Security Directory

ORF Beitrags Service GmbH operates the official website for managing ORF broadcasting fees in Austria, providing services such as SEPA direct debit, data changes, exemptions, and customer support. The website targets Austrian residents and businesses subject to ORF fees, positioning itself as a key public service provider in the media sector. The content is well-structured, professionally designed, and localized in German with multiple language options. The business model revolves around public service fee collection and administration. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries like Alpine.js and integrating analytics tools such as Matomo and Google Analytics. The site uses a comprehensive Content Security Policy and other security headers to protect against common web attacks. However, the absence of a valid SSL/TLS certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Security posture is moderate with good header implementations but severely impacted by the lack of HTTPS, no TLS protocols enabled, and missing HSTS. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Business credibility is supported by clear contact information, legal pages, and consistent branding. Overall, the website is functional and professional but requires urgent security improvements to enable HTTPS and strengthen encryption protocols. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS versions, and enhancing session security. These steps will improve trust, compliance, and user safety significantly.

nicsell.com is a domain backorder and auction platform operated by DomainProfi GmbH, targeting the German-speaking market with services for acquiring domains in deletion phases. The business model focuses on low starting bids and a no-risk payment approach, supported by ICANN accreditation and partnerships with multiple domain registries. Technically, the website uses a standard stack including nginx, Bootstrap, and jQuery, but lacks a valid SSL certificate, which is a significant security concern. The site is mobile optimized and SEO friendly but has slow performance metrics. Security posture is weak due to missing HTTPS and modern TLS protocols, although some security headers and cookie flags are set. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Contact information is limited to forms, with no direct emails or phone numbers publicly listed. Overall, the site is legitimate and professionally presented but requires urgent security improvements.

R

RP Global

rp-global.com

0

RP Global is a well-established large-scale developer, operator, and investor in the renewable energy sector with over 40 years of experience. The company focuses on solar PV, wind, hydro, hydrogen, and energy storage projects primarily in Europe and Latin America, with a significant project pipeline exceeding 14 GW(p). Their business model centers on project development, investment, and strategic partnerships, positioning them as a key player in the renewable energy market. Technically, the website is built on ASP.NET and hosted on Microsoft IIS with Umbraco CMS, incorporating modern web technologies such as Google Tag Manager and Google Fonts. However, performance is slow and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate, lack of HTTPS, missing security headers, and no incident response or security policy disclosures. Privacy compliance is minimal with policies present but no consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

T

Today Experts

today-experts.com

0

Today Experts is a small Austrian IT recruitment company specializing in connecting IT specialists with client projects. Their website is professionally designed using WordPress and Elementor, targeting IT professionals and clients seeking staffing solutions. The company showcases partnerships with notable firms such as A1, ÖBB, IBM, UNIQA, and nagarro, indicating a credible market position within the technology and transportation sectors. Technically, the site uses modern web technologies but suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts user trust and security posture. Privacy compliance is basic, with a cookie consent mechanism implemented but lacking comprehensive GDPR indicators. Overall, the site is functional and content-rich but requires urgent security improvements to meet modern standards.

N

NEOS

neos.eu

0

NEOS is a well-established Austrian political party with a strong digital presence and comprehensive content about its programs, members, and activities. The website is professionally designed, mobile-optimized, and provides clear navigation and rich information for its target audience. Technically, the site uses modern frontend technologies such as Alpine.js and Tailwind CSS, and integrates marketing and analytics tools like Google Tag Manager and Microsoft Clarity. However, the security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which poses a significant risk to user data and trust. Privacy compliance is generally good, with a clear privacy policy and GDPR consent mechanisms in the newsletter form, but lacks a visible cookie consent banner. Overall, the site is credible and trustworthy but requires urgent security improvements to protect visitors and maintain compliance.

G

Glanzer cosmetic engineering GmbH & Co KG

donau-kanol.com

0

Glanzer cosmetic engineering GmbH & Co KG is a well-established Austrian manufacturing company specializing in cosmetics, household cleaners, and biocides. With over 90 years of experience and 100% production in Austria, the company positions itself as a full-service partner for B2B clients seeking high-quality product development and manufacturing services. The website reflects this positioning with clear business descriptions, contact information, and a professional design. Technically, the site uses a modern technology stack centered around Craft CMS and popular JavaScript libraries, but suffers from poor performance metrics and lacks HTTPS security. Security posture is weak due to the absence of a valid SSL certificate and missing security headers, exposing the site to potential risks. Privacy compliance is also lacking, with no privacy or cookie policies present. Overall, the site is functional and professional but requires urgent improvements in security and compliance to reduce risk and enhance trust.

T

Transped Europe GmbH

transped.at

0

Transped Europe GmbH is a medium-sized Austrian transportation and logistics company specializing in European haulage and intermodal freight transportation since 1983. The company positions itself as a specialist in European road haulage, targeting logistics customers and transport partners across Europe. The website reflects a professional business with clear navigation and relevant content focused on their core services. Technically, the site uses a custom ASP.NET backend with common frontend libraries such as jQuery and Bootstrap, but lacks modern security implementations such as HTTPS and security headers, which significantly impacts its security posture. The absence of a valid SSL certificate and missing security headers expose the site to potential risks and reduce trustworthiness. Privacy compliance is basic, with a privacy policy and cookie consent mechanism present, but no explicit data protection officer or incident response information is found. Overall, the website is functional and informative but requires urgent security improvements to protect user data and enhance trust.

