Security Directory

S

servus.at kunst und kultur im netz

radical-openness.org

0

Art Meets Radical Openness (AMRO) is a niche cultural festival and community platform dedicated to art, hacktivism, and open culture, organized by servus.at in Austria. The website serves as a hub for festival information, artistic research labs, and community engagement, targeting artists, activists, and open culture enthusiasts. The business operates on a non-profit model with a focus on social transformation through digital and artistic practices. Technically, the site is built on Drupal 8 with Bootstrap, offering a moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, which impacts compliance. Overall, the domain registration is consistent and legitimate, supporting the trustworthiness of the site.

K

Kapsch TrafficCom AG

kapsch.net

0

Kapsch TrafficCom AG is a well-established Austrian company specializing in digitalization and intelligent mobility solutions, with a history dating back to 1892. The company positions itself as a leading partner in the transportation technology sector, offering advanced digital and traffic management services primarily targeting businesses and government entities. Their website reflects a mature digital presence with professional design, comprehensive content, and clear branding consistent with their market position. Technically, the website employs modern web technologies including JSON-LD structured data for SEO, custom fonts, and integration with YouTube APIs. The site is mobile-optimized, fast-loading, and accessible, indicating a high level of digital maturity. Privacy compliance is well addressed with visible privacy and cookie policies and consent management mechanisms. From a security perspective, the site uses HTTPS with strong SSL configuration and appropriate security headers. However, there is a lack of publicly available security policies or incident response information, and no vulnerability disclosure program is evident. The absence of WHOIS data for the domain www.kapsch.net is a notable gap, reducing transparency and slightly impacting trustworthiness. Overall, the website presents a low risk profile with strong business credibility and technical implementation. Strategic recommendations include publishing explicit security and incident response policies, establishing a vulnerability disclosure channel, and clarifying domain registration details to enhance trust.

Designify is an AI-driven photo editing platform specializing in automatic background removal, color enhancement, and smart shadow application to create professional product photos and marketing visuals. Positioned as a SaaS offering with free and Pro subscription tiers, it targets e-commerce businesses, car dealerships, marketers, and developers requiring batch editing and API integration. The platform is affiliated with Canva Austria GmbH, enhancing its market credibility. Technically, Designify employs modern web technologies including React, Next.js, and Chakra UI, ensuring a fast, mobile-optimized, and accessible user experience. Security is robust with HTTPS, security headers, and hCaptcha anti-bot protection, though explicit security policies and incident response details are absent. Privacy compliance is strong, with clear GDPR adherence and cookie consent mechanisms. However, the absence of WHOIS domain registration data introduces some trust concerns. Overall, Designify presents a professional, secure, and user-friendly service with room for improvement in transparency and security disclosures.

C

Canva Austria GmbH

unscreen.com

0

Unscreen is a technology-driven SaaS platform specializing in automatic video background removal, eliminating the need for traditional greenscreen techniques. The service targets content creators, video editors, and professionals seeking efficient background removal solutions. It offers a freemium model with a Pro subscription that includes HD output, no watermarks, API access, and plugins for popular video editing software. The platform is branded under Canva Austria GmbH, indicating strong corporate backing and market presence. Technically, the website employs modern web technologies including Vue.js, Google Fonts, FontAwesome, and Google Tag Manager for analytics. It uses HTTPS with CSRF protection and hCaptcha for form security, reflecting a mature digital infrastructure. The site is well-optimized for mobile and desktop, with excellent design and user experience. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks explicit security headers and published security policies or incident response contacts. The absence of WHOIS data for the domain is a transparency concern but is mitigated by the professional branding and trust signals present on the site. Overall, Unscreen presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security transparency and WHOIS data availability would enhance trust and compliance posture.

C

Canva Austria GmbH

kaleido.ai

0

Kaleido AI GmbH, now operating as Canva Austria GmbH, is a technology company specializing in visual AI solutions. Their flagship products include remove.bg for automatic image background removal, Unscreen for video background removal, and Designify for rapid automatic design creation. These products are integrated with Canva, a leading global design platform, positioning the company strongly in the visual AI and design automation market. The company targets designers, enterprises, and businesses seeking scalable AI-powered visual tools, offering SaaS and API access with enterprise solutions. Technically, the website employs modern web technologies such as Vue.js, Google Analytics, and Bootstrap, delivering a responsive and accessible user experience with good SEO practices. Security posture is solid with HTTPS, CSRF protection, and cookie consent mechanisms, though explicit security headers and policies could be enhanced. The WHOIS data is unavailable due to privacy protection, but the website's professional presentation and clear parent company relationship with Canva support its legitimacy. Overall, the site is safe, professional, and well-positioned in its niche.

