Security Directory

R

Région Auvergne-Rhône-Alpes

auvergnerhonealpes.fr

0

The website www.auvergnerhonealpes.fr is the official institutional portal for the Auvergne-Rhône-Alpes regional government in France. It provides comprehensive information about regional governance, public services, aids, news, and events targeted at residents, professionals, students, and public entities within the region. The site is well-branded and professionally designed, reflecting its status as a government entity. Technically, it is built on Drupal 10 CMS, leveraging modern web technologies such as lazy loading images and Matomo analytics for privacy-conscious tracking. The site is mobile-optimized and accessible, with clear navigation and structured content. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and a published security policy or incident response page. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data for the domain is unavailable, which is common for domains under AFNIC registry or due to privacy protections, but the website's content and official branding strongly support its legitimacy. Overall, the site demonstrates a mature digital presence for a regional government entity, balancing user experience, privacy, and security reasonably well. Strategic improvements could include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

The Deutscher Reisesicherungsfonds GmbH (DRSF) operates as a German insolvency protection fund for package travel customers and travel providers. It ensures that travelers receive refunds and safe return travel in case of travel provider insolvency, fulfilling a legal mandate. The website is professionally designed using WordPress and Elementor, providing clear information, registration portals, and updates related to insolvency cases. The company targets travelers and travel providers in Germany, positioning itself as a trusted non-profit entity in the travel security sector. Technically, the website uses a modern CMS stack with WordPress 6.8.3, Elementor, and various plugins including Friendly Captcha for form security. The site is mobile optimized and accessible, with good SEO practices. However, some security headers are not detected, and no explicit security or incident response policies are published on the site. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, but could be improved by adding security headers and publishing vulnerability disclosure information. Privacy compliance is good, with a comprehensive privacy policy and GDPR adherence, though no cookie consent mechanism was found. Overall, the website is trustworthy and professional, with no signs of malicious or adult content. WHOIS data is unavailable due to TLD restrictions but does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and implementing cookie consent mechanisms to further improve compliance and trust.

The Tax Expenditures Lab website serves as a comprehensive hub for research, data, and transparency on tax expenditures globally. It is affiliated with reputable institutions such as the Council on Economic Policies and the German Institute of Development and Sustainability, providing authoritative databases and indices like GTED and GTETI. The site targets policymakers, researchers, and tax professionals, offering publications, news, and events to support tax policy reforms. Technically, the site is built on WordPress with modern frameworks and plugins, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and some security plugins, though improvements in security headers are recommended. Privacy compliance is adequate with a clear privacy policy but lacks explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and content-rich, with no signs of blocking or malicious activity.

A

Asian Development Bank

development.asia

0

Development Asia is a knowledge collaboration platform operated by the Asian Development Bank, focusing on sharing development expertise, best practices, and technology relevant to Sustainable Development Goals in Asia. The platform targets professionals, government officials, civil society organizations, researchers, and students interested in economic and social development. It offers a wide range of content including case studies, policy briefs, technical notes, and interactive communities, positioning itself as a key regional knowledge resource. Technically, the website is built on Drupal 10 CMS with modern frameworks like Bootstrap 5 and Font Awesome 6, hosted on Microsoft Azure DNS infrastructure. It integrates analytics and marketing tools such as Google Analytics and Mailchimp for user engagement and tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. From a security perspective, the site uses HTTPS with domain status protections but lacks DNSSEC and explicit security headers. No public security or incident response policies are found, and no vulnerability disclosure mechanisms are published. Privacy compliance is partial, with a privacy policy and terms of use present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-positioned in its niche, with recommendations to enhance DNS security, implement security headers, and improve privacy compliance to strengthen its security posture and user trust.

W

World Bank Group

shihang.org

0

The website www.shihang.org/ext/zh/home serves as a Chinese language portal aligned with the World Bank Group's mission to fight global poverty through sustainable development. It offers rich content including economic reports, data, research publications, and project information. The site is built on Adobe Experience Manager, indicating a mature technical infrastructure with modern web technologies. The content is professionally presented, well-structured, and mobile optimized, targeting global development stakeholders and Chinese-speaking audiences. However, the WHOIS data is incomplete and malformed, raising concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS implied but lacking visible security headers and privacy compliance mechanisms such as cookie consent or privacy policies. No contact information or incident response channels are visible, which limits user trust and compliance with data protection regulations. Overall, the site is content-rich and professionally designed but would benefit from enhanced transparency, security policies, and WHOIS clarity to improve trust and compliance.

Г

Группа Всемирного банка

vsemirnyjbank.org

0

The website represents the Russian language portal of the World Bank Group, a major international development organization uniting 189 countries to combat global poverty through sustainable solutions. The site provides extensive content including research publications, data resources, project information, and impact measurement, targeting governments, policymakers, researchers, and the global development community. Technically, the site is built on Adobe Experience Manager with modern JavaScript modules and responsive design, offering a professional and well-structured user experience. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are areas for improvement in compliance and security posture. The WHOIS data is unavailable due to a malformed request, but the domain and content strongly align with the World Bank Group's official branding and services, indicating legitimacy. Overall, the site is a high-quality, authoritative resource with moderate technical and security maturity.

