Security Directory

Ö

Österreichische Gesundheitskasse

ooegkk.at

0

The Österreichische Gesundheitskasse (ÖGK) operates as a major public health insurance provider in Austria, delivering comprehensive health insurance services and support to insured individuals, employers, and contract partners. The website serves as an official portal offering information, appointment scheduling, customer service, and career opportunities, targeting Austrian residents and stakeholders in the healthcare sector. The digital presence is supported by a modern technology stack including Apache, Jakarta Faces, and jQuery, managed via a Gentics CMS platform, and hosted within the Austrian social insurance infrastructure. Despite a professional and content-rich website, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. The site implements a strong Content Security Policy and cookie consent mechanisms, reflecting good privacy compliance, but the lack of HTTPS and TLS protocols is a critical vulnerability. Social media integration and clear contact information enhance trust and user engagement. Overall, the website is functional and credible but requires urgent security improvements to protect user data and comply with modern standards.

C

Campaigning Bureau

campaigning-bureau.com

0

Campaigning Bureau is a well-established political campaigning agency based in Austria with offices in Vienna and Berlin. They specialize in movement campaigning, political communication, stakeholder mobilization, and ESG communication, serving political actors, companies, NGOs, and organizations. The company holds a strong market position in Europe, supported by international awards and recognition as a top employer. Technically, the website employs modern tracking and consent management tools such as Google Tag Manager and Truendo CMP, but suffers from slow load times and lacks a valid SSL certificate, which impacts security and user trust. The security posture is basic with no HTTPS and missing security headers, representing a critical vulnerability. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies. Contact information is transparent and complete, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and improve trust.

D

Dorotheum GmbH & Co KG

dorotheum.com

0

Dorotheum GmbH & Co KG operates the largest auction house in Central Europe, specializing in art, antiques, jewelry, and collectibles with over 300 years of experience. The company holds numerous auctions annually, both online and in physical salerooms, and offers additional services such as private sales and expert consultations. The website is professionally designed, content-rich, and targets collectors, buyers, and sellers in the art and luxury goods market primarily in Austria and surrounding regions. Technically, the site is built on TYPO3 CMS with modern frontend libraries and integrates analytics and marketing tools like Google Tag Manager and Facebook Pixel. However, the absence of a valid SSL certificate and lack of security headers represent significant security weaknesses. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Overall, the site demonstrates strong business credibility but requires urgent improvements in security posture to protect user data and enhance trust.

E

Ecker & Partner

eup.at

0

Ecker & Partner is a well-established PR and Public Affairs agency based in Vienna, Austria, offering a broad range of communication services including crisis communication, litigation PR, digital content, and storytelling. The company positions itself as a leading agency in its sector with a strong network and long-standing client relationships. Technically, the website is built on WordPress with common marketing and analytics integrations but suffers from a critical lack of a valid SSL certificate, resulting in insecure HTTP connections. The site is content-rich and professionally designed but experiences slow load times and lacks some security best practices. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy page. Overall, the business credibility is high, but the security posture requires urgent improvement to protect user data and trust.

A

Amiblu Group

amiblu.com

0

Amiblu Group operates as the world's largest producer and technology partner for GRP (glass-fiber reinforced plastics) pipe systems, focusing on sustainable water infrastructure solutions. The company targets urban and rural communities, industries, and infrastructure planners, offering a broad portfolio of pipe products, technical documentation, and reference databases. Their market position is strong, supported by certifications such as EcoVadis and partnerships like the UNESCO World Engineering Day 2025. The website reflects a mature, well-established business with a professional and consistent brand presence. Technically, the website is built on WordPress with a modern tech stack including caching and multilingual support. However, performance is moderate and accessibility is basic. The site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are minimal, and no advanced security policies are implemented. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to potential risks. No incident response or security policy information is publicly available. The domain registration is consistent and mature, supporting the legitimacy of the business. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and enhance trust.

W

Wiener Privatbank

wienerprivatbank.com

0

Wiener Privatbank is a medium-sized Austrian private bank specializing in wealth and asset management, capital market investments, and real estate. The bank emphasizes personalized service, crisis-proof investment strategies, and trusted FATCA solutions. The website is built on a modern CMS platform (Craft CMS) with SEOmatic for SEO optimization and includes rich content and clear navigation targeting private banking clients and investors. However, the absence of a valid SSL certificate and HTTPS support is a critical security vulnerability that undermines user trust and data protection. While privacy policies are present and GDPR compliance appears addressed, no cookie consent mechanism or terms of service were found. Social media presence on Facebook, LinkedIn, and YouTube supports brand visibility. Overall, the website demonstrates good business credibility and content quality but requires urgent security improvements to protect users and enhance trust.