C

Canva Austria GmbH

remove.bg

0

Remove.bg is a mature and reputable AI-driven image background removal service operated by Canva Austria GmbH. It offers a fast, automated solution for removing backgrounds from images, targeting a broad audience including photographers, marketers, developers, and enterprises. The company leverages modern web technologies and provides extensive integrations and APIs to embed its services into various workflows. The website is professionally designed, mobile-optimized, and rich in content, including testimonials and legal documentation. Security posture is strong with HTTPS, CSRF protection, and consent management, though explicit security policies and vulnerability disclosures are not publicly visible. Overall, remove.bg presents a trustworthy and technically sound platform with a strong market position in the image processing technology sector.

K

Krankenhaus der Elisabethinen GmbH

elisabethinen.at

0

Krankenhaus der Elisabethinen GmbH operates a regional hospital in Graz, Austria, specializing in acute medicine, multidisciplinary geriatric care, and multimodal pain medicine. The website presents a professional healthcare service provider with multiple departments and facilities, targeting patients, medical professionals, and referrers. The hospital maintains a moderate market position with a focus on quality healthcare services and community engagement. Technically, the website is built on TYPO3 CMS with modern frontend technologies like Bootstrap and jQuery, offering good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and professionally maintained, with room for improvement in security and privacy transparency.

Ö

Österreichisches Rotes Kreuz

roteskreuz.at

0

The Österreichisches Rotes Kreuz (Austrian Red Cross) is Austria's largest humanitarian non-profit organization dedicated to providing emergency medical services, social support, and volunteer opportunities. The website clearly communicates its mission, services, and calls to action for donations and volunteering, positioning itself as a trusted leader in humanitarian aid within Austria. The organization targets individuals in need, volunteers, donors, and the general public interested in humanitarian efforts. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and published security policies or incident response contacts. WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the organization's mission effectively.

F

Franziskanerinnen von der christlichen Liebe

franziskanerinnen.org

0

Franziskanerinnen von der christlichen Liebe is a small non-profit religious organization based in Austria, focused on community service and spiritual mission. Their website reflects their dedication to making God's love tangible through their activities and outreach. The site is professionally designed using WordPress with the Avada theme and supports multiple languages, indicating a commitment to accessibility and outreach. Technically, the website employs modern plugins such as Yoast SEO and WPML for multilingual support, and Borlabs Cookie for cookie consent, demonstrating a reasonable level of digital maturity. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. No privacy policy or terms of service pages were found, which is a gap in compliance. Overall, the website is trustworthy and well-maintained but could improve in privacy and security transparency.

F

Fonds Soziales Wien

fsw.at

0

Fonds Soziales Wien (FSW) is a large, government-affiliated social service organization based in Austria, focused on supporting residents of Vienna through various social welfare programs including care, disability support, homelessness assistance, and basic services. The website serves as an information hub providing comprehensive details about their services, contact options, and current news. The organization maintains a strong market position as a key social welfare provider in Vienna, supported by a consistent brand presence and multilingual accessibility. Technically, the website is built using modern web technologies including JavaScript, CSS, and HTML5, with responsive design and accessibility features. It uses SEOmatic CMS and integrates cookie consent management via legalweb.io. The site performs moderately well with good mobile optimization and clear navigation, although some security headers could be improved. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks explicit security headers and a public incident response contact. Privacy compliance is strong, with a comprehensive privacy policy and GDPR-aligned cookie consent. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and well-maintained, reflecting the organization's public service mission. Strategic improvements in security headers and incident response transparency would further enhance its security posture and user trust.

B

Barmherzige Brüder Österreich

barmherzige-brueder.at

0

Barmherzige Brüder Österreich is a well-established non-profit healthcare organization operating multiple hospitals, hospices, and social care facilities across Austria and neighboring countries. With a history spanning over 450 years, the organization provides comprehensive healthcare and social services, targeting patients, healthcare professionals, and job seekers. The website reflects a mature digital presence with clear navigation, professional design, and extensive contact information. Technically, the site uses modern JavaScript libraries, Google Maps integration, and a CMS platform (siteswift), ensuring good performance and mobile optimization. Security posture is strong with HTTPS, CSRF protection, and cookie consent mechanisms, though some improvements like CSP headers and incident response disclosures could enhance security further. Overall, the site is trustworthy, compliant with GDPR, and aligned with the organization's business claims.

D

die elisabethinen in österreich gmbh

elisabethinen-oesterreich.at

0

Die Elisabethinen in Österreich sind ein etabliertes, mittelgroßes Non-Profit-Unternehmen im Gesundheits- und Sozialwesen mit einer langen Geschichte und starker regionaler Präsenz in Linz, Wien und Graz. Die Organisation fokussiert sich auf Pflege, Hospizdienste, Gesundheitsnetzwerke, Wohnen und Lernen mit einem starken spirituellen Fundament. Die Website präsentiert sich professionell mit klarer Struktur, guter Navigation und responsivem Design. Technisch basiert die Seite auf TYPO3 CMS, nutzt Google Analytics und Google Tag Manager für Tracking und ist über HTTPS sicher erreichbar. Die Datenschutz- und Cookie-Richtlinien sind umfassend und GDPR-konform implementiert. Sicherheitsmaßnahmen sind solide, jedoch könnten zusätzliche HTTP-Sicherheitsheader implementiert werden. Insgesamt zeigt die Website eine hohe Vertrauenswürdigkeit und gute digitale Reife.