م

مجموعة البنك الدولي

albankaldawli.org

0

The website represents the Arabic language portal of the World Bank Group, a globally recognized international financial institution focused on providing financial and technical assistance to developing countries. The site offers extensive content including news, research publications, data resources, and project information tailored for Arabic-speaking audiences. The business model is that of a non-profit international organization delivering loans, credits, and advisory services to over 100 developing and transitional countries. The site is professionally designed, mobile-optimized, and uses modern web technologies including JavaScript ES modules and Adobe Experience Manager CMS. From a technical perspective, the site demonstrates good SEO, accessibility, and performance characteristics, though some improvements could be made in security headers and cookie consent mechanisms. The security posture is strong with HTTPS enforced and secure form handling, but lacks published incident response or vulnerability disclosure policies. WHOIS data is unavailable or privacy protected, which is typical for such organizations, and does not detract from the site's legitimacy given the strong alignment with World Bank branding and content. Overall, the website is a trustworthy, professional, and comprehensive resource for development-related information in Arabic. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and providing clearer contact information for security incidents to further improve trust and compliance.

L

Le Groupe de la Banque mondiale

banquemondiale.org

0

The website for Le Groupe de la Banque mondiale serves as the French language portal for the World Bank Group, a leading international development finance institution with 189 member countries. The site provides comprehensive information on the organization's mission to end poverty and promote sustainable development globally. It offers access to economic research, data resources, project information, and upcoming events, targeting policymakers, development professionals, and the general public interested in global development issues. The website is well-branded, professionally designed, and content-rich, reflecting the organization's authoritative position in the development sector. Technically, the site is built on Adobe Experience Manager, utilizing modern web standards such as responsive images, CSS Grid, and JavaScript ES modules. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured content. Performance is moderate, with no critical technical issues detected. However, some security headers are not explicitly visible in the provided data, and no explicit cookie consent mechanism was found. From a security perspective, the site enforces HTTPS and uses secure forms with user consent for newsletter subscriptions. There is no exposed sensitive data or known vulnerabilities in the analyzed content. The WHOIS data is unavailable due to privacy or query failure, but the domain and content strongly align with the official World Bank Group branding, indicating high legitimacy. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, though cookie consent could be improved. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, implementing explicit cookie consent, publishing security policies and incident response contacts, and providing vulnerability disclosure information to further strengthen trust and compliance.

B

Banco Mundial

bancomundial.org

0

Banco Mundial's Spanish language website serves as an official portal providing comprehensive information about the World Bank Group's mission to promote sustainable development, economic resilience, and growth. The site targets governments, development professionals, and the general public interested in economic and social development in over 100 developing and transitioning countries. It offers access to data, research publications, events, and project information, reflecting a mature and authoritative digital presence. Technically, the site uses modern web standards including ES modules for JavaScript and responsive design, ensuring good user experience across devices. However, some technical aspects such as security headers and explicit privacy and cookie policies are missing or not detected in the provided content, which could be improved to enhance security posture and compliance. The WHOIS data is unavailable due to a malformed query, limiting domain registration trust analysis, but the website's content and domain strongly indicate legitimacy as an official World Bank Group resource. Overall, the site demonstrates a high level of professionalism and trustworthiness with room for improvement in privacy compliance and security best practices.

U

United Nations Development Programme

weatherkids.org

0

The website weatherkids.org is a climate action initiative operated by the United Nations Development Programme (UNDP). It aims to engage the general public, especially families and children advocates, in pledging climate action to protect future generations. The platform provides educational content, interactive pledge forms, and regional climate forecasts for 2050, positioning itself as a credible global non-profit awareness platform under the UNDP umbrella. Technically, the site employs modern web technologies including jQuery, GSAP, Video.js, Swiper, and Google reCAPTCHA, hosted behind Cloudflare, ensuring good performance and security. The security posture is strong with HTTPS, security headers, and bot protection, though it lacks explicit privacy and cookie policies, which are recommended for compliance. Overall, the site is professional, trustworthy, and well-branded, with no signs of malicious activity or adult content.

U

UrbanShift

shiftcities.org

0

UrbanShift is a global initiative focused on supporting cities worldwide to adopt integrated urban development approaches that promote equity and a zero-carbon future. The program is led by the UN Environment Programme and implemented in partnership with major international organizations such as the World Resources Institute, C40 Cities, ICLEI, UNDP, the World Bank, and the Asian Development Bank. The website reflects a mature digital presence with comprehensive content, including capacity-building workshops, an online city academy, data dashboards, and project highlights across multiple countries. Technically, the site is built on Drupal 9 and leverages modern analytics and translation tools, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly documented. WHOIS data is unavailable due to privacy protection, which is justified given the non-profit nature of the organization. Overall, the website is professional, trustworthy, and well-positioned to serve its target audience of city officials and environmental stakeholders.

G

Global Forest Watch

globalforestwatch.org

0

Global Forest Watch is a reputable non-profit organization providing free, real-time forest monitoring data and tools to support environmental protection and sustainable land use. The platform is well-positioned in the environmental data sector, leveraging modern web technologies and partnerships with established organizations such as the World Resources Institute. The website demonstrates a high level of professionalism, with comprehensive privacy and cookie consent mechanisms, and clear contact information. Technically, the site uses a modern React/Next.js stack with integrated analytics and consent management, ensuring good performance and user experience across devices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Overall, the domain's WHOIS data is unavailable, likely due to privacy protection, but the website's content and affiliations support its legitimacy and trustworthiness.

