Security Directory

L

Lenus Pharma

lenuspharma.com

0

Lenus Pharma is a well-established Austrian healthcare company specializing in evidence-based products in urology, gynecology, and ophthalmology. The company operates globally with presence in over 70 countries and emphasizes clinical research and product quality. Their website reflects a professional and consistent brand image with comprehensive content and clear navigation, targeting medical professionals, distributors, and patients. Technically, the site is built on WordPress with modern plugins and themes but suffers from a critical lack of HTTPS, which severely impacts security posture. The absence of a valid SSL certificate exposes users to risks and undermines trust. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Business credibility is strong with clear contact information and trust signals such as testimonials and export awards. Overall, the site is content-rich and professionally presented but requires urgent security improvements to meet modern standards.

Landeskrankenhaus Bregenz is a key healthcare institution in the Vorarlberg region of Austria, operating under the Vorarlberger Krankenhaus-Betriebsgesellschaft.m.b.H. umbrella. The hospital provides a wide range of medical services, including specialized departments, emergency care, and patient support, serving both local and regional populations. The website reflects a mature and professional healthcare provider with a strong emphasis on quality assurance, ethics, and patient engagement. Technically, the site uses modern JavaScript libraries and analytics tools, including CookieHub for consent management and both Google Analytics and Matomo for visitor tracking. However, the website suffers from a critical security shortfall due to an invalid or missing SSL certificate and lack of proper HTTPS enforcement, which undermines user trust and data security. The absence of DNSSEC and CAA records further indicates room for improvement in DNS security. Overall, while the content and business credibility are strong, the technical and security posture requires urgent attention to meet modern standards and regulatory compliance.

ROS Retail Outlet Shopping GmbH is a medium-sized Austrian company specializing in retail real estate consulting and centre management, focusing on premium designer outlet shopping destinations across Europe. The company operates 14 outlet locations and offers services including centre management, development, leasing, retail, marketing, and facility management. Their business model targets retail investors, brand partners, and customers seeking outlet shopping experiences. The website is professionally designed on the Squarespace platform, featuring a consistent brand presence and comprehensive portfolio showcase. However, the site lacks a valid SSL certificate, which is a critical security vulnerability that undermines user trust and data protection. Privacy policies are present and GDPR compliance is indicated, but cookie consent mechanisms are limited. Contact information is thorough, including email, phone, physical addresses, and a newsletter form. Social media integration is active on Instagram, LinkedIn, and YouTube, enhancing engagement and trust. Overall, the website demonstrates good content quality and business credibility but requires urgent security improvements to meet modern standards.

P

Paul & Partner Immobilien. Investments.

paulpartner.at

0

Paul & Partner Immobilien. Investments. is a small Austrian real estate agency specializing in property sales, rentals, and investments primarily in Vienna, Lower Austria, and Burgenland. The website presents a professional and well-structured digital presence using the Justimmo platform and Bootstrap framework, targeting property buyers, renters, and investors in the regional market. However, the technical infrastructure shows critical weaknesses, notably the absence of a valid SSL certificate and incomplete DNS configuration, which undermines security and trust. The site includes basic GDPR compliance elements such as a privacy policy and cookie consent modal but lacks comprehensive security policies or incident response information. Overall, the business credibility is moderate, supported by clear contact details and structured data markup, but the security posture is poor due to missing HTTPS and DNS records.

S

Searchteam Consulting OG

searchteam.at

0

Searchteam Consulting OG is a small SEO agency based in Graz, Austria, specializing in search engine optimization services to help clients improve their online visibility and sales. The company presents a professional website with clear branding, named senior consultants, and active social media profiles, positioning itself as a niche local SEO expert. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. The site includes GDPR-compliant privacy and cookie policies with a consent mechanism, but lacks published security policies or incident response information. Overall, the website is functional and professional but requires urgent security improvements to meet modern standards.