S

supseven

supseven.at

0

supseven is a Vienna-based digital agency specializing in TYPO3 CMS development, web design, SEO, AI optimization, and lead generation services primarily targeting B2B and medium-sized enterprises in the DACH region. The company holds multiple industry certifications and awards, reflecting a strong market position and trusted reputation. Their website demonstrates a mature technical infrastructure leveraging TYPO3 CMS, Google Tag Manager, and Yoast SEO, with excellent mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms in place, though some security headers could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements. No critical vulnerabilities or suspicious patterns were detected, indicating a low risk profile.

D

die elisabethinen linz-wien

die-elisabethinen.at

0

Die Elisabethinen Linz-Wien is a well-established non-profit religious and healthcare organization operating primarily in Austria. The website reflects a mature digital presence with a focus on spirituality, healthcare, education, and community services. Their market position is supported by historical legacy and active community engagement through events, podcasts, and publications. The organization demonstrates compliance with GDPR and provides clear privacy and cookie policies with user consent mechanisms. Technically, the site is built on TYPO3 CMS, integrates modern analytics and media services, and is optimized for mobile and accessibility. Security posture is good with HTTPS and cookie management, though some security headers could be improved. Overall, the website is professional, trustworthy, and aligns well with the organization's mission and audience.

V

Willkommen bei der Vinzenz Gruppe - Vinzenz Gruppe

vinzenzgruppe.at

0

The website for www.vinzenzgruppe.at appears to represent an organization likely operating in Austria, possibly in the healthcare or non-profit sector, as suggested by the domain name and language. The site uses modern frontend technologies such as Tailwind CSS and JavaScript, providing a good design and user experience. However, the content quality is basic with limited visible business information, contact details, or compliance documentation. The absence of privacy and cookie policies, terms of service, and security headers indicates a low maturity in privacy and security posture. No forms or structured data were detected, limiting the ability to assess data collection practices or business details. The domain uses privacy protection for WHOIS data, which is common but reduces transparency. Overall, the site is accessible without WAF or blocking mechanisms, but lacks critical compliance and security features.

I

IDWIN by TRIOTRONIK | pure identify

idwin.at

0

The website www.idwin.at is a small business site hosted on the Wix platform, primarily serving an Austrian audience. The site appears to be in German and uses Wix's standard technology stack including Wix Thunderbolt and JavaScript polyfills. However, the site content is minimal with no visible privacy, cookie, or terms of service policies, and lacks explicit contact information or security policies. The technical infrastructure is standard for Wix-hosted sites but lacks advanced security headers or compliance indicators. Overall, the security posture is weak due to missing policies and headers, and the business credibility is limited by the lack of detailed company information and trust signals. The site is accessible without WAF or blocking mechanisms, and no suspicious or malicious content was detected.

V

Die Initiative für das gute Testament in Österreich: Vergiss mein nicht

vergissmeinnicht.at

0

The website 'Vergiss mein nicht' is an Austrian initiative focused on promoting good testament practices. It serves as an informational platform targeting the general Austrian public interested in legal testament matters. The site is built on WordPress using Elementor and Rank Math PRO, indicating a moderate level of digital maturity with SEO considerations. However, the absence of privacy and cookie policies, contact information, and security headers suggests gaps in compliance and security posture. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. The overall risk is moderate, with recommendations to improve privacy compliance, security headers, and contact transparency to enhance trust and legal compliance.

S

schongenial gmbh

schongenial.at

0

schongenial gmbh operates a socially focused website aimed at promoting positive aspects of Austrian society, fostering awareness, respect, and appreciation. The platform serves a niche audience interested in social engagement and societal improvement within Austria. Their digital presence is built on TYPO3 CMS, enhanced with Cookiebot for GDPR-compliant cookie management, and integrates Google Analytics and advertising services for traffic analysis and marketing. The website is multilingual, supporting 11 languages, indicating a commitment to accessibility and broader reach. Security-wise, the site enforces HTTPS and implements standard security headers, with no critical vulnerabilities detected. However, explicit security policies and incident response contacts are absent, representing an area for improvement. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, positioning it as a trustworthy and professional platform in its sector.

