature-related content, and service center details aimed at residents and visitors. The platform positions itself as a trusted regional resource with consistent branding and regular content updates. Technically, the site employs a range of JavaScript libraries including jQuery, PhotoSwipe, and Google Maps API, indicating a moderate level of digital maturity. The website is mobile optimized and features a cookie consent mechanism, though it lacks explicit privacy and terms of service pages. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and updating libraries. Overall, the site is safe, professional, and trustworthy with no adult or explicit content detected.

V

Vooter

vooter.co

0

Vooter is a French digital platform specializing in voting, polling, and community consultation services aimed at organizations, local authorities, enterprises, and event organizers. The platform facilitates co-construction and inclusive participation through interactive digital tools, live voting, and instant communication. The website is built on WordPress using the Divi theme, incorporating standard SEO and analytics tools such as Yoast SEO and Google Analytics. Hosting and data storage are located in France, supporting GDPR compliance. Security measures include HTTPS and reCAPTCHA, though some security headers are not explicitly visible. The site lacks explicit privacy policy and terms of service pages, which are recommended for compliance and trust. Overall, the platform presents a professional and trustworthy digital service with a clear market niche in government and community engagement.

S

Share the Experience

sharetheexperience.org

0

Share the Experience is a well-established photo contest platform dedicated to America's national parks and federal recreational lands. It targets amateur photographers and outdoor enthusiasts, providing a community-driven platform for sharing and celebrating photography related to natural and federal lands. The website demonstrates a consistent brand and clear business purpose, supported by a domain registered since 2006, indicating a mature presence in its niche. Technically, the site leverages modern JavaScript frameworks such as Vue.js and Bootstrap 5, along with various libraries for media handling and geolocation, reflecting a contemporary and interactive user experience. The platform integrates social media login via Facebook and employs Google reCAPTCHA to mitigate bot activity. Security posture is adequate with HTTPS enforced and domain transfer protections, though it lacks some advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professionally maintained, though improvements in security headers and privacy transparency are recommended.

R

Recreation.gov

recreation.gov

0

Recreation.gov is a U.S. government-operated platform providing centralized trip-planning and reservation services for federal recreation sites across the country. It serves as a one-stop shop for camping, cabins, RV rentals, permits, passes, and tours, supporting 14 federal agencies and thousands of recreation locations. The platform is managed by a dedicated government team with technical support from Booz Allen Hamilton, funded primarily through reservation fees rather than Congressional appropriations. The website is well-designed, mobile-optimized, and rich in content, targeting outdoor enthusiasts and the general public interested in federal lands visitation. Technically, the site employs modern web technologies including React and Mapbox GL JS, integrates Google Tag Manager and analytics services, and demonstrates good performance and accessibility. While HTTPS is enforced and bot mitigation strategies are described, explicit security headers are not visible in the HTML content, and no cookie consent mechanism was detected, indicating areas for improvement in security and privacy compliance. The security posture is strong overall, with no evident vulnerabilities or exposed sensitive data. The presence of a responsible disclosure page and contact mechanisms for security issues further supports a mature security culture. However, incomplete WHOIS data and missing registrar and registrant details reduce trust somewhat, though the government affiliation and operational maturity mitigate concerns. Overall, Recreation.gov presents a trustworthy, professional, and user-friendly service with a solid security foundation. Strategic recommendations include adding explicit security headers, implementing a visible cookie consent banner, and publishing a security.txt file to enhance transparency and compliance.

M

Město Kaplice

mestokaplice.cz

0

Město Kaplice operates an official municipal website serving the residents and stakeholders of Kaplice, Czech Republic. The site provides comprehensive information about city governance, public services, news updates, and community engagement initiatives. It targets local citizens and visitors seeking municipal information and services. The business model is that of a public sector entity providing transparent access to city administration and resources. The website is well-branded, consistent, and includes trust signals such as official contact details and social media presence. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FontAwesome, and integrates third-party services like Munipolis for municipal news and Chetty chatbot for user interaction. The site is mobile-optimized, accessible, and uses HTTPS with Google Analytics for traffic monitoring. Cookie consent and privacy policies are implemented, reflecting good privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and explicit incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces trust assessment confidence but the website content and official contact information support legitimacy. Overall, the website is a reliable and professional municipal portal with good content quality and technical implementation. Strategic improvements include adding security headers, incident response information, and obtaining transparent WHOIS data to enhance trust and security posture.

I

Institut informacijskih znanosti (IZUM)

izum.si

0

Institut informacijskih znanosti (IZUM) is a Slovenian public institute established by the government to provide information services supporting science, culture, and education. It operates key national infrastructures such as the COBISS library system and HPC-RIVR supercomputing resources, positioning itself as a critical technology and research enabler in Slovenia. The website reflects this institutional role with professional content, clear navigation, and multilingual support. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the domain's long history and consistent WHOIS data reinforce the site's legitimacy and trustworthiness.