T

TeCoB GmbH

tecob.at

0

TeCoB GmbH's website is currently under construction and provides minimal information about the company or its services. The site uses WordPress with an under construction plugin and basic frontend technologies such as Bootstrap and Font Awesome. The domain is registered in Austria and DNS records are properly configured, including MX records pointing to Outlook mail protection. However, the website lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security and trust. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available, limiting user engagement and compliance with data protection regulations. Performance is poor with a very slow load time, and no analytics or tracking technologies are detected.

H

HAKOM Time Series GmbH

hakom.at

0

HAKOM Time Series GmbH is a medium-sized Austrian company specializing in time series management software and cloud services for the energy sector. The company positions itself as a technology leader with over 30 years of experience, offering both on-premises and cloud-based solutions under the PowerTSM® brand. Their website reflects a professional and comprehensive digital presence, targeting energy industry professionals and IT developers with detailed product information, news, webinars, and customer success stories. The company maintains active engagement through social media and newsletter subscriptions. Technically, the website is built on TYPO3 CMS and uses modern web technologies including jQuery and Swiper.js for interactive content. The hosting provider is identified as Web-Crossing. While the site is mobile-optimized and SEO-friendly with proper metadata and structured data, performance metrics are not explicitly available. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy in German. From a security perspective, the site lacks a valid SSL/TLS certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Security headers such as HSTS and CSP are present but cannot compensate for the missing HTTPS encryption. No explicit security policy or incident response information is found, which could be improved to enhance transparency and trust. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS configuration to meet modern security standards and protect user data effectively. Strategic recommendations include obtaining a valid SSL certificate, enabling TLS 1.2/1.3, and enhancing security policies and incident response disclosures.

B

BFI Salzburg BildungsGmbH

bfi-sbg.at

0

BFI Salzburg BildungsGmbH is a prominent educational institution in Salzburg, Austria, offering a wide range of courses, certifications, and educational services targeting individuals and companies seeking professional development. The website demonstrates a comprehensive and well-structured presentation of their offerings, including course programs, school qualifications, health and nursing professions, and corporate services. The digital infrastructure is built on Pimcore CMS and served via nginx, with Matomo analytics implemented for privacy-conscious user tracking. However, the absence of a valid SSL/TLS certificate and HTTPS significantly undermines the site's security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements.

T

TEUFELBERGER Ges.m.b.H.

teufelberger.com

0

TEUFELBERGER Ges.m.b.H. is a family-owned, international manufacturing group specializing in fiber ropes, steel wire ropes, and strapping solutions. The company serves industrial sectors including construction, marine, mining, forestry, and safety equipment, positioning itself as a diversified leader in rope manufacturing. Their website reflects a comprehensive product catalog and detailed service offerings, targeting industrial clients globally. Technically, the website is built on Magento Commerce with modern JavaScript libraries and marketing tools such as Google Tag Manager and MailerLite, indicating a mature digital infrastructure. However, performance metrics are lacking, and the site currently lacks a valid SSL certificate, which is a critical security deficiency. Security headers are present but the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance indicators are evident. Contact information is transparent and includes physical address, phone numbers, and company emails, enhancing business credibility. Overall, while the business and content quality are strong, urgent improvements in SSL/TLS configuration and security practices are recommended to protect user data and improve trust.

B

BBMRI-ERIC

bbmri-eric.eu

0

BBMRI-ERIC is a European research infrastructure focused on biobanking and biomolecular resources, supporting researchers in health and life sciences to find new treatments. Established in 2013 and headquartered in Graz, Austria, it provides a range of services including a directory of biobank metadata, federated platforms for privacy-preserving data queries, and quality management. The website reflects a mature organization with consistent branding and professional content aimed at the scientific community. Technically, the site is built on WordPress with a variety of plugins supporting SEO, newsletter management, and social media integration. However, the site lacks HTTPS and a valid SSL certificate, which is a critical security vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy but requires urgent security improvements to protect user data and maintain credibility.

F

Fenster. Türen. KATZBECK.

katzbeck.at

0

KATZBECK FensterGmbH Austria is a well-established manufacturer specializing in high-quality, custom windows and doors produced exclusively in Austria since 1950. The company emphasizes sustainability, regional production, and premium craftsmanship, targeting both end consumers and professional partners within Austria. Their website reflects a mature digital presence built on WordPress with the Divi theme, incorporating modern web technologies and user-friendly design. However, a critical security gap exists due to the absence of an SSL/TLS certificate, exposing users to potential risks. The site implements GDPR-compliant privacy and cookie policies, with clear contact channels and a professional content structure. To enhance trust and security, immediate implementation of HTTPS and additional security headers is recommended.