S

S. Spitz GmbH

spitz.at

0

S. Spitz GmbH is a well-established Austrian food and beverage manufacturer with over 160 years of tradition, specializing in beverages, sweets, baked goods, and delicatessen products. The company operates multiple production sites in Austria and emphasizes quality, sustainability, and customer-specific private label solutions. Their website reflects a professional and comprehensive digital presence targeting B2B customers, job seekers, and sustainability-conscious consumers. Technically, the site is built on WordPress with common plugins and libraries, offering good mobile optimization and SEO features. However, the absence of a valid SSL/TLS certificate and missing DNS records represent significant security and technical weaknesses. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Overall, the business credibility is strong, but the security posture requires urgent improvement to protect user data and enhance trust.

E

epmedia

epmedia.at

0

epmedia is a professional communications agency based in Austria, specializing in tailored marketing and PR strategies for B2B and B2C clients, particularly in the real estate sector. The company offers a broad range of services including brand and communication strategies, PR and networking, classic advertising, digital services, and event management. Their market position is supported by a portfolio of reputable clients and organized industry events. Technically, the website is built on WordPress with modern plugins and frameworks, providing a good user experience and SEO optimization. However, the absence of a valid SSL certificate and lack of modern TLS protocols represent significant security weaknesses. The site complies well with GDPR through a comprehensive privacy policy and cookie consent mechanism. Overall, the business demonstrates credibility and professionalism but must urgently address its SSL/TLS security to protect user data and maintain trust.

Leder & Schuh AG operates the HUMANIC brand, a well-established shoe retailer and manufacturer with over 150 years of history. The company serves multiple Central and Eastern European markets through both online shops and physical stores, positioning itself as a market leader in Austria and surrounding countries. The website provides comprehensive business and product information, targeting consumers seeking quality footwear internationally. Technically, the site uses a modern tech stack including SAP Commerce, Google Tag Manager, and various marketing and analytics tools, hosted behind Cloudflare. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to potential risks. Privacy compliance is addressed with cookie consent mechanisms and privacy policies, though some improvements are recommended. Overall, the website is professional and trustworthy but requires urgent security enhancements to protect user data and maintain credibility.

P

Peter Ofner GmbH

dirak.at

0

Peter Ofner GmbH is a specialized Austrian company providing innovative and tailored locking technology, hinges, and connection solutions primarily for industrial clients. The company positions itself as an expert in the manufacturing sector with a focus on quality products and personalized consulting. The website reflects a professional and well-structured digital presence, leveraging modern consent management and analytics tools, but lacks a valid SSL certificate and HTTPS support, which is a critical security shortfall. DNS records are notably missing or incomplete, which raises concerns about domain configuration consistency. Overall, the site offers comprehensive contact information and basic privacy compliance but lacks explicit security policies and incident response details.

SCHOLLENBERGER Kampfmittelbergung GmbH is a specialized service provider in ordnance and explosive material recovery operating primarily in Austria and Germany. Established in 2009 and employing around 380 staff, the company offers comprehensive services including surface and depth probing, aerial image evaluation, and diving operations. It is part of the SOCOTEC Group, which enhances its market position and operational capabilities. The website presents detailed business information and service descriptions targeting industrial, governmental, and private clients requiring ordnance clearance and related environmental services. Technically, the site is built on TYPO3 CMS with modern frontend libraries but suffers from critical security shortcomings such as lack of HTTPS and DNS misconfigurations. These issues undermine trust and expose the site to risks. No privacy or cookie consent mechanisms are implemented, which may affect GDPR compliance. Overall, the business is credible and professional, but the digital infrastructure requires urgent security and technical improvements.

R

Rutar GmbH & Co KG

rutar.at

0

Rutar GmbH & Co KG operates a professional and comprehensive online presence for its retail furniture business in Austria. The website showcases a wide range of furniture categories, including kitchens, living rooms, bedrooms, and garden furniture, supported by detailed product listings and brand partnerships. The company emphasizes customer service with offerings such as free 3D kitchen planning, delivery, and assembly services. Technically, the website is built on WordPress with a modern tech stack including PHP 7.4, nginx, and popular plugins like Yoast SEO and Contact Form 7. The site is well-optimized for mobile devices and includes SEO best practices. Security measures include HTTPS with TLS 1.2 and 1.3, OCSP stapling, and secure cookie flags, though improvements like enabling HSTS and additional security headers are recommended. Privacy compliance is strong, with a clear privacy policy, cookie consent mechanisms, and GDPR adherence. Overall, the site reflects a mature digital infrastructure with a solid security posture and good business credibility.