O

Ordensklinikum Linz

ordensklinikum.at

0

Ordensklinikum Linz is a large healthcare provider based in Austria, affiliated with the Vinzenz Gruppe and Elisabethinen organizations. The website presents a comprehensive overview of medical specialties, departments, ambulances, and medical centers, targeting patients and healthcare consumers. The business model focuses on providing specialized medical care and services, positioning itself as a regional center of medical excellence. Technically, the website is built on TYPO3 CMS and uses Matomo for analytics, indicating a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is strong with HTTPS enabled and no obvious vulnerabilities, but lacks visible security policies and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

M

Möbelix

moebelix.com

0

Möbelix is a large retail furniture discounter operating primarily in Austria and several Central European countries including Czechia, Slovakia, and Hungary. The website serves as an international portal linking to regional sites and presents the company as part of the XXXLutz Group, a well-known furniture retail conglomerate. The business model focuses on offering discounted furniture and home accessories to a broad consumer base. The site is professionally designed with consistent branding and good content relevance, targeting general consumers interested in affordable home furnishings. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various JavaScript libraries for UI enhancements. SEO is well implemented with proper meta tags, Open Graph data, and JSON-LD structured data. Mobile optimization is good, and the site loads with moderate performance. However, accessibility features appear basic and could be improved. From a security perspective, the site uses HTTPS and includes Google Analytics and Tag Manager for user tracking. There is no evidence of security headers or explicit privacy and cookie policies, which indicates gaps in compliance and security best practices. The absence of WHOIS data for the domain is a notable concern, reducing transparency and trust from a domain registration standpoint. No critical vulnerabilities or malicious content were detected in the accessible content. Overall, Möbelix.com presents a professional and trustworthy retail website with room for improvement in privacy compliance, security hardening, and domain registration transparency. Strategic enhancements in these areas would strengthen the company's digital trust and regulatory posture.

M

Mömax

moemax.com

0

Mömax is a large retail furniture and home decor company operating internationally with localized websites for multiple European countries. The company is part of the XXXLutz Group and offers modern furniture solutions both online and in physical stores. The website is built on WordPress and uses modern web technologies such as jQuery, Bootstrap, and Slick Carousel, with SEO optimization via Yoast SEO plugin. Google Analytics and Google Tag Manager are employed for user tracking and marketing analytics. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and visible privacy or cookie policies. WHOIS data is missing or unavailable, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the strong branding and business presence. Overall, the website is professional, well-branded, and user-friendly but could improve privacy compliance and security transparency.

X

XXXLutz

xxxlutz.com

0

XXXLutz is a large European retail company specializing in furniture and home furnishings, operating multiple country-specific websites under the same brand. The website presents a professional and consistent brand image with good content quality and SEO optimization. The technical infrastructure is based on WordPress CMS with modern JavaScript libraries and frameworks, providing a moderate performance and good mobile optimization. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit privacy/cookie policies are missing. The absence of WHOIS data is unusual but does not strongly detract from the overall legitimacy given the professional website and brand presence. Strategic improvements include adding privacy and cookie policies, security headers, and contact information for security incidents to enhance compliance and trust.

S

Social Business Hub Styria

socialbusinesshub.at

0

Social Business Hub Styria is a regional social and green business incubator and network based in Austria, focused on supporting entrepreneurs who address societal and ecological challenges through innovative business models. The organization offers a range of programs including impact training, founding and growth programs, crowdfunding support, and community events. Their market position is strong within the Styria region, supported by partnerships with local government and economic development agencies. The website is professionally designed, content-rich, and well-structured, targeting social entrepreneurs and intrapreneurs in various stages of development. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and Matomo for analytics, ensuring a good level of digital maturity. The site is mobile optimized, accessible, and SEO-friendly. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and cookie consent mechanisms are missing, representing areas for improvement. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is mostly met with a comprehensive privacy policy, but cookie consent is absent. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Strategic recommendations include adding cookie consent, publishing security policies, and enhancing security headers to further strengthen compliance and trust. This website represents a credible, professional, and trustworthy entity in the social entrepreneurship ecosystem in Austria, with a solid technical foundation and room for incremental security and privacy enhancements.

T

teamazing

teamazing.at

0

teamazing is a small Austrian-based company specializing in innovative team building and leadership solutions, offering workshops, tools, and event marketing services primarily targeting teams and organizations in Austria and Bavaria. The company has established a unique market position with a focus on sustainable team development and experiential building. The website is professionally designed using WordPress with modern SEO and analytics tools, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS enforcement and security headers, though explicit security and privacy policies are absent. The site employs a cookie consent mechanism and privacy-conscious analytics (Matomo), indicating awareness of GDPR compliance, but lacks direct contact information and formal policies, which could be improved. Overall, the website is trustworthy and professional, supporting the company's business credibility.

2

25GRAMS

25grams.coffee

0

25GRAMS is a specialty cold brew coffee brand operated by Wildkaffee 2.0 GmbH based in Austria. The company focuses on crafting premium cold brew coffee products that energize and inspire coffee enthusiasts. Their market position is that of a niche e-commerce retailer with a strong emphasis on quality, sustainability, and brand storytelling. The website is professionally designed, multilingual (German and English), and leverages Shopify as its e-commerce platform, integrating modern technologies such as Google Analytics, Facebook Pixel, and hCaptcha for security and marketing purposes. The business model centers on direct online sales, B2B offerings, and content marketing through a blog.

