Security Directory

D

DaoPay GmbH

daopay.com

0

DaoPay GmbH is a licensed Austrian payment service provider offering a broad range of secure and simple payment solutions for online merchants globally. The company supports over 80 payment methods including major credit cards, PayPal, SEPA, and direct carrier billing, positioning itself as a comprehensive payment gateway and merchant account provider. Their target audience includes online businesses seeking to expand payment options and increase customer convenience. The website is professionally designed with clear navigation and relevant content, supporting a medium-sized enterprise profile in the finance and technology sectors. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Visual Composer, indicating a mature digital infrastructure. However, performance is slow and accessibility is basic. The site is mobile optimized and SEO is well implemented. Security posture is weak due to the absence of a valid SSL certificate and outdated TLS protocols, which poses significant risks for a payment service provider. Privacy and cookie policies are comprehensive and GDPR compliant, with explicit consent mechanisms in place. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Social media presence and contact information are comprehensive, enhancing business credibility. Strategic recommendations include immediate remediation of SSL/TLS issues, enabling modern security protocols, and enhancing DNS security configurations to improve trust and compliance.

S

St. Anna Kinderspital

stanna.at

0

St. Anna Kinderspital is a well-established pediatric hospital located in Vienna, Austria, providing comprehensive medical care for children and adolescents. The website reflects a strong commitment to patient care and family support, offering detailed information about medical departments, services, and patient guidance. The institution operates as a non-profit entity supported by donations, with clear calls to action for donations and career opportunities. Technically, the website is built on WordPress with modern plugins for SEO, multilingual support, and cookie management, but lacks HTTPS which is a critical security shortfall. Security headers are partially implemented, but the absence of SSL/TLS and modern TLS protocols significantly weakens the security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional and trustworthy but urgently needs to implement HTTPS to protect user data and improve security.

C

CyberTrap Software GmbH

cybertrap.com

0

CyberTrap Software GmbH is a cybersecurity company specializing in deception technology to proactively detect, deceive, trap, and learn from cyber attackers. Positioned as a sophisticated provider with global accreditations, CyberTrap targets organizations seeking advanced threat detection solutions. The website is built on HubSpot CMS with integrated marketing and analytics tools, demonstrating a moderate level of digital maturity. However, the absence of HTTPS/SSL is a critical security vulnerability that undermines the security posture. While privacy policies and cookie consent mechanisms are in place and GDPR compliant, the lack of secure transport protocols poses significant risk. Overall, CyberTrap presents a professional and trustworthy business front but must urgently address SSL implementation to improve security and trust.

U

Usecon gmbh

usecon.com

0

Usecon gmbh is an established technology and consulting company based in Vienna, Austria, founded in 2001. The company specializes in digital transformation, development, and AI solutions with a strong focus on human-centered design. Their market position is solid with over 24 years of experience and more than 1000 projects completed, targeting businesses seeking digital innovation and consulting services. The website content is well-structured and professional, supporting their business credibility. Technically, the website uses modern frontend technologies such as JavaScript and Tailwind CSS, but suffers from slow load times and lacks HTTPS support due to an invalid or missing SSL certificate. This significantly impacts the security posture and user trust. No CMS or backend platform is explicitly detected. Mobile optimization is good, but accessibility and SEO optimizations are basic. From a security perspective, the absence of HTTPS and modern TLS protocols is a critical vulnerability. No security headers or incident response policies are present, and no vulnerability disclosure mechanisms are found. Privacy and cookie policies exist and appear GDPR compliant, supporting privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but requires urgent security improvements, especially implementing a valid SSL certificate and enabling HTTPS. Performance optimization and enhanced security headers would further improve the security posture and user trust.

C

Coop Himmelb(l)au

coop-himmelblau.at

0

Coop Himmelb(l)au is a globally recognized architecture firm headquartered in Vienna, Austria, with additional offices in Tirana and Dubai. The firm specializes in innovative architectural design and urban planning, serving a diverse international clientele. Their portfolio includes a wide range of projects such as cultural institutions, residential buildings, office complexes, and mixed-use developments, highlighting their expertise and market presence in the real estate and architectural sectors. The website reflects a professional and comprehensive presentation of their work, targeting clients and stakeholders interested in cutting-edge architectural solutions. Technically, the website is built on a modern stack including Apache server, JavaScript frameworks, and analytics tools like Google Analytics and Matomo. It uses Kirby CMS inferred from URL patterns and asset paths, and is hosted on weber.cloud. The site is well-optimized for mobile devices and accessibility, with good SEO practices and clear navigation. However, performance metrics are moderate, indicating room for improvement in loading speed. From a security perspective, the site lacks HTTPS, which is a critical vulnerability. While some security headers are present, the absence of SSL/TLS encryption severely impacts the overall security posture. No incident response or security policy documents are found, and no vulnerability disclosure or security.txt files are present. Privacy compliance is good, with a comprehensive privacy policy and cookie consent mechanisms in place, including GDPR compliance indicators. Overall, the website is professionally designed and content-rich, supporting the firm's strong market position. However, the lack of HTTPS is a major security risk that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include implementing SSL/TLS, enhancing security headers, and publishing security and incident response policies to improve the security maturity and compliance posture.