L

L214

politique-animaux.fr

0

The website 'Politique & animaux' is an advocacy and informational platform operated by the French non-profit organization L214, focusing on political actions related to animal welfare in France. It provides evaluations of political personalities, campaigns at municipal, national, and European levels, and public opinion polling data. The platform targets French citizens interested in animal rights and political accountability. Technically, the site is built on Drupal CMS with modern JavaScript libraries and integrates Google Tag Manager for analytics. It is mobile-optimized and uses HTTPS for secure communications. Security posture is good with no evident vulnerabilities, though explicit security headers could be improved. Privacy compliance is moderate, with consent mechanisms present but no explicit privacy or cookie policy pages found. WHOIS data is unavailable, which slightly impacts trust but the association with L214 and the professional content support legitimacy. Overall, the site is well-designed, content-rich, and trustworthy for its audience.

B

Bureau of Reclamation

usbr.gov

0

The Bureau of Reclamation is a longstanding U.S. government agency under the Department of the Interior, responsible for managing water and power resources primarily in the Western United States. The website serves as a comprehensive portal for information on dams, powerplants, water projects, environmental resources, and public recreation. It targets government entities, water resource managers, researchers, and the general public. The agency operates with an enterprise-level scale and maintains a strong market position as the primary federal water management authority in its region. Technically, the website employs a modern technology stack including HTML5, CSS3, JavaScript, jQuery, and analytics tools such as Google Tag Manager and DigitalGov Universal-Federated-Analytics. The site is mobile-optimized, accessible, and well-structured with clear navigation and good SEO practices. Hosting appears to be government-managed, ensuring reliability and compliance with federal standards. From a security perspective, the site enforces HTTPS and publishes a vulnerability disclosure policy, indicating a proactive security posture. However, explicit security headers are not clearly present, and there is no cookie consent mechanism, which could be improved for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy as a government entity with consistent registration information. Overall, the website is professional, trustworthy, and provides valuable public services. Strategic improvements in privacy compliance and security header implementation would enhance its security posture and regulatory adherence.

P

Paris&Co

parisdelinnovation.fr

0

Le Paris de l'Innovation is an annual innovation event organized by Paris&Co and the City of Paris, held at the Hôtel de Ville. It serves as a major networking and business development platform for startups, investors, public institutions, and large companies focused on ecological, environmental, and social transition. The event offers startup meetups, demo spaces, conferences, workshops, and incubator networking opportunities. The website is professionally designed using WordPress with modern technologies and SEO best practices, providing good user experience and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly reduces domain trust, but the official partnerships and event details support legitimacy. Overall, the website is a credible and well-maintained platform for innovation stakeholders in Paris.

The website www.zaragozaciudad.net serves as an official municipal blog platform for the Ayuntamiento de Zaragoza, targeting local citizens with community engagement and information about city neighborhoods and municipal services. The site provides a directory of citizen blogs categorized by topics and neighborhoods, supporting local communication and participation. The business model is public sector focused, providing a platform for citizen interaction and municipal transparency. The website content is primarily in Spanish and reflects a government entity's communication channel. Technically, the website uses XHTML 1.0 and CSS 2.0 with JavaScript enhancements and integrates Google Analytics and Google Tag Manager for visitor tracking. The design is basic and somewhat dated, with limited mobile optimization and accessibility features. No modern CMS or advanced frameworks are detected. Performance is moderate, and SEO is basic with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site uses HTTPS as inferred from script sources but lacks explicit security headers such as CSP or HSTS. No privacy or cookie policies are present, indicating GDPR compliance gaps. The WHOIS data is missing or unavailable, which is inconsistent with the active municipal content and raises concerns about domain legitimacy. No incident response or vulnerability disclosure information is published, and no security best practices beyond basic HTTPS are observed. Overall, the website is functional and serves its public sector purpose but has notable gaps in privacy compliance, security posture, and domain registration transparency. Strategic improvements in security headers, privacy policies, and WHOIS registration clarity are recommended to enhance trust and compliance.

D

Département de la Charente-Maritime

charente-maritime.fr

0

The website la.charente-maritime.fr serves as the official online presence for the Département de la Charente-Maritime, a governmental entity in France. It provides extensive information about departmental services, elected officials, public projects, social services, tourism, and cultural activities. The site targets residents, visitors, and stakeholders within the Charente-Maritime region, offering a broad range of public sector services and information. The business model is that of a public sector government service provider, with a large scope and audience. Technically, the website is built on the Drupal CMS platform, leveraging modern web technologies such as Google Fonts, Google Maps API, and Matomo Analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The presence of cookie consent mechanisms indicates attention to privacy compliance, though an explicit privacy policy page was not detected in the provided content. From a security perspective, the site enforces HTTPS and uses modern JavaScript libraries, but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which is unusual but may be due to AFNIC registry policies or privacy protections. Overall, the site appears trustworthy and professional, consistent with an official government entity. The overall risk is low, but improvements are recommended in publishing comprehensive privacy and security policies, implementing security headers, and providing clear contact information for security incidents to enhance trust and compliance.