F

Fryslân Veilig

fryslanveilig.nl

0

Fryslân Veilig is a regional government safety information platform focused on providing residents of Friesland, Netherlands, with timely updates on incidents, risks, and safety advice. The website serves as a trusted source for public safety information, featuring recent incident notifications, news, and guidance on emergency preparedness. The platform leverages modern web technologies including Drupal 10, Cookiebot for cookie consent management, and Monsido for accessibility and analytics. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and DNSSEC enabled, though additional HTTP security headers could enhance protection. Privacy compliance is strong, with a comprehensive cookie policy and consent mechanism in place. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and aligns well with its public service mission.

D

Digitaliseringsdirektoratet

uustatus.no

0

The website uustatus.no is a Norwegian government digital service platform managed by Digitaliseringsdirektoratet. It provides a login portal for accessibility declarations and supplier evaluations, primarily targeting public sector entities and private ICT solution providers used in the public sector. The platform integrates with ID-porten, a trusted Norwegian authentication service, ensuring secure user access. The site is built on Drupal 10, leveraging modern web technologies and providing a professional and accessible user experience. Privacy and cookie policies are present, though no explicit cookie consent mechanism is implemented. Security policies and incident response information are not publicly available, indicating room for improvement in transparency and compliance. Overall, the site demonstrates a solid business credibility and technical foundation appropriate for a government service.

S

Suomen itsenäisyyden juhlarahasto Sitra

sitra.fi

0

Sitra is a Finnish independent public fund focused on societal renewal and sustainability. The website serves as a platform to communicate their projects, research, and events aimed at future-oriented societal development. The organization targets policymakers, researchers, and the general public interested in sustainability and democracy. Technically, the site is built on WordPress with modern web technologies including Matomo analytics and Typekit fonts, offering good performance and mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers and policies could be improved. Privacy compliance is moderate with a cookie consent mechanism but no explicit privacy or terms of service pages detected in the provided content. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission.

O

Organisation for Economic Co-operation and Development

oecd.org

0

The Organisation for Economic Co-operation and Development (OECD) operates as a leading global policy forum, collaborating with over 100 countries to promote policies that improve economic and social well-being worldwide. The website reflects its authoritative position with comprehensive multilingual content, targeting governments, policymakers, researchers, and the public. The business model centers on policy analysis, data dissemination, and international cooperation facilitation, positioning OECD as a key player in global governance and economic development. Technically, the website leverages a modern infrastructure including Adobe Experience Manager CMS, React.js, and various analytics and optimization tools such as Google Analytics, Visual Website Optimizer, and Crazy Egg. Hosting on Adobe AEM Cloud ensures scalability and reliability. The site demonstrates good performance, mobile optimization, and accessibility, supporting a positive user experience. From a security perspective, the site enforces HTTPS, employs multiple security headers, and avoids exposing sensitive data or vulnerable libraries. While no explicit security policy or incident response contacts are published, the overall posture is strong. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR. Overall, the OECD website is a professional, secure, and trustworthy platform that effectively supports its mission. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and a vulnerability disclosure program to further enhance transparency and trust.

I

Inter-American Development Bank

iadb.org

0

The Inter-American Development Bank (IDB) operates as a leading regional development bank focused on improving lives in Latin America and the Caribbean through financial and technical support. The website reflects a mature, enterprise-level organization with a clear mission to reduce poverty and inequality, enhance infrastructure, and support education and health. The digital infrastructure is built on Drupal 10, leveraging modern analytics and consent management tools, indicating a well-maintained and technically sound platform. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting the organization's credibility and market position.

G

GCA.org - The Global Center on Adaptation

gca.org

0

The Global Center on Adaptation (GCA) is a well-established non-profit organization founded in 1995, focused on accelerating climate adaptation solutions worldwide. It operates globally with multiple regional offices and partners, including the African Development Bank. The website reflects a mature digital presence with comprehensive content on climate adaptation programs, youth engagement, and advocacy. Technically, the site is built on WordPress with modern technologies such as Google Analytics, Cookiebot for consent management, and Mapbox for mapping features. The site is fast, mobile-optimized, and SEO-friendly. Security posture is strong with HTTPS enforcement and domain transfer protections, though DNSSEC is not enabled and no explicit security policy or vulnerability disclosure was found. Overall, the domain registration data aligns well with the organization's profile, indicating high legitimacy and trustworthiness.

B

Brookings Institution

brookings.edu

0

The Brookings Institution operates as a leading nonprofit public policy organization based in Washington, DC, with a mission to conduct in-depth research to solve societal problems at multiple levels. The website reflects a mature digital presence with comprehensive content, professional design, and strong SEO and accessibility features. Technically, the site leverages WordPress CMS with modern frameworks and integrates Google Analytics, Tag Manager, and Osano for consent management, indicating a robust infrastructure. Security posture is strong with HTTPS enforced and use of reCAPTCHA, though explicit security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, though WHOIS data for the www subdomain is unavailable, which is typical for edu domains. No critical security or content safety issues were detected.

