Security Directory

E

ELEKTROMATERIAL.AT

elektromaterial.at

0

ELEKTROMATERIAL.AT is a business focused on supplying electrical materials, likely targeting professionals and companies in the energy sector within Austria. The website uses modern frontend technologies such as React and Next.js, with Craft CMS indicated as the backend content management system. However, the site lacks critical security features including a valid SSL certificate and HTTPS support, which severely impacts its security posture. No privacy or cookie policies are present, and no contact information is available on the homepage, limiting user trust and compliance with data protection regulations. The site employs Mixpanel for analytics, indicating moderate user tracking without visible consent mechanisms. Overall, the website demonstrates basic digital maturity but requires significant improvements in security and privacy compliance to meet industry standards and user expectations.

B

Bad & Energie Service

badundenergieservice.at

0

Bad & Energie Service GmbH is a specialized service provider based in Austria, focusing on installation and maintenance services in the energy and bathroom furnishing sectors. The company operates primarily on behalf of installers, offering services such as the installation of bathroom furniture, shower partitions, and the commissioning and maintenance of heat pumps, air conditioning systems, and photovoltaic systems. Their market position is that of a niche service provider supporting handcraft businesses and installers, aiming to increase efficiency and capacity for their clients. The website reflects a professional business with clear service offerings and a partnership-oriented business model. Technically, the website is built on WordPress with a modern PHP backend and uses common web technologies including jQuery and FontAwesome. SEO is well implemented with Yoast SEO plugin and structured data. However, the site lacks a valid SSL certificate, which severely impacts security posture and user trust. The absence of HTTPS and security headers exposes the site to risks and reduces its security score. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, but no explicit security or incident response policies are found. Overall, the website is functional and professional but requires urgent improvements in security infrastructure to meet modern standards.

F

Freyssinet

freyssinet.com

0

Freyssinet is a well-established global civil engineering company specializing in the construction and repair of infrastructure using advanced technologies such as post-tensioning and cable systems. With over 80 years of experience and a network of 60 subsidiaries worldwide, it serves a broad international market primarily in the energy and transportation sectors. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site is built on WordPress with modern plugins for SEO, performance, and GDPR compliance, hosted on OVHcloud. However, a critical security issue is the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Privacy and cookie policies are present and include consent mechanisms, indicating good privacy compliance. Social media integration and detailed case studies enhance business credibility. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

S

Sixense

sixense-group.com

0

Sixense is an international engineering and consulting company specializing in soil knowledge, environmental monitoring, and infrastructure lifecycle management. The company offers a broad range of services including engineering, monitoring, digital solutions, and mapping, targeting infrastructure owners and operators across energy, transport, and industrial sectors. With a strong international presence and multiple offices worldwide, Sixense positions itself as a key player in infrastructure security and sustainability. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates advanced tools such as Matomo for analytics and Complianz for GDPR compliance. However, the absence of a valid SSL certificate and HTTPS severely undermines the security posture, exposing users to risks and impacting trust. Security headers are well implemented but cannot compensate for the lack of encryption. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional and content-rich but requires urgent security improvements to align with best practices.

M

Menard group, world specialist in ground improvement

menard-group.com

0

Menard Group is a global leader specializing in foundation solutions based on ground improvement and reinforcement technologies. Operating in over 80 countries, the company offers innovative and economical solutions across various infrastructure sectors including ports, airports, rail, road, process, energy, and building projects. Their expertise spans the entire infrastructure lifecycle, positioning them as a key player in the construction and engineering industry. The website reflects a professional and comprehensive digital presence, showcasing detailed service offerings and project portfolios. Technically, the site is built on WordPress with modern frameworks and libraries, though performance could be improved. Security measures include a valid SSL certificate and strong email authentication policies, but enhancements like HSTS and OCSP stapling are recommended. Privacy compliance is well addressed with clear cookie and privacy policies, including consent mechanisms. Overall, Menard Group demonstrates a strong business and digital maturity with room for technical and security optimizations.

S

Soletanche Freyssinet

activskeen.com

0

Soletanche Freyssinet is a global leader in specialty construction and engineering, focusing on soil, structural, and nuclear sectors. The company operates through six subsidiary brands, delivering technical excellence and sustainable solutions. The website reflects a mature digital presence with comprehensive content, strong branding, and active social media engagement. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and performance optimization. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS enforcement, which poses significant risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain credibility.

