Security Directory

A

asa technology Produktions- und Vertriebs GmbH

asahydraulik.com

0

asa technology Produktions- und Vertriebs GmbH is a mature Austrian manufacturing company specializing in hydraulic cooling and connection technologies. Their website showcases a broad portfolio of heat exchangers, pumps, valves, and connection solutions targeting industrial and mobile equipment manufacturers. The company positions itself as an innovative leader with over 40 years of experience and a global footprint. Technically, the website is built on Drupal 9 with modern front-end libraries but lacks HTTPS, which is a critical security flaw. The site includes a cookie consent mechanism but lacks explicit privacy and terms of service pages. Contact information is clearly provided, enhancing business credibility. Security headers are partially implemented, but the absence of SSL/TLS and other modern security features significantly lowers the security posture. Overall, the website is professional and content-rich but requires urgent security improvements.

LKH Graz II is a large healthcare provider operating multiple hospital locations in and around Graz, Austria. The organization focuses on delivering high-quality medical and human care services to patients while also serving as a significant regional employer. The website serves as an information portal for patients, partners, and staff, providing access to services, news, and contact information. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, with a cookie consent mechanism compliant with GDPR. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks. The site also suffers from slow load times and lacks modern security headers, which should be addressed promptly to improve security posture and user trust.

THQ Nordic GmbH is a global video game publisher and developer founded in 2011, operating primarily in the media industry with a focus on video game publishing, development, and sales. The company maintains a strong market position with multiple subsidiaries and a broad portfolio of game titles, targeting gamers, content creators, and trade partners. The website reflects a professional business model with clear navigation, consistent branding, and a comprehensive online presence including an online store and limited print runs. Technically, the site is built on Drupal 9 with modern front-end libraries and integrates Google Analytics for user tracking. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. Security headers are present but insufficient to compensate for the lack of encryption. Privacy compliance is well addressed with a cookie consent mechanism and clear privacy and terms of service pages. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

L

Linz Center of Mechatronics GmbH

lcm.at

0

Linz Center of Mechatronics GmbH (LCM) is a medium-sized Austrian research and development service provider specializing in mechatronics and manufacturing technologies. The company supports medium and large enterprises in sectors such as machinery, automotive, and medical technology by integrating scientific research into practical, economically viable solutions. Their services include integrated hydraulic and electrical drive systems, vibration technology, Industrial IoT, measurement services, and transformation consulting. The website is professionally designed, multilingual, and targets industrial clients seeking innovation and sustainability improvements. Technically, the site runs on WordPress with the Divi theme and includes modern SEO and multilingual plugins, but suffers from slow load times and lacks a valid SSL certificate, which impacts security posture. Security measures include GDPR-compliant cookie consent and captcha-protected contact forms, but the absence of HTTPS and security headers are critical vulnerabilities. Overall, LCM presents a credible and professional digital presence aligned with its business objectives, but should urgently address SSL and security header issues to improve trust and compliance.

H

Hirtenberger Defence Systems

hirtenberger.com

0

Hirtenberger Defence Systems is a medium-sized manufacturing company specializing in the development and production of mortar systems and related defense technologies. The company operates globally, targeting military and defense sector customers with a comprehensive product range including mortar ammunitions, weapon systems, and auxiliary equipment. The website reflects a professional business presence with consistent branding and good content relevance, though it lacks some advanced features such as detailed contact information and comprehensive privacy compliance mechanisms. Technically, the website is built on WordPress using the Divi theme and incorporates SEO tools like Rank Math. However, the site suffers from slow load times and basic mobile optimization. The hosting provider is hosttech.at, and the DNS setup is standard without advanced security features like DNSSEC or CAA records. From a security perspective, the website has critical shortcomings including the absence of a valid SSL certificate, lack of HTTPS support, and missing security headers. These issues significantly reduce the security posture and expose the site to potential risks. Privacy compliance is minimal, with a basic privacy policy present but no cookie consent mechanism or GDPR compliance indicators. No incident response or vulnerability disclosure information is available, which may impact trust and security readiness. Overall, the website is functional and presents the business adequately but requires urgent improvements in security and privacy compliance to enhance trustworthiness and protect user data. Strategic recommendations include implementing HTTPS, enabling security headers, and establishing clear privacy and incident response policies.

T

timeCOM GmbH

bfit.at

0

timeCOM GmbH is a small Austrian technology company specializing in time management solutions including personnel time tracking, project time tracking, workflow, personnel deployment planning, access control, and payroll export. With over 25 years of experience, they serve business clients primarily in Austria and maintain partnerships with notable software and hardware providers such as Atoss AG, Datafox GmbH, and PCS GmbH. The website is built on WordPress with Elementor and provides clear contact information but lacks critical security and privacy features such as HTTPS and privacy policies. Technically, the site uses standard web technologies but suffers from missing SSL/TLS, which is a significant security risk. No web application firewall or blocking mechanisms are detected, and the site is fully accessible.

C

CRIF Österreich

crif.at

0

CRIF Österreich operates as a leading provider of credit and risk management solutions, serving both businesses and private individuals primarily in Austria but also internationally. The company offers a broad portfolio including creditworthiness assessments, compliance, ESG risk management, identity management, and marketing services. The website reflects a mature enterprise with consistent branding and comprehensive content tailored to its target audience. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Swiper.js, alongside Matomo analytics and Usercentrics for consent management. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the security posture. Privacy and cookie policies are well implemented, indicating good GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements.