The website ag-isw.at is currently a parked domain page primarily aimed at selling the domain name. It lacks any active business content, contact information, or service offerings. The site is heavily monetized through advertising scripts, mainly from Google Adsense and related ad networks. Technically, the site suffers from a lack of HTTPS support, with no valid SSL certificate installed, exposing visitors to security risks. Performance is poor with slow load times and minimal optimization. Privacy compliance is minimal, with only a basic privacy policy accessible via a popup link, and no cookie consent mechanisms present. Overall, the site does not present itself as a legitimate business or service provider at this time.

Salzburg AG operates a comprehensive utility and telecommunications service platform primarily serving the Salzburg region in Austria. The company offers high-speed internet services under the CableLink brand, including fiber and wireless options, alongside TV and telephony services. It also provides energy supply and transportation services, positioning itself as a regional market leader with a large operational footprint. The website reflects a mature digital presence with extensive content, clear navigation, and multiple customer engagement channels. Technically, the site uses modern web technologies and analytics tools, though it currently lacks a valid SSL certificate, which impacts its security posture. Privacy compliance is well managed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional and trustworthy but should address SSL issues to enhance security and user trust.

S

Shell Österreich

shell.at

0

Shell Österreich operates a comprehensive website targeting private and business customers in Austria, offering fuel products, electric vehicle charging, car care, and loyalty programs. The website is professionally designed with excellent content quality, clear navigation, and strong brand consistency. The technical infrastructure is based on Adobe Experience Manager with modern web technologies, but suffers from slow load times and lacks a valid SSL/TLS certificate, resulting in no HTTPS support. This is a critical security vulnerability that significantly impacts the site's security posture. Privacy and cookie policies are well documented and GDPR compliant, but no explicit security or incident response policies are found. Overall, the website is trustworthy and credible but requires urgent security improvements.

M

mtms Solutions

eventdata-services.com

0

mtms Solutions is an Austrian technology company specializing in SaaS software solutions for the event management industry. Their offerings include ticketing, accreditation, messaging services, guest management, live streaming, and business intelligence solutions. The company targets event organizers and businesses requiring integrated event and messaging platforms, positioning itself as a flexible and innovative provider in the event technology sector. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages and featuring customer testimonials and certifications such as the Sport Leading Company seal. Technically, the site uses a variety of modern web technologies including Apache, Bootstrap, jQuery, and Matomo analytics, and appears to be built on the Redaxo CMS. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security shortfall. Security headers are minimal, and no incident response or security policy information is provided. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the site demonstrates good business credibility and content quality but requires urgent improvements in security posture to protect user data and enhance trust.

The BBRZ GRUPPE is a well-established Austrian non-profit organization specializing in education, employment, and vocational integration services. With origins dating back to 1960 and 1975, it holds a significant market position in Austria's social and educational sectors. The website reflects a professional and comprehensive presentation of their services, partnerships, and mission, targeting individuals requiring vocational rehabilitation and integration as well as institutional partners. Technically, the site is built on TYPO3 CMS with modern frontend technologies, offering good mobile optimization and accessibility. However, the absence of HTTPS and critical security headers severely undermines the security posture. Privacy compliance is partially met with a privacy policy present but lacks cookie consent mechanisms. Overall, the site demonstrates strong business credibility but requires urgent security improvements.

F

FTC Capital

ftc.at

0

FTC Capital is an Austrian asset management company targeting both retail and institutional investors. The website provides segmented information for private clients and qualified institutional investors, reflecting a clear business focus on investment services within Austria. The digital infrastructure is based on WordPress with multilingual support and GDPR cookie compliance mechanisms, indicating a moderate level of digital maturity. However, the website suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which significantly undermines user trust and data security. Performance is suboptimal with slow load times, and contact information is not readily available, limiting direct communication channels. Overall, while the business positioning and content quality are good, the technical and security posture require urgent improvements to meet modern standards and regulatory compliance.

RHI Magnesita is a global leader in the refractory industry, providing high-grade refractory products, systems, and services primarily for steel, cement, glass, and non-ferrous metals industries. The company emphasizes sustainability and innovation, targeting industrial clients worldwide. The website reflects a mature digital presence with comprehensive content, structured data, and multi-language support. Technically, the site is built on WordPress with modern plugins and libraries, but suffers from critical security shortcomings due to an invalid SSL certificate and lack of HTTPS enforcement. Security headers are present but insufficient without proper TLS. Privacy compliance is well addressed with Cookiebot consent management and a detailed privacy policy. Overall, the site is professional and trustworthy but requires urgent SSL remediation to improve security posture and user trust.

A

Alpen Privatbank AG

walserprivatbank.com

0

Alpen Privatbank AG is a well-established private banking and wealth management institution operating primarily in the German-speaking regions of Europe, with a strong presence in Austria and Germany. The company offers personalized asset management and investment advisory services, targeting private clients seeking tailored financial solutions. The website reflects a professional and consistent brand image, supported by multiple physical office locations and clear contact information. Technically, the site is built on TYPO3 CMS and hosted by maxcluster.net, but suffers from slow load times and lacks a valid SSL certificate, which significantly impacts security and user trust. The security posture is weak due to the absence of HTTPS and security headers, although privacy compliance is supported by a cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site demonstrates moderate business credibility but requires urgent security improvements to protect user data and enhance trust.

