Security Directory

Internet Service Providers Austria (ISPA) is a well-established industry association representing the Austrian internet economy and internet service providers. The organization focuses on shaping economic and legal conditions for the internet while bearing social responsibility. Their website reflects a professional and comprehensive digital presence, offering resources, news, events, and member services. ISPA maintains strong partnerships with recognized entities such as EuroISPA, Stopline, and Saferinternet.at, reinforcing its market position as a leading voice in Austria's internet sector. Technically, the site is built on TYPO3 CMS with privacy-conscious analytics via Matomo, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could enhance trust. Overall, ISPA's website is a trustworthy, well-maintained platform serving its target audience effectively.

Ö

Österreichische Forschungsförderungsgesellschaft FFG

ffg.at

0

The Österreichische Forschungsförderungsgesellschaft (FFG) is Austria's national funding agency dedicated to supporting business-related research, development, and innovation. The organization operates a professional and comprehensive website that provides detailed information about funding programs, initiatives, and services targeted at Austrian companies and research institutions. The site is well-structured, mobile-optimized, and built on Drupal 10, reflecting a modern technical infrastructure. Analytics tracking is implemented via etracker, and a cookie consent mechanism is active, indicating attention to privacy compliance, although no explicit privacy policy or terms of service were found in the analyzed content. Security posture is moderate with HTTPS implied and some best practices observed, but there is room for improvement in publishing security policies and incident response contacts. Overall, the domain registration data aligns well with the organization's profile, supporting its legitimacy and trustworthiness.

O

Otovo GmbH

otovo.at

0

Otovo GmbH is a medium-sized energy sector company specializing in photovoltaic solar solutions for private homeowners primarily in Austria and Europe. The company operates a marketplace model connecting customers with certified local installers, offering both purchase and leasing options for solar systems. Their website demonstrates a high level of digital maturity, utilizing modern technologies such as Next.js, React, and Sanity CMS, hosted likely on Vercel, ensuring fast performance and excellent mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although a dedicated security policy and incident response information are not publicly available. Overall, Otovo presents a professional, trustworthy, and user-friendly online presence aligned with its business goals.

S

Servicestelle digitaleSenior:innen

digitaleseniorinnen.at

0

Servicestelle digitaleSenior:innen is a non-profit educational organization based in Austria, operated by the Österreichisches Institut für angewandte Telekommunikation (ÖIAT). The organization focuses on supporting education providers and trainers in delivering digital literacy and inclusion programs tailored for senior citizens. Their offerings include practical training courses, learning materials, and a quality seal to certify outstanding digital education services for seniors. The website is professionally designed, well-structured, and targets both educators and senior learners, positioning itself as a niche leader in digital senior education within Austria. Technically, the website is built on WordPress 6.8.3 with modern web technologies including JavaScript libraries such as Leaflet.js for mapping and Matomo for privacy-focused analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with caching and minification evident. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit cookie consent mechanisms and published security policies are lacking. From a security perspective, the site shows maturity with no visible vulnerabilities or exposed sensitive data. The use of Matomo analytics aligns with privacy-conscious data collection, and GDPR compliance is supported by a comprehensive privacy policy. However, the absence of a cookie consent banner and incident response information are areas for improvement. WHOIS data confirms the legitimacy and transparency of the domain registration, consistent with the organization's profile. Overall, the website presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, and adding vulnerability disclosure information to enhance trust and compliance.

RIS GmbH is a well-established technology company specializing in digital solutions for municipalities and small to medium-sized enterprises primarily in Austria and neighboring regions. With over 20 years of experience, RIS GmbH offers a suite of products including GEM2GO municipal software, intranet solutions, consulting, streaming, and playout services. The company positions itself as an innovative and reliable partner for digital transformation in the public and business sectors. The website reflects a professional and consistent brand image, targeting local governments and SMEs with clear service offerings and customer testimonials. Technically, the site is built on ASP.NET Web Forms with a legacy jQuery stack, enhanced by modern UI components from Syncfusion and accessibility tools like Eye-Able. The presence of Matomo analytics and a cookie consent mechanism indicates a strong commitment to privacy compliance. Security posture is good with HTTPS enforced and form validation implemented, though some security headers could be improved and legacy libraries updated. Overall, RIS GmbH demonstrates a mature digital presence with room for modernization and enhanced security policies.

R

RIS GmbH

gem2go.at

0

GEM2GO is a leading municipal information and service app in Austria, developed and operated by RIS GmbH. The platform consolidates information from nearly all Austrian municipalities into a single mobile app, providing residents with easy access to local government news, digital bulletin boards, push notifications, and personalized content. The business model focuses on delivering a comprehensive civic engagement tool with additional modules for local clubs and businesses, enhancing community interaction and economic support. The website reflects a mature digital presence with official app store links and a consistent brand identity. Technically, the website employs modern web technologies including React, various analytics platforms (Google Analytics, Matomo), and accessibility tools like Eye-Able. It supports multiple mobile platforms and demonstrates good mobile optimization and accessibility compliance. The site uses HTTPS with strong SSL configuration but lacks some advanced security headers and explicit security policies. From a security perspective, the site shows a solid posture with encrypted communications and no visible vulnerabilities or exposed sensitive data. However, it lacks published incident response contacts and vulnerability disclosure mechanisms, which could be improved to enhance trust and compliance. Privacy compliance is basic but present, with cookie consent and a privacy policy in German. Overall, GEM2GO presents a trustworthy and professional digital service for Austrian municipalities, with a good balance of technical sophistication and user-centric design. Strategic improvements in security transparency and privacy detail would further strengthen its position and user confidence.