W

Weitzer Parkett Vertriebs GmbH

weitzer-parkett.com

0

Weitzer Parkett Vertriebs GmbH is a well-established Austrian family-owned manufacturer and distributor of parquet flooring and wooden stairs, with a history dating back to 1831. The company holds a leading market position in Austria and is recognized as one of the top parquet manufacturers in Europe. Their product portfolio includes innovative parquet solutions such as Pflegefrei-Parkett, Gesund-Parkett, and Flüster-Parkett, emphasizing sustainability and ecological responsibility. The website reflects a mature digital presence with comprehensive product information, multi-language support, and strong branding consistency. Technically, the website is built on WordPress with WooCommerce, utilizing modern libraries and plugins such as jQuery, Slick Slider, and Borlabs Cookie for cookie management. It is hosted behind Cloudflare, providing CDN and security services. However, the absence of a valid SSL certificate and HTTPS support is a significant security shortfall, impacting user trust and data protection. The site implements GDPR-compliant privacy and cookie policies with explicit consent mechanisms. From a security perspective, while the site benefits from Cloudflare's protection and uses reCAPTCHA on forms, the lack of HTTPS and modern TLS protocols, as well as missing security headers like HSTS, reduce its security posture. No explicit security policy or incident response information is found, which could be improved to enhance transparency and readiness. Overall, the website is professional, content-rich, and business-credible but requires urgent security improvements to protect user data and maintain trust. Strategic recommendations include implementing a valid SSL certificate, enabling HTTPS, and enhancing security headers and protocols.

7

7LYTIX GMBH

7lytix.com

0

7LYTIX GMBH is a mature Austrian AI software company specializing in Action Intelligence solutions that optimize business processes such as predictive maintenance, supply chain management, and intelligent personalization. Recently acquired by the KEBA Group, 7LYTIX targets medium to large enterprises in manufacturing, retail, logistics, finance, and media sectors. The website reflects a professional and consistent brand presence with clear business information and customer trust indicators. Technically, the site uses modern JavaScript libraries and frameworks like Bootstrap and jQuery, with analytics implemented via Google Analytics and Matomo. However, the site lacks a valid SSL certificate and proper HTTPS configuration, which significantly impacts its security posture. Privacy and cookie policies are present but basic, and no explicit security or incident response policies are found on the site. Overall, the business credibility is strong, but the security configuration requires urgent improvement to protect user data and maintain trust.

S

SINN Consulting GmbH

sinn.at

0

SINN Consulting GmbH is an Austria-based international consulting firm specializing in SAP BRIM solutions, focusing on industries such as telecommunications, energy, online retail, transport, media, and insurance. The company holds a reputable market position as a SAP Gold Partner and offers a comprehensive portfolio of SAP-related consulting and implementation services. Their website reflects a professional and consistent brand image targeting enterprise and medium-sized clients primarily in Austria and Germany. Technically, the website is built on WordPress with modern plugins and technologies, supporting multilingual content and GDPR compliance. However, a critical security gap exists due to the absence of a valid SSL certificate, despite the presence of HSTS headers, which undermines the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a detailed privacy policy. Overall, the site demonstrates good business credibility and user experience but requires urgent security improvements to enable HTTPS and enhance trust.

W

Webconomy internet commerce GmbH

webconomy.com

0

Webconomy internet commerce GmbH operates a B2B-focused digital marketing agency website offering services such as growth boosting, SEO, Google Ads, mentoring, and performance marketing. The company targets B2B clients seeking to accelerate their digital growth and improve marketing performance. The website is built on WordPress with WooCommerce and several marketing and SEO plugins, indicating a moderate level of digital maturity. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. No advanced security headers or incident response policies are evident, and cookie consent mechanisms are missing despite the use of tracking and analytics tools. The domain is mature and consistent with the business claims, registered since 1998 without privacy protection, but domain protection locks are not enabled, posing a moderate risk. Overall, the website presents good content quality and business credibility but requires urgent security improvements to protect user data and enhance trust.

D

Danube Shipping Management Service GmbH

dsms.at

0

Danube Shipping Management Service GmbH is a medium-sized logistics and shipping management company based in Vienna, Austria, established in 1991. The company ranks among the top 50 logistics providers in Austria and offers key services including transport, agency, and port management. Their business model focuses on providing comprehensive logistics solutions to industrial clients such as Voestalpine and HBIS. The website reflects a professional business presence with clear branding and relevant content targeted at business customers in the transportation sector. Technically, the website is built on WordPress and uses common web technologies such as jQuery, Google Analytics, and Yoast SEO for optimization. However, the site suffers from slow load times and lacks modern security configurations. The absence of a valid SSL certificate and HTTPS support is a critical vulnerability, exposing users to potential data interception risks. The site also lacks cookie consent mechanisms and comprehensive privacy compliance features, which may pose regulatory risks under GDPR. From a security perspective, the website has significant weaknesses including no HTTPS, no security headers, and no incident response or vulnerability disclosure information. While the company holds recognized certifications such as ISO 9001:2015 and FIATA, the digital security posture is weak and requires urgent improvements to protect business and customer data. Overall, the website demonstrates moderate business credibility and content quality but is hindered by poor security practices and compliance gaps. Strategic recommendations include immediate SSL implementation, enhanced privacy compliance, and adoption of security best practices to improve trust and reduce risk.