Y

yandree GmbH

yandree.com

0

yandree GmbH is a small Austrian IT services company specializing in IT documentation and data migration with over 20 years of experience. The company serves clients primarily in the energy, insurance, hosting, and IT sectors worldwide. Their website is built on Joomla CMS with a modern UI framework and includes comprehensive business and legal information. However, the site lacks HTTPS encryption, which is a critical security shortfall. Cookie consent mechanisms are implemented with a privacy-first approach, denying analytics and advertising cookies by default. The company demonstrates moderate digital maturity but should prioritize securing their website with SSL/TLS and enhancing security policies. Overall, yandree GmbH presents a professional and trustworthy business presence with room for technical and security improvements.

AUSTRIACARD HOLDINGS AG is a well-established technology company specializing in secure data solutions, including payment services, eGovernment authentication, document lifecycle management, and AI-driven data intelligence. With over 130 years of experience and a global footprint spanning Europe, the USA, and the Middle East, the company serves diverse sectors such as banking, government, energy, retail, healthcare, and transportation. It is publicly traded on the Athens and Vienna Stock Exchanges, reflecting a mature market position and transparent corporate governance. The website provides comprehensive business and investor information, demonstrating a strong commitment to sustainability and innovation. Technically, the site is built on WordPress with modern tools like Elementor and Astra theme, ensuring good design quality and mobile optimization. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines trust and exposes users to risks. Security headers are well configured but cannot compensate for the lack of encryption. Privacy policies and cookie consent mechanisms are present and GDPR compliant, supporting responsible data handling. Overall, the company presents a credible and professional digital presence but must urgently address its SSL/TLS configuration to meet modern security standards and protect its users.

P

PricewaterhouseCoopers

pwc.at

0

PricewaterhouseCoopers Austria (PwC.at) is a leading professional services firm offering audit, tax, consulting, and advisory services. The website presents a comprehensive and professional digital presence targeting businesses and professionals in Austria, emphasizing expertise in finance, sustainability, cybersecurity, and technology consulting. The site uses modern web technologies including Adobe Experience Manager, AngularJS, and Akamai CDN, ensuring a good user experience and mobile optimization. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. The site includes comprehensive privacy and cookie policies with GDPR-compliant consent mechanisms, but lacks explicit security policies or incident response information. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

Raiffeisen Bank International AG operates as a leading business bank in Austria and Central and Eastern Europe, offering a broad range of financial services including corporate banking, investor relations, and sustainability-focused products. The website targets investors, corporate and institutional clients, job seekers, and private customers, reflecting a mature and comprehensive business model with a strong market position. Technically, the site is built on Adobe Experience Manager with Vue.js components, leveraging modern analytics and marketing tools such as Mouseflow, Google Tag Manager, and hCaptcha. However, a critical security weakness is present due to an invalid SSL certificate and lack of TLS protocol support, which undermines the otherwise strong security headers and policies implemented. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, content-rich, and trustworthy but requires urgent remediation of SSL and TLS issues to ensure secure user interactions.

A

at-visions GmbH

at-visions.com

0

at-visions GmbH is a medium-sized Austrian company specializing in hospitality technology solutions including mobile apps, hotel TV, professional WIFI, and digital signage. The company targets hotels and hospitality businesses, offering integrated guest experience platforms and IT consulting services. Their website demonstrates a strong market position with numerous reputable hotel clients and technology partners. Technically, the website is built on WordPress with modern frameworks and includes accessibility and SEO optimizations. However, the absence of a valid SSL certificate and lack of modern TLS protocols represent critical security weaknesses. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the business appears credible and professional, but urgent improvements in security infrastructure are recommended.

The website represents the Landeskrankenhaus Feldkirch, a leading healthcare institution in Vorarlberg, Austria, serving as a regional specialty hospital and academic teaching hospital. It provides comprehensive medical services, education, research, and social care, targeting patients, visitors, and healthcare professionals. The organization is well-established with a history dating back to 1972 and operates under the Vorarlberger Krankenhaus-Betriebsgesellschaft.m.b.H. umbrella. Technically, the website uses a modern stack including nginx, Google Analytics, Matomo, and CookieHub for privacy compliance. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. However, performance is slow, and no CMS or advanced frameworks were detected. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to risks. While some security headers like HSTS are present, critical improvements are needed to secure communications and protect user data. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security enhancements to protect visitors and maintain compliance. Strategic recommendations include implementing HTTPS, enhancing security headers, and continuous security audits.

