Security Directory

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

EOX IT Services GmbH

eox.at

0

EOX IT Services GmbH is a specialized technology company focused on Earth observation data services and software solutions. Their offerings include satellite data visualization, cloudless mapping, and data catalog services targeting researchers and professionals in geospatial and environmental fields. The company maintains a professional web presence with a clear focus on open data and cloud-native solutions. Technically, the website is built on VuePress and modern JavaScript frameworks, providing a good user experience and mobile optimization. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security gap. Security headers are partially implemented, but the absence of TLS protocols and cipher suites severely impacts the security posture. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Contact information is minimal, with no explicit emails or phone numbers on the site, though social media presence is strong. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

E

ETC

etc.at

0

ETC is a well-established Austrian IT training and certification provider with a strong market position since 1999. The company offers a wide range of IT courses, certifications, and talent acquisition services across multiple locations including Vienna, Graz, and Attnang-Puchheim, as well as online. Their offerings cover major IT domains such as Microsoft, Cisco, Red Hat, VMware, and more, targeting IT professionals and enterprises seeking digital skill enhancement. Technically, the website is built on a modern WordPress platform with WooCommerce integration, leveraging popular libraries like jQuery, Algolia, and Swiper.js for enhanced user experience. However, the security posture is currently weak due to the absence of a valid SSL certificate and lack of TLS support, which is a critical risk for user data protection and trust. Privacy and cookie policies are present and supported by a consent management platform, indicating good compliance with GDPR. Overall, the site is professional and content-rich but requires urgent security improvements to ensure safe user interactions and maintain trust.

F

Ferrochema GmbH & Co KG

ferrochema.at

0

Ferrochema GmbH & Co KG is a well-established wholesale company specializing in steel, reinforcement, and civil engineering materials, headquartered in Spittal an der Drau, Austria. It operates as part of the larger Weyland Group, which has multiple locations across Austria and neighboring countries. The company offers a broad range of products including steel sheets, bars, beams, pipes, aluminum, stainless steel, reinforcement steel, and related services such as steel processing and logistics. Their business model focuses on wholesale distribution with value-added services and an online shop targeting commercial and industrial customers in the construction and manufacturing sectors. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries such as jQuery and Tiny Slider, and uses Matomo for analytics. The hosting is on Microsoft Azure, with moderate performance and good mobile optimization. The site features a comprehensive cookie consent mechanism and clear navigation, but lacks HTTPS due to an invalid or missing SSL certificate, which is a critical security gap. From a security perspective, the site has no HTTPS enabled, no security headers, and lacks DNSSEC and CAA records, which lowers its security posture significantly. However, no known vulnerabilities or malware were detected. Privacy compliance is strong with GDPR-aligned policies and cookie consent. Incident response contact is provided via a whistleblower email. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to improve security and user trust. Strategic recommendations include immediate installation of a valid SSL certificate, enabling security headers and HSTS, and implementing DNS security measures. These steps will enhance the security posture and compliance, thereby improving the overall trust and credibility of the website and business.

Q

Quality Austria

qualityaustria.com

0

Quality Austria is a leading Austrian institution specializing in integrated management systems, quality certification, and training services. The company offers a broad range of certifications including ISO standards, Austria Gütezeichen, and EOQ certificates, positioning itself as a trusted partner for organizations seeking quality assurance and compliance. The website reflects a mature digital presence with comprehensive content, multi-language support, and a professional design tailored to its target audience of businesses and public organizations. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, enhanced by performance optimizations such as WP Rocket and advanced search via FacetWP. The use of Borlabs Cookie ensures compliance with privacy regulations through effective consent management. However, the absence of a valid SSL certificate is a critical security flaw that undermines user trust and data protection. Security measures include several HTTP security headers and a content security policy restricting frame ancestors, but the invalid SSL certificate and lack of explicit security or incident response policies indicate areas for improvement. Overall, the site demonstrates strong business credibility and privacy compliance but requires urgent attention to its SSL configuration to ensure secure user interactions.