A

ANGER MACHINING GmbH

anger-machining.com

0

ANGER MACHINING GmbH is a medium-sized manufacturing company specializing in turnkey machining solutions for the automotive industry, focusing on battery trays, profiles, and structural components. The company has a mature online presence with a domain registered since 2007 and holds recognized certifications such as TÜV Süd. Their website is multilingual and professionally designed, targeting B2B clients in automotive manufacturing. Technically, the site is built on WordPress with common plugins for SEO, multilingual support, and cookie compliance. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the security posture and user trust. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site provides good business credibility and content quality but requires urgent security improvements.

F

Festspielhaus St. Pölten

festspielhaus.at

0

Festspielhaus St. Pölten is a prominent cultural venue in Austria specializing in dance, music, and architectural events. The website serves as a comprehensive platform for event information, ticket sales, subscriptions, and educational programs, targeting a diverse audience including families, schools, and cultural enthusiasts. The business is well-positioned regionally with a strong brand presence and partnerships with local institutions. Technically, the site is built on modern frameworks like Nuxt.js and Vue.js, but suffers from slow load times and lacks a valid SSL certificate, impacting security and user trust. The security posture is basic with no advanced headers or HTTPS, though privacy compliance is well addressed with detailed cookie and privacy policies. Overall, the site is professional and content-rich but requires urgent security improvements to enhance trust and compliance.

L

Lakeside Labs GmbH

lakeside-labs.com

0

Lakeside Labs GmbH operates as a research and innovation hub specializing in self-organizing networked systems. The organization targets researchers, technology innovators, and academic-industry partners, offering research projects, publications, and collaborative partnerships. The website reflects a medium-sized technology entity based in Austria with a professional online presence and consistent branding. Technically, the site is built on WordPress with common plugins and libraries, but suffers from slow performance and basic mobile optimization. Security posture is weak due to the absence of a valid SSL certificate and missing DNS records, which undermines trust and exposes the site to potential risks. Privacy compliance is minimal, lacking cookie consent and comprehensive GDPR indicators. Overall, the site is functional but requires significant improvements in security and compliance to enhance trustworthiness and protect user data.

C

Christof Group

christof-group.at

0

Christof Group is a large, family-owned industrial group specializing in critical process equipment manufacturing and plant engineering services, operating across Austria, Germany, and Slovenia. The company is positioned as a world leader in its sector with a strong portfolio of subsidiaries and a history of over 150 years in the industry. The website reflects a professional B2B business model targeting industrial clients in energy, petrochemical, and pharmaceutical sectors. Technically, the site is built on WordPress with modern SEO and multilingual capabilities but lacks HTTPS, which is a significant security shortfall. The security posture is weak due to the absence of SSL/TLS encryption and limited security headers, exposing the site to potential risks. Privacy compliance is addressed with a cookie consent mechanism and privacy policy, but incident response and security policies are missing. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

P

Peak Technology

peaktechnology.at

0

Peak Technology is a specialized engineering company focused on manufacturing bespoke carbon fibre components and high pressure vessels primarily for the space and motorsport industries. The company positions itself as a trusted partner with over 15 years of motorsport championship involvement and expertise in space mission components. Their business model is B2B, providing high-tech composite solutions with certifications such as ISO 9001 and EN 9100 that underline their quality management commitment. The website is professionally designed using WordPress with modern SEO practices and structured data, targeting industry professionals and partners. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines trust and data protection. The site lacks a cookie consent mechanism despite setting cookies, and no incident response or vulnerability disclosure policies are visible. Overall, the technical infrastructure is moderate with room for improvement in security and privacy compliance. Strategic recommendations include immediate SSL deployment, enhanced security headers, and formalized security policies to improve the security posture and trustworthiness of the digital presence.

P

pluradent-austria.at

pluradent-austria.at

0

The website pluradent-austria.at operates as an affiliate media platform specializing in online casino reviews and rankings targeted at Austrian players. It provides comprehensive content on casino options, bonuses, payment methods, legal considerations, and responsible gambling. The site is hosted behind Cloudflare and uses modern JavaScript libraries like Swiper.js for UI components. However, the site lacks a valid SSL certificate, resulting in no secure HTTPS connection, which significantly impacts its security posture. Security headers are present but cannot compensate for the missing SSL. Privacy compliance is poor due to the absence of privacy and cookie policies, and no contact information is provided, limiting business credibility. Overall, the site offers good content quality and moderate professionalism but requires urgent improvements in security and privacy to enhance trust and compliance.

L

LVA GmbH

lva-gmbh.at

0

LVA GmbH is a well-established Austrian company specializing in food safety, quality control, certification, and training services primarily targeting the food, cosmetics, pharmaceutical, and supplement industries. Founded in 1926, it holds a strong market position as a leading competence center in the Central and Eastern European region, serving clients in over 80 countries. The company offers a comprehensive portfolio including laboratory analyses, expert assessments, inspections, research, and educational seminars. Technically, the website is built on WordPress with modern SEO and cookie consent tools, but lacks a valid SSL certificate, which impacts security and user trust. The security posture is basic with no HTTPS, no HSTS, and missing advanced security headers, exposing the site to potential risks. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional and content-rich but requires urgent security improvements to align with best practices.