U

UNIQA Group

uniqagroup.com

0

UNIQA Group is a large Austrian insurance and financial services provider with a strong market presence and a public listing since 1990. The website targets investors, customers, suppliers, and job seekers, offering comprehensive information on insurance products, investor relations, sustainability initiatives, and career opportunities. The content is professionally presented with consistent branding and good quality. Technically, the website uses Apache server technology and integrates modern marketing and analytics tools such as Adobe DTM, Google Tag Manager, and Dynatrace. However, it lacks SSL/TLS encryption, which is a critical security gap. Security headers are well implemented, but the absence of HTTPS significantly reduces the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting good privacy practices. Overall, the website is trustworthy and professional but requires urgent security improvements to enable HTTPS and strengthen SSL/TLS configurations.

Insticore GmbH is a small Austrian digital agency specializing in digital marketing, web development, branding, and training services. The company targets a broad audience including small ventures, large businesses, and entrepreneurs, positioning itself as a comprehensive provider of digital solutions. The website is built on WordPress using the Divi theme and builder, with integrations for Google Analytics and HubSpot for marketing and analytics purposes. However, the site lacks HTTPS, which is a critical security shortfall. Security headers are partially implemented but the absence of SSL/TLS and modern security practices significantly lowers the security posture. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR indicators. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but requires urgent security improvements to protect user data and improve trust.

Wildniszone.at is a small Austrian business focused on consulting, education, and adventure-based team development and coaching services primarily targeting organizations and individuals in the Baden bei Wien region. The website content is minimal and outdated, relying on framesets and lacking modern web design and mobile optimization. Technically, the site is hosted on Apache with PleskLin and uses easyname.eu as the hosting provider. However, the absence of HTTPS and modern security headers significantly weakens its security posture. No privacy or cookie policies are present, and no contact or incident response information is provided, which impacts trust and compliance negatively. Overall, the website presents a low level of digital maturity and security readiness.

T

TGW Logistics GmbH

tgw-group.com

0

TGW Logistics GmbH is a foundation-owned global leader in warehouse automation and logistics solutions headquartered in Austria. The company offers comprehensive end-to-end automated systems, software, and services tailored to industries such as fashion, grocery, industrial goods, and consumer goods. With over 4,500 employees worldwide and a strong market presence, TGW Logistics supports business growth through innovative technology and customer-centric solutions. The website reflects a professional and consistent brand image with extensive customer success stories and detailed service offerings. Technically, the site is built on TYPO3 CMS with responsive design and uses Google Tag Manager for analytics. However, the absence of a valid SSL certificate and lack of security headers significantly weaken the security posture. Privacy policies and cookie consent mechanisms are present, indicating basic GDPR compliance. Overall, the site is content-rich and credible but requires urgent improvements in security infrastructure to protect user data and enhance trust.

Silicon Austria Labs GmbH is a leading Austrian research center specializing in electronics-based systems, focusing on innovative technologies for a sustainable, smart, and connected future. The organization operates multiple locations in Austria and offers research projects, cooperation models, and R&D services, positioning itself as a key player in the technology research sector. The website reflects a professional and consistent brand image with clear communication of services and partnership opportunities. Technically, the site is built on TYPO3 CMS and integrates modern marketing and analytics tools such as Google Tag Manager and LinkedIn Insight Tag. However, the absence of HTTPS/SSL is a critical security flaw that undermines the site's security posture. Security headers are partially implemented, but the lack of encryption exposes users to risks. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policy. Business credibility is supported by certifications and transparent contact information. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

voestalpine BÖHLER Edelstahl GmbH & Co KG is a leading manufacturer of special high-performance steels serving advanced industrial sectors including aerospace, automotive, and oil & gas. The company operates a state-of-the-art steel plant with a focus on innovation, quality, and environmental standards. The website reflects a mature digital presence with multilingual support, detailed product and application information, and strong branding aligned with its parent company voestalpine AG. Technically, the site is built on WordPress with modern plugins for SEO, multilingual content, and user interaction. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain credibility.

M

Mayer & Co Beschläge GmbH

maco.at

0

Mayer & Co Beschläge GmbH operates the website maco.at, presenting itself as a leading manufacturer of window, door, and sliding door hardware, including intelligent sensor solutions for smart homes. The company targets B2B customers such as manufacturers and distributors, offering a comprehensive portfolio of products and digital services including partner portals and technical support. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site uses Kentico CMS, jQuery, and integrates Matomo analytics with a consent-based tracking approach, demonstrating a commitment to privacy compliance. However, a critical security gap exists as the maco.at domain lacks a valid SSL certificate and HTTPS support, exposing users to potential risks. The site includes comprehensive privacy and cookie policies, terms of service, and clear contact information, enhancing business credibility. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and maintain compliance.