Software United is a technology platform offering integrated business software solutions leveraging partnerships with major vendors such as Oracle and GitHub. The company targets ISVs and system integrators, providing scalable and flexible software products combined with enterprise-grade open source components. The website reflects a medium-sized technology business headquartered in Austria with a moderate market position and a partner ecosystem. Technically, the site uses Bitrix CMS and nginx server with valid SSL but lacks modern TLS protocols and advanced security headers. The security posture is basic with no critical vulnerabilities detected but improvements are needed in encryption protocols and security policy transparency. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance measures.

L

LexisNexis Verlag ARD Orac GmbH & Co KG

lexisnexis.at

0

LexisNexis Österreich is a leading provider of intelligent legal, tax, and business information solutions in Austria, offering a broad portfolio of products including Lexis 360®, Lexis+ AI, compliance tools, and educational seminars. The company operates under the parent company RELX plc and targets professionals such as lawyers, tax advisors, companies, and public sector entities. The website demonstrates a high level of professionalism, rich content, and strong branding consistency, positioning LexisNexis as a market leader in its sector. Technically, the website is built on WordPress with modern front-end technologies and SEO best practices, including structured data and accessibility features. However, performance is rated slow, and hosting details are not fully clear. The site integrates marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent management. From a security perspective, the website lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data protection. While some security headers like HSTS are present, the overall SSL/TLS configuration is poor. Privacy and cookie policies are comprehensive and GDPR compliant, but no explicit security or incident response policies are found. Overall, the website is credible and professional but requires urgent security improvements to enable HTTPS and strengthen its security posture. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and publishing security policies to enhance trust and compliance.

SEQIS GmbH is a specialized IT service provider based in Austria, focusing on software testing, IT analysis, and project management. The company offers a broad range of services including remote testing, DevOps, training, and quality assurance, targeting businesses seeking to improve their software quality and IT project outcomes. The website is professionally designed, content-rich, and well-structured, primarily in German, with clear navigation and active social media engagement. Technically, the website runs on a PHP 8.2.28 backend with nginx and uses the Contao CMS along with Bootstrap and jQuery for frontend functionality. Despite a modern tech stack, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Performance data is missing, but the site appears mobile-optimized and SEO-friendly. Security posture is weak due to the absence of HTTPS, no DNSSEC, and no CAA records, although several security headers are present. Privacy compliance is good with a comprehensive privacy policy and cookie consent via Cookiebot. Contact information is clearly provided, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the business location. Overall, the site is functional and professional but requires urgent security improvements, especially SSL/TLS implementation, to enhance trust and protect user data.

LineMetrics GmbH is a medium-sized Austrian company specializing in smart building solutions through integrated sensor systems based on LoRaWAN technology. Their platform enables real-time data collection and analysis for energy consumption, room climate monitoring, and operational efficiency improvements. The company has a strong market presence with over 400 clients and 15,000 sensors deployed, positioning itself as a reliable provider in the real estate and technology sectors. Technically, the website is built on WordPress with modern plugins and integrations such as Kadence Blocks, WP Rocket, Google Tag Manager, and Zoho CRM, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of HTTPS, which significantly impacts the security posture. Privacy compliance is well addressed with comprehensive policies and active consent mechanisms. Overall, while the business and content quality are excellent, urgent improvements in security configurations are recommended to enhance trust and protect user data.