O

Onlim GmbH

onlim.com

0

Onlim GmbH is a specialized provider of enterprise conversational AI solutions, offering a SaaS platform that includes chatbots, voicebots, knowledge graph integration, and live chat services. Founded in 2015 and based in Austria, Onlim targets medium to large enterprises across sectors such as energy, media, finance, healthcare, public services, industry, and tourism. The company positions itself as a leader in the German-speaking market with a focus on scalable customer service and smart product consultation through AI agents. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, enhanced with SEO and analytics tools like Yoast SEO Premium and Matomo. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though DNSSEC is not enabled and no explicit security policy or incident response information is publicly available. The domain registration is consistent and legitimate, supporting the company's credibility. Overall, the website reflects a professional, trustworthy, and mature digital presence with room for improvement in explicit security disclosures and DNS security.

Der Standard is a leading Austrian media company operating the derStandard.de news portal, providing comprehensive news and editorial content primarily in German. The website targets a general audience interested in current affairs, politics, and culture, operating on an advertising and subscription-based business model. The company maintains a strong market position as a trusted news source in Austria. Technically, the website employs modern JavaScript modules, cookie management libraries, and a GDPR-compliant consent management platform, hosted on Austrian infrastructure with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response policies are not publicly documented. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security transparency and contact information availability.

EY denkstatt is a specialized sustainability consulting service offered by EY, a global leader in professional services. The website targets businesses seeking expert ESG and sustainability advisory to enhance their business success. The site is well-structured, professionally designed, and leverages modern technologies such as Adobe Experience Manager and OneTrust for consent management. The presence of comprehensive privacy and cookie policies indicates a strong commitment to compliance with GDPR and related regulations. Security posture is robust with HTTPS enforcement and security headers, although explicit security policy and incident response information are not publicly available. Overall, the website reflects a mature digital presence consistent with a large enterprise brand.

A

Austrian Society for Environment and Technology

oegut.at

0

The Austrian Society for Environment and Technology (ÖGUT) is a well-established non-profit organization based in Austria, focusing on sustainable development, environmental protection, and technology. Their website highlights various projects and initiatives related to sustainable finance, energy, biodiversity, mobility, and circular economy, targeting professionals, companies, and institutions interested in sustainability. The organization provides consulting, training, and networking services to promote sustainable practices. Technically, the website uses a modern JavaScript stack including jQuery, Slick Carousel, and Matomo for analytics, indicating a moderate to good level of digital maturity. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security-wise, the site uses HTTPS and includes security tokens in forms, but lacks visible security headers and published security policies, which could be improved. Privacy compliance is partial, with no visible privacy or cookie policies, though the use of Matomo suggests some privacy-conscious analytics. Overall, the website is trustworthy and professional, with a strong business credibility score but room for improvement in security and privacy transparency.

D

DIE UMWELTBERATUNG

umweltberatung.at

0

DIE UMWELTBERATUNG is a reputable Austrian non-profit organization specializing in environmental consulting, education, and community engagement. The website offers extensive resources including workshops, events, product databases, and educational materials aimed at promoting sustainable living and ecological awareness. Their market position is strong within Austria, supported by a consistent brand presence and recognized certifications such as the Umweltzeichen. Technically, the site uses a modern JavaScript stack with jQuery and related libraries, is mobile optimized, and integrates privacy-respecting analytics (Matomo) with cookie consent mechanisms. Security posture is solid with HTTPS and privacy-conscious tracking, though additional security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

The Österreichisches Ökologie-Institut is a well-established non-profit organization focused on ecological research and sustainability initiatives in Austria. Founded in 1985, it operates through interdisciplinary projects, public participation, and educational activities. The website reflects a professional and consistent brand image, targeting environmentally conscious audiences and stakeholders in sustainability. Technically, the site is built on WordPress with modern plugins and offers good mobile optimization and accessibility. Security posture is solid with HTTPS and form validations, though it lacks explicit security headers and incident response information. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR. Overall, the site is trustworthy and credible, with no signs of malicious activity or content safety concerns.