A

Asian Development Bank

adb.org

0

The Asian Development Bank (ADB) is a leading multilateral development bank focused on fostering sustainable, inclusive, and resilient growth across Asia and the Pacific. Founded in 1966, it serves 69 members and provides loans, grants, technical assistance, and equity investments to promote social and economic development. The website reflects a mature, enterprise-level organization with a clear mission and extensive service offerings targeting governments, investors, and development partners. Technically, the website is built on Drupal 10 with modern frameworks like Bootstrap and integrates advanced analytics and tracking tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. The site is mobile-optimized, accessible, and SEO-friendly, demonstrating a high level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, though explicit security headers could be more visible. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, likely due to privacy protection, which is justified for an international organization of this nature. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable source of information and services related to development banking in the Asia-Pacific region.

The United Nations Development Programme (UNDP) website serves as the official digital presence of the UN's lead agency on international development. It provides extensive information about UNDP's mission to eradicate poverty, reduce inequalities, and promote sustainable development across more than 170 countries and territories. The site is well-structured, professionally designed, and targets a broad audience including governments, development partners, and the general public. It offers key services such as policy advice, capacity building, and partnership facilitation, positioning itself as a global leader in development efforts. Technically, the website is built on the Drupal CMS platform and leverages modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and Akamai CDN for performance and analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. Performance is moderate, with asynchronous loading of scripts and use of content delivery networks. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes essential security headers such as Content-Security-Policy and Strict-Transport-Security. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. However, the absence of a public vulnerability disclosure policy and incident response contact details suggests room for improvement. Overall, the website reflects a mature and trustworthy digital asset consistent with the UNDP's global stature. The lack of WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy. Strategic recommendations include enhancing transparency around security incident response, tightening CSP policies, and continuous monitoring of third-party scripts to maintain security posture.

C

Commonwealth Secretariat

thecommonwealth.org

0

The Commonwealth Secretariat operates as a large, well-established intergovernmental organization focused on promoting democracy, peace, prosperity, and sustainable development among its member countries. The website reflects a professional and authoritative presence with comprehensive content covering its mission, programs, and events. The organization targets governments, civil society, youth, and the general public interested in Commonwealth affairs. Technically, the site is built on Drupal 10 with modern integrations such as Algolia Search and Google Tag Manager, hosted with reputable providers and secured with HTTPS. Security posture is strong with no critical vulnerabilities detected, though improvements such as enabling DNSSEC and publishing a security policy could enhance trust further. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

W

World Bank Group

worldbank.org

0

The World Bank Group website serves as a comprehensive portal for international development, poverty reduction, and sustainability initiatives. It targets a global audience including governments, researchers, and development professionals. The site offers extensive data resources, research publications, project information, and capacity-building programs. Technically, the website is built on a modern stack with Adobe Experience Manager CMS, uses ES6 JavaScript modules, and is optimized for mobile and accessibility. Security posture is solid with HTTPS and secure forms, though some security headers and incident response information are absent. Privacy compliance is good with a clear privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and authoritative, though WHOIS data is unavailable, which slightly impacts domain trust assessment.

B

Bündnis für nachhaltige Textillien (BNT)

textilbuendnis.com

0

The Bündnis für nachhaltige Textillien (BNT) is a German multi-stakeholder initiative uniting companies, NGOs, unions, standard organizations, and the German government to promote a socially and ecologically responsible textile and apparel industry. The website demonstrates a mature digital presence built on WordPress with Elementor, featuring comprehensive content, multilingual support, and strong SEO and accessibility practices. Security posture is good with HTTPS, security headers, and cookie consent mechanisms, though explicit security and incident response policies are not publicly detailed. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website content. Overall, the site is trustworthy and well-maintained but would benefit from clearer domain registration transparency and published security policies.

F

Finansministeriet

fm.dk

0

Finansministeriet is the official Danish Ministry of Finance, responsible for economic policy, public finances, and government administration. The website serves as an authoritative source for government budget proposals, economic agreements, and public sector development information targeted primarily at Danish citizens, government officials, and stakeholders. The site is well-branded, professionally designed, and provides comprehensive content with clear navigation and accessibility features. Technically, the website uses modern web technologies including Umbraco CMS, Cookiebot for consent management, and Silktide analytics. It is mobile-optimized and implements a cookie consent mechanism compliant with GDPR. The site is served over HTTPS with good SSL configuration, although DNSSEC is not enabled, and some security headers could be improved. From a security perspective, the site demonstrates good practices such as encrypted connections, no exposed sensitive data, and user consent for cookies. However, there is room for enhancement by enabling DNSSEC and adding additional security headers. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, secure, and compliant with privacy regulations, reflecting its status as a government entity. Strategic recommendations include improving DNS security and enhancing HTTP security headers to further strengthen the security posture.

C

Coalition of Finance Ministers for Climate Action

financeministersforclimate.org

0

The Coalition of Finance Ministers for Climate Action is a globally recognized non-profit coalition that unites finance ministries from over 90 countries to lead climate policy and economic transition aligned with the Paris Agreement. The website serves as a platform for sharing expertise, promoting carbon pricing, mobilizing climate finance, and engaging in national climate commitments. Technically, the site is built on Drupal 10 with modern libraries and integrates analytics and tracking tools responsibly. Security posture is solid with HTTPS and some security headers, though improvements are recommended. The absence of WHOIS data due to privacy protection is typical for such organizations and does not detract from legitimacy. Overall, the site is professional, content-rich, and trustworthy, targeting government officials and climate finance stakeholders.