P

Poesis Consulting GmbH

poesis.at

0

Poesis Consulting GmbH is a small, dynamic consulting firm specializing in strategy, project management, process management, and training services. The company targets businesses requiring tailored consulting solutions, particularly in complex projects where internal resources or expertise are limited. Their market position is regional with offices in Vorarlberg and Liechtenstein, emphasizing a personalized and deep consulting approach. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, supporting their credibility. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and Cookiebot for consent management. Hosting is via Cloudflare CDN with DNS managed by United Hoster. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a significant technical and security deficiency. Performance is rated slow due to missing optimization metrics, but mobile responsiveness and SEO basics are adequately addressed. From a security perspective, the absence of HTTPS and TLS protocols severely undermines the site's security posture. While some security headers and best practices like HttpOnly cookies and reCAPTCHA are implemented, critical vulnerabilities exist including no DNSSEC, no certificate transparency compliance, and no session resumption. Privacy compliance is reasonably addressed with a privacy policy, cookie consent, and GDPR indicators, but no explicit security or incident response policies are published. Overall, the website presents a moderate risk profile primarily due to missing HTTPS and related security controls. Strategic recommendations include immediate SSL/TLS deployment, enhancement of DNS security, and publication of security policies. These improvements will bolster trust, compliance, and protect both the business and its clients from potential threats.

W

Windhund GmbH

windhund.com

0

Windhund GmbH is a small Austrian company specializing in providing monthly live-streamed and on-demand health keynote presentations aimed at corporate workplace health management. The company has a professional web presence built on TYPO3 CMS, featuring reputable speakers and a solid client base. Technically, the website uses modern marketing and tracking tools such as Google Tag Manager and Facebook Pixel, and implements a cookie consent mechanism compliant with GDPR. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, exposing users to potential risks. The WHOIS data is consistent with the business claims, indicating legitimacy. Overall, the website is functional and professional but requires urgent security improvements.

H

hokify GmbH

hokify.at

0

hokify GmbH operates a mobile-first job platform primarily serving the Austrian and German-speaking job market. The company offers a user-friendly job search portal and mobile app with over 11,000 job listings, emphasizing ease of application without the need for traditional cover letters. Technically, the website is built on modern JavaScript frameworks such as Vue.js and Nuxt.js, hosted on Amazon CloudFront CDN, and optimized for mobile devices. However, the site currently lacks a valid SSL certificate, which is a critical security concern. Privacy policies are comprehensive and GDPR compliant, and the company maintains active social media engagement. Overall, hokify presents a professional and trustworthy business with room for security improvements.

S

SPS Technik Ges.m.b.H

sps.at

0

SPS Technik Ges.m.b.H is a well-established Austrian company specializing in turnkey automation solutions for various industries including manufacturing, transportation, and energy. The company operates internationally with subsidiaries in China and Poland, offering comprehensive services from electro planning, robot programming, mechanical construction, to service and maintenance. Their market position is strong, supported by over 70 years of experience and installations in more than 50 countries. Technically, the website is built on a modern WordPress CMS with Elementor and Yoast SEO, featuring good mobile optimization and accessibility. Security-wise, the site uses a valid SSL certificate but lacks modern TLS protocols and some security headers, which lowers its security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website reflects a professional and credible business presence with room for security improvements.

H

HellermannTyton

hellermanntyton.at

0

HellermannTyton is a well-established manufacturer and provider of cable management and connectivity products, serving industrial sectors such as manufacturing, energy, and transportation. The website presents comprehensive product information, industry solutions, and sustainability initiatives, targeting professional and industrial customers primarily in Austria and surrounding regions. The company maintains a strong brand presence with consistent design and multiple social media channels. Technically, the website uses a modern tech stack including Apache, jQuery, Google Tag Manager, and Usercentrics for consent management, hosted behind Cloudflare DNS services. However, the SSL/TLS configuration is outdated, supporting only TLS 1.1 without TLS 1.2 or 1.3, which is a security concern. Security headers are well implemented, including a strict Content Security Policy and HSTS header, though HSTS is not fully enabled in SSL configuration. Privacy compliance is strong with clear privacy and cookie policies and active consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant, but would benefit from modernizing its TLS support and enhancing SSL configurations.

G

GIG Fassaden GmbH

gig.at

0

GIG Fassaden GmbH is a medium-sized Austrian company specializing in premium metal and glass facade solutions for international architecture projects. Their business model focuses on B2B services including design, engineering, prototyping, manufacturing, installation, maintenance, and renovation of building envelopes. The company maintains a strong market position with a consistent brand presence and comprehensive service offerings. Technically, the website is built on WordPress with modern libraries and plugins, optimized for SEO and mobile responsiveness. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, exposing the site to risks and undermining user trust. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the site is professional and content-rich but requires urgent security improvements to meet modern standards.