Burgenland Energie is a regional energy provider based in Austria, specializing in renewable energy solutions such as photovoltaic systems, battery storage, heat pumps, and e-mobility services. The company targets private customers, municipalities, and businesses within the Burgenland region, emphasizing energy independence and sustainability. Their digital presence includes a professional website with comprehensive product information, customer portals, and active social media channels. Technically, the website is built using modern web technologies including React and Next.js, hosted on AWS infrastructure with CloudFront and S3. While the site is mobile-optimized and well-structured for SEO and accessibility, performance metrics indicate slow loading times, which could be improved. The use of Google Tag Manager and Zoho CRM scripts indicates integration with marketing and customer relationship management tools. From a security perspective, the website lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability that undermines user trust and data security. Other security best practices such as HSTS, OCSP stapling, and session resumption are also missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism in place. Overall, the website presents a trustworthy and professional business with strong content and user experience but requires urgent improvements in SSL/TLS configuration to enhance security posture and protect user data effectively.

myClubs is a membership platform offering access to a wide variety of sports and fitness activities across multiple providers, primarily targeting sports enthusiasts seeking flexible and commitment-free training options. The website is built using modern web technologies such as React and Next.js and is served via Cloudflare CDN, indicating a contemporary digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. While privacy and terms of service pages are present and appear comprehensive, the lack of a cookie consent mechanism despite the use of tracking scripts suggests incomplete privacy compliance. Overall, the site demonstrates good content quality and user experience but requires urgent security improvements to meet industry standards.

F

Fluidtime Data Services GmbH

fluidtime.com

0

Fluidtime Data Services GmbH is a medium-sized Austrian company specializing in Mobility-as-a-Service (MaaS) solutions and sustainable mobility management tools. Positioned as a pioneer in the transportation technology sector, Fluidtime offers tailored software platforms that enable businesses and organizations to implement green mobility projects efficiently. Their website is professionally designed, content-rich, and targets organizations aiming to achieve sustainability goals through innovative mobility services. The company maintains a strong partnership network and active social media presence, enhancing its market credibility. Technically, the website is built on WordPress with the Enfold theme and supports multilingual content via WPML. It employs modern JavaScript libraries such as jQuery and integrates Matomo Analytics for privacy-conscious user tracking. SEO is enhanced through Yoast SEO plugin, and the site is mobile-optimized with good accessibility features. However, performance metrics are not explicitly available. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, representing a critical vulnerability. No modern TLS protocols or security headers like HSTS are enabled, which exposes users to potential risks. Cookie consent mechanisms and GDPR-compliant privacy policies are well implemented, reflecting good privacy compliance. Contact information is clearly provided, but no explicit security or incident response policies are found. Overall, while Fluidtime demonstrates strong business credibility and technical maturity in content and privacy compliance, the absence of HTTPS significantly undermines its security posture. Addressing this critical issue should be a top priority to protect user data and maintain trust.

INNOS GmbH is a regional innovation and development company based in Osttirol, Austria, operating as a Public Private Partnership. The company focuses on strengthening local businesses and supporting startups through services such as consulting, networking, location services, and coworking spaces. Their market position is that of a key regional innovation facilitator with a strong network and community presence. Technically, the website is built on WordPress using the Avada theme and several plugins, including LayerSlider and Borlabs Cookie for cookie consent management. While the site has good SEO, content quality, and user experience, it lacks a valid SSL/TLS certificate, which severely impacts its security posture. The absence of HTTPS exposes users to risks and reduces trust. Privacy compliance is addressed with a comprehensive cookie policy and GDPR-aligned consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements.

Z

Zertifizierungsstelle ERC

e-r-c.at

0

ERC is a European certification body specializing in the railway sector, offering comprehensive vehicle approval services primarily in the German-speaking region of Europe. Their key services include TSI conformity assessment as a Notified Body, ECM certification, and DeBo and AsBo evaluations. The website is professionally designed using Joomla CMS with a Bootstrap framework, providing clear navigation and relevant content in German with English alternatives. Technically, the site uses a valid SSL certificate but lacks modern TLS protocol support and advanced security headers, which slightly reduces its security posture. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR explicit indicators. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy but would benefit from security and privacy improvements.

Security assessment incomplete. Successfully analyzed: nis2, sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, emailSecurity, dnsHealth. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 31 security findings identified across all modules.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 23 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 31 security findings identified across all modules.