H

HANRO

hanro.com

0

HANRO is a well-established luxury brand specializing in premium underwear, nightwear, and loungewear for both women and men, with a history dating back to 1884. The company operates a global retail and e-commerce presence, offering high-quality products certified by OEKO-TEX standards and emphasizing sustainable European production. Technically, the website is built on Magento 2 and uses modern marketing and consent management tools, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security flaw. Privacy compliance is strong with clear policies and consent mechanisms. Security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Overall, the site is professional and trustworthy but urgently needs to address its SSL and security header deficiencies to improve user trust and security.

E

Englisch Dekor

englisch.at

0

Englisch Dekor is a well-established Austrian company specializing in the manufacturing and supply of flame-retardant furniture fabrics, curtains, and decorative textiles primarily for the hospitality, gastronomy, and healthcare sectors. With a history dating back to 1866, the company holds a leading position in the European market, offering a wide range of functional and sustainable textile solutions. Their business model focuses on B2B sales supported by a comprehensive global network of sales representatives and an online webshop. Technically, the website is built on TYPO3 CMS and hosted on Apache servers managed by internex.at. The site features modern interactive elements such as global contact maps and language selection, with good mobile optimization and accessibility. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. While several security headers are present, the absence of HTTPS significantly impacts the overall security posture. The site implements a cookie consent mechanism with detailed cookie information, indicating good privacy compliance. Contact information is comprehensive and includes multiple regional sales contacts. Overall, the website is professionally designed and content-rich, reflecting a mature business with strong market presence. However, the lack of proper SSL/TLS configuration poses a significant risk that should be addressed promptly to ensure secure communications and maintain trust.

R

Research Industrial Systems Engineering (RISE)

rise-world.com

0

Research Industrial Systems Engineering (RISE) is a well-established independent IT service provider and system integrator based in Austria, with a strong European presence and multiple offices across Europe. The company specializes in planning and implementing large-scale IT systems, offering a broad range of engineering, operational, and research services. Their key markets include energy, transportation, banking, healthcare, telecommunications, and government sectors. RISE emphasizes 100% European value creation and maintains a large team of highly qualified technical experts. Technically, the website uses modern frameworks and libraries such as Bootstrap, jQuery, GSAP, Swiper, and Lottie Player, and employs Matomo for analytics, indicating a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines the overall security posture. Security headers are present but cannot compensate for the lack of encryption. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent improvements in security to protect users and data.

Julius Meinl is a well-established premium coffee and tea company with a rich heritage dating back to 1862. The company operates globally, targeting both business customers such as coffee houses, hotels, and restaurants, as well as home consumers. Their offerings include high-quality coffee and tea products, professional equipment, and tailored services including training. The website reflects a strong brand identity consistent with their market position as a premium hospitality supplier. Technically, the site is built on Microsoft IIS with ASP.NET and Kentico CMS, hosted on Azure, and integrates modern analytics and marketing tools. However, the site suffers from a critical security issue due to an invalid SSL certificate, resulting in no HTTPS availability, which significantly impacts user trust and security posture. Privacy compliance is partial, with no visible cookie consent mechanism despite tracking scripts. Contact information is primarily via forms and social media, with no explicit emails or phone numbers published. Overall, the site is professional and content-rich but requires urgent security improvements.

B

Breitenfeld Edelstahl AG

breitenfeld.at

0

Breitenfeld Edelstahl AG is a well-established Austrian manufacturer specializing in high-quality stainless steel and forged products, serving metal processing companies primarily in the manufacturing, energy, and transportation sectors. The company emphasizes environmentally friendly steel production using electric steelmaking processes and holds recognized certifications such as EN 9100, ISO 9001, and ISO 14001. Their digital presence is built on the HubSpot CMS platform, leveraging Cloudflare for hosting and content delivery. While the website is professionally designed with good content quality and navigation, there is a critical security gap due to the absence of a valid SSL certificate and HTTPS enforcement, which poses risks to user data confidentiality and trust. Privacy compliance is basic, with no visible cookie consent mechanisms or detailed privacy policies on the main site. Overall, the business credibility is high, supported by certifications and a consistent brand presence, but technical and security improvements are necessary to enhance trust and compliance.

I

Intemann GmbH

intemann.com

0

Intemann GmbH is a medium-sized Austrian company specializing in technical building services across multiple sectors including energy, industrial plants, commercial and residential construction, and hospitality. The company offers comprehensive services such as planning, prefabrication, ventilation technology, and maintenance. Their market position is that of an established regional player with international project reach, supported by a consistent brand presence and certifications. Technically, the website is built on TYPO3 CMS with a modern JavaScript stack but lacks HTTPS, which is a critical security shortfall. The site includes cookie consent mechanisms and clear contact information, supporting GDPR compliance. However, the absence of SSL/TLS and security policies reduces the overall security posture. Strategic improvements in security infrastructure and incident response readiness are recommended to enhance trust and compliance.