S

Sclable Business Solutions GmbH

sclable.com

0

Sclable Business Solutions GmbH is a Vienna-based digital innovation studio founded in 2012, specializing in custom software development, AI-driven digital solutions, and human-centered design. The company serves a diverse B2B clientele across industries such as manufacturing, IoT, healthcare, construction, mobility, financial services, and energy. With over 50 professionals and 120+ live projects, Sclable positions itself as a medium-sized, reputable player in the technology consulting and software development market. The website reflects a professional and consistent brand image with strong client endorsements and comprehensive service descriptions. Technically, the website runs on an Apache server with modern frontend libraries like Swiper and QR code generation scripts. While the site is mobile-optimized and accessible with good SEO practices, it lacks a valid SSL certificate and proper HTTPS configuration, which is a significant security shortfall. Performance metrics are missing, but inferred to be slow. No CMS or major frameworks are detected, indicating a custom-built site. From a security perspective, the site has minimal security headers and no active TLS protocols, exposing it to potential risks. The absence of DMARC, DNSSEC, and CAA records further weakens email and domain security. No incident response or vulnerability disclosure policies are present, limiting transparency in security management. However, privacy and cookie policies with consent mechanisms are well implemented, indicating good GDPR compliance. Overall, while the business and website demonstrate professionalism and trustworthiness, the lack of HTTPS and modern security configurations poses a critical risk. Strategic improvements in SSL deployment, email security, and incident response transparency are recommended to enhance the security posture and maintain client trust.

H

Helvetia Versicherungen AG

helvetia.at

0

Helvetia Versicherungen AG is a well-established insurance provider in Austria with over 165 years of experience and a large customer base exceeding 650,000. The company offers a wide range of insurance and pension products tailored to private customers, including accident, vehicle, household, and life insurance. The website is professionally designed, content-rich, and provides comprehensive navigation and contact options, reflecting a mature digital presence. Technically, the site uses Adobe Experience Manager CMS and integrates Adobe DTM for analytics and marketing. However, a critical security gap exists as no valid SSL certificate is detected, resulting in no HTTPS support, which significantly impacts the security posture. Security headers are properly configured, but the lack of HTTPS is a major vulnerability. Privacy and cookie policies are present and comprehensive, indicating good compliance with GDPR. Overall, the website is trustworthy and credible but requires urgent security improvements to protect user data and maintain trust.

W

Wirtschaftsagentur Wien

wirtschaftsagentur.at

0

Wirtschaftsagentur Wien is a well-established government agency founded in 1982, dedicated to supporting economic development in Vienna. The agency offers a comprehensive range of services including free consulting, funding opportunities, event organization, and networking for startups, established businesses, and international companies. Their market position as the official economic development fund of the City of Vienna is strong, supported by consistent branding and a professional online presence. The website is content-rich, multilingual, and targets a broad audience of entrepreneurs and businesses in Vienna. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes interactive features such as animated content and a service compass tool.

S IMMO AG is a prominent Austrian real estate investment company with a diversified portfolio across several European Union countries. The company focuses on office, retail, hotel, and residential properties, targeting investors and stakeholders interested in European real estate markets. The website provides comprehensive corporate and investor relations information, including news updates and portfolio insights. Technically, the website is built on TYPO3 CMS and hosted on an Apache server with nameservers indicating a German hosting provider. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. The cookie consent mechanism and privacy policy are well implemented, indicating good privacy compliance. Security headers are minimal, and modern TLS protocols are not supported, which lowers the security posture significantly. Overall, the website is professional and content-rich but requires urgent improvements in security infrastructure to protect user data and enhance trust.

R

Rechberger Ges.m.b.H.

rechberger.at

0

Rechberger Ges.m.b.H. is a well-established Austrian company specializing in gastronomy and hotel supplies, with a strong market position in Austria and Bavaria. The company offers a broad product range including porcelain, glassware, cutlery, and professional kitchen equipment, supported by a large team of specialized consultants and an online shop. The website is professionally designed, content-rich, and targets B2B customers in hospitality and retail sectors. Technically, the site uses the Contao CMS with modern JavaScript libraries and integrates Google Tag Manager for analytics. However, the lack of a valid SSL certificate and HTTPS support significantly weakens the security posture, exposing users to risks. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the business credibility is high, but security improvements are critical.