R

Bewertungstools und DataScience | Real(e)Value

realevalue.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 29 security findings identified across all modules.

T

THE HUMAN FACTOR GmbH - Professionelle - Punktgenaue - Personalsuche

the-humanfactor.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 29 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Christianwind.com is a professional portfolio website for Christian Wind, a Vienna-based photographer specializing in business portraits, personal photography, creative shoots, and event photography. The site showcases extensive photographic work, including notable media features and exhibitions, positioning the business as a reputable player in the media and creative services sector. The target audience includes individuals and organizations seeking high-quality photography services in Vienna and American Samoa. Technically, the site is built on the Krop portfolio platform using AngularJS and served by a Caddy server. However, critical technical issues exist, including the absence of DNS A/AAAA records and lack of SSL/TLS encryption, which significantly impact security and trust. The security posture is weak, with no HTTPS, HSTS, or security headers implemented. Privacy compliance is minimal, with no visible privacy or cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professionally designed with excellent content quality but requires urgent technical and security improvements to enhance trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

T

Home - THI

thigmbh.at

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

ISZ Markt

isz-markt.at

0

ISZ Markt is a leading Austrian wholesale distributor specializing in installer supplies, heating, electrical, and home technology products. With 70 locations across Austria and a strong parent company, Frauenthal Handel Gruppe AG, ISZ Markt serves professional installers and contractors with a broad product range and fast delivery services. The website is professionally designed using WordPress and Elementor, featuring comprehensive content, structured data, and good SEO practices. However, the website suffers from a critical security issue due to an invalid SSL certificate and lack of enabled TLS protocols, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and detailed privacy policy. Contact is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, the site is credible and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

H

Herbst Kinsky Rechtsanwälte

herbstkinsky.at

0

Herbst Kinsky Rechtsanwälte is a medium-sized Austrian law firm specializing in economic, corporate, and financial law with offices in Vienna and Linz. The website presents a professional image with clear business descriptions, targeting businesses and professionals seeking legal advisory services in Austria. The firm offers a broad range of legal services including M&A, venture capital, banking and capital markets law, and labor law. Technically, the website is built on WordPress with a custom theme and SEO framework, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which severely impacts security posture. The site lacks modern TLS protocols, security headers, and cookie consent mechanisms, which are important for compliance and user trust. Overall, the website is functional and well-structured but requires urgent security improvements to protect user data and enhance trust.

M

Mark Metallwarenfabrik GmbH

mark.at

0

Mark Metallwarenfabrik GmbH is a medium-sized manufacturing company based in Austria specializing in metal products. The company maintains a professional website showcasing its global footprint, technologies, sustainability efforts, and career opportunities. The site targets industry professionals, potential employees, and partners. Technically, the website is built on WordPress with modern plugins such as Elementor and Jet Engine, but lacks a valid SSL certificate, which is a critical security shortfall. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Social media presence is active, enhancing brand visibility. However, the absence of HTTPS and proper TLS configuration significantly impacts the security posture and overall trustworthiness of the site.

K

Kommunikationskunst

kommunikationskunst.at

0

Kommunikationskunst is a small Austrian marketing and communication agency led by Robert Seeger, with over 15 years of experience in innovative marketing solutions. The company offers a range of services including employer branding, keynotes, workshops, social media management, creative campaigns, and seminars. The website reflects a professional and consistent brand image targeting businesses seeking bold and effective communication strategies. Technically, the site is built on WordPress using OptimizePress and Yoast SEO, but suffers from a critical lack of HTTPS, impacting its security posture significantly. While the site includes basic privacy and cookie policies with GDPR consent mechanisms, it lacks explicit security and incident response policies. Overall, the business appears legitimate and established, but the absence of SSL/TLS is a major security concern that should be addressed promptly.