C

Consulting und Unternehmensberatung in Österreich - SHS

shs.at

0

SHS is a well-established consulting firm based in Austria, specializing in process consulting, change management, and organizational excellence. With over 28 years of experience, SHS serves leading companies domestically and internationally and holds a strong market position supported by multiple industry awards and recognitions. The website reflects a professional business model focused on delivering tailored consulting services to demanding clients. Technically, the website is built on WordPress with modern SEO and cookie consent tools, but lacks HTTPS encryption, which is a significant security concern. The absence of SSL/TLS undermines the security posture despite the presence of privacy policies and consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

S

StepChange Consulting GmbH

stepchange.com

0

StepChange Consulting GmbH is a specialized management consultancy based in Austria, focusing on the forestry, wood, pulp, paper, packaging, and tissue industries. The company offers a broad range of consulting services including strategy development, operational improvements, turnaround management, mergers and acquisitions, supply chain transformation, and digitalization. Their market position is that of an independent, industry-focused consultancy with a strong emphasis on delivering measurable business results through an experienced international team. Technically, the website is built on the Tilda CMS platform, utilizing nginx as the web server and jQuery for client-side scripting. The site is mobile optimized with good navigation and professional design. However, performance metrics are not available, and accessibility features are basic. From a security perspective, the website lacks HTTPS, which is a critical vulnerability. No SSL/TLS certificate is installed, and no modern security headers beyond X-Frame-Options are present. There is no evidence of privacy or cookie policies, nor incident response or security policies published. This exposes users to risks and reduces trustworthiness. Overall, the website presents a professional business front but suffers from significant security and privacy compliance gaps. Immediate attention to SSL/TLS implementation and privacy policy publication is recommended to improve security posture and user trust.

R

Roland Spedition GmbH

rolsped.com

0

Roland Spedition GmbH is a well-established Austrian logistics company specializing in combined rail and intermodal transport services. With over 26 years of domain presence, the company positions itself as a leader in hinterland traffic within Austria, offering a comprehensive range of services including operating, trucking, intermodal solutions, and additional services such as customs clearance and hazardous goods transport. The website content is professionally presented in German, targeting businesses requiring efficient and climate-friendly freight transport solutions. Technically, the site is built on WordPress with common industry-standard libraries and plugins, but suffers from a lack of proper SSL/TLS configuration, which significantly impacts its security posture. The company maintains clear contact information and implements cookie consent mechanisms, reflecting basic GDPR compliance. However, no explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are found.

H

Hotel Pfefferkorn

pfefferkorns.net

0

Hotel Pfefferkorn is a luxury hospitality provider located in Lech am Arlberg, Austria, offering premium accommodations, wellness, and dining experiences. The business is well positioned in the alpine tourism market with recognized culinary certifications such as Michelin, Falstaff, and Gault Millau. The website is professionally designed using WordPress with multilingual support and SEO optimization. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security vulnerability that undermines user trust and data protection. Cookie consent mechanisms and a comprehensive privacy policy demonstrate good privacy compliance. Contact information is clearly presented, supporting business credibility. Overall, the site reflects a mature hospitality business with room for improvement in security infrastructure.

B

Bohmann Druck und Verlag GmbH

bohmann.at

0

Bohmann Druck und Verlag GmbH is a well-established Austrian media company with an 80-year history, specializing in official and municipal publications such as the Amtsblatt der Stadt Wien and the Österreichische Gemeinde Zeitung. The company targets municipal decision makers and businesses, positioning itself as one of Austria's largest private communication firms. Their business model centers on publishing and communication services with a medium-sized operational scale. Technically, the website is built on an Apache server, likely using TYPO3 CMS with Bootstrap and jQuery for frontend components. Hosting is provided by A1 Telekom Austria. The site includes Google Fonts and uses Matomo and Google Analytics for visitor tracking, with a cookie consent mechanism in place. However, performance metrics are unavailable, and mobile optimization is basic. From a security perspective, the website lacks HTTPS, which is a critical vulnerability. No SSL certificate is installed, and no modern security headers are present. While no known SSL vulnerabilities or exposed sensitive data were detected, the absence of HTTPS severely impacts the security posture. Privacy and cookie policies exist and appear GDPR compliant, but no incident response or security policies are publicly disclosed. Overall, the website is functional with good content relevance and moderate trustworthiness but requires urgent security improvements, especially the implementation of HTTPS and enhanced security headers, to protect user data and improve compliance.

W

Wenatex Das Schlafsystem GmbH

wenatex.com

0

Wenatex Das Schlafsystem GmbH is a medium-sized Austrian company specializing in ergonomic sleep systems, including mattresses, slatted frames, pillows, and bedding accessories. With over 30 years of experience, the company emphasizes quality, innovation, and personalized customer consultation, positioning itself as a trusted brand in the sleep product retail and manufacturing sector. The website reflects a mature digital presence with modern technologies such as Nuxt.js and AWS hosting, providing a rich user experience with multimedia content and clear navigation. However, the absence of a valid SSL certificate significantly undermines the security posture, exposing users to potential risks. While privacy and cookie policies are present and GDPR compliant, the lack of explicit security policies and incident response information suggests room for improvement in security governance. Overall, the website is professional and trustworthy but requires urgent security enhancements to protect user data and maintain credibility.

F

Fellner Wratzfeld & Partner Rechtsanwälte GmbH

fwp.at

0

Fellner Wratzfeld & Partner Rechtsanwälte GmbH is a leading Austrian law firm with over 130 highly qualified professionals. The firm offers a broad range of legal services including corporate law, banking and finance, compliance, ESG, real estate, and dispute resolution. It holds a strong market position supported by multiple industry awards and recognitions such as EMEA Top Tier Firm 2025 and IFLR1000 2024. The website is professionally designed, content-rich, and targets businesses and individuals seeking legal expertise in Austria and related sectors. Technically, the site runs on an Apache Ubuntu server with Bootstrap and Google Tag Manager integration, but suffers from slow performance and lacks a valid SSL certificate, which impacts its security posture. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. The security posture is basic, with no HTTPS enabled and missing key security headers, exposing the site to potential risks. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS configuration and security best practices to enhance user trust and data protection.