S

Soletanche Freyssinet

soletanchefreyssinet.com

0

Soletanche Freyssinet is a globally recognized leader in soil, structural, and nuclear engineering, operating through six specialized brands. The company delivers a broad range of construction and engineering services focused on infrastructure, energy, and nuclear sectors. Their market position is strong, supported by a large workforce and significant revenue, indicating enterprise scale. The website reflects a mature digital presence with comprehensive content, clear branding, and active social media engagement. Technically, the website is built on WordPress with modern plugins and optimization tools, hosted on OVHcloud. It employs PHP 8.1 and integrates SEO and performance enhancements such as Yoast SEO and WP Rocket. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS with valid SSL certificates and includes important security headers. While HSTS is present, it is not fully enabled with subdomain inclusion or preload. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Recommendations include enhancing HSTS settings, enabling OCSP stapling, adding CAA DNS records, and considering a security.txt file to improve vulnerability disclosure transparency.

B

BILTON LEDON Technology GmbH

better-light.at

0

BETTER LIGHT, operated by BILTON LEDON Technology GmbH, is a medium-sized Austrian company specializing in innovative LED lighting solutions. The company leverages its expertise from renowned brands BILTON and LEDON to provide high-quality LED strips, profiles, power supplies, and lighting management systems. Their production is based in Saalfelden, Salzburg, and they target architects, industrial clients, and lighting professionals. The website is professionally designed using TYPO3 CMS and offers content in German and English. However, the website suffers from critical security issues including the absence of a valid SSL certificate and lack of modern TLS protocols, which significantly impact its security posture. Privacy compliance is well addressed with clear cookie and privacy policies, and contact information is readily available. Social media presence and ISO certification add to the company's trustworthiness.

C

CONTRONIX GmbH

contronix.com

0

CONTRONIX GmbH is a specialized Austrian company focused on gas detection, gas analysis, and safety technology solutions. Their website presents a professional image targeting industrial and commercial clients requiring stationary and portable gas warning devices, calibration gas generators, automation, and maintenance services. The company positions itself as a comprehensive provider offering everything from sensors to complete systems including control cabinets. The website content is primarily in German and serves the Austrian market. Technically, the site is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery, Rocksolid Slider, and GLightbox, providing a good user experience with mobile optimization and clear navigation. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and employs CSRF protection cookies. However, it lacks a published security policy and incident response contact details, which are recommended for enhanced trust and compliance. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and a trustworthy presence.

A

ANDRITZ AG

stowewoodward.com

0

ANDRITZ AG operates a specialized division branded as ANDRITZ Fabrics and Rolls, providing a comprehensive portfolio of paper machine clothing, roll services, and related industrial products primarily for the global pulp and paper industry. The company integrates multiple legacy brands under one umbrella, positioning itself as a full-line supplier with global manufacturing and engineering capabilities. The website reflects a mature enterprise with a strong market presence and a focus on innovation and customer value. Technically, the site employs modern web technologies, including responsive design and privacy-conscious analytics via Piwik PRO. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could enhance trust. Overall, the site is professional, content-rich, and well-structured, supporting a high level of business credibility.

1

10hoch4

10hoch4.at

0

10hoch4 is a well-established Austrian company specializing in sustainable photovoltaic solutions, serving industrial, commercial, private, and agricultural sectors. With over 20 years of expertise, the company offers comprehensive services including development, planning, and turnkey installation of photovoltaic systems, complemented by battery solutions. Their market position is reinforced by a strong portfolio of references and a professional online presence. Technically, the website is built on a modern WordPress platform with advanced SEO and privacy compliance features, including GDPR-aligned cookie consent and Matomo analytics. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site reflects a mature digital infrastructure supporting a credible and trustworthy business.

C

Cefetra Group

cefetra.com

0

Cefetra Group is a well-established global supplier of agricultural ingredients, serving the animal nutrition, food ingredient, and energy industries. Founded in 1899 and operating under the parent company BayWa, Cefetra maintains a strong market position as a leader in non-GMO and organic feed ingredients. The company offers a broad portfolio of over 250 agricultural products and provides value-added services such as quality control, sustainability advice, and market analysis. Their target audience primarily consists of businesses requiring reliable and sustainable supply chain solutions in agriculture and food sectors. Technically, the website is built on WordPress with modern plugins such as Gravity Forms, Google reCAPTCHA, and Complianz GDPR for privacy compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security measures include HTTPS enforcement, CAPTCHA on forms, and integration with Sentry for error monitoring. However, explicit security headers and a dedicated security policy page are absent. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism. Business credibility is reinforced by clear branding, detailed subsidiary listings, and social media presence. Overall, the website reflects a mature digital infrastructure aligned with business goals and regulatory requirements. Strategically, Cefetra should enhance its security posture by implementing additional HTTP security headers and publishing a formal security policy and incident response contacts. These steps will further strengthen trust and compliance. The company’s digital presence supports its market leadership and commitment to sustainability, positioning it well for future growth.