G

Gantner Instruments

gantner-instruments.com

0

Gantner Instruments is a medium-sized technology company specializing in modular and scalable data acquisition solutions for industrial testing and monitoring applications across sectors such as energy, aerospace, and mobility. The company offers a comprehensive portfolio of hardware, software, and technical support services, positioning itself as a market leader with a global presence. Technically, the website is built on a modern WordPress CMS with Elementor and optimized for performance and SEO, though it lacks a valid SSL certificate, which is a significant security concern. Security headers are well implemented, but the absence of HTTPS and TLS protocols reduces the overall security posture. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Business credibility is strong, supported by clear contact information, partner logos, and customer testimonials. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

E

Exmanco

exmanco.com

0

Exmanco is a regional Austrian automotive service provider and retailer specializing in tires, rims, auto parts, and vehicle maintenance services. Operating multiple branches in Austria, the company targets vehicle owners seeking professional and affordable automotive repair and parts. The website is built on WordPress with WooCommerce and uses the Enfold theme, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support represents a significant security risk. The site includes cookie consent mechanisms and structured data for SEO but lacks comprehensive privacy and security policies. Contact information and physical addresses are clearly provided, supporting business credibility.

S

Salzburg Global Seminar, Inc.

salzburgglobal.org

0

Salzburg Global Seminar, Inc. is a well-established non-profit organization founded in 1947, dedicated to convening global leaders for breakthrough conversations on pressing global issues. The organization operates internationally with offices in Austria and the USA, providing leadership programs, fellowships, and global convenings. The website is built on TYPO3 CMS and uses standard web technologies including jQuery and Google reCAPTCHA for form security. While the site offers comprehensive content and clear navigation, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Privacy and cookie policies are present and include consent mechanisms, reflecting good privacy compliance. Contact information and social media presence are robust, enhancing business credibility. Overall, the site demonstrates a solid business and content foundation but requires urgent improvements in security infrastructure.

O

oe24.at

oe24.at

0

Oe24.at is a prominent Austrian online news portal delivering comprehensive news coverage, multimedia content, and subscription services targeting German-speaking audiences interested in Austrian and global events. The website integrates advanced advertising and analytics technologies, including Google Tag Manager, Relevant Digital, and Piano subscription management, reflecting a mature digital infrastructure. However, a critical security deficiency is the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. The site demonstrates strong privacy compliance with detailed GDPR-aligned policies and consent mechanisms. Overall, while content and business credibility are solid, urgent improvements in security posture are necessary to protect user data and maintain trust.

V

Verjus-Shop

verjus-shop.com

0

Verjus-Shop is a specialized e-commerce business based in Austria, founded in 2012, offering natural, additive-free, gluten-free, low histamine, and alcohol-free products including Verjus and non-alcoholic beverages. The website is professionally designed with clear navigation and rich content targeting health-conscious consumers and B2B clients such as retailers and restaurateurs. Technically, the site runs on WordPress with WooCommerce and uses modern marketing and analytics tools, but suffers from a lack of HTTPS due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Overall, the business appears legitimate and well-positioned in its niche, but the lack of HTTPS is a critical security concern that should be addressed immediately.

POLYTEC Holding AG is a well-established Austrian manufacturing company specializing in the development and production of high-quality plastic solutions, primarily serving the automotive and non-automotive sectors. Founded in 1986, the company has grown to a large enterprise with approximately 3,900 employees worldwide. Their business model focuses on providing comprehensive plastic solutions from conception to logistics, leveraging strong technological and material expertise. The website reflects a professional and consistent brand image with clear navigation and rich content, targeting industrial clients and partners. Technically, the site is built on TYPO3 CMS with modern frameworks like Bootstrap and includes advanced UI components such as sliders and accordions. However, the absence of HTTPS and modern SSL/TLS configurations represents a significant security risk. The company maintains a moderate level of privacy compliance with a clear privacy and cookie policy, and uses analytics and marketing tools responsibly. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

SUNPOR Kunststoff GmbH

sunpor.at

0

SUNPOR Kunststoff GmbH is a medium-sized Austrian manufacturing company specializing in EPS granulate products used for insulation, packaging, and other applications. The company positions itself as a technological leader in EPS manufacturing with a strong focus on sustainability and circular economy initiatives. The website provides comprehensive product and company information primarily in German, targeting construction and packaging industry professionals. Technically, the website runs on nginx with PHP 7.2 and uses embedded YouTube videos and Google Analytics for tracking. However, the site lacks a valid SSL certificate and does not enforce HTTPS, which is a significant security shortfall. Security headers are missing, and the PHP version is outdated, increasing risk exposure. Privacy compliance is addressed with a cookie consent banner and a detailed privacy policy, but no explicit security or incident response policies are found. Overall, the website is functional and professional but requires urgent improvements in security posture to protect user data and enhance trust.