elektrabregenz.com is the official website of a large Austrian household appliance brand, part of the Beko corporate group. The site offers a comprehensive product catalog including cooling, cooking, dishwashing, and laundry appliances, targeting both consumers and retailers in Austria and German-speaking regions. The business is positioned as a major player in the European white goods market with a strong parent company backing and a wide product range. Technically, the website is built on Adobe Experience Manager and delivered via Akamai CDN, with modern marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent. However, the absence of a valid SSL/TLS certificate is a critical security gap, exposing users to potential risks and undermining trust. Privacy policies and cookie consent mechanisms are present and well-implemented, supporting GDPR compliance. Overall, the site demonstrates good content quality and business credibility but requires urgent security improvements to enable HTTPS and modern TLS protocols.

A

automate-it

a-it.cc

0

automate-it is an Austrian software and services company specializing in datacenter automation and hybrid cloud management through its LEON platform. The company has established a solid market presence with active customers in EMEA and partnerships with notable firms such as BMC Software. The website reflects a professional business focus with comprehensive content describing their automation and SecOps solutions. Technically, the website is built on WordPress with modern plugins and SEO optimizations but lacks HTTPS support, which is a critical security deficiency. Security headers are well configured, but the absence of SSL/TLS and HSTS significantly lowers the security posture. Privacy and cookie policies are present and GDPR compliant, though no explicit security or incident response policies are published. Overall, the website is functional and professional but requires urgent security improvements to enhance trust and compliance.

T

Trenkwalder Group AG

trenkwalder.com

0

Trenkwalder Group AG is a large, established HR services provider operating across multiple European countries. The company offers a range of services including HR service, outsourcing, and technology solutions, targeting both job seekers and corporate clients. Their digital presence is supported by modern web technologies such as Next.js and Storyblok CMS, hosted likely on Microsoft Azure infrastructure. The website is professionally designed with good content quality and clear navigation, supporting multiple languages and country-specific domains. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Security headers are well implemented but cannot compensate for the lack of encryption. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service detected. The company maintains a strong social media presence and provides clear contact information, enhancing business credibility. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to meet modern standards.

M

Modehaus Kutsam

kutsam.at

0

Modehaus Kutsam is a well-established family-owned fashion retailer based in Austria with a history spanning over 65 years. The company operates multiple physical stores and offers a broad range of fashion products for men and women, including personal shopping services and a customer club app. Their website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Google Analytics and PushOwl for marketing and analytics. The site is well-designed, mobile-optimized, and provides comprehensive product and brand information, reflecting a mature digital presence. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocol support, which poses risks to user data confidentiality and trust. Privacy policies and cookie consent mechanisms are in place, indicating good compliance with GDPR requirements. Overall, the business demonstrates strong credibility and professionalism, but should prioritize fixing SSL issues to enhance security and user trust.

P

Phoenix

theater-phoenix.at

0

Theater Phönix is a cultural non-profit theater organization based in Linz, Austria, offering a diverse range of stage performances with a focus on contemporary and socially relevant works. The website presents a professional and well-structured digital presence with clear navigation, social media integration, and community engagement features such as newsletters and surveys. However, the technical infrastructure shows critical security gaps, notably the absence of HTTPS and a valid SSL certificate, which significantly impacts the site's security posture. The lack of published security policies and incident response information further highlights areas for improvement. Overall, the business appears legitimate and consistent with its domain registration, but urgent security enhancements are recommended to protect user data and improve trust.

D

DS AUTOMOTION GmbH

ds-automotion.com

0

DS AUTOMOTION GmbH is a medium-sized Austrian company specializing in the development and manufacture of driverless transport systems and autonomous mobile robotics, with nearly 40 years of experience. The company operates internationally and is part of the SSI Schaefer Group, enhancing its market position. Their key offerings include automated guided vehicles (AGVs), autonomous mobile robots (AMRs), fleet management software (NAVIOS), and custom vehicle solutions tailored to various industries such as manufacturing and intralogistics. The website reflects a professional and modern digital presence built on TYPO3 CMS, featuring responsive design and good SEO practices. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the site's security posture.