K

Klimabündnis Österreich

klimabuendnis.at

0

Klimabündnis Österreich operates as the largest municipal climate protection network in Austria, connecting over 2,000 municipalities and cities across Europe with indigenous organizations in South America. The organization focuses on climate protection, climate justice, and promoting sustainable lifestyles through networking, education, and campaigns. The website is built on WordPress, leveraging modern SEO and cookie consent tools, and integrates analytics and user behavior tracking via Google Analytics and Hotjar. Security posture is strong with HTTPS enforcement and cookie consent management, though the absence of explicit privacy and terms of service pages indicates room for compliance improvement. Overall, the site presents a professional and trustworthy digital presence aligned with its non-profit mission.

U

Umweltdachverband gGmbH

umweltbildung.at

0

Forum Umweltbildung is a well-established Austrian educational portal dedicated to promoting education for sustainable development, environmental education, and the UN Agenda 2030. Supported by Austrian federal ministries and operated by Umweltdachverband gGmbH, it offers a variety of educational resources, events, podcasts, and a webshop targeting educators and sustainability advocates. The website demonstrates a strong market position as a leading platform in Austria for sustainability education. Technically, the website is built on WordPress with a modern and accessible design, incorporating plugins for podcasting, GDPR compliance, and accessibility. The site is mobile-optimized and provides a good user experience with clear navigation and professional content presentation. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, it lacks explicit HTTP security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a low-risk profile with strong compliance to privacy regulations and good business credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

V

Verein für Konsumenteninformation (VKI)

konsument.at

0

KONSUMENT is a reputable Austrian consumer information magazine operated by the non-profit Verein für Konsumenteninformation (VKI). The website offers comprehensive consumer protection content, product tests, reports, and premium subscription services. It targets Austrian consumers seeking reliable and independent information. Technically, the site is built on Drupal CMS with modern libraries such as Bootstrap and FontAwesome, and uses Matomo analytics for privacy-conscious tracking. The site is mobile optimized, accessible, and professionally designed with clear navigation and premium content offerings. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is unavailable due to quota limits, but the domain appears legitimate and privacy protection is justified. Overall, the site demonstrates high trustworthiness and professionalism.

The website 'Clever einkaufen für die Schule' is an official Austrian government initiative managed by the Bundesministerium für Land- und Forstwirtschaft, Klima- und Umweltschutz, Regionen und Wasserwirtschaft (BMLUK). It aims to promote sustainable and environmentally friendly purchasing of school supplies by providing product lists, retailer information, educational materials, and campaign resources. The site targets schools, parents, retailers, and environmentally conscious consumers within Austria. The business model is informational and educational, backed by government authority, positioning it as a trusted source in the sustainability and education sectors. Technically, the website is built on WordPress 6.8.3 using the Divi theme framework, with additional tools such as Matomo for analytics and accessibility plugins. The site demonstrates good mobile optimization, accessibility, and a moderate performance profile. However, there is room for improvement in SEO and security headers implementation. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. It lacks visible security headers and does not provide a privacy or cookie policy, which are compliance gaps. No incident response or vulnerability disclosure information is present. The use of Matomo analytics suggests some privacy-conscious tracking, but overall privacy compliance is basic. Overall, the website is legitimate, trustworthy, and professionally presented, but it would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

W

Wiener Linien

wienerlinien.at

0

Wiener Linien is the primary public transportation provider in Vienna, Austria, offering services including subway (U-Bahn), tram (Bim), bus, and alternative mobility options. The company holds a strong market position as the essential mobility provider for residents and visitors of Vienna. The website reflects a mature digital presence with comprehensive content tailored to its audience, including detailed service information and user support. Technically, the site employs modern web technologies and integrates advanced analytics and monitoring tools such as Dynatrace and Piwik PRO, ensuring performance monitoring and user experience optimization. Security posture is robust with enforced HTTPS, multiple security headers, and cookie consent mechanisms, although a dedicated security policy and incident response contact information are not explicitly published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations including GDPR.

Ö

Österreichisches Umweltzeichen

umweltzeichen.at

0

The Österreichisches Umweltzeichen website represents a well-established Austrian governmental environmental certification program focused on promoting sustainable products, tourism, education, and culture. It enjoys strong institutional backing from the Bundesministerium für Land- und Forstwirtschaft, Klima- und Umweltschutz, Regionen und Wasserwirtschaft (BMLUK), positioning it as a trusted national eco-label authority. The site offers comprehensive content, clear navigation, and professional design, targeting businesses, educational institutions, and consumers interested in sustainability within Austria. Technically, the website employs modern web technologies including Bootstrap and Matomo analytics, ensuring good mobile responsiveness and accessibility. Performance is moderate with no critical technical issues detected. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response information suggests room for improvement. Privacy compliance is generally good, supported by a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site demonstrates a high level of trustworthiness and professionalism, with no indications of malicious activity or content safety concerns. Strategic recommendations include implementing cookie consent, publishing a security policy and incident response contacts, and enhancing security headers to further strengthen the security posture.