Meusburger Georg GmbH & Co KG is a market leader in manufacturing high-precision standard parts, serving global customers in mould, die, and jig & fixture construction. The company offers a comprehensive product portfolio including standard parts, workshop equipment, hot runner systems, and control systems. Their website reflects a mature digital presence with extensive product categorization and multi-language support. However, the absence of a valid SSL/TLS certificate significantly impacts the security posture, exposing users to potential risks. Security headers are well configured, but the lack of HTTPS is a critical vulnerability. Privacy compliance is moderate with a privacy policy present but no visible cookie consent mechanism. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

T

Tyromotion GmbH

tyromotion.com

0

Tyromotion GmbH is a medium-sized Austrian company specializing in the development and manufacture of advanced technology-driven rehabilitation and therapy devices, targeting healthcare professionals and patients globally. The company holds a strong market position as a leading innovator in robotic-assisted rehabilitation solutions and patient management software. Their website reflects a professional and comprehensive digital presence, showcasing detailed product information, customer references, and active engagement through social media and newsletters. Technically, the site is built on WordPress with modern SEO and multilingual support, but suffers from slow performance and lacks a valid SSL certificate, which critically impacts security and user trust. Security headers are partially implemented, but the absence of HTTPS and TLS protocols is a significant vulnerability. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and maintain trust.

E

easybank

easybank.at

0

easybank is a leading direct bank in Austria, offering a comprehensive range of financial services including personal and business accounts, loans, credit cards, savings, and investment products. The website reflects a mature digital presence with a focus on user experience, mobile optimization, and clear navigation. The business is well-positioned in the Austrian banking sector, supported by its parent company BAWAG Group and subsidiaries such as easyleasing.at. Technically, the site uses CoreMedia CMS and integrates modern marketing and analytics tools like Adobe and Google Tag Manager, alongside a consent management platform for privacy compliance. However, the website suffers from a critical security deficiency: it lacks a valid SSL certificate and does not support HTTPS, exposing users to significant risks. Security headers and modern TLS protocols are also absent, which undermines the overall security posture. Privacy policies and cookie consent mechanisms are well implemented, indicating good compliance with GDPR. Overall, while the business and content quality are excellent, the security shortcomings significantly impact the risk profile and trustworthiness of the site.

A

AFFiRiS AG

affiris.com

0

AFFiRiS AG is a clinical-stage biopharmaceutical company based in Austria, specializing in the development of novel immunotherapies for chronic diseases such as neurodegenerative disorders and hypercholesterolemia. The company leverages its proprietary AFFITOME® technology to create Specific Active ImmunoTherapies (SAIT) aimed at improving patient outcomes beyond current treatment options. The website presents a professional and well-structured digital presence targeting patients, investors, and healthcare professionals, with clear business and contact information. However, the absence of a valid SSL certificate and HTTPS implementation represents a significant security risk that undermines user trust and data protection. The site uses WordPress CMS with common plugins and libraries, but performance metrics indicate slow loading times, suggesting room for technical optimization. Privacy compliance is addressed through a cookie consent banner and a privacy policy, though terms of service and explicit security policies are not evident. Overall, AFFiRiS demonstrates a credible business profile with a need to urgently improve its security posture to protect visitors and comply with best practices.

V

Vienna Insurance Group

vig.com

0

Vienna Insurance Group (VIG) is a leading insurance group in Central and Eastern Europe, operating through over 50 insurance companies and pension funds across 30 countries with approximately 30,000 employees. The website reflects a mature, enterprise-level business with a strong market position and comprehensive service offerings in insurance and reinsurance. The digital infrastructure is modern, leveraging JavaScript frameworks and a CMS (Umbraco), with good content quality and user experience. However, the security posture is weakened by the absence of a valid SSL certificate and lack of TLS protocol support, which is a critical vulnerability for a financial services website. Privacy and cookie policies are well implemented and GDPR compliant, supporting regulatory adherence. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent remediation of SSL/TLS issues to ensure secure communications.

B

biocrates life sciences ag

biocrates.com

0

biocrates life sciences ag is a well-established company specializing in quantitative metabolomics kits and services, serving a global scientific and research audience. Their offerings include metabolomics phenotyping, data analysis, pathway analysis, and multiomics data services, supported by a strong community and certified laboratories. The website is professionally designed with comprehensive content and clear navigation, targeting researchers and institutions in healthcare and biotechnology sectors. Technically, the site runs on WordPress with the Divi theme and integrates modern analytics and cookie consent tools, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly lowers the security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility is high, supported by consistent WHOIS data and trust indicators such as testimonials and certifications. Strategic improvements in SSL deployment and security hardening are recommended to enhance trust and compliance.