A

ARCOTEL Hotels

arcotelhotels.com

0

ARCOTEL Hotels is a medium-sized hospitality group operating multiple hotels across Austria and Germany, focusing on urban locations and sustainable hospitality practices. The website presents a professional and consistent brand image with comprehensive content about their services, sustainability certifications, and direct booking advantages. Technically, the site uses a mix of legacy and modern technologies, including PHP 5.6.40, Bootstrap 4, and various JavaScript libraries, hosted on Amazon CloudFront CDN. However, the absence of a valid SSL certificate and use of outdated PHP versions represent significant security risks. Privacy and cookie policies are well implemented with consent mechanisms, and analytics usage is moderate with Google services. Overall, the site is functional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

Smaply GmbH

morethanmetrics.com

0

Smaply GmbH operates a professional SaaS platform focused on customer journey mapping and experience management. The company targets enterprise and professional users such as UX designers, product managers, and service designers. Their market position is supported by strong trust indicators including ISO 27001 and SOC-2 certifications, GDPR compliance, and customer testimonials. The website content is rich, well-structured, and professionally designed, reflecting a mature digital presence. Technically, the site is built on Webflow with integrations for analytics and marketing automation, hosted on Cloudflare and AWS infrastructure. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate and serves content over HTTP only, severely impacting security posture and trust. Privacy compliance is well addressed with cookie consent mechanisms and comprehensive policies. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS is a major risk that should be remediated immediately.

P

ProSiebenSat.1 PULS 4

puls4.com

0

PULS 4 is a prominent Austrian media company offering a comprehensive TV broadcasting and streaming platform, integrated with the JOYN service. The website targets German-speaking audiences in Austria with a rich variety of content including live TV, series, news, and entertainment. The business operates under the umbrella of ProSiebenSat.1 Media SE, reflecting a strong market position in the Austrian media landscape. Technically, the site leverages modern web technologies such as Next.js and is hosted on Amazon CloudFront, ensuring scalability and performance. However, the absence of a valid SSL certificate is a significant security concern that undermines user trust and data protection. Privacy and legal compliance are well addressed with comprehensive policies and consent mechanisms. Overall, the site demonstrates a mature digital presence but requires urgent remediation of its SSL/TLS configuration to meet security best practices.

S

Storyclash GmbH

storyclash.com

0

Storyclash GmbH operates a sophisticated AI-powered influencer marketing platform targeting marketers, brands, and agencies. The platform offers comprehensive services including influencer discovery, market insights, campaign management, and performance tracking across major social media platforms like Instagram, TikTok, and YouTube. The company is positioned as a leading solution in the influencer marketing space with strong brand partnerships and positive customer testimonials. Technically, the website employs modern frameworks such as Bootstrap and integrates multiple analytics and marketing tools including Amplitude, Google Tag Manager, HubSpot, and Intercom, reflecting a mature digital infrastructure. However, the absence of a valid SSL certificate and lack of essential security headers represent significant security vulnerabilities that could impact user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism and business credibility but requires urgent security improvements to enhance its security posture and user trust.

K

Kontron AG

escat.at

0

ESCAT, now part of Kontron AG, provides advanced document management, digitalization, and managed print services primarily targeting Austrian businesses. The website presents a professional and well-structured digital presence built on Drupal 10, with clear navigation and relevant content tailored to its B2B audience. However, the absence of a valid SSL/TLS certificate critically undermines the security posture, exposing users to risks associated with unencrypted communications. While cookie consent and privacy policies are implemented, the site lacks explicit security and incident response disclosures. The technical infrastructure is modern but requires urgent security upgrades to meet industry standards.