Bhalkeshwar Sugars Limited is a regional sugar manufacturing company based in India, operating since 2000. The company produces sugar and related products such as bio-fertilizer, ethanol, power, and molasses. It also contributes to local infrastructure development including bridges and power stations. The website provides basic information about the company and its products but lacks modern digital features and security measures. Technically, the website uses legacy technologies including Flash content, Bootstrap for styling, and SpryMenuBar for navigation. The site is served over HTTP without HTTPS, which is a significant security concern. The design is basic with limited mobile optimization and accessibility features. No modern analytics or tracking tools are detected. From a security perspective, the absence of HTTPS, lack of security headers, and use of deprecated Flash content expose the site to risks. There are no privacy or cookie policies, and no contact information for security or incident response. These factors indicate a low security maturity level. Overall, the website presents moderate business credibility but poor security and privacy compliance. Strategic improvements in security infrastructure, policy transparency, and modernization of technology stack are recommended to enhance trust and compliance.

T

tde

pronova-tde.com

0

TDE Group Limited is a medium-sized, established technology company specializing in advanced energy solutions focused on sustainability and digital innovation. With over 24 years of experience, the company operates in the energy sector providing data-driven technologies, performance evaluation platforms, and hydrogen and carbon solutions to accelerate the energy transition. Their market position is that of a pioneer with a strong commitment to quality, reliability, and environmental impact reduction. The website reflects a mature digital infrastructure built on WordPress with modern plugins and integrations such as Google Analytics, Matomo, and CookieYes for privacy compliance. Security measures include HTTPS, Google reCAPTCHA, and secure user registration forms, though explicit security headers could be improved. Overall, the company demonstrates a high level of professionalism, compliance with GDPR, and a clear business model targeting energy industry professionals and partners.

R

Rotax Limited

rotaxltd.com

0

Rotax Limited is a well-established industrial electrical solutions provider based in Sri Lanka with over 60 years of experience. The company offers a broad range of services including automation, system integration, manufacturing, contracting, and supply of electrical products. It operates associate companies such as Rotax Global LTD in Canada and Roche Engineering Lanka, expanding its market reach internationally. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress with WooCommerce and uses modern plugins such as Elementor and Yoast SEO, indicating a mature digital infrastructure. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and published security policies. The site lacks visible privacy and cookie policies, which is a compliance gap that should be addressed. Contact information is primarily via forms and social media links, with no direct emails or phone numbers explicitly labeled. Overall, the website is trustworthy and professional but could improve privacy compliance and security transparency. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, publishing incident response contacts, and enhancing accessibility and compliance features to strengthen trust and regulatory adherence.

Sakhalin Energy operates as a major energy company focused on oil and gas production projects in Russia, notably the Sakhalin-2 project. The website serves as an informational portal presenting company details, safety and environmental policies, social programs, media releases, tenders, and career opportunities. The business model centers on resource development under a production sharing agreement, targeting industry stakeholders, contractors, and the public. Technically, the website is built on the Bitrix CMS platform and employs legacy technologies such as jQuery 1.8.2, along with modern tools like Google reCAPTCHA and FontAwesome. The site shows moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. The content is currently limited due to the site being under reconstruction. From a security perspective, the site uses HTTPS and includes reCAPTCHA for form protection but lacks visible security headers and uses outdated JavaScript libraries, which may expose it to vulnerabilities. Privacy compliance is minimal, with a basic privacy policy present but no cookie consent mechanism or GDPR indicators. Contact information and security policies are not clearly provided. Overall, the website presents a moderate risk profile with room for improvement in security practices, privacy compliance, and technical modernization. Strategic enhancements in these areas would strengthen trust and operational resilience.

O

OSRAM GmbH

osram.com

0

OSRAM GmbH is a global leader in innovative and sustainable lighting solutions, offering a broad portfolio including LED lamps, luminaires, and light management systems. The company targets B2B customers across automotive, entertainment, and industrial sectors, positioning itself as a key player in the energy and transportation industries. The website reflects a mature enterprise with consistent branding and a professional online presence. Technically, the site employs modern JavaScript libraries, consent management tools, and integrates analytics and marketing services with user privacy considerations. Security posture is strong with HTTPS and consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

SAMSUNG SDI is a leading enterprise specializing in advanced battery and electronic materials technology, serving global markets with a focus on sustainability and innovation. The website targets investors, partners, and job seekers, providing comprehensive information on business sectors, ESG initiatives, and investor relations. Technically, the site employs established JavaScript libraries and analytics tools, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and incident reporting, though lacking explicit cookie consent and vulnerability disclosure. Overall, the site reflects a professional and trustworthy corporate presence with room for improvement in privacy compliance and accessibility.