D

DIG GmbH

dig.at

0

DIG GmbH is a medium-sized Austrian company specializing in digital spend management solutions across Source2Pay, Finance, and Supply Chain sectors. As part of the Proalpha Group, DIG offers ERP-independent software and consulting services targeting enterprises seeking to optimize procurement and financial processes. The website demonstrates a professional and consistent brand presence with comprehensive content, customer testimonials, and references from reputable clients. Technically, the site is built on the HubSpot CMS platform, utilizing modern marketing and analytics tools such as HubSpot Analytics, Google Tag Manager, and Cookiebot for consent management. However, a critical security issue is the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. Performance is also suboptimal with a high load time and resource count. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is credible and well-positioned in its market but requires urgent security improvements.

C

CBmed GmbH

cbmed.org

0

CBmed GmbH is a public-private partnership based in Graz, Austria, specializing in biomarker research to advance applied precision medicine and personalized healthcare. The organization collaborates globally with over 50 partners from academia and industry, focusing on innovative technologies such as ex vivo compound screening, microbiome research, and data science. Their business model centers on research and development services, supported by funded projects and a commitment to quality and innovation. The website reflects a mature, professional entity with consistent branding and comprehensive content tailored to healthcare professionals and collaborators. Technically, the website is built on WordPress with modern plugins like Yoast SEO and WPForms, hosted on an Apache server. While the site is mobile-optimized and SEO-friendly, performance metrics indicate slow loading times. Security posture is weak due to the absence of HTTPS, lack of security headers, and missing DNSSEC, exposing the site to potential risks. No explicit security or incident response policies are published, which could impact trust and compliance. Overall, the domain registration data aligns well with the business claims, showing a consistent and legitimate presence since 2014. Contact information is clearly provided, including multiple physical locations, email, phone, and a contact form. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms in place. However, the critical lack of SSL/TLS encryption significantly lowers the security score and poses a risk to user data confidentiality. Strategically, CBmed should prioritize implementing HTTPS, enhancing security headers, and publishing security policies to improve trust and compliance. The website’s strong content and business credibility provide a solid foundation for growth and partnership expansion, but technical and security improvements are essential to safeguard operations and reputation.

sprungbrett.at is an Austrian job platform focused on connecting job seekers with employment opportunities primarily in commercial and technical sectors. The website offers job listings, initiative application options, and personnel search services for companies. It targets job seekers in Austria and positions itself as a regional recruitment service with a professional and user-friendly interface. Technically, the site uses a Contao CMS backend with PHP 7.4 and nginx server, integrating common web technologies such as jQuery, Google Analytics, Google Maps API, and ShareThis for social sharing. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. Security headers are present but undermined by the absence of HTTPS. Privacy compliance is weak, with no visible privacy or cookie policies. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Overall, the site is functional and professional but requires urgent security and compliance improvements.

T

TTG Tourismus Technologie GmbH

ttg.at

0

TTG Tourismus Technologie GmbH is a medium-sized Austrian technology company specializing in innovative digital solutions for the tourism sector. Their offerings include data analytics, digital communication tools, IT infrastructure, and tourism-specific software products such as TOURDATA and TOURismus Intelligence. The company targets tourism destinations and partners, providing integrated digital services to enhance the customer journey and destination management. Technically, the website is built on TYPO3 CMS and incorporates modern web technologies including Google Analytics for user tracking and Bootstrap for responsive design. While the site is mobile-optimized and accessible, performance is moderate with a relatively slow load time. The absence of a valid SSL certificate and HTTPS support is a significant technical and security shortfall. From a security perspective, the website lacks a valid SSL certificate, does not implement modern TLS protocols, and is missing key security headers and HSTS. However, it does implement GDPR-compliant cookie consent mechanisms and provides clear contact information. No explicit security policies or incident response contacts are published, and no vulnerability disclosure program is evident. Overall, the website presents a professional and trustworthy business presence but requires urgent improvements in security infrastructure to protect user data and enhance trust. Strategic recommendations include implementing HTTPS, enabling security headers, and publishing security policies to strengthen the security posture and compliance.

O

Oskar Schmidt GmbH

schmidtauto.at

0

Autohaus Schmidt, officially Oskar Schmidt GmbH, is a well-established automobile dealership and service provider based in Salzburg, Austria, with a history dating back to 1928. The company operates multiple locations and offers a wide range of services including new and used car sales, vehicle rental, servicing, repairs, and financing. Their market position is strong within the regional transportation sector, supported by authorized partnerships with major car brands such as Ford, Volvo, Peugeot, and Citroën. The website reflects a professional and consistent brand image targeting car buyers and service customers in Salzburg and surrounding areas. Technically, the website uses modern JavaScript, AWS CloudFront CDN, and Google Tag Manager for analytics and marketing. However, it lacks HTTPS, which is a critical security deficiency. The site includes cookie consent mechanisms and privacy policies compliant with GDPR, indicating a good level of privacy awareness. Performance data is unavailable, but the site appears mobile-optimized and SEO-friendly. From a security perspective, the absence of SSL/TLS encryption severely impacts the site's security posture, exposing users to potential risks. Other security headers and best practices are partially implemented but overshadowed by the lack of HTTPS. No incident response or vulnerability disclosure policies are present. The domain registration data aligns well with the business claims, enhancing trustworthiness. Overall, while the business and website demonstrate professionalism and good content quality, the critical lack of HTTPS significantly lowers the security score and overall risk profile. Strategic improvements in security infrastructure are essential to protect users and maintain trust.