R

rmDATA GmbH

rmdatagroup.com

0

rmDATA GmbH is a well-established technology company specializing in intelligent software and customized services for geomatics, surveying, information systems, data management, and reality capturing. With a history spanning over 40 years, rmDATA serves clients primarily in Austria, Germany, and Switzerland, offering comprehensive solutions for infrastructure and land management. The company operates a professional website powered by TYPO3 CMS, featuring rich content, clear navigation, and strong branding consistency. Their digital presence includes active social media channels and detailed business information, supporting a medium-sized enterprise profile. Technically, the website employs modern web technologies such as jQuery, Slick Carousel, and FontAwesome, integrated with marketing and analytics tools including Microsoft Dynamics 365 and Google Analytics Tag Manager. Despite these strengths, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts its security posture. Security headers are well configured, but the absence of encryption and TLS protocols is a critical vulnerability. From a security and compliance perspective, rmDATA demonstrates good privacy practices with comprehensive privacy and cookie policies, including a consent mechanism aligned with GDPR requirements. However, there is no visible security policy, incident response information, or vulnerability disclosure page. The WHOIS data confirms domain legitimacy and consistency with the company's business claims, enhancing trustworthiness. Overall, rmDATA's website is professional and content-rich but requires urgent security improvements, particularly implementing HTTPS to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and enhancing security transparency to align with best practices and regulatory expectations.

RAG Austria AG is Austria's largest energy storage company and a leading technical storage operator in Europe, specializing in the storage, conversion, and conditioning of gaseous energy carriers with a strong focus on renewable gases such as hydrogen. The company has a well-established market position with a history spanning over 90 years and operates multiple subsidiaries and partnerships in the energy sector. Technically, the website is built on TYPO3 CMS and uses modern tools like Usercentrics for cookie consent and Matomo for analytics, reflecting a moderate digital maturity. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS, which significantly impacts the security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the company presents a professional and trustworthy online presence but must urgently address its SSL/TLS configuration to improve security and trust.

GeoVille Information Systems and Data Processing GmbH is a medium-sized Austrian technology company specializing in satellite-based Earth Observation services. With over 25 years of experience and a global footprint spanning 140 countries and 510 implementations, GeoVille offers a range of services including satellite imagery, data access, land monitoring analytics, platform interfaces, and advisory capacity building. Their target audience includes government agencies, environmental organizations, and sectors such as energy, security, and urban planning. The website is built on TYPO3 CMS with modern frontend technologies and demonstrates good design and navigation, though performance data is limited. From a technical perspective, the website uses Apache server technology and integrates libraries such as Bootstrap, jQuery, FontAwesome, and Google Tag Manager. However, the site lacks HTTPS encryption, which is a critical security deficiency. Security headers are minimal, and no advanced security mechanisms like HSTS or OCSP stapling are enabled. Privacy compliance is basic, with a privacy policy page present but no cookie consent mechanism detected. Contact information is limited to a contact form, with no direct emails or phone numbers published. The security posture is weak due to the absence of SSL/TLS, exposing users to potential interception risks. No incident response or vulnerability disclosure policies are published, which could impact trust. The domain registration data is consistent with the company's claims, showing a long-established presence since 1998. Social media presence is strong, supporting business credibility. Overall, the website is professionally designed and content-rich but requires urgent security improvements, especially enabling HTTPS and enhancing privacy compliance. Strategic recommendations include installing a valid SSL certificate, implementing cookie consent mechanisms, publishing security policies, and improving contact transparency to enhance trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website weinert.at currently serves as a minimal placeholder page indicating that the site is under reconstruction. It lacks substantive business content, contact information, or user engagement features. The domain is registered and hosted in Austria with consistent DNS records, but the website itself is not secured with HTTPS and does not provide any privacy or cookie policies, which are critical for compliance and user trust. Technically, the site uses an outdated HTML standard and a basic Apache server setup with no modern security or performance optimizations. The absence of SSL/TLS and security headers exposes the site to potential risks and undermines user confidence. Overall, the website's digital maturity is low, and it does not currently support business operations or customer interactions effectively.

W

WELLCON

wellcon.at

0

Wellcon is an established Austrian company specializing in occupational health, safety, and workplace wellness services. With 25 years of experience and multiple locations, it serves companies seeking comprehensive occupational medicine, psychology, and safety technology solutions. The website is professionally designed using WordPress and Elementor, featuring good content quality and SEO optimization. However, the technical infrastructure lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite the use of Matomo analytics. Contact information is not explicitly provided on the homepage or footer, limiting direct communication channels. Overall, the business credibility is strong, but the security posture requires urgent improvement to protect user data and enhance trust.

U

USP Indicator Solutions GmbH

usp.at

0

USP Indicator Solutions GmbH is a specialized service provider that helps R&D and marketing teams in the consumer goods industry translate complex scientific claims into compelling demo assets. The company has a strong market presence with over 400 brands served, including major global names such as L'Oréal, Johnson & Johnson, and Bayer. Their key services include demo creation, real demo videos, product and claim demos, and digital experiences embedding AI and custom algorithms. The website reflects a mature digital infrastructure built on WordPress with Elementor and WooCommerce, supported by LiteSpeed hosting and modern web technologies. Privacy and cookie policies are well implemented with GDPR compliance and consent mechanisms. However, the security posture is weakened by the absence of a valid SSL certificate and incomplete HTTPS configuration, which poses a critical risk to user trust and data security. Strategic improvements in SSL deployment and security headers are recommended to enhance the overall security and compliance stance.