F

Filmarchiv Austria

filmarchiv.at

0

Filmarchiv Austria is Austria's national film archive and cultural institution dedicated to the collection, documentation, preservation, and presentation of the country's film heritage. The organization operates a professional website offering film screenings, archival access, virtual exhibitions, and educational content targeting film enthusiasts, researchers, and the general public. The website demonstrates a high level of digital maturity, employing modern web technologies such as the Elixir Phoenix framework, Alpine.js, and Swiper.js, alongside privacy tools like Klaro for cookie consent. The site is well-structured, mobile-optimized, and provides rich multimedia content including videos and images. Security posture is solid with HTTPS enforcement and CSRF protection, though some security headers could be improved. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. No WHOIS data was available from NIC.AT, likely due to privacy protection, which is reasonable for this type of institution. Overall, the website is trustworthy, professional, and serves its cultural mission effectively.

D

Diagonale – Festival des österreichischen Films

diagonale.at

0

Diagonale – Festival des österreichischen Films is a prominent Austrian cultural festival dedicated to showcasing Austrian cinema. The website serves as a comprehensive platform for festival programming, film awards, industry networking, and educational film mediation. It targets film professionals, enthusiasts, and the general public interested in Austrian film culture. The organization maintains a strong market position as a leading film festival in Austria with significant governmental and cultural sponsorships. Technically, the website is built on WordPress with modern plugins such as WPML for multilingual support and Real Cookie Banner Pro for GDPR-compliant consent management. The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital presence for the festival.

DER STANDARD is a prominent Austrian media company providing news and editorial content primarily in German. The website analyzed is a consent management page supporting GDPR compliance, reflecting the company's commitment to privacy and user choice. The business operates a subscription and advertising-based model targeting German-speaking audiences in Austria and Germany. The site demonstrates a professional digital presence with modern JavaScript technologies and tracking mechanisms for analytics and advertising. Security posture is generally strong with HTTPS and consent management, though explicit security headers and incident response information are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but does not detract from the site's legitimacy given its established brand and content quality.

K

Kufgem GmbH

kufgem.at

0

Kufgem GmbH is a well-established Austrian IT service provider specializing in digital solutions for municipalities, businesses, and organizations. With over 34 years of experience, Kufgem offers a broad portfolio including IT infrastructure, security, cloud services, municipal management software, and ERP solutions. The company serves a significant client base of 450 municipalities and 500 companies, positioning itself as a trusted partner in the regional technology market. The website reflects a professional and consistent brand image, emphasizing digital transformation and secure IT operations. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, Kufgem demonstrates a mature digital presence aligned with its business model and market position.

GEM2GO is a digital platform operated by RIS GmbH, providing modern communication solutions for municipalities, cities, and regions primarily in German-speaking countries. The platform offers apps, websites, and digital signage to facilitate barrier-free, GDPR-compliant citizen communication. With over 1,400 municipalities as clients and more than one million app downloads, GEM2GO holds a strong market position in the government digital communication sector. The website is professionally designed, mobile-optimized, and accessible, reflecting a mature digital presence. Technically, the site uses a RIS CMS backend with jQuery, FontAwesome, and Matomo analytics for tracking. It integrates Google Maps API and supports accessibility features aligned with WCAG 2.2 AA standards. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is justified given the business nature. The domain is actively maintained with recent updates. Social media presence is robust across Facebook, Instagram, YouTube, LinkedIn, and TikTok, supporting community engagement. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, GEM2GO demonstrates a strong, trustworthy digital platform for government communication with good security and privacy practices. Strategic improvements in security headers and incident response transparency could further strengthen its posture.

S

SWAROTEC

swarotec.com

0

SWAROTEC is a specialized business unit under SWAROVSKI OPTIK, focusing on the development and manufacturing of customized optical and optoelectronic system solutions for industrial applications. The company targets industrial clients requiring high-quality, precise optical technologies. Their market position is that of a niche, technologically advanced provider with a strong brand association to SWAROVSKI OPTIK. The website reflects a professional and consistent brand image with clear business descriptions and contact channels. Technically, the website employs modern web technologies including jQuery, UIkit framework, Google Tag Manager, and Usercentrics for consent management. It is built on the Neos CMS platform and shows good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and Google reCAPTCHA on forms, enhancing protection against automated abuse. However, DNSSEC is not enabled, and no explicit security policy or incident response information is published. The domain registration is consistent with the business claims, showing a stable and legitimate presence since 2012. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy digital presence for SWAROTEC. Minor improvements in DNS security and security policy transparency could further enhance trust and security posture.

S

Saferinternet.at

saferinternet.at

0

Saferinternet.at is a well-established Austrian initiative focused on promoting safe, competent, and responsible use of digital media primarily among children, youth, parents, and educators. The website serves as a comprehensive resource offering workshops, educational materials, social media guides, and events, supported by government and European Union funding. The presence of multiple official partner logos and a professional, well-structured website positions Saferinternet.at as a trusted authority in digital safety education within Austria. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as FontAwesome and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. While HTTPS is enforced, explicit security headers are not evident in the HTML source, suggesting room for improvement in security hardening. From a security perspective, the site shows good practices including cookie consent mechanisms and no visible vulnerabilities or exposed sensitive data. However, the absence of detailed WHOIS data due to privacy protection limits domain registration transparency. Despite this, the strong governmental and EU affiliations, along with comprehensive content and professional presentation, support the site's legitimacy and trustworthiness. Overall, Saferinternet.at demonstrates a mature digital presence with a strong focus on education and safety, backed by credible partnerships. Strategic recommendations include enhancing security headers, publishing explicit security policies or incident response contacts, and maintaining regular audits of third-party scripts to further strengthen security posture.