B

baningo GmbH

baningo.com

0

baningo GmbH is a technology company specializing in digital networking solutions, primarily through their digital business card platform and NFC business cards. Founded in 2015 and based in Austria, the company serves a broad professional audience seeking modern, sustainable ways to share contact information. Their market position is supported by over 10,000 customers and partnerships with notable companies. Technically, the website leverages Cloudflare for hosting and security, uses Matomo and Google Tag Manager for analytics, and integrates Facebook Pixel for marketing. However, the absence of a valid SSL certificate and HTTPS severely undermines the security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the website is professionally designed and trustworthy but requires urgent security improvements.

N

NovaTaste

frutaromsavory.com

0

NovaTaste is a globally recognized leader in taste innovation, specializing in providing customized and sustainable food ingredient solutions to food manufacturers, butchers, and foodservice players. With a strong global presence spanning 19 sites and over 2,200 employees, the company offers a broad portfolio including herbs, spices, seasonings, marinades, and functional ingredients. Their business model focuses on tailored solutions and turnkey R&D projects, positioning them as a key player in the manufacturing sector of the food industry. Technically, the website leverages modern frameworks such as Next.js and React, hosted on Amazon CloudFront, delivering a professional and responsive user experience with good SEO and accessibility standards. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocol support, which poses risks to user trust and data security. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

M

Messe Wels GmbH

messe-wels.at

0

Messe Wels GmbH operates a prominent exhibition center in Wels, Austria, providing event hosting, exhibition space rental, and related services. The website targets exhibitors and visitors interested in trade fairs and events, positioning itself as a leading venue in Austria. The digital infrastructure relies on legacy technologies such as Microsoft IIS 8.5 and older versions of jQuery and Bootstrap, with Google Tag Manager implemented for analytics and marketing. However, the website lacks a valid SSL certificate and does not support modern TLS protocols, significantly impacting its security posture. While contact information and privacy policies are present, the absence of advanced security headers and incident response information indicates room for improvement. Overall, the site is functional and professional but requires urgent security upgrades to protect user data and enhance trust.

C

CAE Expert Group GmbH

caeexpert.group

0

CAE Expert Group GmbH is a specialized provider of ECAD engineering services and software solutions, operating primarily in Austria and Germany. The company offers a broad range of services including system automation, consulting, software development, training, and project support, positioning itself as a trusted expert with TÜV SÜD certification. The website is professionally designed, content-rich, and targets businesses and professionals seeking ECAD system expertise. Technically, the website is built on WordPress with Elementor and employs modern SEO and cookie consent tools, but suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and overall trustworthiness from a cybersecurity perspective. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Contact information is comprehensive and transparent, supporting business credibility. Strategic improvements in SSL/TLS implementation and security headers are essential to elevate the security maturity and user trust.

S

SOL4 IT-Consulting GmbH

sol4.at

0

SOL4 IT-Consulting GmbH is a specialized IT consulting firm based in Austria, focusing on CRM software solutions and digitalization services for small and medium-sized enterprises. The company offers CRM software consulting, project implementation, industry-specific solutions, and support services, positioning itself as a market leader in CRM solutions within its region. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience. Technically, the site is built on Joomla CMS with modern UIkit framework and common JavaScript libraries, providing a good user experience and mobile optimization. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the site's security posture and trustworthiness. The site implements GDPR-compliant privacy and cookie policies with active consent mechanisms and transparent contact information. Overall, while the business and content quality are strong, the lack of HTTPS is a major risk that should be addressed promptly.

eSYS Informationssysteme GmbH is a regional IT service provider based in Austria, specializing in IT support, network management, software development, and cloud solutions, with a strong focus on serving businesses and schools in Upper Austria. The company maintains a professional online presence with comprehensive service descriptions and a clear target audience. Their website is built on WordPress with Elementor and uses modern plugins for SEO and cookie management. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security shortfall that undermines user trust and data protection. The site includes privacy and cookie policies with consent mechanisms, indicating good GDPR compliance. Social media integration and structured data enhance their digital maturity. Overall, eSYS demonstrates a solid business and technical foundation but must urgently address its SSL/TLS configuration to improve security posture and user confidence.

H

Herzlich Willkommen!

4youreye.at

0

The website 4youreye.at currently hosts only a default placeholder page with no substantive business content or services described. The domain is registered and hosted in Austria with consistent DNS records, but the site lacks any modern web presence features such as SSL encryption, privacy policies, or contact information. Technically, the site runs on an outdated Apache 2.2.0 server and serves a basic HTML page without any CMS or frameworks. Security posture is poor due to the absence of HTTPS and security headers, exposing visitors to potential risks. Overall, the site appears inactive or under development, providing minimal trust or credibility to visitors. Strategic improvements are needed to establish a professional and secure online presence.

J

J. Hornig

jhornig.com

0

J. Hornig operates a mature and professional e-commerce website specializing in coffee and tea products, including specialty blends, accessories, and barista courses. The company targets both individual consumers and business clients such as gastronomy and office sectors. The website is built on the Shopify platform, leveraging multiple third-party apps for enhanced customer experience, marketing, and reviews. Technically, the site is well-implemented with modern technologies, fast performance, and strong security headers including HSTS and CSP. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms in place. However, direct contact information like emails or phone numbers is not explicitly listed, relying on contact forms instead. The domain is well-registered with a reputable registrar and shows no signs of suspicious activity. Overall, the site demonstrates a strong security posture and good business credibility, making it a trustworthy platform for customers.