V

Veiligheidsregio Fryslân

veiligheidsregiofryslan.nl

0

Veiligheidsregio Fryslân is a regional governmental safety authority in the Friesland region of the Netherlands, focused on crisis management, disaster preparedness, and public safety coordination. The website serves residents and organizations in Friesland by providing information on safety risks, crisis response, and collaboration with partners. It positions itself as an essential public service entity with a clear mission to enhance regional safety. Technically, the website is built on the Umbraco CMS platform using ASP.NET Core technologies. It integrates modern analytics and marketing tools such as Google Tag Manager, Piwik PRO, Hotjar, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements security headers to protect users. Cookie consent mechanisms are robust and transparent, supporting GDPR compliance. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No critical vulnerabilities or suspicious patterns were detected, indicating a solid security posture. Overall, Veiligheidsregio Fryslân's website is professional, trustworthy, and compliant with privacy regulations. It effectively balances user experience with security and privacy requirements, making it a reliable source of public safety information for its audience.

F

Forbrukerrådet

forbrukerradet.no

0

Forbrukerrådet is a Norwegian government-affiliated consumer council dedicated to guiding consumers and influencing society towards consumer-friendly policies. The website offers extensive resources including complaint guides, contract templates, market comparisons for finance, energy, and travel, and consumer policy advocacy. It targets Norwegian consumers with content primarily in Norwegian. The organization is well-established with content dating back to 2015 and maintains a strong market position as the leading consumer rights organization in Norway. Technically, the website is built on WordPress with modern plugins and privacy-respecting analytics such as Matomo. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and CAPTCHA protections on forms, though explicit security headers and incident response policies are not publicly documented. Privacy compliance is strong with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and serves as a critical public resource for Norwegian consumers.

M

Macroeconomics of Green and Resilient Transitions

greenandresilienteconomics.org

0

The Macroeconomics of Green and Resilient Transitions website serves as a collaborative platform primarily aimed at Ministries of Finance and associated researchers and practitioners focused on climate finance and economic policy. It provides a compendium of practical tools, publications, and community engagement to support green and resilient economic transitions. The site is backed by reputable academic and governmental institutions, notably the London School of Economics and the Coalition of Finance Ministers for Climate Action, positioning it as a trusted resource in its niche. Technically, the website is built on WordPress with modern web technologies including Bootstrap and jQuery, enhanced by SEO plugins and Adobe Fonts. It employs Google Analytics for user tracking but lacks a cookie consent mechanism, which is a privacy compliance gap. The site is mobile-optimized and demonstrates good accessibility and SEO practices, though performance is moderate. From a security perspective, the site uses HTTPS and domain registration protections but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. No direct contact emails or phone numbers are publicly listed, with contact facilitated via a form. There is no visible security policy or incident response information, which could be improved to bolster trust and compliance. Overall, the website is professional, content-rich, and trustworthy, with minor technical and compliance improvements recommended to enhance security posture and privacy adherence.

C

Climate Policy Radar / Grantham Research Institute at LSE

climate-laws.org

0

Climate Change Laws of the World is a comprehensive academic and research platform hosted by the London School of Economics and powered by Climate Policy Radar. It provides a global database of over 5000 climate laws, policies, and UNFCCC submissions from 196 countries and territories, serving researchers, policymakers, and NGOs focused on climate governance. The platform offers advanced search capabilities including contextual highlighting and English translations, enhancing accessibility and usability. Technically, the website is built on a modern React and Next.js stack, leveraging AWS infrastructure and integrating analytics tools such as Google Tag Manager, PostHog, and Plausible. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure suitable for academic and policy research use. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response page. No vulnerabilities or sensitive data exposures were detected. Privacy compliance is strong with clear policies and GDPR adherence. Contact is primarily via email and web forms, with no phone or physical address listed. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, making it a reliable resource for climate law and policy data. Strategic improvements in security policy transparency and header implementation could further enhance its security posture.

Le Mans Métropole operates as a French metropolitan government entity providing local administrative and public services to the Le Mans area. The website is built using modern JavaScript frameworks such as Nuxt.js and integrates Google Tag Manager for analytics. However, the provided HTML snapshot is minimal, indicating a server-side rendered SPA with dynamic content loading. The absence of WHOIS data from AFNIC limits transparency about domain registration details. Security posture is moderate with no visible security headers or explicit SSL configuration details, and privacy compliance is low due to missing privacy and cookie policies. Overall, the site appears legitimate but would benefit from enhanced transparency and security best practices.

R

Ruokavirasto

oivahymy.fi

0

Oivahymy.fi is an official Finnish government website operated by Ruokavirasto (Finnish Food Authority) that provides consumers with up-to-date information on food industry inspection results. The platform serves as a public service portal aimed at enhancing transparency and consumer awareness regarding food safety inspections conducted by local authorities. The website is well-positioned as a trusted source of food safety data in Finland, supporting public health and regulatory compliance. Technically, the site is built as a modern Angular single-page application, leveraging PrimeNG UI components and custom styling. It is hosted on infrastructure associated with Sonera, a Finnish hosting provider, and employs HTTPS for secure communications. The site demonstrates good mobile optimization, accessibility, and SEO practices, although it lacks some advanced security headers and explicit security contact information. From a security perspective, the website maintains a solid posture with no detected vulnerabilities or exposed sensitive data. However, it could benefit from implementing additional HTTP security headers and publishing a formal security policy or incident response information. Privacy compliance is adequate, with clear privacy and cookie policies present, though no explicit consent mechanism for cookies is observed. Overall, Oivahymy.fi represents a credible, secure, and professionally maintained government information portal with a strong trust profile. Strategic recommendations include enhancing security headers, adding security contact channels, and improving cookie consent mechanisms to further strengthen compliance and user trust.