F

FreyZein

freyzein.com

0

FreyZein is a small Austrian company specializing in innovative, sustainable textile manufacturing focused on producing plastic-free, biodegradable outdoor performance wear. The company operates with a clear mission to enable the textile industry to transition to eco-friendly materials using advanced cellulosic multilayer fabric technology. Their website reflects a professional and modern digital presence built on WordPress with WooCommerce, Elementor, and Slider Revolution, indicating a mature technical infrastructure suitable for e-commerce and content marketing. Security posture is solid with HTTPS and domain transfer protections, though improvements such as DNSSEC and explicit security policies could enhance trust further. Privacy compliance is well addressed with GDPR-consistent cookie consent and privacy policies. Overall, the company presents a credible and trustworthy business profile with strong branding and sustainability focus.

P

Probando

probando.io

0

Probando is a healthcare-focused platform that facilitates participant recruitment for clinical trials, product tests, and surveys. It provides users with opportunities to contribute to scientific research, access new therapies, and receive allowances. The platform is positioned as a trusted intermediary between study sponsors and participants, with partnerships from recognized healthcare institutions. Technically, the website is built on a modern Angular framework with PrimeNG components and uses Matomo for analytics. The site is mobile-optimized and presents a professional user experience. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the platform appears legitimate and trustworthy, but could improve transparency and compliance documentation.

W

wardy - deine digitale Stempelkarte

wardy-app.com

0

wardy is a digital loyalty stamp card platform primarily targeting businesses and end users in Austria and Germany. The company offers a mobile app that replaces traditional paper stamp cards with a digital solution, enabling businesses to engage customers through innovative marketing and real-time analytics. The website reflects a professional and consistent brand presence, with multilingual support and clear calls to action for both users and businesses. The platform has established a community of over 25,000 users and more than 200 business locations, indicating a growing market presence. Technically, the website is built on WordPress with Elementor and optimized using WP Rocket. It employs modern web technologies and plugins to ensure good performance and SEO optimization. The site is mobile-friendly and includes accessibility considerations, although some improvements could be made. Security measures include HTTPS enforcement, reCAPTCHA v3 on forms, and cookie consent mechanisms, but there is room for enhancement in DNS security and HTTP headers. From a security standpoint, the site demonstrates a moderate security posture with no critical vulnerabilities detected. However, the absence of DNSSEC and some missing security headers suggest opportunities for strengthening defenses. Privacy compliance is well addressed with comprehensive privacy and cookie policies, aligning with GDPR requirements. The WHOIS data is consistent with the business claims, showing a legitimate domain registration and no privacy protection masking. Overall, wardy presents a credible and professional digital service with a solid technical foundation and good privacy practices. Strategic improvements in security headers, DNSSEC, and incident response transparency would further enhance trust and resilience.

R

Red Bull Media House Publishing

bergwelten.com

0

Bergwelten is a well-established media platform specializing in mountain and outdoor content, offering detailed hiking tours, alpine knowledge, and leisure information primarily targeting German-speaking outdoor enthusiasts. The site is professionally designed, mobile-optimized, and leverages modern web technologies such as Astro and React. It integrates Google Tag Manager for analytics and uses a third-party cookie consent mechanism. Security posture is generally good with HTTPS enforced, but lacks some advanced security headers and explicit security policies. WHOIS data is missing, which reduces transparency but the site’s association with Red Bull Media House adds credibility. Overall, the site presents a low risk but would benefit from improved privacy and security disclosures.

R

REELOQ Outdoor - Lose yourself. Keep your gear.

reeloq.com

0

REELOQ Outdoor operates a professional e-commerce website specializing in patented anti-drop securing systems for outdoor equipment such as GoPro and smartphones. The company targets outdoor enthusiasts and adventurers, positioning itself as an innovator in a niche market. The website is built on the Shopify platform, leveraging modern technologies and third-party marketing and analytics tools to provide a seamless shopping experience. GDPR compliance and cookie consent mechanisms are properly implemented, reflecting a mature approach to privacy. Security posture is strong with HTTPS enforced and no obvious vulnerabilities detected, although explicit security policies and incident response contacts are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is common in e-commerce. Overall, the site is trustworthy, well-designed, and technically sound.

T

Timeular GmbH

early.app

0

Timeular GmbH operates the EARLY platform, a sophisticated time tracking solution combining software and optional physical hardware to enhance productivity and billing accuracy. Positioned as a user-friendly and GDPR-compliant tool, EARLY targets teams, freelancers, and enterprises seeking efficient time management. The company demonstrates a mature digital presence with a well-structured website, comprehensive content, and strong branding consistency. Technically, the site leverages WordPress with Elementor and NitroPack for performance, integrates multiple analytics and marketing tools, and maintains good security practices including HTTPS and security headers. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the business shows strong legitimacy and trustworthiness, supported by consistent WHOIS data and positive user testimonials.