W

Wiesner-Hager Möbel GmbH

wiesner-hager.com

0

Wiesner-Hager Möbel GmbH is a medium-sized Austrian company specializing in office furniture, interior design, and office consulting services. The company targets businesses and organizations requiring innovative and sustainable office and contract furniture solutions, including hospitality and healthcare sectors. The website presents a professional and comprehensive portfolio of products and services, supported by international design collaborations and a commitment to sustainability. Technically, the website is built on the Pimcore CMS platform with modern JavaScript and CSS technologies, but suffers from a lack of HTTPS encryption, which significantly impacts its security posture. Security headers are partially implemented, but the absence of a valid SSL certificate and modern TLS protocols exposes the site to risks. Privacy compliance is well addressed with a clear privacy policy, cookie consent via Cookiebot, and GDPR adherence. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

J

Joint Vienna Institute

jvi.org

0

The Joint Vienna Institute (JVI) is a well-established regional training center founded in 1992, providing policy-oriented training primarily to public officials and selected private sector executives from Central, Eastern, and Southeastern Europe, the Caucasus, and Central Asia. Supported by international organizations such as the IMF, Austrian Finance Ministry, EBRD, and others, JVI offers a broad range of courses, webinars, and special events focused on economics, financial sector management, trade policy, and governance. The website reflects a professional and consistent brand with good content quality and clear navigation, targeting a specialized audience in the education and government sectors. Technically, the site is built on TYPO3 CMS with PHP 7.4, uses Bootstrap and jQuery for frontend, and integrates Matomo and Google Analytics for user tracking. The site is hosted likely by Telekom Austria based on DNS records. While the site is mobile-optimized and SEO-friendly, it lacks HTTPS support, which is a critical security shortfall. The absence of SSL/TLS encryption exposes users to potential data interception risks. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is weak due to missing HTTPS, lack of HSTS, and minimal security headers. No incident response or vulnerability disclosure information is provided. Business credibility is strong, supported by clear contact information, partner logos, and active social media presence. Overall, the site is trustworthy but requires urgent security improvements to protect user data and enhance trust. Recommendations include immediate implementation of HTTPS with a valid SSL certificate, enabling security headers, publishing a security policy and vulnerability disclosure, and upgrading PHP to a supported version to improve security and compliance.

S

strasser-consulting

strasser-consulting.at

0

Strasser-Consulting is a small Austrian consulting business specializing in project and process management, restructuring, controlling, strategy development, and business succession. The website presents a professional image with clear service descriptions and a consistent brand presence. Technically, the site is built on WordPress with Yoast SEO for optimization but lacks a valid SSL certificate, serving content only over HTTP, which significantly impacts security posture. The absence of privacy and cookie policies, as well as contact details, reduces trust and compliance with GDPR requirements. Security best practices are minimal, with no modern TLS protocols or security headers implemented. Overall, the site is functional and informative but requires urgent improvements in security and privacy compliance to enhance trustworthiness and protect visitors.

S

SOLVION information management GmbH

solvion.net

0

SOLVION information management GmbH is a well-established IT consulting and solutions provider specializing in digital workplace transformation within the Microsoft 365 ecosystem. With over 22 years of experience, the company serves medium-sized commercial enterprises primarily in the DACH region, focusing on sectors such as production, retail, services, and transportation. Their key services include strategic and technology consulting, adoption and change management, implementation of Microsoft-based solutions, and ongoing technical support. The website reflects a professional and consistent brand image with comprehensive content, active blogs, and customer testimonials, positioning SOLVION as a leading player in their market segment. Technically, the website is built on WordPress with the Divi theme and utilizes modern JavaScript libraries and marketing tools such as Google Tag Manager and Borlabs Cookie for consent management. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Other security best practices like HSTS, OCSP stapling, and modern TLS protocols are also missing, exposing the site to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies, including a consent mechanism that aligns with GDPR requirements. The site employs extensive tracking and marketing tools, but these are transparently disclosed. Contact information is clearly presented, including a detailed contact form, phone number, and physical address, enhancing business credibility. Overall, while the business and content aspects of the website are strong and trustworthy, the lack of HTTPS and proper SSL configuration is a critical vulnerability that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include implementing a valid SSL certificate, enabling modern security protocols, and enhancing security headers to improve the site's security posture and compliance.

S

STIWA Holding GmbH

stiwa.com

0

STIWA Holding GmbH is a well-established Austrian company specializing in automation technology, manufacturing, and software solutions. With over 50 years of experience and a global presence spanning 11 locations across three continents, STIWA serves diverse industries including automotive, electronics, medical technology, and building automation. The company offers comprehensive services from engineering and automated series production to production optimization, positioning itself as a leader in digital, fully automated production solutions. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating marketing and analytics tools such as HubSpot and Google Analytics. However, the absence of a valid SSL certificate and HTTPS support significantly impacts the security posture. While security headers and content security policies are well implemented, the lack of proper SSL/TLS encryption is a critical vulnerability. Privacy and cookie policies are present and GDPR compliant, and contact information is comprehensive and clearly presented. Overall, the website reflects a professional and trustworthy business but requires urgent improvements in SSL/TLS configuration to enhance security and user trust.