S

Starlinger & Co GmbH

starlinger.com

0

Starlinger & Co GmbH operates as a world-leading supplier of machinery for woven plastic packaging production and plastics recycling. The company offers comprehensive turnkey solutions covering the entire packaging lifecycle, including engineering, financing, after-sales service, and training. Their website reflects a mature B2B business model targeting manufacturers and recyclers globally, with a strong emphasis on sustainability and closed-loop packaging solutions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes tracking and consent management tools such as Google Tag Manager and Cookiebot. However, the website suffers from a critical security weakness due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

T

T-Mobile Austria GmbH

t-mobile.at

0

T-Mobile Austria GmbH operates the website t-mobile.at, branded as Magenta, providing telecommunications services including mobile telephony, internet, and TV packages primarily targeting Austrian consumers and businesses. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates Google Tag Manager and Usercentrics for analytics and consent management. However, a critical security gap exists as the website lacks a valid SSL certificate and does not serve content over HTTPS, exposing users to potential risks. Security headers are partially implemented, but transport security is insufficient. Privacy and legal policies are comprehensive and GDPR compliant, with clear contact information and social media presence enhancing trust. Overall, the site is credible and well-positioned in the Austrian telecommunications market but urgently requires HTTPS implementation to improve security posture.

WU Executive Academy is a prominent provider of executive education based in Vienna, Austria, affiliated with the WU Wirtschaftsuniversität Wien. The academy offers a wide range of programs including Executive MBAs, LL.M. degrees, Masters, Bachelors, university courses, and custom corporate training programs. It targets professionals, managers, and future students seeking advanced leadership education. The website reflects a strong market position in Central and Eastern Europe with recognized accreditations and rankings. Technically, the site is built on TYPO3 CMS with PHP backend and uses standard web technologies including jQuery and Usercentrics for consent management. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortcoming. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and enhance trust.

ATP architekten ingenieure is a well-established European architecture and engineering firm specializing in integrative planning and sustainable building solutions using Building Information Modeling (BIM). With over 1,500 employees and 14 locations across Europe, the company holds a strong market position as a BIM pioneer and leader in sustainable architecture. The website reflects a high level of professionalism, comprehensive project portfolios, and active engagement with clients through social media and contact forms. Technically, the site uses modern frameworks like Astro and is hosted on Netlify, but suffers from a critical security issue due to an invalid or missing SSL certificate, which undermines the security posture. Privacy and cookie policies are present and GDPR compliant, supporting good privacy practices. Overall, the site is content-rich and user-friendly but requires urgent security improvements to protect user data and enhance trust.

F

FELIX Austria GmbH

felix.at

0

FELIX Austria GmbH operates a well-established website focused on food products, particularly sauces such as ketchup, mayonnaise, and pestos. The company targets consumers primarily in Austria and German-speaking regions, offering product information, recipes, and partnerships. The website is built on TYPO3 CMS and integrates Google Tag Manager for analytics. While the site presents a professional design with good content quality and navigation, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Security headers are properly configured, but the absence of HTTPS significantly impacts the overall security posture. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Contact information is available via a contact page, though no direct emails or phone numbers are explicitly listed. The domain registration data aligns well with the website content, indicating legitimacy. Strategic recommendations include obtaining a valid SSL certificate, implementing cookie consent, and publishing security policies to enhance trust and compliance.

A

ace Neue Informationstechnologien GmbH

ace.at

0

ace Neue Informationstechnologien GmbH is an established Austrian IT company with over 25 years of experience specializing in digital transformation solutions, including foundation management software, CRM based on Microsoft Dynamics 365, and business applications leveraging Microsoft Azure. Their market position is that of a trusted regional provider targeting foundations, public sector entities, and businesses seeking efficient CRM and digital solutions. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site uses a modern frontend stack with SilverStripe CMS and popular JavaScript libraries, but lacks HTTPS, which is a critical security shortfall. The cookie consent mechanism and privacy policy indicate good GDPR compliance. Security posture is basic with no advanced headers or incident response information published. Overall, the site is functional and professional but requires urgent SSL implementation to improve security and trust.