T

Timeular GmbH

timeular.com

0

Timeular GmbH operates the EARLY time tracking platform, offering a subscription-based SaaS solution complemented by a physical time tracker device. The company targets teams, freelancers, and enterprises seeking effortless and accurate time tracking with productivity insights. Their market position is strengthened by a unique physical tracker integration and comprehensive software features including leave management and automatic tracking. Technically, the website is built on WordPress with Elementor and optimized via NitroPack, employing modern analytics and marketing tools such as Google Analytics, Intercom, and ProfitWell. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the site lacks a dedicated security policy or incident response page. Privacy compliance is evident with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-optimized for performance and SEO.

X

XXXLutz Group

xxxlgroup.com

0

XXXLutz Group is a leading global retail enterprise specializing in kitchens, furniture, and home accessories. The company operates multiple subsidiary brands across various countries, positioning itself as a dominant player in the retail furniture sector. The website reflects a professional and consistent brand image with clear navigation and multilingual support, targeting a general audience interested in home furnishing products. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, hosted behind Cloudflare DNS services. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site demonstrates strong business credibility and technical maturity with room for security and privacy enhancements.

I

INKARMA

inkarma.at

0

INKARMA is a small Austrian digital agency specializing in creative digital solutions and innovative business models, targeting startups and businesses seeking websites, online shops, video content, and AI training. The website is built on WordPress using the Divi theme and WooCommerce, with SEO optimization via Yoast and tracking through Facebook Pixel and Google Tag Manager. The technical infrastructure is modern and moderately performant, with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled but lacks security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a professional image but would benefit from enhanced privacy and security disclosures.

L

Ledl.net GmbH

ledl.net

0

Ledl.net GmbH is an established Austrian technology company specializing in domain registration, web hosting, and email services with over 25 years of industry experience. The company operates multiple brands including Domaintechnik, Netzadresse.at, alldomains.hosting, and chilly.domains, serving a diverse international customer base across 135+ countries. Their market position is strong within Austria and the broader European region, supported by ICANN accreditation and RIPE NCC membership. The website reflects a professional and consistent brand image with clear service offerings targeting SMEs, resellers, and private customers. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Matomo analytics, hosted on their own infrastructure located in Austria and Germany. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Security posture is moderate with HTTPS enforced and domain status protections in place, but lacks DNSSEC and explicit security headers. Privacy and cookie policies are absent, representing a compliance gap. Security-wise, the company provides an abuse contact page indicating incident response readiness, but no formal security or data protection policies are published. No critical vulnerabilities or suspicious patterns were detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The overall risk is low with recommendations to improve privacy compliance, implement DNSSEC, and enhance security headers to strengthen the security posture and regulatory adherence.

ProVia is a secure, official electronic procurement platform jointly operated by ÖBB Holding AG and ASFINAG, two major Austrian transportation infrastructure entities. It facilitates public procurement processes, contract management, and audit systems for companies wishing to provide services to these organizations. The platform targets business users and suppliers, providing a professional and government-compliant environment. The website content is primarily in German and includes clear instructions, support contacts, and legal terms. Technically, the site uses a modern web stack including jQuery, Bootstrap, and Kendo UI, with a moderate performance profile and good mobile optimization. Security practices include HTTPS enforcement and anti-forgery tokens, though some HTTP security headers are missing and no cookie consent mechanism is present. Overall, the site demonstrates a strong security posture appropriate for a government-related procurement portal, with high trustworthiness and legitimacy based on WHOIS data and business alignment.

vemap Einkaufsmanagement GmbH is a small Austrian technology company specializing in comprehensive software solutions for efficient expenditure management and digital procurement. Established in 2000, the company serves both private enterprises and public organizations, offering tailored procurement portals and modules that optimize costs and processes. Their market position is strong within Austria, with a focus on technological leadership and long-term client relationships. Technically, the website is built on the Bolt CMS platform, utilizing standard web technologies such as jQuery and FontAwesome. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and professional design. However, there is room for improvement in accessibility and advanced SEO practices. From a security perspective, the site uses HTTPS (assumed from canonical URL), but lacks visible security headers and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable anomaly that reduces trust slightly but does not negate the professional appearance and contact transparency of the business. Overall, vemap.com presents a credible and professional business presence with moderate technical maturity and a need for enhanced security and privacy compliance measures to strengthen trust and regulatory adherence.