C

Conseil départemental de la Vendée

vendee.fr

0

The website www.vendee.fr is the official online presence of the Conseil départemental de la Vendée, a government entity serving the Vendée department in France. It provides comprehensive information and services related to social support, infrastructure, culture, and public administration targeted at residents and stakeholders of the region. The site is well-branded, professionally designed, and structured to facilitate user navigation and access to departmental resources. Technically, the site is built on TYPO3 CMS with Bootstrap and FontAwesome for frontend styling, and integrates Matomo analytics for user behavior tracking, including heatmaps and session recordings. The presence of cookie consent mechanisms and structured data indicates a mature digital infrastructure with attention to privacy and SEO best practices. Performance and mobile optimization are good, supporting a positive user experience. From a security perspective, the site enforces HTTPS and includes some security headers, though additional headers like Content-Security-Policy could enhance protection. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data is unavailable, likely due to privacy protection, which is justified for a government domain. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a strong security posture, good privacy compliance, and high business credibility as a government portal. Strategic recommendations include enhancing security headers and publishing a clear privacy policy page to improve transparency and compliance.

I

Informační centrum Litomyšl

ticlitomysl.cz

0

Informační centrum Litomyšl operates as a local government-affiliated tourism and cultural information center serving visitors to Litomyšl, Czech Republic. The website provides comprehensive information on city tours, accommodation, dining, cultural events, and ticket sales, supported by an e-shop for related products. The site is built on Joomla CMS with modern UI libraries, offering a good user experience and mobile responsiveness. However, the absence of privacy and cookie policies indicates a gap in GDPR compliance. Security posture is moderate with HTTPS usage but lacks advanced security headers and vulnerability disclosure mechanisms. The WHOIS data is unavailable, limiting domain trust verification, but the website content and external partnerships suggest legitimacy. Strategic improvements in privacy compliance and security practices are recommended to enhance trust and regulatory adherence.

T

Technické služby Tábor s.r.o.

tstabor.cz

0

Technické služby Tábor s.r.o. is a municipal service company based in Tábor, Czech Republic, providing essential public services such as parking management, green area maintenance, public lighting, cemetery management, and animal shelter operations. Established in 1995, the company holds multiple ISO certifications indicating a commitment to quality and environmental standards. The website serves as an informational and contact portal for residents and stakeholders, featuring news updates, service links, and a contact form. The website is built on WordPress with a moderate technical infrastructure including common plugins and scripts such as Contact Form 7 and Google Maps API. The site is mobile-optimized with good navigation and content relevance. Security posture is adequate with HTTPS enforced and CAPTCHA on forms, but lacks advanced security headers and cookie consent mechanisms. No WHOIS data is available, which limits domain registration trust analysis. Overall, the security posture is stable but could be improved by implementing security headers, cookie consent, and publishing incident response contacts. The business credibility is strong based on certifications and clear company information. The website content is safe and appropriate for a general audience with no adult or questionable content detected. Strategic recommendations include enhancing security headers, adding cookie consent for GDPR compliance, publishing vulnerability disclosure and incident response information, and improving WHOIS transparency to increase trustworthiness.

T

Technické služby města Litoměřice

tsmlt.cz

0

Technické služby města Litoměřice is a municipal contributory organization established to provide essential technical and communal services to the city of Litoměřice, Czech Republic. Founded in 1995, the organization focuses on maintaining city cleanliness, public green spaces, infrastructure repairs, and other city maintenance tasks. The website reflects a well-established local government service provider with a clear mission and target audience consisting primarily of city residents and local stakeholders. The digital presence is professional, with good content quality and clear navigation, supporting the organization's public service role. From a technical perspective, the website employs a traditional tech stack including jQuery, Google Fonts, and Google Tag Manager for analytics. While the site is mobile-optimized and performs moderately well, the use of an outdated jQuery version suggests some technical debt and potential security risks. The hosting is managed through WEDOS, a Czech hosting provider, consistent with the domain registration data. Security posture is moderate; the site uses HTTPS and has implemented cookie consent mechanisms in compliance with GDPR. However, no explicit security headers or vulnerability disclosure policies are present, and the older JavaScript libraries could expose the site to known vulnerabilities. Contact information and a data protection officer are clearly provided, indicating some compliance with data protection regulations. Overall, the site is trustworthy but could benefit from enhanced security measures and updated technical components. The overall risk assessment is low to moderate, with no critical security issues detected. Strategic recommendations include updating JavaScript libraries, implementing security headers, formalizing security policies, and enhancing privacy documentation to improve compliance and trust. These steps will strengthen the organization's digital security posture and better protect user data while maintaining a professional and accessible web presence.