F

French Tech mission

lafrenchtech.com

0

La mission French Tech is an official French government initiative dedicated to supporting and promoting the French start-up and scale-up ecosystem both domestically and internationally. The website serves as a central hub for information about the mission's programs, network, and news, targeting entrepreneurs, start-ups, public administrations, and ecosystem actors. It holds a strong market position as a governmental entity facilitating innovation and tech growth in France. The site offers key services including various support programs, networking opportunities, and ecosystem promotion. Technically, the website is built on WordPress with modern technologies such as the French government design system (DSFR), Leaflet for maps, and a robust cookie consent mechanism (Tarteaucitron). The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses security headers, and implements privacy-compliant cookie consent. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the website is trustworthy, professional, and well-aligned with its governmental mission, with no detected security or privacy red flags.

The website www.laregion.fr is the official digital portal of the Région Occitanie / Pyrénées-Méditerranée, a regional government entity in France. It provides comprehensive information about the region's governance, public services, citizen engagement, regional news, and support for local enterprises, agriculture, and associations. The site targets residents, public actors, businesses, and visitors, serving as a key communication and service platform for the regional authority. The business model is that of a government public service portal, with a strong market position as the official regional website.

Business France is a French public advisory agency dedicated to supporting the internationalization of the French economy. It assists companies in export development and promotes France's attractiveness to foreign investors. The website is professionally designed, mobile-optimized, and provides comprehensive information about its services, network, and expertise. Technically, it uses modern frameworks such as Nuxt.js and Tailwind CSS, with good performance and SEO practices. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with cookie consent mechanisms and privacy policies. Overall, the site represents a trustworthy government entity with a strong digital presence.

H

hamburg.com – Your Guide to Exploring, Living & Working in Hamburg

hamburg.com

0

The website hamburg.com serves as the official English-language portal for the city of Hamburg, Germany, providing comprehensive information for exploring, living, and working in the city. The site offers a professional and well-structured user experience with multimedia content and a clear focus on city-related services and tourism. Technically, the site employs modern JavaScript libraries such as Shaka Player and uses etracker for analytics, indicating a moderate level of digital maturity. Security-wise, HTTPS is enforced, but the absence of security headers and privacy policies suggests room for improvement in compliance and protection. The WHOIS data is notably absent, which raises questions about domain registration legitimacy, although the site content and branding strongly suggest official status. Overall, the site is functional and informative but would benefit from enhanced transparency and security practices.

D

Der Beauftragte der Bundesregierung für Kultur und Medien

kulturstaatsminister.de

0

The website kulturstaatsminister.de is the official online presence of the German Federal Government Commissioner for Culture and Media. It serves as a comprehensive information portal about cultural policies, funding opportunities, and initiatives under the federal government's cultural mandate. The site targets citizens, cultural institutions, artists, and media professionals, providing authoritative content and resources. Technically, the site is built on the TYPO3 CMS platform, hosted likely by the German federal IT service provider ITZBund, and employs Matomo for privacy-conscious analytics. The website demonstrates good digital maturity with responsive design, accessibility features, and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although explicit security headers and incident response information are not publicly detailed. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements, reflecting its government affiliation and public service role.

G

Global Legal Entity Identifier Foundation

gleif.org

0

The Global Legal Entity Identifier Foundation (GLEIF) is a reputable non-profit organization responsible for managing the Global LEI System, which provides unique legal entity identifiers worldwide. The organization operates globally with offices in Switzerland and Germany, targeting financial institutions, regulators, and businesses requiring standardized entity identification. Their website reflects a professional and consistent brand presence, offering clear information about their mission and services. Technically, the website employs a modern technology stack including jQuery, Lodash, MathJax, Cookiebot for consent management, and Piwik Analytics for visitor tracking. The site is well-optimized for mobile devices and includes essential privacy and cookie policies, demonstrating digital maturity and compliance with GDPR requirements. The use of HTTPS and reCAPTCHA enhances security, though some security headers could be improved. From a security perspective, the site shows good practices such as encrypted connections, consent mechanisms, and bot protection. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy or incident response contact is a minor gap. The WHOIS data is privacy protected or unavailable, which is typical for organizations handling sensitive data, and does not detract from the site's legitimacy. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen the site's security posture and user trust.

A

AIM Group International

cospar2026.org

0

The website cospar2026.org serves as the official platform for the 46th COSPAR Scientific Assembly scheduled for 2026 in Florence, Italy. It provides comprehensive event-related information including committees, scientific programme, registration details, venue, accommodation, and news updates. The site targets the scientific community involved in space research and related disciplines, positioning itself as a niche event organizer with international reach. The business model revolves around event management and scientific assembly facilitation, supported by AIM Group International as the organizing secretariat. Technically, the website is built on WordPress using the Elementor page builder, enhanced with plugins such as MonsterInsights for analytics and CookieYes for cookie consent management. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. Hosting and domain registration are transparent and consistent with the event timeline. From a security perspective, the site enforces HTTPS with a valid SSL certificate and employs a cookie consent mechanism supporting GDPR compliance. However, DNSSEC is not enabled, and additional HTTP security headers are absent, representing areas for improvement. No exposed sensitive data or vulnerable libraries were detected. Privacy policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and safe for general audiences. It effectively supports its business purpose with good content quality and user experience. Strategic recommendations include enabling DNSSEC, enhancing security headers, publishing security policies, and improving accessibility to strengthen the security posture and compliance further.