I

Innsbrucker Verkehrsbetriebe und Stubaitalbahn

ivb-jobs.at

0

The website ivb-jobs.at represents the Innsbrucker Verkehrsbetriebe (IVB), a medium-sized public transportation company based in Austria. The site focuses on recruitment and employer branding, offering detailed information about job opportunities, benefits, and company culture. It targets job seekers in various categories including apprentices, graduates, and experienced professionals. The company positions itself as a reliable and innovative employer committed to sustainable and emission-free mobility. Technically, the website employs modern web technologies including Google Tag Manager, Usercentrics for consent management, Facebook Pixel, jQuery, and Bootstrap. The site is mobile-optimized with good SEO practices and moderate performance. Security best practices such as HTTPS and cookie consent are implemented, though some security policy documentation and incident response information are absent. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a privacy policy and cookie consent mechanism. However, the absence of a published security policy and vulnerability disclosure limits transparency. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, ivb-jobs.at is a professional and trustworthy website serving its purpose effectively. Strategic improvements in security transparency and accessibility could further enhance its maturity and user trust.

N

Nacht-S-Bahn I Salzburger Verkehrsverbund

nachtsbahn.at

0

Nacht-S-Bahn I Salzburger Verkehrsverbund is a regional public transportation service focused on providing night train services in Salzburg, Austria. The website promotes night S-Bahn lines S1, S11, S2, and S3, targeting local commuters and nightlife participants. The business operates under the Salzburger Verkehrsverbund GmbH umbrella, positioning itself as a reliable and safe transit option during late hours. The site offers links to official transit apps and social media channels, enhancing user engagement and service accessibility. Technically, the website is built on WordPress using common plugins and themes, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is basic, with a privacy policy linked on the parent domain but no cookie consent mechanism on the site. Overall, the website is professional, trustworthy, and serves its intended audience effectively, though improvements in security and privacy transparency are recommended.

S

Salzburg Verkehr

busjobs.at

0

The website www.busjobs.at serves as a regional recruitment platform for bus driver positions in the Salzburg region of Austria. It is operated under the brand Salzburg Verkehr and collaborates with multiple partner bus companies to offer job opportunities. The site provides detailed information about the profession, qualifications required, and facilitates contact with partner companies through embedded forms and links. The content is professionally presented with multimedia elements such as videos and image galleries, targeting job seekers interested in transportation careers. Technically, the site is built on WordPress with modern plugins including Yoast SEO and Contact Form 7, ensuring good SEO and user experience. Security posture is solid with HTTPS and captcha protection on forms, though some security headers are missing and cookie consent mechanisms are absent. WHOIS data is unavailable due to privacy protection, but the site’s legitimacy is supported by its professional content and partner affiliations. Overall, the site is a credible and well-structured employment portal for the transportation sector in Austria.

S

Salzburg Verkehr

salzburg-erfahren.at

0

Salzburg-erfahren.at is a regional website dedicated to promoting hiking tours accessible by public transport in the Salzburg region of Austria. The site is operated by Salzburg Verkehr, a transportation entity, and provides detailed tour tips and interactive maps to facilitate sustainable tourism. The website leverages WordPress CMS with Yoast SEO for content optimization and uses map libraries such as Leaflet.js to enhance user experience. The target audience primarily includes tourists and hikers interested in exploring Salzburg via bus and train services. The business model focuses on providing informational and navigational support rather than direct commercial transactions. Technically, the site is moderately optimized with good mobile responsiveness and SEO practices, but lacks some advanced security headers and explicit privacy or cookie policies. Security posture is average with room for improvement in policy transparency and technical safeguards. Overall, the domain registration and hosting details align well with the business focus, indicating a legitimate and trustworthy operation.

G

Gutenberg-Werbering Gesellschaft m.b.H.

werbering.at

0

Gutenberg-Werbering Gesellschaft m.b.H., operating under the brand Werbering, is a leading outdoor advertising company in Upper Austria. The company offers a broad portfolio of advertising media including billboards, premium boards, city lights, digital media, and transport media such as streetcar and bus advertising. Their market presence extends to Czech Republic regions through their subsidiary WIP Reklama. The website reflects a professional and business-focused approach targeting advertisers and businesses seeking outdoor advertising solutions in the region. Technically, the website employs modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Typeform, and Plausible Analytics, indicating a mature digital infrastructure. The site is mobile optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible security headers and a dedicated security policy or incident response information. Overall, the website is trustworthy and compliant with GDPR, providing clear contact information and privacy policies. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving incident response transparency.

U

Unsere ÖBB

railaxed.at

0

Unsere ÖBB operates as Austria's national rail transportation provider, offering extensive travel information and services through its Reiseblog platform. The website targets travelers interested in European destinations and sustainable rail travel, providing travel tips and related content. The business is positioned as an established enterprise with multiple subsidiaries and a strong digital presence. Technically, the website employs modern web technologies including Matomo analytics, custom fonts, and responsive design, delivering a fast and accessible user experience. Security posture is solid with HTTPS enforced and secure forms, though improvements are recommended in security headers and explicit privacy mechanisms. The absence of WHOIS data is noted but does not detract significantly from trust due to the official nature of the site and its ecosystem. Overall, the site is professional, trustworthy, and well-maintained.