Ö

Österreichisches Institut für angewandte Telekommunikation (ÖIAT)

ombudsstelle.at

0

The Internet Ombudsstelle is a well-established, state-recognized consumer dispute resolution and advisory service in Austria, specializing in internet and digital media issues. It operates under the Österreichisches Institut für angewandte Telekommunikation (ÖIAT) and offers free, independent assistance to consumers facing problems with online shopping, digital services, data protection, and related areas. The website demonstrates a strong market position with over 25 years of experience and partnerships with government and consumer organizations. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is well-optimized for mobile and accessibility. Security posture is good with HTTPS enforced, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. WHOIS data is unavailable due to quota limits, limiting domain registration trust analysis. Overall, the site is professional, trustworthy, and serves a critical role in digital consumer protection in Austria.

I

Internet Stiftung (Internet Privatstiftung Austria)

netidee.at

0

netidee is a prominent Austrian internet funding initiative managed by the Internet Privatstiftung Austria, providing approximately 1 million euros annually to support internet-related projects, scholarships, and scientific research. The website targets the Austrian internet community, researchers, and developers, positioning itself as a leading grant provider in the technology sector. The business model focuses on fostering innovation and community engagement through funding and events. Technically, the site is built on Drupal 10, employs Matomo analytics with privacy-conscious configurations, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and consent management implemented, though explicit security headers and vulnerability disclosure mechanisms are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence for a non-profit foundation.

O

Oesterreichische Nationalbank (OeNB)

oenb.at

0

The Oesterreichische Nationalbank (OeNB) serves as Austria's central bank, playing a critical role in monetary policy, financial market stability, banking supervision, and statistical data provision. It operates as part of the Eurosystem, reflecting its integral position in European financial governance. The website targets a broad audience including the general public, financial institutions, researchers, and policymakers, offering extensive information on its functions, services, and educational resources. The OeNB's market position is that of a large, essential government financial institution with a long history dating back to 1925. Technically, the website employs a modern technology stack including jQuery, Highcharts for data visualization, and Matomo for privacy-conscious analytics. It uses a consent management platform to comply with cookie regulations and demonstrates good mobile optimization and accessibility features. The site is well-structured with clear navigation and professional design, supporting a positive user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. It uses a consent mechanism to control tracking scripts, enhancing privacy compliance. However, explicit privacy policies, terms of service, and incident response contacts are not found in the provided content, representing areas for improvement. No vulnerabilities or suspicious elements were detected, and the WHOIS data confirms the domain's legitimacy and consistency with the institution's identity. Overall, the OeNB website is a trustworthy, professional, and secure platform reflecting the stature of a national central bank. Strategic recommendations include publishing comprehensive privacy and security policies, providing clear incident response contacts, and establishing a vulnerability disclosure program to further enhance transparency and trust.

C

Cybersecurity Awareness Playbook

cybersecurity-awareness.at

0

The Cybersecurity Awareness Playbook website is a specialized educational platform focused on providing free, practical cybersecurity awareness resources primarily targeting small and medium-sized enterprises (SMEs) in Austria. It offers step-by-step guides, training materials, and awareness campaign tools designed to empower employees and protect organizations from cyber threats. The site is well-branded, featuring partner logos from reputable Austrian organizations, enhancing its credibility. Technically, the website is built on the Webflow platform, utilizing modern JavaScript libraries such as jQuery and Piwik PRO for analytics. It is hosted on Webflow's CDN, ensuring moderate performance and good mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, reflecting GDPR awareness. From a security perspective, the site enforces HTTPS and uses Piwik PRO analytics with user consent, but lacks explicit security policy pages and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the website's business focus and location, supporting its legitimacy. Overall, the website presents a solid cybersecurity awareness resource with good technical and privacy practices, though it could improve by publishing explicit security policies and incident response information.

Fake-Shop Detector is a specialized security tool offered as a browser plugin designed to protect online shoppers from fraudulent e-commerce websites by providing real-time detection and warnings. The website is well-positioned in the Austrian market, supported by reputable partners and government funding, and recognized as a test winner by AV Comparatives in 2024. The business model focuses on consumer protection and security awareness in online shopping environments. Technically, the site is built on TYPO3 CMS with modern web standards, offering good mobile optimization, accessibility, and SEO. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response policies are not publicly documented. Privacy compliance is good with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. Overall, the site is professional, trustworthy, and focused on delivering a niche security service.