C

Centre national d'études spatiales

cnes.fr

0

The CNES website represents the official digital presence of the Centre national d'études spatiales, the French national space agency. It serves as an informational and educational platform providing comprehensive details about France's space strategy, projects, and public policies related to space. The site targets a broad audience including government entities, scientists, educators, students, and the general public. The agency holds a strong market position as a key player in European and international space activities. Technically, the website is built on Drupal CMS, employs modern web standards, and integrates privacy-focused analytics and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and minimal third-party tracking, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR and French government web standards.

I

Initiative Pro Recyclingpapier

gruener-beschaffen.de

0

The website 'Grüner beschaffen' is operated by the Initiative Pro Recyclingpapier, a German non-profit organization dedicated to promoting sustainable paper procurement using recycled paper certified with the Blue Angel eco-label. The initiative targets public sector entities, educational institutions, municipalities, SMEs, and associations, encouraging them to adopt environmentally responsible paper purchasing practices. The site offers educational content, campaigns, recognition programs, and practical resources to support climate and resource protection efforts. Technically, the website is built on WordPress 6.8.3 with jQuery and uses the Easy Fancybox plugin for media display. It is hosted on servers associated with kasserver.com and employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses minimal necessary cookies with user consent. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were found. The domain WHOIS data is consistent with the website's purpose and hosting, indicating legitimacy. Overall, the security posture is solid but could be improved with additional headers and formal policies. The website content is safe for general audiences, focusing on environmental sustainability without any adult or questionable material. Contact information including email, phone, and physical address is clearly provided, enhancing trust. The site maintains partnerships with reputable organizations such as the German Environment Agency and the Kompetenzstelle für nachhaltige Beschaffung, reinforcing its credibility.

Պ

Պետական գույքի կառավարման կոմիտե

e-auctions.am

0

The website e-auctions.am is an official Armenian government platform operated by the State Property Management Committee, providing electronic auctions for state-owned assets including real estate, vehicles, electronics, shares, and other movable property. It targets Armenian citizens and legal entities interested in participating in these auctions. The platform offers user registration, auction browsing, and bidding functionalities, positioning itself as the authoritative source for state property auctions in Armenia. The domain is recently registered in October 2023, consistent with a newly launched government service. Technically, the website uses a modern tech stack including Bootstrap for responsive design, Google Fonts for typography, FontAwesome icons, and Google Tag Manager for analytics. The site is mobile optimized with good navigation and content structure. However, accessibility features are basic and SEO optimization is minimal. Performance is moderate with no critical errors detected. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and published security policies. No privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure mechanisms are evident. The site does not expose sensitive data or use vulnerable libraries visibly, but improvements are recommended in security headers and policy transparency. Overall, the website is trustworthy and professional, serving a critical government function. The main risks relate to privacy compliance and security policy transparency. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and establishing vulnerability disclosure processes to enhance trust and compliance.

S

Staatliche Zentralstelle für Fernunterricht

zfu.de

0

The website https://zfu.de/ represents the Staatliche Zentralstelle für Fernunterricht, a German government authority responsible for regulating distance learning courses and programs under the Fernunterrichtschutzgesetz (FernUSG). It serves as the official body for approving and overseeing Fernunterrichtslehrgänge and Fernstudiengänge, targeting course providers, interested learners, and educational institutions. The site provides authoritative information including recent legal rulings by the Bundesgerichtshof (BGH) relevant to distance education regulation. The content is primarily in German and is professionally presented with clear navigation and consistent branding.

M

Ministerium für Arbeit, Gesundheit und Soziales des Landes Nordrhein-Westfalen

mags.nrw

0

The website https://mags.nrw/ is the official digital presence of the Ministry for Labor, Health, and Social Affairs of the German state North Rhine-Westphalia. It serves as a comprehensive information portal for citizens and institutions, providing news, press releases, and access to government programs related to labor, health, and social welfare. The site is well-branded, professionally designed, and highly accessible, reflecting its government status and public service mission. Technically, it is built on Drupal CMS with modern frameworks like Bootstrap and uses Matomo for privacy-conscious analytics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration aligns perfectly with the ministry's identity, enhancing trust and legitimacy. Overall, the site demonstrates a mature digital infrastructure suitable for a government entity, with excellent content quality and user experience.