G

GrECo International AG

vmg.at

0

GrECo International AG is a leading Austrian risk and insurance management company specializing in industry, trade, commerce, and the public sector. Recently, it merged with VMG Versicherungsmakler GmbH, consolidating their services under the GrECo Group brand. The company offers comprehensive risk analysis, insurance brokerage, claims management, and risk engineering services, targeting clients primarily in Austria and the CEE region. The website is professionally designed, content-rich, and optimized for SEO with structured data and multilingual support. Technically, the site runs on WordPress with Elementor and uses Matomo for analytics, but suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security headers are partially implemented, but modern TLS protocols and HSTS are not properly enabled. Privacy policies and cookie policies are present and GDPR compliant, with minimal user tracking. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent improvements in SSL/TLS configuration to ensure secure user interactions.

G

G8Way GmbH

prime-crowd.com

0

Gateway Ventures, formerly known as primeCROWD, operates as a startup investment platform focused on democratizing access to quality startup investments. The company targets experienced business angels, first-time investors, and founders, providing investment opportunities, educational bootcamps, and community events. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. However, the prime-crowd.com domain lacks HTTPS, which is a critical security concern. The main content is hosted on gateway.ventures, which uses modern technologies and CDN services. Security posture is weak due to missing SSL/TLS and security headers, though email authentication mechanisms like DKIM and SPF are in place. Privacy compliance is addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and consistent with WHOIS data, but security improvements are urgently needed.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

American International School Vienna

ais.at

0

The American International School Vienna (AIS Vienna) is a well-established international educational institution located in Vienna, Austria. The website presents a comprehensive overview of the school's offerings, including early childhood through high school education, student life, admissions, and community engagement. The school holds multiple international accreditations, reinforcing its credibility and commitment to quality education. The website is professionally designed using the Squarespace platform, featuring clear navigation, active social media integration, and basic privacy compliance mechanisms such as a cookie consent banner. Technically, the site leverages modern web technologies including jQuery, Google Fonts, and Google Analytics for tracking. However, a critical security shortfall is the absence of a valid SSL certificate, resulting in no HTTPS encryption and disabled modern TLS protocols. This significantly impacts the site's security posture and user trust. Security headers are partially implemented but could be enhanced. Privacy compliance is basic, with a privacy policy present but lacking explicit GDPR compliance indicators. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include installing a valid SSL certificate, enabling HSTS, and improving security policies and incident response readiness.

DIMA Software Technology Center GmbH is a medium-sized Austrian IT company specializing in full-stack software development, consulting, quality assurance, and support services for international markets. Established in 2012, the company employs over 50 professionals at its Raaba (Graz) location. Their business model focuses on delivering tailored IT solutions and collaborating closely with clients to achieve business goals. The website reflects a professional and consistent brand image targeting international business partners seeking reliable IT services. Technically, the website is built on WordPress using the Avada theme and several plugins such as Slider Revolution and BambooHR for job listings. Despite a rich content structure and good mobile optimization, the site suffers from slow performance due to a large page size and many resources. Accessibility and SEO optimizations are basic but functional. From a security perspective, the website has critical shortcomings. It lacks a valid SSL certificate and does not support HTTPS, exposing visitors to potential risks. No security headers or advanced configurations like HSTS or OCSP stapling are implemented. Privacy compliance is weak, with no privacy policy or terms of service found, though a cookie consent banner is present. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a moderate risk profile due to missing HTTPS and compliance gaps. Strategic improvements in security and privacy policies are essential to enhance trust and protect users. Performance optimization and SEO enhancements would also benefit the user experience and visibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

AASupplies e.U

aa-supplies.eu

0

AASupplies e.U is a Vienna-based company specializing in the sale and logistics of premium used warehousing equipment, forklifts, generators, and material handling machinery. The company targets businesses primarily in Europe and the Middle East, offering access to a large inventory and comprehensive transport services. Their multilingual team and European supplier network position them as a reliable B2B provider in the transportation sector. Technically, the website is built on WordPress with modern plugins such as WooCommerce, Elementor, and Gravity Forms, but lacks a valid SSL certificate, which is a critical security gap. The site includes GDPR-compliant cookie consent and privacy policies, reflecting good privacy practices. However, the absence of HTTPS and some security headers reduces the overall security posture. The business information is transparent and consistent with WHOIS data, enhancing credibility. Strategic improvements in SSL deployment and security policy publication are recommended to strengthen trust and compliance.