B

ByteSource Technology Consulting GmbH

bytesource.net

0

ByteSource Technology Consulting GmbH is a medium-sized Austrian technology consulting firm specializing in cloud migration, Atlassian ecosystem services, DevOps, agile software development, and AI-driven business transformation solutions. Positioned as a leading Atlassian Platinum Solution Partner and AWS Advanced Tier Services Partner in Austria, ByteSource serves enterprises and medium to large businesses with a comprehensive portfolio of technology consulting and software development services. The company emphasizes innovation, security, and operational excellence, supported by certifications such as ISO 27001 and TISAX AL3. Technically, the website is built on modern frameworks including Next.js and is hosted on Amazon AWS infrastructure leveraging S3 and CloudFront CDN. The site integrates various marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Zoho SalesIQ, and Leadforensics, reflecting a mature digital marketing strategy. However, performance metrics indicate slow loading times, and while mobile optimization and accessibility are excellent, there is room for improvement in performance. From a security perspective, the site lacks a valid SSL certificate and does not support TLS protocols, which is a critical vulnerability impacting the overall security posture. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security score. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, ByteSource presents a professional and trustworthy online presence with strong business credibility and technical maturity, but the lack of HTTPS and proper SSL/TLS configuration poses a significant risk. Strategic recommendations include immediate remediation of SSL/TLS issues, enhancement of security headers, and performance optimization to improve user experience and security posture.

The Stadtgemeinde Mödling website serves as the official digital portal for the city of Mödling, Austria, providing residents and visitors with comprehensive municipal information, news, events, and public services. The site targets local citizens and stakeholders, offering easy access to administrative contacts, service forms, and cultural activities. The business model is that of a government entity focused on transparency and community engagement. Technically, the website employs a custom RIS CMS platform with common web technologies such as jQuery, Bootstrap, and FontAwesome, and integrates Matomo for analytics. However, the absence of HTTPS is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but the lack of SSL/TLS and modern protocols significantly lowers the security posture. Privacy compliance is moderate, with a clear privacy policy but no cookie consent mechanism. Overall, the site is professional and trustworthy but requires urgent security upgrades.

L

Linz Textil Holding AG

linz-textil.at

0

Linz Textil Holding AG is a leading European manufacturer specializing in yarns, fabrics, and terry products, serving the textile industry with a strong presence across multiple European countries through its subsidiaries. The company’s website reflects a professional and consistent brand image, targeting textile industry customers and partners. The business model focuses on manufacturing and distribution with a clear emphasis on innovation, tradition, and sustainability. Technically, the website is built on TYPO3 CMS with standard web technologies including jQuery, and it incorporates modern consent management and analytics tools such as Usercentrics and Google Analytics 4. However, the website suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture and trustworthiness. Despite this, the site includes comprehensive legal and privacy documentation, indicating good privacy compliance. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

Bankhaus Spängler

spaengler.at

0

Bankhaus Spängler is Austria's oldest private bank, providing private banking, family management, financing, and real estate services across multiple regional offices. The website is professionally designed, content-rich, and targets private banking clients and institutional investors primarily in Austria. Technically, the site uses TYPO3 CMS and integrates Cookiebot for cookie consent, but critically lacks HTTPS/SSL encryption, exposing users to security risks. Security headers are partially implemented, but the absence of SSL significantly lowers the security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the business credibility is strong with clear contact information and trust indicators. The domain registration data aligns well with the business claims, confirming legitimacy.

I

IT-Speicherkraft Vertriebs- und Dienstleistungs GmbH

speicherkraft.com

0

IT-Speicherkraft Vertriebs- und Dienstleistungs GmbH is a medium-sized Austrian technology company specializing in digital process automation, document management, and IT consulting services. With over 1,300 satisfied customers and 80 partners, the company offers a range of services including information management, print management, digitalization, IT service, consulting, and software development. Their business model focuses on B2B engagements, targeting organizations seeking efficient and error-free digital workflows. The website reflects a professional and consistent brand presence with good content quality and clear navigation, although direct contact details like emails and phone numbers are not explicitly provided, relying primarily on a contact form.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

REFLECTIONS Research & Consulting is a small consulting firm based in Austria, led by Franz Kühmayer, offering expertise, consulting services, visionary insights, references, and keynote speaking. The website is minimalistic with basic content and navigation but lacks critical security and privacy features. Technically, the site runs on Apache with simple HTML and CSS, but it lacks HTTPS and modern security headers, exposing visitors to potential risks. No privacy or cookie policies are present, and no contact information is provided, which impacts trust and compliance. Overall, the website's security posture is weak, and the digital maturity is low, requiring urgent improvements to secure communications and comply with privacy regulations.