A

Amomed Pharma GmbH

amomed.com

0

Amomed Pharma GmbH is a medium-sized healthcare company specializing in pharmaceutical products for intensive care, emergency medicine, anesthesia, psychiatry, and neurology. The company operates as a member of the AOP Health Group, providing critical care medications aimed at reducing mortality and improving quality of life. The website targets healthcare professionals and institutions, offering product information and therapy solutions. Technically, the website is built on WordPress with a PHP backend and uses common web technologies such as jQuery, Bootstrap, and Font Awesome. However, the site lacks a valid SSL certificate, resulting in no proper HTTPS support, which is a significant security concern. Security headers are partially implemented, but critical configurations like TLS protocols and cipher suites are missing. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Contact information is not readily visible on the homepage, limiting user trust and engagement. Overall, the website demonstrates moderate digital maturity but requires urgent improvements in security and privacy to meet modern standards.

D

Donauchem GmbH

donauchem.at

0

Donauchem GmbH is a medium-sized chemical distributor operating primarily in Austria and Central/Eastern Europe. The company specializes in the distribution of chemical raw materials and offers tailored product development through its own research and development department. It serves diverse industries including food, pharma, cosmetics, agriculture, and manufacturing. The website reflects a professional business with clear branding and a comprehensive product portfolio. Technically, the site is built on ASP.NET Web Forms with Kentico CMS and hosted on Microsoft IIS. However, the absence of a valid SSL certificate and lack of HTTPS significantly undermine the security posture. Privacy compliance is well addressed with a privacy policy and cookie consent mechanism in place. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

G

Globo Lighting

globo-lighting.com

0

Globo Lighting is a well-established European retailer specializing in a wide range of lighting products, including indoor and outdoor lamps, ceiling lights, wall lights, and decorative lighting solutions. With over 25 years of market presence and multiple physical showrooms, the company offers a comprehensive e-commerce platform with detailed product information and multiple language support. The technical infrastructure is based on modern technologies such as Shopware CMS and is hosted on Google Cloud, but lacks a valid SSL certificate, resulting in an insecure HTTP-only connection. Security headers are properly configured, but the absence of HTTPS significantly weakens the security posture. Privacy and cookie policies are present and include consent mechanisms, indicating good compliance with GDPR requirements. The domain is mature and registered consistently with the business profile, enhancing trustworthiness. Overall, the website provides an excellent user experience and professional content but requires urgent security improvements to protect user data and enhance trust.

M

MMX e.U.

silberdraht.agency

0

Silberdraht Agency is a small Austrian online marketing firm specializing in services tailored for the BestAger demographic (age 50+). Founded in 2019 and operated by MMX e.U., the agency offers website analysis, creation, optimization, search engine marketing, social media marketing, and newsletter distribution. Their market position is niche-focused with a dedicated team and partnerships that enhance their service offerings. Technically, the website runs on WordPress with popular plugins and themes, but lacks HTTPS, which is a critical security shortfall. The site is mobile-optimized and SEO-friendly but suffers from slow or unmeasured performance. Security posture is weak due to missing SSL and security headers, and privacy compliance is minimal with no cookie consent mechanism. Overall, the business appears legitimate and consistent with its domain registration data, but security improvements are urgently needed.

K

Kienbaum Consultants Austria GmbH

kienbaum.at

0

Kienbaum Consultants Austria GmbH is a well-established HR and management consulting firm with a strong presence in Austria since 1958 and origins dating back to 1945. The company offers a comprehensive range of services including assessment, executive search, compensation management, and organizational transformation. Their Vienna office serves as an international hub for compensation data and global studies. Technically, the website is built on WordPress using the Divi theme, with modern tools like Matomo analytics and Cookiebot for privacy compliance. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing the site to risks and reducing trust. Despite this, the site demonstrates good privacy compliance and business credibility with clear contact information and certifications. Strategic improvements in SSL/TLS implementation and security headers are recommended to enhance overall security and user trust.

L

Leftshift One

leftshift.one

0

Leftshift One is an established Austrian technology company specializing in generative AI solutions, particularly their MyGPT platform which leverages Retrieval-Augmented Generation (RAG) to provide secure, scalable, and customizable AI-powered knowledge management for enterprises and SMEs. The company positions itself as a technology leader with over 8 years of experience and 200 successful AI projects, emphasizing data privacy and compliance with GDPR. Technically, the website is built on WordPress with modern frameworks like Elementor and optimized with WP Rocket, but lacks a valid SSL certificate and proper TLS configuration, which are critical security gaps. The security posture is moderate with some vulnerabilities such as a subdomain takeover risk. Overall, the website is professional, content-rich, and compliant with privacy regulations, but requires urgent improvements in SSL/TLS security to enhance trust and protect user data.