Walstead Leykam Druck GmbH is a prominent European printing company specializing in roll offset printing with a strong market presence in Austria and neighboring countries. The company offers a wide range of print products and services, supported by a large workforce and significant annual revenue. The website is built on TYPO3 CMS and uses several JavaScript libraries for UI enhancements. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. While security headers are properly configured, the lack of HTTPS and cookie consent mechanisms are notable compliance gaps. Business information is comprehensive and trustworthy, supported by multiple certifications and awards. Overall, the website provides good content and user experience but requires urgent security improvements.

D

Dialogschmiede

dialogschmiede.com

0

Dialogschmiede is an Austrian marketing agency specializing in marketing automation, data-driven campaigning, and dialog marketing services. The website positions the company as a leading dialog agency in Austria, targeting businesses seeking advanced marketing automation solutions. The technical infrastructure is based on WordPress with Elementor and several plugins, hosted on Microsoft Online infrastructure. However, the website suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. Additionally, the site lacks essential privacy and cookie policies, as well as contact information, which affects compliance and user trust. Performance is poor with a very slow load time and a large page size, indicating potential optimization needs.

W

Ward Howell International

ward-howell.com

0

Ward Howell International is a globally recognized executive search firm, established in 1951, offering a broad range of leadership and talent management services. The company positions itself as a premier strategic partner for organizations seeking transformative leaders, with a strong global presence and diverse industry coverage. Their website reflects a professional and content-rich platform targeting organizations in need of executive search and leadership advisory services. Technically, the site is built on WordPress with modern plugins and integrations, including interactive maps and advanced search capabilities. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the site's security posture. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of explicit contact emails and phone numbers limits direct communication channels. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

W

Workheld GmbH

tabletsolutions.at

0

Workheld GmbH operates a professional website presenting a software platform focused on connected workforce management for industrial and manufacturing sectors. The company offers digital workflows, mobile apps, remote support, and IIoT integration, positioning itself as a leading Field Service Management solution aligned with Industry 4.0 principles. The website is well-structured, content-rich, and targets industrial clients seeking digital transformation solutions. Technically, the site is built on WordPress with modern plugins and integrates with Microsoft Azure and SAP HANA platforms. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture, exposing users to risks and reducing trust. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent mechanisms despite using tracking services like HubSpot. Business credibility is strong with clear branding, client logos, and legal pages, but contact details such as emails and phone numbers are not explicitly provided on the site. Overall, the site demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

S

Semantic Web Company

semantic-web.at

0

Semantic Web Company is a technology provider specializing in semantic AI solutions, headquartered in Austria with subsidiaries in the US and UK. They offer the PoolParty Semantic Suite, a leading graph-based platform for text mining, recommender systems, and data fabric solutions, targeting enterprises seeking advanced AI-driven knowledge management. The website is professionally designed with comprehensive content and clear navigation, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security shortfall that undermines trust and data protection. The technical stack is modern, leveraging WordPress with Elementor and various JavaScript libraries, but performance data is lacking, indicating potential optimization opportunities. Privacy compliance is addressed with visible cookie consent and a detailed privacy policy, though analytics tracking is minimally configured. Overall, the business credibility is strong, supported by consistent branding and active social media engagement, but security posture requires urgent improvement to meet industry standards.

C

CONFIDA Steiermark Steuerberatung GmbH

confida.at

0

CONFIDA Steiermark Steuerberatung GmbH is a professional tax advisory and auditing firm with a strong regional presence in Austria and Southeast Europe, including Croatia, Serbia, and Slovenia. The company offers a broad range of services such as tax consulting, auditing, corporate consulting, payroll accounting, and controlling. Their market position is that of an established medium-sized firm with multiple subsidiaries and offices, targeting businesses and individuals requiring financial and tax services. The website reflects a professional business model focused on client service and regional expertise. Technically, the website is hosted on an nginx server with DNS managed by net4you.net and uses Matomo analytics for privacy-conscious user tracking. The site employs modern web technologies including SVG graphics and JavaScript modules, and it is optimized for mobile devices with good accessibility and SEO practices. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability impacting user trust and data protection. While some security headers are present, the absence of TLS protocols and OCSP stapling reduces the overall security posture. Privacy policies and cookie consent mechanisms are implemented, indicating compliance with GDPR requirements, but no explicit security policy or incident response information is provided. Overall, the website is professionally designed and content-rich, supporting the company's credibility and trustworthiness. The main risk lies in the missing SSL/TLS configuration, which should be addressed urgently to protect users and improve the security score. Strategic recommendations include implementing HTTPS, enhancing SSL configuration, and adding security and incident response documentation to strengthen compliance and trust.