A

AdWords Agentur GmbH

adwordsagentur.at

0

AdWords Agentur GmbH is a specialized Google AdWords agency based in Vienna, Austria, focusing on delivering measurable and cost-efficient search engine advertising services. The company offers comprehensive campaign analysis, management, and optimization services, emphasizing conversion tracking and ROI maximization. Their market position is supported by over 100 partners and detailed case studies showcasing significant client success. Technically, the website is built on WordPress with modern plugins and technologies, though it suffers from critical SSL/TLS misconfiguration, impacting security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business demonstrates professionalism and trustworthiness but must urgently address its HTTPS implementation to improve security and user trust.

Schachermayer GmbH is a well-established Austrian wholesale company specializing in technical products and design solutions, serving primarily B2B customers in trade, industry, and commerce. With a history dating back to 1838, the company offers a broad product range exceeding 100,000 items, supported by professional consulting and logistics services. Their digital presence includes a comprehensive web catalog and partner portal, facilitating efficient ordering and customer engagement. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and integrates a cookie consent mechanism via Klaro, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security improvements to safeguard data and user trust.

Kontron is a global leader in IoT and embedded computing technology, offering a broad range of smart IoT solutions and electronics manufacturing services. The company targets industrial and technology sectors with a focus on innovation, sustainability, and advanced technology integration. The website is professionally designed using modern frameworks such as Nuxt.js and hosted on Hetzner infrastructure. However, the security posture is weak due to the absence of a valid SSL/TLS certificate and lack of HTTPS enforcement, which poses a significant risk to user data and trust. Privacy compliance is partially addressed through the use of Cookiebot for cookie consent, but no explicit privacy policy or terms of service are found. Overall, the website reflects a credible business but requires urgent security improvements.

I

Institute of Brand Logic

brand-logic.com

0

Institute of Brand Logic is a professional consulting firm specializing in brand strategy, growth strategies, and organizational development with over 25 years of experience. The company operates primarily in Austria with offices in Innsbruck, Vienna, and Munich. Their website is well-designed, content-rich, and targets businesses and executives seeking to strengthen their market position through integrated brand and business development strategies. Technically, the website runs on WordPress with common plugins for multilingual support and performance optimization. However, a critical security gap exists as the site lacks a valid SSL certificate and HTTPS support, exposing visitors to potential risks. Privacy compliance is addressed with a cookie consent mechanism and a comprehensive privacy policy. Business credibility is supported by client testimonials and professional presentation. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

A

APK Pensionskasse AG

apk-pensionskasse.at

0

APK Pensionskasse AG operates as a leading Austrian pension fund provider specializing in occupational retirement provisions. The company offers services to employers and employees to facilitate additional pension savings, managing contributions and investments to provide monthly payouts upon retirement. The website reflects a professional and consistent brand presence with clear business information and regulatory compliance references. Technically, the site is built on TYPO3 CMS and protected by Sucuri Cloudproxy, with Matomo analytics for privacy-conscious tracking. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy compliance is well addressed through cookie banners and a comprehensive privacy policy. Overall, the site demonstrates solid business credibility but requires urgent security improvements.

Tyrol Air Ambulance is a well-established Austrian company specializing in worldwide medical air transport and assistance services. With over 40 years of experience, it operates a dedicated fleet of ambulance jets equipped with advanced medical technology and staffed by experienced medical professionals. The company holds multiple industry awards and accreditations, positioning itself as a leading provider in the air ambulance sector. The website reflects a professional and content-rich presence targeting patients, healthcare providers, and insurance companies requiring medical repatriation and emergency transport services. Technically, the website employs a traditional technology stack with jQuery and several plugins, and uses Matomo for privacy-conscious analytics. However, the absence of HTTPS and a valid SSL certificate is a critical security shortfall, exposing users to risks and undermining trust. Security headers are minimal, and no incident response or vulnerability disclosure policies are publicly available. Overall, the site is well-branded and informative but requires urgent security improvements to align with best practices and regulatory expectations.

F

Franziskus Spital GmbH

franziskusspital.at

0

Franziskus Spital GmbH operates as a non-profit healthcare provider with two hospital locations in Vienna, Austria, offering a broad range of medical services including internal medicine, surgery, anesthesiology, and specialized centers such as hernia surgery and breast health. The website targets patients, visitors, referring physicians, and career seekers, positioning itself as a regional healthcare institution with a focus on individualized medicine and comprehensive patient care. Technically, the website employs a mix of legacy and modern JavaScript libraries and includes Google Analytics and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall that undermines user trust and data protection. Security headers are partially implemented but lack advanced protections such as HSTS and DNSSEC. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, the site is professionally designed and content-rich but requires urgent security improvements to meet modern standards.