M

Mass Response Service GmbH

massresponse.com

0

Mass Response Service GmbH is a medium-sized Austrian telecommunications company specializing in automated mass communication solutions including call centers, SMS, email, fax, and web services. They operate a fiber optic network providing highspeed internet connectivity primarily targeting business customers in Austria. The website content is professional and consistent, with clear navigation and relevant business information. Technically, the site uses Apache and jQuery but lacks modern SSL/TLS configuration, which is a significant security concern. The absence of a valid SSL certificate and HTTPS support undermines the security posture despite the presence of some security headers like HSTS. Privacy compliance is basic but present, with cookie consent mechanisms and a privacy policy linked externally. Social media presence and customer testimonials add trust signals. Overall, the site is functional but requires urgent security improvements to protect user data and enhance trust.

The website wedco.at is currently a parked domain managed by easyname GmbH, a domain registrar and parking service provider based in Austria. The site contains no active business content, serving only as a placeholder page indicating domain parking status. The target audience is domain owners or potential buyers, with no direct business operations or services presented on the site. The business model revolves around domain management and parking services. From a technical perspective, the site is hosted on an Apache server with minimal technical infrastructure. There is no SSL certificate installed, resulting in no HTTPS support, which significantly impacts security and trust. The site lacks modern web technologies, performance optimizations, and SEO best practices. Mobile optimization and accessibility are basic, reflecting the minimal content and simple design. Security posture is weak due to the absence of HTTPS, lack of comprehensive security headers, and no DNS security extensions like DNSSEC or CAA. The domain's SPF records are well configured for email sending, but no other security policies or incident response mechanisms are evident. No privacy or cookie policies are present, indicating poor privacy compliance. Overall, the site presents a low-risk profile as it does not host active content or collect user data, but it also lacks fundamental security and compliance features. Strategic recommendations include implementing HTTPS, adding security headers, enabling DNS security features, and publishing privacy and cookie policies to improve trust and compliance.

H

Habich GmbH

habich.com

0

Habich GmbH is a well-established Austrian manufacturer specializing in inorganic specialty pigments for various industrial applications including coatings, construction chemicals, ceramics, printing inks, and plastics. The company has a long tradition dating back to 1846 and serves a global B2B market with a broad product portfolio including corrosion protection pigments, organic colorants, pigment preparations, and aqueous binder dispersions. Their website reflects a consistent and professional brand image with detailed product information and clear contact details. Technically, the site uses modern front-end libraries and the SilverStripe CMS, but lacks a valid SSL certificate, which is a critical security gap. The cookie consent mechanism is implemented and GDPR compliant, supporting privacy best practices. However, no explicit security policies or incident response information is provided. Overall, the website is functional and professional but requires urgent security improvements to enable HTTPS and enhance trust.

W

www.english-teacher-college.at

english-teacher-college.at

0

The website www.english-teacher-college.at operates as a specialized media platform providing comprehensive reviews, guides, and affiliate marketing services focused on online casinos in Austria. It targets Austrian online casino players by offering detailed casino ratings, bonus information, game variety, payment methods, and customer support evaluations. The site maintains a consistent brand presence with professional content and trust indicators such as DMCA protection and author credentials. Technically, the site is hosted behind Cloudflare and uses modern web technologies including JavaScript and Google Tag Manager, but lacks a valid SSL certificate, resulting in no HTTPS support and weak security posture. This absence of HTTPS and modern TLS protocols is a critical security gap that undermines user data protection and trust. Privacy and cookie policies exist but are basic in compliance, and no direct company contact emails or phone numbers are provided, though social media channels are linked. Overall, the site is functional and content-rich but requires urgent security improvements to enhance user trust and compliance.

A

adRom Media Marketing GmbH

adrom.net

0

adRom Media Marketing GmbH is a well-established Austrian online marketing agency specializing in email marketing, lead generation, display advertising, and digital prospectus solutions. With over 25 years of experience and a large GDPR-compliant database of 45 million addresses, the company serves a broad B2B audience including agencies and enterprises. The website is professionally designed, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with Elementor and employs performance tools like WP Rocket, but suffers from critical security weaknesses due to an invalid SSL certificate and lack of modern TLS protocols, which undermines secure HTTPS delivery. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Contact information and social media presence are transparent and professional. Overall, the site demonstrates high business credibility but requires urgent security improvements to protect user data and enhance trust.

I

iSEEit

iseeit.com

0

iSEEit is a technology company specializing in a native Salesforce Opportunity Management Tool designed to help sales teams visualize and qualify opportunities using structured sales methodologies such as MEDDIC and MEDDPICC. The company targets sales professionals and organizations seeking to improve sales process adoption and forecasting accuracy. The website presents a professional and content-rich platform with detailed product features, customer testimonials, and partner logos, positioning iSEEit as an award-winning solution in its niche. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, Hotjar, and various marketing tools. Hosting is inferred to be on Amazon AWS infrastructure. While the site is mobile-optimized and SEO-friendly, performance metrics indicate slow loading times, suggesting room for optimization. From a security perspective, the site lacks a valid SSL certificate and does not enable modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Although some security headers like HSTS are present, the absence of HTTPS and other best practices significantly lowers the security posture. Privacy compliance is well addressed with comprehensive privacy and cookie policies and user consent mechanisms. Overall, the site demonstrates strong business credibility and content quality but requires urgent improvements in SSL/TLS configuration and security practices to ensure safe user interactions and compliance with modern security standards.