S

SparxSystems Central Europe

sparxsystems.training

0

SparxSystems.training is a specialized educational platform operated by SparxSystems Central Europe, focusing on professional modeling training using SparxSystems tools. The website presents a professional and well-structured digital presence, leveraging WordPress with the Divi theme and several plugins to enhance user experience and compliance. The content is targeted at professionals seeking to deepen their expertise in modeling and related business processes. Technically, the site is built on a modern CMS with good SEO and mobile optimization, though some security enhancements such as DNSSEC and advanced HTTP headers could be improved. Security posture is solid with HTTPS and cookie consent mechanisms in place, but lacks published incident response or vulnerability disclosure policies. Overall, the site is trustworthy, compliant with GDPR, and suitable for its educational purpose.

T

team santé

teamsante.at

0

Team Santé is an Austrian cooperative group of independent pharmacies focused on delivering personalized health and pharmacy services. The website emphasizes individualized customer care, monthly product promotions, and a mobile app for convenient pre-ordering. The business model leverages group synergies to benefit customers, employees, and pharmacists, positioning itself as a trusted healthcare provider in Austria. Technically, the website uses modern web technologies including Uikit, Google Tag Manager, and CookieConsent for compliance and user experience. The site is well-structured, mobile-optimized, and includes comprehensive health-related content. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and incident response information. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and contact information support legitimacy. Overall, the site scores well on content quality, privacy compliance, and business credibility, with recommendations to enhance security headers and incident response transparency.

D

Datenraum Kärnten

datenraumkaernten.at

0

Datenraum Kärnten is a regional government-supported digital platform likely focused on providing data room and geospatial information services for the Austrian state of Kärnten. The website uses modern web technologies including Blazor WebAssembly and various JavaScript libraries to deliver interactive mapping and data visualization features. However, the visible HTML content is minimal, indicating a single-page application that loads content dynamically. The site is funded by local government departments and displays multiple official logos, reinforcing its public sector affiliation. Security posture is moderate with HTTPS assumed but lacking visible security headers and privacy policies. No contact or compliance information is present, limiting transparency and user trust. Overall, the site serves a niche regional audience with basic digital maturity and moderate technical implementation.

8

80. Villacher Kirchtag

villacherkirchtag.at

0

The website www.villacherkirchtag.at represents the 80th Villacher Kirchtag, Austria's largest and most famous traditional cultural festival. It attracts over 450,000 visitors annually and serves as a key event for tourism and local culture promotion. The site provides event information and festival promotion primarily targeting general public and tourists interested in cultural events. Technically, the website is built on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution, and uses analytics tools including Google Analytics and Matomo. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and detailed privacy policies. The absence of WHOIS data limits domain trust assessment, though the website content and branding appear professional and consistent with a legitimate event organization. Overall, the site is functional and trustworthy but could improve transparency and security practices.

Region Villach Tourismus GmbH operates a comprehensive regional tourism website promoting the Villach area in Austria, including key attractions such as the Faaker See and Ossiacher See. The site targets tourists and families seeking vacation experiences in this culturally rich and scenic region. The business model focuses on destination marketing, event promotion, accommodation listings, and activity bookings, positioning itself as a key regional tourism authority. The website is professionally designed with multilingual support and rich content, reflecting a mature digital presence. Technically, the site uses modern frameworks like Next.js and React, integrates Google Tag Manager for analytics and marketing, and includes an AI Concierge chatbot to enhance user engagement. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though no explicit security policy or incident response information is published. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

V-Club Gastro GmbH operates the V-Villach venue, a hospitality and entertainment business located in Villach, Austria. The website promotes a lounge environment with cocktails, chill out spaces, bowling, and a shuttle service, targeting local residents, business professionals, and social groups. The venue positions itself as a popular local meeting point with amenities such as free WiFi and a palm terrace. Technically, the website is built on WordPress using the Kallyas theme and includes modern web technologies like jQuery, Slider Revolution, and Google Fonts. It integrates marketing and tracking tools such as Google Tag Manager and Facebook Pixel, and implements GDPR-compliant cookie consent and privacy policies. Security posture is good with HTTPS enforced and reCAPTCHA used on forms, though additional security headers and policies could improve resilience. WHOIS data is unavailable due to privacy protection, which is common and justified for this business type. Overall, the website is professional, trustworthy, and mature audience-appropriate, with no critical security or compliance issues detected.

V

V-Bowl Villach

vbowl-villach.at

0

V-Bowl Villach operates a local bowling center in Villach, Austria, offering modern bowling lanes and a variety of entertainment programs targeting families, businesses, and general leisure customers. The website reflects a small hospitality business with a focus on community and entertainment services. Technically, the site is built on WordPress with common plugins and libraries, providing a moderate level of performance and mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business presents a legitimate and professional online presence but would benefit from enhanced security and compliance measures.