G

GTW Management Consulting GmbH

gtw-mc.com

0

GTW Management Consulting GmbH is an established international IT consulting firm specializing in SAP-based mass customer billing and related services. With offices in Austria, Switzerland, and Germany, the company serves a broad range of industries including transport, energy, telecommunications, finance, and manufacturing. Their key offerings include SAP BRIM consulting, subscription billing, credit management software, and data migration tools. The website reflects a professional and consistent brand presence with strong client testimonials and partnership with SAP. Technically, the site is built on TYPO3 CMS with common JavaScript libraries, but lacks a valid SSL certificate, which is a critical security shortfall. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the company demonstrates solid business credibility but must urgently address its security posture to protect user data and maintain trust.

M

Moore Salzburg GmbH Wirtschaftsprüfungs- und Steuerberatungsgesellschaft

moore-salzburg.at

0

Moore Salzburg GmbH is a professional services firm based in Salzburg, Austria, specializing in tax consulting, auditing, accounting, payroll, and management consulting. The company operates as part of the global Moore network, providing a broad range of financial and consulting services to businesses and individuals. Their website reflects a medium-sized enterprise with a clear focus on regional expertise and international affiliation. Technically, the website is built on ASP.NET WebForms with Kentico CMS, utilizing modern front-end libraries such as Bootstrap and jQuery. However, the site suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS, no security headers, and absence of cookie consent mechanisms despite using Matomo analytics. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional but requires urgent security improvements to protect user data and comply with privacy regulations.

R

Rustler Gruppe

rustler.eu

0

Rustler Gruppe is a well-established Austrian real estate services company with a strong market position in property management, brokerage, development, facility management, and construction project management. Founded in 1935, it operates primarily in Austria and Central and Eastern Europe, targeting property owners, tenants, and investors. The website reflects a professional digital presence with comprehensive service descriptions and multilingual support. Technically, the site is built on WordPress using the Enfold theme and several plugins including Yoast SEO and Borlabs Cookie for privacy compliance. However, the security posture is weak due to the absence of a valid SSL certificate and disabled TLS protocols, exposing users to potential risks. Privacy compliance is well addressed with cookie consent mechanisms and detailed policies. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

N

NTS Retail

ntsretail.com

0

NTS Retail is a specialized B2B software provider offering smart commerce and retail management solutions primarily for telecommunications operators and specialist retailers. The company positions itself as a preferred partner for leading telco brands worldwide, delivering unified commerce platforms and tailored retail management services. Their website reflects a professional and consistent brand image with strong client references and active social media engagement. Technically, the website is built on Drupal CMS, hosted on Azure DNS infrastructure, and utilizes Apache server technology. It incorporates modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the security posture and user trust. Security-wise, while some security headers are implemented, the lack of HTTPS, HSTS, and incident response information exposes the site to risks and compliance gaps. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site demonstrates good business credibility but requires urgent security improvements. Strategically, the company should prioritize securing its website with HTTPS, implement comprehensive privacy and cookie consent mechanisms, and publish clear security policies and incident response contacts to enhance trust and compliance.

S

SBA Research gGmbH

sba-research.org

0

SBA Research gGmbH is a well-established research center specializing in information security, funded partly by national and European initiatives such as the COMET Competence Centers for Excellent Technologies. The organization offers a broad range of services including research, professional security consulting, security trainings, and vulnerability disclosure. Their market position is strong within Austria and Europe, supported by partnerships with governmental and scientific bodies. The website reflects a professional and content-rich digital presence targeting researchers, security professionals, and industry partners. Technically, the site is built on WordPress with Apache server and uses jQuery for client-side scripting. While the site is mobile-optimized and accessible, performance data is unavailable. Security headers are well implemented, but the lack of a valid SSL certificate and proper HTTPS configuration is a significant weakness. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy. Business credibility is supported by ISO 27001 certification and transparent partnership disclosures. Overall, the site is trustworthy but requires urgent SSL/TLS remediation to improve security posture and user trust.

N

n-ce Neuwirth Consulting & Engineering

n-ce.at

0

n-ce Neuwirth Consulting & Engineering is a small Austrian consulting and engineering firm specializing in foundry technology and related industrial applications. The company offers consulting, engineering services, and seminars targeted at clients in the foundry and manufacturing sectors. Their website reflects a professional and consistent brand presence with clear contact information and client references, positioning them as a niche specialist in their market. Technically, the website is built on WordPress with common plugins like WPBakery and Slider Revolution, but suffers from very poor performance and lacks HTTPS security. The absence of SSL/TLS and security headers represents a critical security risk. Privacy compliance is addressed with a cookie consent banner and a privacy policy, but no terms of service or incident response information is provided. Overall, the site is accessible and informative but requires urgent security improvements.