M

Město Borovany

borovany-cb.cz

0

Město Borovany operates an official municipal website serving the residents and visitors of Borovany, Czech Republic. The site provides comprehensive local government information including news, official notices, contact details, event calendars, and public services. The target audience is primarily local citizens and stakeholders interested in municipal affairs. The business model is a government service portal with no commercial intent. The website maintains a consistent brand identity and good content quality, supporting its role as a trusted local government resource. Technically, the website uses a modern technology stack including jQuery, Bootstrap, Swiper.js, and Leaflet.js for mapping. It is built on the Ocelot CMS platform and demonstrates good mobile optimization and accessibility compliance, including an accessibility certification. Performance is moderate, with no major technical issues detected. However, some security best practices such as security headers are missing. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks a published privacy policy and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain trustworthiness, but the official nature of the content and contact information supports legitimacy. Overall, the website is a well-maintained municipal portal with good usability and security posture, though improvements in privacy compliance and domain transparency are recommended to enhance trust and regulatory adherence.

I

Informační portál Kaplice a Kaplicko

ikaplice.cz

0

The website ikaplice.cz serves as an information portal dedicated to the town of Kaplice and its surrounding region in the Czech Republic. It provides comprehensive local cultural, tourist, and community event information, targeting residents and visitors interested in the area. The portal features event calendars, news articles, and service directories, positioning itself as a key regional resource for cultural engagement and tourism promotion. The site is supported by partnerships with local government and tourism organizations, enhancing its credibility and reach. Technically, the website employs a custom CMS with a technology stack including jQuery 1.11.2, jQuery UI, Fancybox, Google Fonts, Google Analytics, and Mapy.cz API for mapping services. While the site is functional and well-structured with good navigation and content relevance, it uses outdated JavaScript libraries that may pose security risks. Mobile optimization and accessibility are basic, and SEO practices are moderate. The site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and explicit privacy or terms of service policies. From a security perspective, the portal demonstrates moderate maturity. The use of outdated libraries and absence of security headers are notable vulnerabilities. No direct contact emails or phone numbers are provided, limiting transparency. The cookie consent banner indicates some GDPR awareness, but the lack of a privacy policy and security incident response information suggests compliance gaps. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the website's regional focus, supporting legitimacy. Overall, ikaplice.cz is a valuable regional information resource with good content quality and business credibility but requires improvements in technical security, privacy compliance, and modernization of its technology stack to enhance trust and resilience against threats.

H

Health Resources & Services Administration

organdonor.gov

0

The website organdonor.gov is an official U.S. government platform managed by the Health Resources & Services Administration (HRSA) under the Department of Health & Human Services. It serves as a comprehensive resource for organ, eye, and tissue donation information, targeting both the general public and healthcare professionals. The site provides educational content, registration guidance, statistics, and professional outreach materials, positioning itself as a trusted authority in the organ donation space. Technically, the site is built on Drupal 10 and leverages modern web technologies including the US Web Design System, Google Analytics, and YouTube integration. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The hosting environment is consistent with government infrastructure, ensuring reliability and security. From a security perspective, the site enforces HTTPS and employs several best practices, though explicit security headers like X-Frame-Options were not confirmed. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy linked from the site, though a cookie consent mechanism is not evident. The WHOIS data is unavailable due to privacy typical for .gov domains, but the domain's legitimacy is supported by consistent branding and authoritative content. Overall, organdonor.gov presents a professional, secure, and trustworthy online presence with minor areas for improvement in cookie consent and explicit security header implementation. It effectively fulfills its mission as a government resource for organ donation awareness and education.

The website kjh.cz represents the Místní akční skupina Království – Jestřebí hory, a regional non-profit organization focused on community and regional development in the Czech Republic. It provides information on local events, projects, educational initiatives, and regional services, targeting residents and stakeholders of the Jestřebí hory region. The site maintains partnerships with regional organizations and uses a custom CMS platform with a moderate technology stack including jQuery, Google Maps API, and Google Analytics. Technically, the website employs several legacy JavaScript libraries which may pose security risks and lacks explicit security headers. The site is served over HTTPS with a cookie consent mechanism that complies with GDPR principles, although no formal privacy policy or terms of service pages were found. The user experience is generally good with clear navigation and mobile optimization, but accessibility features are basic. From a security perspective, the site benefits from HTTPS and cookie consent but should update outdated libraries and implement security headers to enhance protection. No incident response or vulnerability disclosure information is present. WHOIS data confirms the domain's legitimacy and consistency with the website's regional focus. Overall, the site is a credible regional non-profit platform with good content quality but requires improvements in security practices and privacy documentation to meet higher compliance and security standards.