Ö

Österreichisches Institut für angewandte Telekommunikation (ÖIAT)

oiat.at

0

The Österreichisches Institut für angewandte Telekommunikation (ÖIAT) is a well-established Austrian non-profit organization focused on promoting competent, safe, and responsible use of digital media. Founded in 1997, it operates multiple projects and initiatives funded by the EU and Austrian government bodies, targeting diverse audiences including children, youth, educators, seniors, and organizations. Their key services include awareness initiatives, content development, workshops, applied research, consumer advice, dispute resolution, and certification of online shops. The organization enjoys a strong market position with trusted partnerships and certifications.

S

Selectra

stromliste.at

0

Stromliste.at is an Austrian energy comparison platform operated by the Selectra Group, offering free services to compare electricity and gas tariffs and providing expert telephone consultation to help consumers reduce energy costs. The website is professionally designed, mobile-optimized, and rich in relevant content, including guides, tariff comparisons, and customer testimonials. Technically, it is built on Drupal 10 with modern web technologies and integrates Google Tag Manager for analytics. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. WHOIS data is unavailable due to NIC.AT quota limits, but the website's business information and trust signals indicate legitimacy. Overall, the site presents a trustworthy and user-friendly service for Austrian energy consumers.

A

AMOUR FOU

amourfoufilm.com

0

AMOUR FOU is a European film production company with offices in Vienna, Luxembourg, and Germany, specializing in producing and distributing artistic and internationally recognized films. The company has a strong presence in the film industry with a portfolio of award-winning projects and active participation in major film festivals. Their business model focuses on creative film production, international co-productions, and green producing initiatives. The website reflects a professional and consistent brand image targeting film professionals and enthusiasts. Technically, the website uses modern web technologies including UIkit and jQuery, with a responsive design and good user experience. The site loads moderately fast and includes interactive features such as filtering and language selection. However, there is room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS and implements a cookie consent banner, indicating some privacy awareness. However, it lacks important security headers and a privacy policy page, which are critical for compliance and security best practices. The WHOIS data for the domain is missing, which raises concerns about domain registration transparency and legitimacy. Overall, the website is professional and content-rich but would benefit from enhanced security measures, privacy compliance improvements, and domain registration transparency to strengthen trust and compliance.

A

Allegro FilmproduktionsgesmbH

allegrofilm.at

0

Allegro FilmproduktionsgesmbH is a well-established Austrian film production company founded in 1989, specializing in producing high-quality feature films and documentaries for cinema and television. The company has a strong market position in Austria, recognized for award-winning productions and a commitment to sustainable green producing practices. The website reflects a professional and comprehensive digital presence, showcasing their film portfolio, company history, and contact information clearly. Technically, the site is built on modern web technologies including Webflow CMS, jQuery, and integrates security features such as HTTPS, CAPTCHA, and cookie consent mechanisms. Security posture is solid with no visible vulnerabilities, though some HTTP security headers could be improved. Privacy compliance is well addressed with a detailed GDPR-compliant privacy policy and cookie consent. The absence of WHOIS data for the domain is a notable gap, reducing domain registration trust but the overall business credibility remains high based on website content and certifications. Strategic recommendations include enhancing security headers, publishing incident response info, and verifying domain registration details for full trust.

P

PSA Payment Services Austria GmbH

psa.at

0

PSA Payment Services Austria GmbH is a specialized financial services company operating primarily in Austria, focusing on debit card issuing support and ATM acquiring services. Established in 2012 as a successor to PayLife Bank GmbH's relevant operations, PSA positions itself as a key player in the Austrian payment ecosystem, facilitating smart transactions between people and devices. The website reflects a professional and consistent brand image, targeting financial institutions, businesses, and consumers within Austria. The multilingual support indicates a readiness to serve diverse audiences. Technically, the website is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. The lack of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, PSA demonstrates a mature digital presence aligned with its business objectives.

The Bundeskriminalamt website serves as the official online presence of Austria's Federal Criminal Police Office, a key government agency under the Federal Ministry of the Interior. It provides comprehensive information on crime prevention, investigations, international cooperation, and public awareness initiatives. The site targets the general public, law enforcement professionals, and victims of crime, positioning itself as a trusted national authority in law enforcement. Technically, the website employs a mature technology stack including ASP.NET Web Forms, jQuery, Bootstrap, and various UI libraries, delivering a responsive and well-structured user experience. Security-wise, the site uses HTTPS and implements privacy-conscious social media embeds, but lacks visible security headers and explicit cookie consent mechanisms. The absence of WHOIS data is due to NIC.AT restrictions rather than suspicious activity, and the site exhibits strong trust indicators consistent with a government entity. Overall, the site is professional, secure, and compliant with GDPR, though improvements in security headers and cookie consent would enhance its posture.