P

Post AG

post.at

0

Post AG operates as Austria's leading postal and logistics service provider, offering a comprehensive range of services including letter mail transport, parcel shipping, business mailing solutions, and online postal services. The company targets both general consumers and business clients within Austria, maintaining a strong market position supported by a professional and content-rich website. The digital infrastructure leverages modern technologies such as React and Sitecore CMS, with integrated analytics and marketing tools like Matomo and Jentis Tag Manager, reflecting a mature digital presence. However, the website's security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which poses significant risks to data confidentiality and user trust. Despite this, the site maintains good privacy compliance with clear policies and consent mechanisms, and offers comprehensive contact options and official social media channels. Strategic improvements in SSL/TLS implementation and security header enforcement are critical to enhance overall security and trustworthiness.

G

Great Sales Force GmbH

greatsalesforce.com

0

Great Sales Force GmbH is a consulting and survey tools provider specializing in enhancing sales force effectiveness and customer intelligence. The company offers a suite of proprietary tools and services such as the GSF® Survey Tools, Benchmark Data, Consulting, and specialized checks for customer culture, leadership, CRM, and customer experience. Their market position is that of a niche provider with international reach, serving businesses aiming to improve sales performance and customer satisfaction. The website is professionally designed, content-rich, and well-branded, targeting business clients primarily in Austria and German-speaking regions. Technically, the website is built on WordPress using Elementor and Yoast SEO, with integrations like Google Tag Manager and Google reCAPTCHA v3 for tracking and form security. Hosting is provided by Hetzner, a reputable provider. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture and user trust. Performance metrics are not available, but the site shows good mobile optimization and basic accessibility. Security-wise, while some best practices like cookie consent and reCAPTCHA are implemented, the lack of HTTPS and modern TLS protocols is a major vulnerability. No advanced security headers or incident response policies are found. Privacy compliance is strong with comprehensive policies and GDPR adherence. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a trustworthy and professional business front but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate SSL deployment, enabling modern TLS, and enhancing security headers and monitoring.

A

AGS

ags-engineering.at

0

AGS is a medium-sized Austrian company specializing in high-end automated special machines, robotics, and industrial data solutions. The company emphasizes quality, innovation, and long-standing experience, positioning itself as a regional leader in manufacturing automation. Their website reflects a professional and consistent brand image with clear service offerings and active social media presence. Technically, the site is built on WordPress with Elementor and uses modern plugins for enhanced functionality, though performance metrics are moderate. Security-wise, while several security headers are implemented, the absence of a valid SSL certificate and lack of modern TLS protocols significantly weaken the security posture. Privacy compliance is minimal, with no visible privacy or cookie policies. Overall, the website is trustworthy but requires urgent improvements in security and privacy compliance to meet modern standards.

VGN Medien Holding GmbH is a leading Austrian magazine publisher with a broad portfolio of print and digital media brands. Founded in 1992, it serves a wide Austrian audience with content spanning politics, lifestyle, business, and entertainment. The company operates multiple media brands and offers advertising and content marketing services. Technically, the website uses modern web technologies including nginx, JavaScript, and Google Analytics, but lacks a valid SSL certificate, which is a critical security shortfall. Security headers are implemented but without proper HTTPS, the site is vulnerable to interception and trust issues. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to align with best practices and user trust expectations.

F

Fritz HOLTER GmbH

holter.at

0

Fritz HOLTER GmbH operates a comprehensive website focused on sanitary and heating wholesale distribution in Austria, with additional services in wellness and pool solutions. The company has a strong market presence with over 150 years of history, targeting both professional installers and end consumers. The website is content-rich, professionally designed, and offers multiple user engagement channels including partner installer search, online bathroom planner, and newsletter subscription. Technically, the site uses modern technologies such as Vue.js and Storyblok CMS, hosted on AWS CloudFront CDN, with good SEO and accessibility practices. However, the security posture is weakened by an invalid or missing SSL certificate, lack of HTTPS enforcement, and absence of modern TLS protocols, which poses a significant risk. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional but requires urgent SSL/TLS remediation to improve security and user trust.

H

Holzhausen Verlag

verlagholzhausen.at

0

Holzhausen Verlag is a well-established Austrian publishing company specializing in scientific and professional publications across sectors such as innovation, research, technology, installation, logistics, and transport. The company holds a strong market position as a leading publisher for specialized industry sectors in Austria, offering a broad range of print and digital media products, newsletters, social media marketing, and event organization. Their business model focuses on delivering high-quality content and media services to professionals and decision-makers in their target industries. Technically, the website is built on WordPress using the Extra theme and integrates modern SEO and analytics tools, but suffers from a critical lack of HTTPS and valid SSL certificate, which significantly impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Overall, the website presents professional content and branding but requires urgent security improvements to protect user data and enhance trust.

U

Umdasch Group

umdaschgroup-ventures.com

0

Umdasch Group is a large Austrian manufacturing and retail company specializing in comprehensive lifecycle solutions for building projects. Their subsidiaries include Doka, a global leader in formwork and scaffolding, umdasch The Store Makers focusing on retail space planning, and Industrial Solutions providing specialized industrial scaffolding and safety services. The company emphasizes sustainability and digital innovation as core drivers of their business model. Technically, the website is built on WordPress with modern plugins and multilingual support, hosted on Azure DNS. However, a critical security weakness is the invalid SSL certificate and lack of TLS protocol support, which undermines secure communications. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional and content-rich, but the security posture requires urgent improvement to protect user data and maintain trust.