B

Bundesamt für Wirtschaft und Ausfuhrkontrolle (BAFA)

bafa.de

0

The Bundesamt für Wirtschaft und Ausfuhrkontrolle (BAFA) is a German federal agency responsible for economic and export control, energy efficiency programs, and supply chain compliance. The website serves as an official portal providing comprehensive information, services, and resources for private individuals, companies, and municipalities. It is well-positioned as a trusted government entity with a broad scope of regulatory and support functions. Technically, the site is built on the Government Site Builder CMS, hosted by ITZBund, and employs modern web technologies with good mobile optimization and accessibility. Security posture is solid with HTTPS, cookie consent, and minimal tracking, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

The World Economic Forum is a globally recognized non-profit organization established in 1971, dedicated to fostering public-private cooperation to address global economic and social challenges. It serves as a platform for leaders from government, business, academia, and civil society to collaborate on shaping agendas that impact the world. The website reflects this stature with professional design, comprehensive content, and a focus on transparency through privacy and cookie policies. The target audience includes global leaders, policymakers, and the informed public. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for consent management, and authentication services via LoginRadius. The use of Chakra UI framework indicates a modern, responsive design approach. Performance is moderate with good mobile optimization and accessibility features, supporting a positive user experience. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates consent mechanisms for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public vulnerability disclosure policy and security.txt file suggests room for improvement in transparency and incident response readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. The lack of WHOIS data is consistent with privacy protection practices common among high-profile organizations. Strategic recommendations include enhancing security transparency and maintaining up-to-date third-party components to sustain security posture.

B

Bayerisches Staatsministerium für Digitales

freistaat.bayern

0

BayernPortal is the official digital government portal for the Bavarian state, providing citizens, businesses, and administrations with comprehensive information and access to administrative services. It is published by the Bayerisches Staatsministerium für Digitales and serves as a central hub for digital public services in Bavaria. The portal offers detailed descriptions of government services, online procedures, and contact information for relevant authorities, targeting a broad audience including citizens, entrepreneurs, and public administrations. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and accessibility tools like ReadSpeaker and FriendlyCaptcha. The site is well-optimized for mobile devices and accessibility, featuring a responsive design and compliance with accessibility standards, as evidenced by the Barrierefreiheitssiegel certification. The cookie consent mechanism is robust, offering granular control over cookie categories and ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and uses session cookies appropriately. However, explicit security headers are not evident in the provided data, and no published security or incident response policies were found. The site uses Matomo Analytics for user behavior tracking with user consent. No vulnerabilities or suspicious content were detected, and the domain registration aligns with official Bavarian government infrastructure, supporting high trustworthiness. Overall, BayernPortal demonstrates a mature digital infrastructure with strong user experience and privacy compliance. Strategic improvements could include publishing explicit security policies, incident response contacts, and implementing additional security headers to enhance protection. The portal is a trustworthy and professional government resource with a high level of content quality and technical implementation.

H

Hightech-Agenda Bayern

hightechagenda.de

0

Hightech-Agenda Bayern is a government-led innovation initiative by the Bavarian State Ministry for Science and the Arts, focused on promoting high-tech research, technology development, and innovation across Bavaria. The website serves as an information hub for future projects, milestones, and expert insights, targeting citizens, researchers, and stakeholders in technology and government sectors. The initiative is positioned as a key regional player in advancing technology and addressing future challenges in energy, transportation, healthcare, and smart cities. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO, accessibility, and mobile responsiveness. It uses cookie consent management and content blockers for privacy compliance. The site loads moderately fast and employs HTTPS with a good SSL configuration. Security posture is solid with HTTPS and privacy mechanisms, though it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Overall, the website is professional, trustworthy, and well-maintained, reflecting a legitimate government initiative. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and security posture.

B

Bayerische Staatskanzlei

buergerbeauftragter.bayern

0

The website 'buergerbeauftragter.bayern' represents the official Bavarian State Government's Citizen Ombudsman office, providing mediation and support services to citizens facing difficulties with government authorities. It holds a strong market position as a trusted government entity serving the public in Bavaria. The site is built on a modern WordPress infrastructure with well-known plugins such as Avada Theme, Contact Form 7, and Borlabs Cookie, indicating a mature digital presence. The technical setup includes SEO optimization, accessibility features, and moderate performance. Security posture is solid with HTTPS, cookie consent, and domain transfer protections, though DNSSEC is not enabled and some advanced security headers are missing. Privacy compliance is robust, with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR. Overall, the site is professional, trustworthy, and well-maintained, with clear contact channels and transparent WHOIS data confirming legitimacy.

B

Bayerisches Staatsministerium für Wirtschaft, Landesentwicklung und Energie

stmwi-events.de

0

The website www.stmwi-events.de serves as the official event portal for the Bavarian State Ministry for Economic Affairs, Regional Development and Energy. It provides announcements and information about upcoming government-related events focused on economic and energy topics in Bavaria. The site targets citizens, businesses, and stakeholders interested in Bavarian economic policy and energy transition initiatives. The business model is that of a government entity providing public information and event coordination, positioning itself as a trusted and authoritative source within the regional government sector. Technically, the website is built on the Contao Open Source CMS platform and hosted by Alfahosting. It employs modern web standards including responsive design and HTTPS encryption, ensuring good mobile optimization and accessibility. The site structure is clear and professional, with integrated social media channels and links to official Bavarian government resources. However, some SEO and privacy compliance features such as cookie consent mechanisms and security headers could be improved. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data or vulnerable libraries. No advanced security policies or incident response contacts are published, and no vulnerability disclosure mechanisms are evident. The site does not appear to use tracking or advertising technologies, aligning with its government informational role. Overall, the security posture is solid but could be enhanced by implementing additional security headers and privacy controls. The overall risk assessment is low given the official nature of the site, its consistent domain registration, and professional presentation. Strategic recommendations include adding cookie consent and privacy banners, publishing security policies, and enhancing security headers to improve compliance and trust. These steps will further strengthen the site's security and privacy posture while maintaining its role as a reliable government information portal.