Ö

Österreichisches Institut für angewandte Telekommunikation

watchlist-internet.at

0

Watchlist Internet is a well-established Austrian non-profit platform dedicated to providing independent and current information about internet fraud, scams, and online traps. Supported by multiple reputable government and non-profit organizations, it offers warnings, tips, reporting tools, newsletters, and educational webinars to help users protect themselves from online threats. The website targets Austrian internet users concerned about online safety and fraud prevention. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is optimized for mobile and accessibility. Security posture is strong with HTTPS and secure forms, though some security headers and cookie consent mechanisms could be improved. The absence of WHOIS data limits domain registration trust analysis, but the site’s partnerships and content quality strongly indicate legitimacy. Overall, the platform demonstrates a high level of professionalism, trustworthiness, and commitment to consumer protection.

C

card complete Service Bank AG

cardcomplete.com

0

card complete Service Bank AG is a leading Austrian financial services provider specializing in credit cards, prepaid cards, and comprehensive payment solutions for private and corporate customers. The company positions itself as a fully integrated card service provider, managing everything from product development to acceptance devices and transaction processing. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service information targeted primarily at Austrian customers. Technically, the site employs modern web technologies including Google Tag Manager, Cookiebot for consent management, and ReadSpeaker for accessibility enhancements. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS, uses CSRF protection cookies, and provides a detailed cookie consent mechanism aligned with GDPR requirements. However, no explicit security policy or incident response contact is publicly available. The absence of WHOIS registration data is a notable anomaly that slightly reduces trustworthiness, though the website content and branding strongly indicate a legitimate business. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and transparency of security policies.

Connex Marketing GmbH operates a well-established online platform specializing in gift vouchers and hotel bookings across Europe. With over 35 years of experience, the company targets consumers seeking convenient holiday voucher solutions. The website demonstrates a professional design with good content quality and strong accessibility features, including a comprehensive accessibility tool supporting various user needs. Technically, the site uses modern frameworks like Bootstrap and integrates Google Tag Manager for analytics, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though the absence of security headers and a published security policy suggests room for improvement. The missing WHOIS data for the domain raises concerns about domain registration transparency, impacting trustworthiness. Overall, the business appears credible and professional, with clear contact information and privacy compliance mechanisms in place.

S

Swarovski Optik

swarovskioptik.com

0

Swarovski Optik is a premium Austrian manufacturer specializing in high-quality rifle scopes, binoculars, spotting scopes, and tripods, targeting hunting, birding, and outdoor enthusiasts globally. The company maintains a strong market position as a premium optics brand with a comprehensive product portfolio and a well-established dealer network. The website reflects a mature digital presence with modern technologies such as React, Commercetools e-commerce platform, and integrated payment solutions like Adyen. Privacy and cookie compliance are well implemented with Usercentrics consent management. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, WHOIS data is unavailable, which slightly impacts trust but is mitigated by other trust signals and brand recognition.

NOVA Performance Paragliders is a well-established manufacturer specializing in innovative performance paragliders since 1989. The company holds a strong market position in the transportation and outdoor sports manufacturing sector, offering a wide range of certified paragliding equipment including gliders, harnesses, parachutes, and accessories. Their website reflects a professional and consistent brand image with comprehensive product information and certifications, targeting paragliding enthusiasts and pilots globally. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as JavaScript and SVG graphics. It demonstrates good mobile optimization, SEO practices, and a cookie consent mechanism, indicating a mature digital presence. However, some security best practices like HTTP security headers and explicit incident response contacts are not evident. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is privacy protected, which is common and justified for this business type, though it limits transparency. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR. The risk level is low, but improvements in security headers and incident response transparency are recommended to enhance security posture and trust further.

I

Interessengemeinschaft Freie Theaterarbeit

freietheater.at

0

Interessengemeinschaft Freie Theaterarbeit is a non-profit organization based in Austria dedicated to supporting independent theater artists and cultural workers. The website serves as a hub for information, advocacy, and community engagement, offering news, newsletters, workshops, and social insurance subsidy programs. It holds a reputable position within the Austrian and European independent performing arts sector, with affiliations such as the European Association of Independent Performing Arts (EAIPA). The target audience includes artists, theater groups, and cultural professionals seeking resources and support in the independent theater domain. Technically, the website is built on WordPress with modern plugins like Elementor, Contact Form 7, and GDPR compliance tools such as Complianz. It uses HTTPS with a good SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. The site demonstrates moderate performance and good mobile optimization, with a clean and professional design that supports user experience and accessibility at a basic level. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's Austrian cultural focus, showing consistent registration details and no privacy protection, which is appropriate for this type of organization. Overall, the website presents a trustworthy, professional, and compliant digital presence for a small non-profit cultural entity. Strategic improvements could include enhancing security headers, publishing a security policy, and formalizing vulnerability disclosure processes to further strengthen security posture and trust.

C

card complete

completeworld.at

0

complete WORLD is a loyalty and benefits platform associated with card complete, offering exclusive offers in hospitality, culture, and lifestyle sectors primarily targeting card complete customers in Austria. The website integrates with the complete Control app and customer portal, providing a seamless user experience for members to access benefits. The platform demonstrates a moderate to good level of digital maturity, utilizing modern web technologies, CDN hosting, and accessibility tools to enhance user experience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS data slightly impacts trust but the overall branding and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure information to strengthen trust and compliance.