G

GS1 Austria

gs1.at

0

GS1 Austria is a well-established non-profit organization serving as the official barcode and GTIN issuing authority in Austria. It provides a comprehensive suite of GS1 standards and services to businesses across multiple sectors including retail, manufacturing, transportation, and government. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding supported by major corporate clients. Technically, the site is built on Drupal 10 with modern JavaScript libraries and integrates Google analytics and marketing tools, but suffers from a critical lack of HTTPS support due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Contact information is primarily via contact forms, with no direct emails or phone numbers publicly listed. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to improve security and user trust.

A

Austrian Institute of Economics and Social Philosophy

austrian-institute.org

0

The Austrian Institute of Economics and Social Philosophy is a small non-profit organization focused on promoting classical liberal social philosophy and Austrian economics primarily to a German-speaking audience. The website serves as an educational platform offering blogs, videos, podcasts, and events such as the Austrian Academy. The organization is funded by donations and maintains a professional online presence with consistent branding and active social media channels. Technically, the website is built on WordPress with modern plugins and page builders, but lacks a valid SSL certificate, which is a critical security flaw. The absence of HTTPS significantly undermines the site's security posture despite good privacy compliance and cookie consent mechanisms. No explicit security or incident response policies are published, and no phone contact is provided, only an official email address. Overall, the site is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

L

Lorencic GmbH Nfg. & Co KG

lorencic.com

0

Lorencic GmbH Nfg. & Co KG operates as a medium-sized company specializing in construction services and products, including workwear, reinforcement fabrics, construction profiles, diamond cutting discs, and rental of construction machinery. The company targets construction professionals and contractors primarily in Austria and surrounding European countries, as evidenced by multiple country-specific domains. The website presents a professional design with clear navigation and relevant content, supporting its business model as a B2B supplier and rental service provider. Technically, the website runs on an Apache server with Ubuntu, utilizing common JavaScript libraries such as jQuery and Bootstrap for frontend functionality. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. Performance metrics are unavailable, and mobile optimization is basic but functional. The site includes cookie consent mechanisms and basic privacy policy compliance, though more advanced privacy and security policies are lacking. From a security perspective, the lack of HTTPS is a critical vulnerability, exposing users to potential data interception risks. No advanced security headers or incident response information is published, and session management could be improved. The site uses Matomo analytics with user consent, indicating moderate user tracking with some privacy compliance. Overall, the security posture is weak and requires urgent improvements. Strategically, the company should prioritize implementing HTTPS with a valid certificate, enhance security headers, and publish clear security and incident response policies. Improving privacy compliance and expanding trust indicators will also strengthen business credibility and user confidence.

M

MWS

mws.eu

0

MWS is an international market leader specializing in aluminum casting technologies including sand casting, permanent mold casting, and low-pressure casting. The company offers comprehensive services from development and prototyping to series production and mechanical processing, targeting industrial sectors such as automotive, electromobility, and transportation. The website is built on Concrete CMS and employs standard web technologies with Google Analytics for user tracking. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit terms of service or security policies are present. Overall, the site presents professional content and clear navigation but requires urgent security improvements.

R

Rail Cargo Group

railcargo.com

0

Rail Cargo Group is a well-established rail logistics provider operating primarily in Europe and Asia, offering a broad range of freight and logistics services including wagon loads, intermodal and multimodal logistics, and railway operations. The company targets businesses requiring efficient rail freight solutions and maintains a strong market position supported by its parent company ÖBB. Technically, the website employs modern JavaScript libraries and custom corporate scripts, with a focus on accessibility and SEO, though performance data is unavailable. Security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, despite good security header implementation. Privacy compliance is supported by a comprehensive privacy policy and GDPR adherence, with Matomo analytics used for privacy-conscious tracking. Overall, the site is professional and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

I

Irian Solutions Softwareentwicklungs GmbH

irian.com

0

Irian Solutions Softwareentwicklungs GmbH is a medium-sized Austrian technology company specializing in software development and digital solutions using Java, Angular, and .NET technologies. With over 20 years of experience, the company serves a B2B market, providing digital product development, data and AI solutions, and technology expert staffing. Their client portfolio includes major enterprises such as Allianz, BMW, and Deutsche Börse Group, positioning them as a reputable player in the software development sector. The website is professionally designed, multilingual (German and English), and showcases detailed project case studies and client logos, enhancing credibility. Technically, the website uses modern frameworks like Astro and integrates Google Tag Manager for analytics. However, performance is slow with a large page size and high load time. Mobile optimization and SEO are good, but accessibility is basic. Hosting and DNS services are managed via Cloudflare, but the SSL/TLS configuration is critically lacking, with no valid certificate or HTTPS enabled, exposing the site to security risks. Security posture is weak due to missing HTTPS, lack of security headers, no DMARC or DNSSEC, and absence of published security or incident response policies. Privacy compliance is good with a comprehensive privacy policy and cookie consent mechanism in place. Business credibility is strong based on content quality, client trust signals, and professional presentation. Overall, the site presents a trustworthy business but requires urgent security improvements, especially SSL/TLS implementation, to protect users and enhance trust. Strategic recommendations include securing the website with valid certificates, enabling security headers, and publishing security policies to improve compliance and risk management.

The website kphgraz.at is currently inaccessible, returning an HTTP 403 Forbidden error indicating that access is denied due to insufficient permissions. The site lacks any visible content, metadata, or structured data, which prevents a full analysis of its business or technical attributes. The hosting provider is identified as World4You, an Austrian hosting company, and the domain is registered consistently with the website's country. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. No privacy, cookie, or terms of service policies are present, and no contact information is available, which further reduces trust and compliance levels. Overall, the site appears to be either misconfigured or a placeholder without active content.