A

Ahoi Kapptn FlexCo

ahoikapptn.com

0

Ahoi Kapptn FlexCo is a technology-focused company specializing in digital solutions for businesses, including consulting, UI/UX design, AI applications, and scalable software development. The company serves a diverse clientele including notable brands such as Red Bull, SAP, and the Austrian Football Association, positioning itself as a trusted provider of innovative digital products. Their business model revolves around delivering end-to-end digital product development and optimization services, targeting businesses seeking to evolve their digital presence and capabilities. Technically, the website is built on a modern stack using Next.js and React, hosted on Vercel, with native mobile app development capabilities demonstrated in their projects. The site is well-structured, mobile-optimized, and rich in content, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS enforcement, which undermines user trust and data security. Privacy compliance is generally good, with a clear privacy policy and GDPR adherence, though the lack of a cookie consent mechanism is a notable shortfall. Overall, the website presents a professional and credible business front but requires urgent security improvements to align with best practices and user expectations.

B

BVAEB Versicherungsanstalt öffentlich Bediensteter, Eisenbahnen und Bergbau

bvaeb.at

0

BVAEB is an Austrian government social insurance institution serving public servants, railway workers, and mining employees. It provides comprehensive information and services related to health insurance, accident insurance, pension, and family benefits. The website is well-structured and targets insured persons, employers, and partners within its sector. Technically, the site uses Apache, Jakarta Faces, and modern JavaScript libraries, but suffers from a critical lack of valid SSL/TLS certificates, severely impacting its security posture. Privacy and cookie policies are implemented with consent mechanisms, and contact information is clearly provided. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and comply with modern standards.

Ö

Österreichische Gesundheitskasse

meineoegk.at

0

The website meineoegk.at serves as the official service portal for the Österreichische Gesundheitskasse, Austria's public health insurance provider. It offers a broad range of online services including e-Rezept, insurance data access, pension applications, and various social insurance related forms. The portal targets insured Austrian residents and provides a secure login mechanism via ID Austria, ensuring user data protection and access control. The site is professionally designed with clear navigation and comprehensive content relevant to its audience. Technically, it employs a custom CMS with Jakarta Faces framework and uses modern JavaScript libraries such as jQuery 3.6.0 and Slick Carousel for UI components. Analytics is managed through Piwik PRO with user consent mechanisms in place, reflecting good privacy practices. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the site's security posture. The Content Security Policy is robust but includes unsafe directives that could be improved. Overall, the site is trustworthy and authoritative but requires urgent security enhancements to protect user data and comply with best practices.

S

Scheuch Group

scheuch.com

0

Scheuch Group is a well-established Austrian company specializing in industrial air cleaning and environmental technology solutions, holding a world market leader position since its founding in 1963. The company offers comprehensive services including devices, components, assembly, and consulting tailored to various industries. Their website reflects a professional digital presence with multilingual support and clear business information targeting industrial clients. Technically, the site is built on WordPress with modern plugins and frameworks, but suffers from a critical security weakness due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support. Security headers are partially implemented, but the lack of encryption significantly undermines the site's security posture. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism via Cookiebot. Overall, the site is trustworthy and professionally maintained, but urgent improvements in SSL/TLS configuration are necessary to enhance security and user trust.

Generali Gruppe Österreich operates as a major insurance provider in Austria, offering a broad spectrum of insurance and financial products targeting both private and corporate customers. The company enjoys a strong market position with over 2 million customers and is part of the global Generali Group. Their website reflects a professional and comprehensive digital presence, showcasing extensive product offerings and customer services. Technically, the site leverages modern frameworks such as React and Gatsby, hosted on AWS infrastructure with CDN support for content delivery. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which significantly undermines the site's security posture. Privacy and cookie policies are well implemented, indicating good compliance with GDPR requirements. Overall, the website is user-friendly, mobile-optimized, and trustworthy, but urgent improvements in SSL/TLS configuration are necessary to ensure secure communications and maintain customer trust.

S

StudiosDigital GmbH

studiosdigital.at

0

StudiosDigital GmbH is a small Austrian technology agency specializing in interactive media and Drupal-based web development. The company targets businesses and organizations in Vienna and Austria seeking professional web presence and digital solutions. Their website reflects a consistent branding and professional content focused on Drupal 7 CMS projects and interactive media services. Technically, the site runs on Drupal 7 with jQuery and nginx but lacks modern security practices such as HTTPS, which is a critical vulnerability. The absence of cookie consent and privacy compliance mechanisms indicates GDPR compliance gaps. Social media integration is present but no advanced analytics or marketing tools are detected. Overall, the website is functional but requires urgent security upgrades and privacy compliance improvements to meet modern standards.