Z

ZETA

zeta.com

0

ZETA is a large, established engineering and consulting company specializing in the pharmaceutical and biotech industries. They provide comprehensive services including process engineering, automation, food engineering, lifecycle management, and digitalization solutions. The company operates globally with multiple locations and a strong market presence in Austria and beyond. Their website reflects a professional and content-rich digital presence targeting industry clients seeking advanced technological solutions. Technically, the website is built on the Contao CMS platform, served by Apache, and uses common web technologies such as jQuery and Google Tag Manager. While the site is well-structured and optimized for mobile devices, performance metrics indicate slow loading times, and accessibility features are basic. SEO practices are good with proper meta tags and Open Graph data. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. Security headers are partially implemented, but important features like HSTS, OCSP stapling, and session resumption are missing. The extensive use of tracking and marketing tools is managed with a clear cookie consent mechanism, indicating good privacy compliance. Overall, the website presents a trustworthy and professional business front but requires urgent improvements in SSL/TLS security to protect user data and enhance trust. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include immediate SSL certificate installation, enabling modern security protocols, and enhancing security headers to meet industry best practices.

B

BrandSourcery GmbH

adpl-solutions.at

0

BrandSourcery GmbH is a Vienna-based production agency specializing in below-the-line marketing materials and services. Their offerings include visual merchandising, promotional items, marketing logistics, print management, and digital solutions, targeting businesses seeking comprehensive marketing support. The website is built on WordPress with a range of plugins supporting multilingual content, marketing, and GDPR compliance. However, the absence of a valid SSL certificate and HTTPS implementation represents a significant security risk. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of HTTPS undermines user trust and data security. The site is accessible without WAF or security challenges, but performance data suggests potential slowness. Contact information is complete and professional, supporting business credibility.

J

JOANNEUM RESEARCH Forschungsgesellschaft mbH

joanneum.at

0

JOANNEUM RESEARCH Forschungsgesellschaft mbH is a leading Austrian research institution specializing in applied research and technology development across multiple sectors including healthcare, digital technologies, robotics, and environmental sciences. The organization serves industry, government, and research partners with innovative solutions and maintains a strong market position supported by international collaborations and a large workforce. The website reflects a mature digital presence with comprehensive content and professional design, targeting stakeholders in research and industry. Technically, the site is built on WordPress with Elementor and uses modern web technologies, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are well implemented, indicating good GDPR compliance. However, the absence of explicit security policies and incident response information suggests room for improvement in security governance. Overall, the site is trustworthy and professional but requires urgent security enhancements to protect user data and improve trust.

W

WIG Wietersdorfer Holding GmbH

wietersdorfer.com

0

WIG Wietersdorfer Holding GmbH is a large, family-owned industrial enterprise based in Austria with a 125-year history. The company operates internationally with subsidiaries in multiple countries, focusing on sectors such as cement, lime, GFK and PP pipe systems, and industrial minerals. Their business model is centered on manufacturing and global distribution, targeting industrial and construction markets. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site is built on WordPress with the Avada theme and uses common plugins for forms, multilingual content, and cookie management. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocols, which is a critical issue that needs immediate remediation. Privacy compliance is well addressed with comprehensive policies and a robust cookie consent mechanism. Overall, the site demonstrates good business credibility and digital maturity but requires urgent security improvements to protect user data and maintain trust.

W

Wüstenrot

wuestenrot.at

0

Wüstenrot is a well-established Austrian financial services provider with a 100-year history, offering integrated banking, insurance, and savings products. The website reflects a mature digital presence with professional design, comprehensive content, and clear navigation tailored to private customers in Austria. Technically, the site is built on Adobe Experience Manager and uses modern web technologies and analytics tools. However, a critical security gap exists due to the absence of a valid SSL certificate and enabled TLS protocols, exposing users to potential risks. Privacy compliance is strong with GDPR-aligned cookie consent and detailed privacy policies. Overall, the business is credible and trustworthy, but urgent security improvements are needed to protect user data and maintain trust.

S

Standortagentur Tirol GmbH

standort-tirol.at

0

Standortagentur Tirol GmbH is a regional economic development agency based in Tirol, Austria, focused on fostering innovation, technology, and sustainable growth for businesses, research institutions, and municipalities. The company operates as part of the Lebensraum Tirol Holding and offers a broad range of services including support for digitalization, funding, cluster networking, and internationalization. Their website reflects a professional and well-structured digital presence targeting multiple stakeholder groups with relevant content and resources. Technically, the site runs on Microsoft IIS with ASP.NET and uses common JavaScript libraries and marketing tools such as Google Tag Manager and Cookiebot for consent management. However, a critical security weakness is the absence of HTTPS and a valid SSL certificate, exposing users to potential risks. Privacy compliance is addressed with visible policies and consent mechanisms, but incident response and security policies are not evident. Overall, the site is credible and functional but requires urgent security improvements to protect user data and enhance trust.