E

ekey biometric systems GmbH

ekey.net

0

ekey biometric systems GmbH is a medium-sized Austrian technology company founded in 2002, specializing in fingerprint-based access control and smart home integration solutions. The company holds a leading market position in Europe for fingerprint access systems, offering a range of products including door-integrated fingerprint readers, wall-mounted units, and retrofit kits. Their business model focuses on manufacturing, sales, and providing support and training services. The website reflects a mature digital presence with multilingual support and comprehensive product information targeting homeowners, businesses, and smart home users. Technically, the site is built on WordPress with modern plugins and analytics tools, but suffers from a critical security issue due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Security headers are well configured, and privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

L

Lebenshilfe Österreich

lebenshilfe.at

0

Lebenshilfe Österreich is a well-established non-profit organization dedicated to advocating for the rights and support of people with intellectual and multiple disabilities across Austria. Serving as the umbrella organization for regional Lebenshilfe groups, it offers services including support, advocacy, public relations, and organizes events such as the Austrian Inclusion Prize. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency targeting individuals and stakeholders interested in disability rights and inclusion. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Cookiebot for consent management. It uses Apache hosting with DNS managed by easyname.eu. Accessibility features and structured data are implemented, enhancing user experience and SEO. However, performance metrics are not provided. From a security perspective, the site lacks a valid SSL/TLS certificate, exposing it to significant risks and undermining user trust. No advanced security headers or protocols are configured, and no incident response or security policies are publicly disclosed. Cookie consent is properly implemented, and privacy policies are present and GDPR compliant. Overall, while the website excels in content quality, user experience, and privacy compliance, the absence of HTTPS is a critical vulnerability that must be addressed immediately to protect users and maintain credibility. Strategic improvements in security posture and transparency around security policies are recommended to enhance trust and resilience.

D

DORDA Rechtsanwälte GmbH

dbj.at

0

DORDA Rechtsanwälte GmbH is a leading Austrian law firm specializing in business and economic law, offering a broad range of legal services including transactions, restructurings, and digital transformation advisory. The website reflects a professional and comprehensive digital presence with excellent content quality and user experience, targeting business clients nationally and internationally. Technically, the site is built on Drupal 10 with modern features such as video backgrounds and Matomo analytics, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of HTTPS and security headers significantly lowers the security posture. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

B

BoehlerBrothers GmbH

boehlerbrothers.com

0

BoehlerBrothers GmbH is a small technology company based in Vorarlberg, Austria, specializing in app and web development, technology consulting, and artificial intelligence solutions. The company positions itself as a regional innovator with a strong focus on digital transformation and partnerships with reputable local and regional businesses. Their website reflects a professional and modern digital presence built on Next.js and React technologies, hosted via Cloudflare, and integrates marketing and feedback tools such as Google Analytics and Gleap. However, the site suffers from a critical security deficiency due to the absence of a valid SSL certificate, resulting in no HTTPS support and lack of security headers, which significantly impacts the security posture and user trust. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is evident. Contact information is clearly provided, enhancing business credibility. Overall, the website is content-rich and professionally designed but requires urgent security improvements to meet modern standards.

I

Innconcepts IT GmbH

innconcepts.at

0

Innconcepts IT GmbH is a specialized Oracle Partner providing innovative hospitality software solutions tailored for hotels, gastronomy, and wellness sectors. Their offerings include cloud-based hotel and restaurant management software, wellness and leisure software, and comprehensive hospitality IT services. The company positions itself as a customer-centric and authentic partner, emphasizing personalized service and modern technology adoption. The website reflects a professional and consistent brand image with excellent content quality and clear messaging targeting hospitality industry professionals. Technically, the website is built on Drupal 10 CMS, hosted on Apache servers with modern JavaScript libraries such as Alpine.js and AOS for animations. It employs Google Tag Manager and Google Analytics for tracking and marketing purposes, alongside a compliant cookie consent mechanism. Performance is fast, mobile optimization is excellent, and SEO practices are good. Security headers are present, and the SSL certificate is valid, although HSTS is not enabled, which is a recommended improvement. From a security perspective, the site demonstrates good baseline security practices with no detected vulnerabilities or exposed sensitive data. However, the absence of a dedicated security policy or incident response contact and lack of security.txt file indicates room for maturity improvement. Privacy compliance is well addressed with cookie consent and a privacy policy, but terms of service and data protection officer contact details are missing. Overall, the website and business present a trustworthy and professional front with moderate to high security posture and good privacy compliance. Strategic recommendations include enabling HSTS, publishing a security policy and vulnerability disclosure mechanism, and enhancing transparency around incident response to further strengthen trust and security culture.