L

Leading Search Partners

leadingsearchpartners.com

0

Leading Search Partners is a specialized recruitment and consulting firm focused on executive and professional search services, management audits, performance checks, and outplacement. The company targets businesses and professionals seeking high-quality personnel placement and organizational development support. Established since at least 2016, it operates primarily in Austria with offices in multiple countries, emphasizing a personalized and quality-driven approach. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support. The infrastructure uses Apache server technology but lacks HTTPS, which is a significant security shortfall. The site includes cookie consent mechanisms and Google Analytics tracking, indicating moderate digital maturity but with room for improvement in performance and security. Security posture is weak due to the absence of SSL/TLS encryption and missing security headers, exposing the site to potential risks. However, no active vulnerabilities or malware were detected. Privacy compliance is good with GDPR-aligned cookie consent and a comprehensive privacy policy. Business credibility is supported by clear contact information and professional content. Overall, the site is functional and professional but requires urgent security enhancements, especially enabling HTTPS, to protect user data and improve trustworthiness.

W

Wolfram Bergbau und Hütten AG

wolfram.at

0

Wolfram Bergbau und Hütten AG is a medium-sized Austrian company specializing in the mining, refining, and recycling of tungsten-based products. It holds a strong market position as a leading global supplier of high-quality tungsten powders. The company operates multiple sites including mining in Mittersill, refining in St. Martin, and recycling centers in Austria and India. The website is professionally designed using WordPress with the Divi theme and includes comprehensive content in German and English, targeting industrial clients and potential employees. Technically, the site uses modern SEO and analytics tools but suffers from a critical lack of valid SSL/TLS configuration, impacting security posture. Privacy compliance is well implemented with GDPR-aligned cookie consent mechanisms and a detailed privacy policy. Business credibility is supported by ISO certifications and transparent contact information. Overall, the website is trustworthy and professional but requires urgent security improvements to enable HTTPS and modern TLS protocols.

T

troii Software GmbH

troii.com

0

troii Software GmbH is a small Austrian technology company specializing in software development, offering a suite of products including time tracking, mileage logging, financial market information, and field service management solutions. Their market position is that of a regional software provider with a focus on delivering integrated web and mobile applications. The website is built on WordPress with Elementor and uses Google Cloud hosting. While the site is professionally designed with good content and SEO practices, it lacks a valid SSL certificate, resulting in insecure HTTP connections despite some security headers being present. Privacy policy is comprehensive and GDPR compliant, but cookie consent mechanisms are missing. Contact information is clearly provided, enhancing business credibility.

F

FireStart

firestart.com

0

FireStart is a mature technology company specializing in process automation through a powerful low/no-code platform that integrates AI agents and human-in-the-loop workflows. The company targets businesses seeking to optimize and automate their processes, offering integrations with major platforms such as Microsoft Outlook, SharePoint, SAP, SQL databases, and OpenAI. The website reflects a professional and consistent brand presence with detailed descriptions of use cases and services. Technically, the site is built using Framer, with Google Analytics and HubSpot for marketing and analytics. However, a critical security issue is the absence of a valid SSL certificate and lack of modern TLS protocols, which significantly impacts the security posture. The site includes privacy and cookie policies with consent mechanisms but lacks explicit terms of service and security policies. Overall, the domain is mature and consistent with the business claims, but security improvements are urgently needed.

D

Digital Elektronik

de.at

0

Digital Elektronik is a well-established Austrian company specializing in mechatronic and electronic device manufacturing and development, with over 45 years of experience. The company serves industrial and healthcare sectors with a comprehensive range of services including device manufacturing, development, EMS production, metalworking, assembly, cable harness production, and box build solutions. Their market position is strong with international projects and certifications such as TÜV and Quality Austria. The website reflects a professional and content-rich digital presence, targeting B2B clients in manufacturing and technology sectors. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted on Conova infrastructure. While the site is well-structured and optimized for SEO and mobile devices, performance metrics are missing, and the site lacks a valid SSL certificate, which is a critical security flaw. The absence of HTTPS and modern TLS protocols significantly undermines the security posture. Cookie consent and privacy policies are implemented and GDPR compliant, indicating good privacy compliance. Security-wise, the site has no major vulnerabilities detected but lacks essential security headers and modern encryption protocols. The WHOIS data confirms domain legitimacy and consistency with the company's Austrian base and business history. Overall, the site is trustworthy but requires urgent security improvements to protect user data and enhance trust. Recommendations include immediate installation of a valid SSL certificate, enabling modern TLS protocols, adding security headers, and improving performance monitoring. These steps will elevate the security posture and align the website with best practices for enterprise-grade digital presence.