M

Mayr-Melnhof Holz Holding AG

mm-holz.com

0

Mayr-Melnhof Holz is a leading European manufacturer in the wood industry, specializing in engineered wood products such as glued laminated timber and cross-laminated timber. With a history spanning over 170 years, the company holds a strong market position and offers a comprehensive range of wood construction solutions. The website reflects a mature digital presence with detailed product information, references, and a multilingual interface targeting architects, planners, and industry professionals. Technically, the site is built on TYPO3 CMS and employs modern JavaScript libraries like Owl Carousel and Google Analytics for user tracking. However, the site suffers from slow load times and lacks a valid SSL certificate, which significantly impacts its security posture. The absence of HTTPS and modern TLS protocols is a critical vulnerability that needs immediate remediation. Security-wise, the company has implemented SPF records and avoids subdomain takeover risks, but the lack of DNSSEC, HSTS, and OCSP stapling reduces its overall security maturity. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the website is professional and content-rich but requires urgent security improvements, especially regarding SSL/TLS configuration, to enhance trust and protect user data.

P

Pave Commute

carployee.com

0

Pave Commute, formerly known as Carployee, is a technology company focused on promoting sustainable commuting behaviors within organizations. Their primary offering is a SaaS-based app that incentivizes and rewards employees for sustainable commuting, aiming to improve employee satisfaction and foster a positive company culture. The company targets HR leaders, sustainability managers, teams, and transportation managers, positioning itself as a key player in the transportation and sustainability sector. The website demonstrates a professional and consistent brand presence with clear business information and multiple contact channels. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies such as jQuery and lazy loading for images. It is hosted behind Cloudflare, which provides CDN and security services. However, the site lacks a valid SSL certificate and does not support TLS, which is a significant security concern. Performance is currently slow, and while the site is mobile-optimized and accessible, improvements in security configurations are necessary. From a security perspective, the absence of HTTPS and TLS support is critical, exposing users to potential data interception risks. The site does implement some security headers and uses secure cookie flags, but lacks advanced protections like HSTS and OCSP stapling. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place. Contact information is readily available, enhancing business credibility. Overall, while the business and content quality are high, the security posture significantly lowers the risk profile. It is recommended that Pave Commute prioritize obtaining and configuring a valid SSL/TLS certificate and enhancing their security headers to protect user data and maintain trust. The company shows strong legitimacy and market positioning but must address these critical security issues to ensure safe and compliant operations.

S

Salzburger Nachrichten Medien GmbH & Co. KG

salzburg.com

0

Salzburger Nachrichten Medien GmbH & Co. KG operates a mature and well-established regional news website focused on Salzburg, Austria, and international news. The site offers a wide range of content including politics, economy, culture, sports, and local events, supported by various services such as job listings, real estate, e-paper, and podcasts. The company maintains a strong market position as a leading media provider in the region with a consistent and professional brand presence. Technically, the website is built on modern frameworks like Nuxt.js and Vue.js, leveraging GraphQL for data management. It uses Varnish caching and is hosted on Conova infrastructure. The site is well-optimized for mobile and SEO, with good accessibility features. However, the absence of a valid SSL/TLS certificate and HTTPS support is a critical security gap. From a security perspective, the website lacks HTTPS, HSTS, and other essential security headers, which significantly lowers its security posture. While no critical vulnerabilities or malware were detected, the lack of encryption exposes users to potential risks. Privacy policies and cookie consent mechanisms are in place, indicating compliance with GDPR requirements. Overall, the website is content-rich and professionally managed but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include implementing HTTPS, enabling security headers, and enhancing incident response capabilities.

M

MD / MEDIADESIGNERIN e.U.

mediadesignerin.com

0

MD / MEDIADESIGNERIN e.U. is a small Austrian online marketing agency with over 22 years of experience, specializing in Google Ads, Facebook Ads, and YouTube Ads. The company holds a Google Partner certification and offers comprehensive online marketing consultancy, campaign management, and strategy development services primarily targeting small and medium-sized enterprises. The website is professionally designed using WordPress and Elementor, featuring rich content, client references, and clear contact information. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. The technical infrastructure leverages modern web technologies but shows room for improvement in performance metrics and security headers. Overall, the business is credible and well-positioned in its niche, but urgent security enhancements are recommended to safeguard client interactions and improve trust.

W

wikifolio Financial Technologies AG

wikifolio.com

0

wikifolio Financial Technologies AG operates a sophisticated online investment platform focused on European stocks and social trading. The platform enables investors worldwide to access trading ideas, create virtual portfolios, and invest in wikifolio certificates listed on stock exchanges in Germany, Austria, and Switzerland. The company is well-positioned in the European finance sector with a medium-sized operation and a strong brand presence supported by partnerships and positive testimonials. Technically, the website leverages modern web technologies including React, Next.js, and Chakra UI, hosted on Azure infrastructure with CDN support for performance. The site is well-optimized for SEO, accessibility, and mobile responsiveness, providing a professional user experience. From a security perspective, the site currently lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. Security headers are partially implemented but key features like HSTS and OCSP stapling are missing. Privacy compliance is strong with comprehensive policies and clear contact information, but incident response and security policy disclosures are absent. Overall, the website presents a trustworthy and professional business front but requires urgent improvements in SSL/TLS security to protect user data and maintain trust. Strategic recommendations include immediate SSL certificate installation, enabling TLS 1.2+, and enhancing security headers and incident response readiness.