B

BG/BRG/BORG Graz-Liebenau (HIB)

hib-liebenau.at

0

HIB Graz-Liebenau is a well-established federal secondary school in Graz, Austria, specializing in general education with emphases on languages, sports, and boarding facilities. The website provides comprehensive information about the school's programs, services, and extracurricular activities, targeting students, parents, and educators. Technically, the site is built on Joomla CMS with Bootstrap and UIkit frameworks, but suffers from critical security shortcomings including lack of HTTPS and missing privacy policies. The security posture is weak due to absence of valid SSL certificates and security headers, exposing the site to risks. Overall, while the content and business credibility are good, the technical and security aspects require urgent improvements to ensure trust and compliance.

C

CTP Chemisch Thermische Prozesstechnik GmbH

ctp-airpollutioncontrol.com

0

CTP Chemisch Thermische Prozesstechnik GmbH is a well-established Austrian company specializing in industrial air pollution control solutions with 40 years of experience. The company offers customized turnkey systems for air purification, VOC emission control, and hazardous pollutant removal, serving a global industrial clientele. Their website reflects a professional presence with clear business information and a focus on environmental technology. Technically, the site is built on Drupal 8 with modern web components but lacks a valid SSL certificate, which is a critical security shortfall. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided. However, the absence of HTTPS significantly undermines the site's security posture and trustworthiness. Strategic improvements in SSL implementation and enhanced security headers are recommended to elevate the site's security and compliance standing.

S

Solstein Film & Production Services

kultig.at

0

KULTIG Werbeagentur is a small full-service advertising agency based in Innsbruck, Austria, specializing in creative and regional marketing solutions. The company offers a broad range of services including strategy, graphic design, screen design, web development, content marketing, and event services. Their market position is that of a regional creative agency with a strong local presence and a diverse portfolio of projects. Technically, the website is built on WordPress using Elementor and several modern web technologies, but suffers from critical security misconfigurations such as the absence of a valid SSL certificate and missing DNS records, which impacts trust and security posture. The site is accessible without WAF or blocking mechanisms, but lacks cookie consent mechanisms despite using analytics tools. Contact information and social media presence are well presented, supporting business credibility. Overall, the website is professional in design and content but requires urgent improvements in security and privacy compliance to enhance trustworthiness and user safety.

P

Peschke

peschkedesign.at

0

Peschke Design GmbH is a well-established design agency based in Vienna, Austria, specializing in product design, UX/UI, app development, 3D visualization, and industrial design. With over 50 years of experience and a strong portfolio of reputable clients such as Carl Zeiss AG, ENGEL AUSTRIA GmbH, and Austrian Airlines, the company positions itself as a trusted partner for digital transformation and innovative design solutions. Their business model focuses on delivering comprehensive design and development services tailored to client needs, supported by a professional and content-rich website that targets businesses seeking high-quality design expertise. Technically, the website is built on WordPress, hosted on WP Engine, and uses Cloudflare as a CDN and proxy. It employs modern web technologies including React, jQuery, and Swiper.js, and supports multilingual content via WPML. SEO and accessibility are well addressed with Yoast SEO and adherence to WCAG guidelines. However, performance metrics are not available, though mobile optimization and navigation clarity are good. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. No TLS protocols are enabled, and security headers are minimal. While cookies are set with secure and HttpOnly flags, the absence of HTTPS exposes users to potential interception risks. Privacy compliance is strong with GDPR-aligned policies and a cookie consent mechanism. No explicit security or incident response policies are published. Overall, the website demonstrates high professionalism and business credibility but suffers from a critical security misconfiguration regarding SSL/TLS. Addressing this would significantly improve the security posture and trustworthiness of the site.