D

Dr. Isabella Eberl

notarin-eberl.at

0

The website represents a small professional notary office led by Dr. Isabella Eberl located in Taxenbach, Salzburg-Land, Austria. It offers a broad range of notarial services including testament and inheritance law, real estate transactions, family law, and corporate legal services. The site is well-structured with clear service descriptions and contact information, targeting private individuals and businesses in the local region. Technically, the site uses a Mono CMS platform with various external scripts for fonts, tracking, and consent management. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. Privacy and cookie policies are present with a consent mechanism, but no terms of service or explicit security policies are found. The site uses Google Analytics and Herold Tracker for analytics and marketing purposes. Overall, the site is professional but requires urgent security improvements to protect user data and enhance trust.

M

MASSIVE ART WebServices GmbH

massiveart.at

0

MASSIVE ART WebServices GmbH is a full-service digital agency based in Austria, specializing in digital strategy, website and portal development, e-commerce solutions, performance marketing, data analytics, mobile apps, and UI/UX design. The company targets B2B clients, particularly industry leaders and established businesses seeking sustainable digital transformation. With a strong market position supported by long-term partnerships and recognized certifications such as Google Partner and HubSpot Gold Partner, MASSIVE ART demonstrates a reputable presence in the technology sector. The website employs modern web technologies including nginx, Google Tag Manager, Matomo Analytics, and HubSpot forms, with advanced SVG animations enhancing user experience. The site is mobile-optimized and exhibits excellent design quality and navigation clarity. However, performance is currently slow, and the SSL/TLS configuration is inadequate, lacking a valid certificate and modern protocol support. Security posture is basic, with essential security headers present but critical issues such as an invalid SSL certificate and absence of TLS protocols significantly lowering the security score. Privacy compliance is good, with a comprehensive privacy policy and GDPR adherence, though no explicit cookie consent mechanism was detected. Contact information is clearly provided across multiple office locations, enhancing business credibility. Overall, MASSIVE ART's digital presence is professional and trustworthy, but immediate improvements in SSL/TLS security are recommended to enhance user trust and comply with best security practices.

W

Westcam - The Know-WOW Company

westcam.at

0

Westcam - The Know-WOW Company is a well-established Austrian technology and manufacturing solutions provider founded in 1990. The company offers a comprehensive portfolio of services and products including CAD design, CAM programming, 3D printing, 3D metrology, PDM/MES systems, mechatronics, robotics, and industrial image processing. Their market position is strong in the regional industrial sector, supported by their Autodesk Gold Partner status and ISO 9001:2015 certification. The website demonstrates a high level of digital maturity with a modern WordPress-based infrastructure, multilingual support, and integrated marketing and analytics tools. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, which significantly impacts their security posture. Privacy compliance is well addressed with explicit cookie consent mechanisms and a comprehensive privacy policy. Overall, the business presents itself professionally with clear contact information and strong trust indicators.

W

WIFI Österreich

wifi.at

0

WIFI Österreich is a prominent educational institution in Austria, offering a vast range of courses, seminars, and professional training programs across multiple sectors including academic education, business, health, IT, and management. It serves a broad audience including individuals seeking career advancement, apprentices, and corporate clients. The website reflects a well-structured, content-rich platform with excellent design and navigation, supporting both in-person and online learning modalities. Technically, the site uses standard web technologies like jQuery and lazy loading but lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Security headers and advanced SSL features are missing, indicating room for improvement in security posture. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the domain and business information are consistent and trustworthy, aligned with the parent organization Wirtschaftskammer Österreich. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and security.