W

Wilfried Heinzel AG

heinzelsales.com

0

Wilfried Heinzel AG operates the heinzelsales.com website as a global sales network specializing in pulp and paper products. The company is headquartered in Vienna, Austria, and is recognized as a leading trading house in the forest products industry. Their business model focuses on connecting suppliers and customers worldwide, supported by local representation in 28 countries and invoicing centers in major global cities. The website content reflects a professional and consistent brand image targeting industry stakeholders seeking sustainable pulp, paper, and packaging solutions. Technically, the website employs a traditional stack including nginx, jQuery, Bootstrap, and FontAwesome. However, it lacks HTTPS support, which is a critical security deficiency. The site shows basic mobile optimization and accessibility but suffers from slow performance and missing modern security configurations. No advanced CMS or analytics tools are detected, indicating a relatively simple technical infrastructure. From a security perspective, the absence of SSL/TLS encryption severely undermines user trust and data protection. While cookie consent and privacy policies are present and GDPR compliant, the lack of HTTPS and security headers exposes the site to risks. No incident response or vulnerability disclosure mechanisms are evident, limiting transparency and preparedness. The WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website is functional and professionally presented but requires urgent security improvements, especially implementing HTTPS and enhancing server security headers. Strategic recommendations include upgrading SSL/TLS, enabling HSTS, and adopting security best practices to protect users and improve trustworthiness.

R

r4r - Jürgen Müller Management Partners

responsible4results.com

0

r4r - Jürgen Müller Management Partners is a small, established management consulting firm based in Austria, specializing in business transformation, strategy, M&A, processes, and systems. The company targets top management, growth companies, and innovative startups primarily in Central Europe. Their consulting approach emphasizes responsibility from idea to realization, supported by documented references and a partner network across Austria, Germany, Slovenia, and Croatia. The website content is professional, well-structured, and primarily in German, reflecting their regional focus. Technically, the website is built on WordPress hosted on WordPress.com infrastructure, utilizing common plugins such as Yoast SEO, WPBakery Page Builder, and Jetpack. While the site is mobile optimized and SEO friendly, performance data is lacking, and some technical aspects like SSL/TLS are critically deficient. The absence of a valid SSL certificate and modern TLS protocols significantly undermines the security posture. Tracking tools like Mouseflow and WordPress.com Stats are used, indicating moderate user tracking without clear privacy compliance mechanisms. Security-wise, the site lacks a valid SSL certificate, modern TLS support, and cookie consent mechanisms, which are critical for protecting user data and complying with GDPR. No explicit security or incident response policies are published, and no vulnerability disclosure or data protection officer information is available. These gaps present compliance and trust challenges that should be addressed promptly. Overall, the website presents a credible business with professional content and consistent branding but suffers from critical security and privacy shortcomings. Strategic improvements in SSL deployment, privacy compliance, and security transparency are recommended to enhance trust and regulatory adherence.

Electro Terminal GmbH & Co KG is a medium-sized Austrian manufacturer specializing in connection technology for lighting, household appliances, and electrical installations. With over 60 years of experience and recognized innovation awards, the company serves OEMs and manufacturers with development, manufacturing, and distribution of connectors and related components. The website is built on TYPO3 CMS with modern frontend libraries and includes clear business and contact information, social media presence, and compliance-related pages such as privacy and cookie policies. However, the absence of HTTPS/SSL is a critical security vulnerability that significantly impacts the site's security posture. While cookie consent mechanisms and privacy policies are in place, no explicit security policy or incident response information is found. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates good content quality and business credibility but requires urgent security improvements.

P

POWERSERV Austria GmbH

powerserv.at

0

POWERSERV Austria GmbH operates as a medium-sized personnel service provider in Austria, specializing in tailored job placement, HR services, and workforce solutions. The company maintains a strong market position supported by certifications such as ISO 9001 and memberships in industry organizations. Their website targets job seekers and companies, offering services like temporary staffing, payroll outsourcing, and HR consulting. Technically, the website is built on WordPress with Elementor and Astra theme, incorporating modern SEO practices and cookie consent management via Usercentrics. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing users to potential risks. While no critical vulnerabilities are detected, the lack of advanced security headers and incident response information indicates room for improvement. Overall, the site presents professional content and good business credibility but requires urgent security enhancements to protect user data and improve trust.

T

TEDAI Vienna

tedxvienna.at

0

TEDAI Vienna is a prestigious, application-only TED conference focused on Artificial Intelligence, held in Vienna, Austria. It targets business leaders, innovators, and thinkers across multiple sectors including technology, healthcare, finance, and policy. The event offers a premium experience with curated TED Talks, workshops, networking, and exclusive dinners. The website is professionally designed, rich in content, and well-branded, reflecting a strong market position as Europe's exclusive TED AI event. Technically, the site uses modern web technologies such as Webflow CMS, Swiper.js, GSAP, and is hosted behind Cloudflare, but suffers from critical SSL/TLS misconfigurations that undermine its security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of explicit contact emails and phone numbers limits direct communication channels. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security improvements to protect user data and ensure secure communications.

querkraft.at is the website of an Austrian architecture and design firm showcasing a portfolio of projects including schools, residential buildings, museums, and pavilions. The firm targets clients interested in architectural and urban design services, primarily within Austria. The website is built on TYPO3 CMS with Bootstrap and several JavaScript libraries, providing a professional and visually appealing presentation of their work. However, the site lacks critical security features such as HTTPS, which significantly impacts trust and security posture. No privacy or cookie policies are present, and contact information is not explicitly provided, limiting user engagement and compliance with data protection regulations. Overall, the website demonstrates good content quality and business relevance but requires urgent improvements in security and privacy compliance to meet modern standards.