U

United Nations Commission On International Trade Law

uncitral.org

0

The United Nations Commission On International Trade Law (UNCITRAL) operates as a key intergovernmental organization under the United Nations, focused on developing and harmonizing international trade law frameworks. The website serves as an authoritative resource for legal texts, working documents, technical assistance, and research related to international trade law, targeting governments, legal professionals, and trade stakeholders globally. The organization is well-established with a mature domain and consistent branding aligned with UN standards. Technically, the website is built on Drupal 7 with common web technologies such as jQuery and Bootstrap. While the site demonstrates good content quality, navigation, and mobile optimization, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and lack of HTTPS enforcement, which severely impacts its security posture. Performance metrics are unavailable, but the technical stack suggests potential modernization needs. Security-wise, the site implements some security headers but fails to provide a valid SSL/TLS configuration, exposing users to risks and undermining trust. Privacy compliance is minimal, with no visible cookie consent mechanisms and only a basic privacy policy linked externally. Contact information is not explicitly provided on the homepage, limiting direct communication channels. Overall, the site is credible and authoritative but requires urgent security improvements to protect users and maintain trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, enhancing privacy and cookie consent mechanisms, and modernizing the technical infrastructure to improve performance and security.

P

Posthotel Achenkirch GmbH

posthotel.at

0

Posthotel Achenkirch GmbH operates a premium 5-star adults-only hotel located in Tirol, Austria, specializing in wellness, gourmet dining, and active holidays. The website presents a rich, multilingual content experience with clear business information and strong branding consistency. Technically, the site is built on TYPO3 CMS, uses modern JavaScript practices, and integrates marketing and analytics tools such as Google Analytics and Usercentrics for cookie consent. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate and HTTPS support, exposing visitors to potential risks. The site implements basic security headers but lacks advanced protections like HSTS and OCSP stapling. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the business is credible and well-positioned in the hospitality market, but urgent security improvements are needed to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Edelweiss Consulting GmbH

edelweiss-consulting.at

0

Edelweiss Consulting GmbH is a small Austrian consulting firm specializing in strategy development, organizational development, and personnel development, primarily serving clients in Vienna and Linz. The company presents itself professionally with a well-structured website, social media presence, and recognized certifications such as the Top Berater Gütesiegel Kurier 2024. Technically, the website is built on WordPress using common plugins for SEO, forms, and cookie consent, hosted on world4you.at. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing visitors to risks and undermining trust. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, supporting GDPR adherence. Overall, the website is functional and professional but requires urgent security improvements.

H

Hartlauer Handelsgesellschaft m.b.H.

hartlauer.at

0

Hartlauer Handelsgesellschaft m.b.H. operates a large retail and e-commerce platform focused on optics, photography, mobile phones, and hearing aids in Austria. With over 160 physical stores and a comprehensive online shop, it serves a broad consumer base with premium products and services including free eye tests and hearing aid trials. The website is professionally designed with excellent content quality and user experience, supported by a modern technology stack primarily based on Salesforce Commerce Cloud and integrated marketing and analytics tools. However, a critical security issue is present due to the lack of a valid SSL certificate and absence of HTTPS, severely impacting the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, and the company demonstrates strong business credibility with clear contact information and trust seals. Strategic security improvements are urgently needed to protect user data and maintain trust.

C

CONVISIO Völkermarkt WTH-STB GmbH & Co KG

convisio.at

0

CONVISIO Völkermarkt WTH-STB GmbH & Co KG is a medium-sized Austrian financial services company specializing in tax consulting, auditing, financial advisory, accounting, and startup consulting. The company operates multiple offices across Austria, targeting clients seeking professional financial and tax services. The website is built on WordPress with Elementor and includes modern SEO and cookie consent tools, reflecting a moderate level of digital maturity. However, the absence of a valid SSL certificate and lack of advanced security headers represent critical security weaknesses that could undermine user trust and data protection. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the company presents a professional image with clear contact information and trust signals such as certifications, but must urgently address its SSL and security posture to improve its risk profile.

F

Forerunners Network

roadmap2050.at

0

Forerunners Network is a German-language media platform based in Austria focusing on ESG (Environmental, Social, Governance) topics, infrastructure, and sustainability. It offers news articles, podcasts, videocasts, and a newsletter subscription service targeting an audience interested in sustainable development and innovation. The platform maintains a consistent brand presence and active social media engagement across multiple channels. Technically, the website runs on WordPress with the Bricks theme and uses plugins such as Borlabs Cookie for consent management and Podigee for podcast integration. However, the site lacks HTTPS, which is a critical security shortcoming. Security headers are minimal, and no incident response or security policies are publicly disclosed. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

BE-terna

be-terna.com

0

BE-terna is a medium-sized technology solutions provider specializing in ERP, CRM, business intelligence, data analytics, and automation solutions. The company partners with leading global technology providers such as Microsoft, Infor, Qlik, and UiPath, positioning itself as a trusted partner for businesses seeking digital transformation across multiple industries including manufacturing, retail, energy, and financial services. The website reflects a professional and comprehensive digital presence with strong branding and relevant content tailored to its target audience. Technically, the website is built on a modern stack including Webflow CMS, jQuery, and various JavaScript libraries for UI enhancements. However, the site suffers from critical SSL/TLS misconfigurations, lacking a valid certificate and modern TLS protocol support, which significantly impacts its security posture and user trust. Performance is moderate with good mobile optimization and SEO practices, but accessibility could be improved. Security-wise, while several security headers are implemented, the absence of a valid SSL certificate and lack of explicit security policies or incident response information are notable weaknesses. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Contact information is primarily via forms, with no explicit emails or phone numbers displayed. Overall, BE-terna presents a credible and professional business front with strong industry partnerships and content quality but requires urgent improvements in SSL configuration and privacy compliance to enhance security and trustworthiness.