P

Phishen Impossible Initiative

phishen-impossible.at

0

Phishen Impossible is a well-established Austrian initiative focused on educating the public about phishing and cybercrime prevention. Supported by government entities such as the Austrian Federal Ministry of the Interior and major corporations like Österreichische Post and A1 Telekom Austria, it provides comprehensive educational content including videos, phishing rules, news updates, quizzes, and contact resources. The website is professionally designed, mobile-optimized, and offers clear navigation in German, targeting a broad audience of internet users in Austria. Technically, the site uses modern web technologies including jQuery and Matomo analytics, hosted on PSA Services infrastructure. Security posture is strong with HTTPS enforced and a cookie consent mechanism in place, although explicit security headers and incident response contacts are not present. Privacy compliance is well addressed with a detailed privacy policy and cookie management. Overall, the site is trustworthy, safe, and serves as a valuable resource for phishing awareness.

U

U-B-C

u-b-c.at

0

U-B-C is an Austrian company specializing in cashless payment solutions and customer loyalty programs, partnering with major local providers such as card complete and cards 4 more. The website is built on Joomla CMS with a modern responsive design using Bootstrap 3 and T3 framework, offering a professional user experience targeted at business clients in Austria. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking explicit security policies and incident response contacts. No suspicious or adult content is present, and the domain registration aligns well with the business claims, indicating legitimacy. Overall, the site is well-structured and trustworthy, though improvements in security headers and transparency could enhance compliance and trust.

P

PayLife

paylife.at

0

PayLife is a financial services company specializing in credit cards for private and business customers in Austria. The website showcases a broad portfolio of credit card products including Black, Platinum, GoldPlus, Classic, and student cards, along with prepaid cards and insurance offerings. The company is positioned as a premium provider with strong ties to the Bawag Group, a major Austrian banking group. The site emphasizes security awareness, including active phishing warnings and advice, reflecting a commitment to customer protection. Technically, the website is built on CoreMedia CMS and integrates modern tracking and consent management tools such as Google Tag Manager, Adobe Launch, and Cookiefirst. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is strong with HTTPS and Content-Security-Policy headers, though additional headers could enhance protection. WHOIS data is unavailable due to NIC.AT restrictions, but the website's professional presentation and linkage to known parent companies support its legitimacy. Overall, PayLife's digital presence reflects a mature, secure, and customer-focused financial service provider.

H

hobex Payment Systems

hobex.at

0

hobex Payment Systems is a medium-sized Austrian company specializing in payment processing solutions, targeting businesses that require reliable payment systems. The website is built on WordPress using the Divi theme and integrates Matomo and LinkedIn Insight for analytics and marketing purposes. The technical infrastructure appears modern and moderately optimized for performance and mobile use. Security posture is moderate due to lack of visible security headers and unknown SSL configuration. Privacy compliance is minimal with no explicit privacy or cookie policies detected. The absence of WHOIS data limits domain trust analysis but the website content and structure suggest a legitimate business. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and cookie policies, and improving transparency with contact and incident response information.

C

Connex Marketing GmbH

connexgroup.net

0

Connex Marketing GmbH operates as a specialist provider of sales promotion, customer loyalty, and employee motivation solutions primarily targeting businesses in the German-speaking market, particularly Austria. Their offerings include voucher solutions, promotion systems, loyalty programs, and data generation services. The company maintains a professional online presence with consistent branding and clear navigation, supported by social media channels and integrated marketing tools. Technically, the website employs modern web technologies such as Bootstrap, Google Tag Manager, and Cookiebot for consent management, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website content and business information appear credible and professional. Overall, the site is safe for general audiences and compliant with GDPR requirements through detailed cookie consent mechanisms.

C

card complete Service Bank AG

cardcomplete.at

0

card complete Service Bank AG is a leading Austrian financial services provider specializing in credit and prepaid card solutions for private and corporate customers. The company offers a comprehensive suite of payment products including card issuance, acceptance devices, and processing systems, positioning itself as a full-service payment solutions provider in Austria. The website reflects a mature digital presence with clear branding, extensive customer support options, and a focus on secure and convenient payment management through their complete Control app and customer portal. Technically, the website employs modern JavaScript libraries and integrates third-party services such as Google Tag Manager and Cookiebot for analytics and consent management. The site is mobile-optimized, accessible, and uses HTTPS to secure communications. However, explicit security headers are not evident in the HTML, and no public security policy or vulnerability disclosure program is found, indicating areas for security maturity improvement. From a security posture perspective, the site demonstrates good practices including secure login portals and cookie consent mechanisms, but lacks published incident response contacts and security certifications. The absence of WHOIS data reduces transparency but does not detract significantly from the overall legitimacy given the professional presentation and business information consistency. Overall, card complete presents a trustworthy and professional online presence suitable for its financial services market, with recommendations to enhance security headers, publish security policies, and improve WHOIS transparency to further strengthen trust and compliance.