R

RED Drilling & Services GmbH

red-drilling-services.at

0

RED Drilling & Services GmbH is a medium-sized Austrian company specializing in premium drilling solutions for the energy sector. Their services encompass planning, execution, and aftercare of drilling projects supported by modern equipment and skilled personnel. The company positions itself as a premium partner with certifications including SCC** and multiple ISO standards, emphasizing safety, quality, and environmental responsibility. The website is built on TYPO3 CMS and features a professional design with good navigation and mobile optimization. Security practices include cookie consent mechanisms and adherence to recognized safety certifications, though some technical security headers and incident response details are missing. Overall, the site is trustworthy and well-aligned with the company's business claims.

G

gwc

gwc.at

0

gwc is a consulting firm specializing in business development, innovation management, and corporate finance with a focus on sectors such as energy, telecommunications, craftsmanship, and digitalization. The company supports clients in developing strategies, managing innovation portfolios, and securing public funding. The website is professionally designed using WordPress with modern plugins and offers a clear navigation structure and GDPR-compliant cookie consent. However, the site lacks HTTPS which is a significant security concern. No direct contact emails or phone numbers are provided, only a contact form. Security policies and incident response information are not published, indicating room for improvement in transparency and security posture.

B

bevmat e.U.

bevmat.eu

0

bevmat e.U. is a small Austrian company specializing in control cabinet components, energy distribution, and measurement technology. The company targets businesses in the energy sector and operates through a network of European partners. The website reflects a basic online presence with limited content and indicates it is undergoing a relaunch. Technically, the site uses the cm4all CMS platform with older JavaScript libraries and lacks HTTPS, which impacts security and trust. The cookie consent mechanism is implemented, but privacy and terms policies are missing. Security posture is weak due to outdated libraries and missing HTTPS, exposing the site to potential risks. Overall, the site is functional but requires significant improvements in security, privacy compliance, and content quality to enhance business credibility and user trust.

REXEL Austria GmbH is a leading wholesale distributor of electrical installation materials and devices in Austria, with over 25 years of market presence. The company focuses on sustainable and innovative products and services in automation, technology, and energy management, serving industrial, trade, and commercial sectors. Their business model includes comprehensive logistics, building automation, and facility management solutions, supported by two strong sales networks, SCHÄCKE and REGRO. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audiences. Technically, the site is built on the Neos CMS platform using PHP and JavaScript frameworks, hosted with Google Cloud services, and optimized for mobile devices with good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

A

ActivSolar

activsolar.com

0

ActivSolar is a Dutch-language website focused on providing advanced active solar energy solutions for homes and businesses, emphasizing sustainability and energy efficiency. The platform showcases eco-projects, solar energy companies, and related services, positioning itself as a niche player in the renewable energy sector. The website is built on a modern WordPress infrastructure using WooCommerce and Elementor, with integrations such as Google Maps for location-based listings. Security posture is solid with HTTPS enabled and no exposed sensitive data, though explicit security headers and incident response policies are absent. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Overall, the site is professional and functional but would benefit from enhanced privacy and security disclosures.

S

Sweco

swecogroup.com

0

Sweco is a leading European architecture and engineering consultancy specializing in sustainable urban development, infrastructure, energy, and water solutions. With a workforce of 22,000 experts, the company serves a broad client base including public and private sectors, emphasizing sustainability and innovation. The website reflects a mature digital presence with comprehensive content, investor relations, and sustainability reporting. Technically, the site is built on WordPress with modern plugins and scripts, but suffers from a critical security flaw due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which undermines user trust and security. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. Overall, Sweco's digital footprint is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to meet security best practices.

K

KAEFER SE & Co. KG

kaefer.com

0

KAEFER SE & Co. KG is a global industrial services company specializing in technical services such as insulation, access solutions, surface protection, fire protection, and electrical/mechanical services. With over 33,000 employees and a presence in more than 150 cities across approximately 30 countries, KAEFER positions itself as a reliable partner for industrial plants, ships, and buildings worldwide. The website reflects a mature business with comprehensive service offerings and a strong emphasis on sustainability and innovation. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WP Rocket, and Slider Revolution, providing a good user experience and SEO optimization. However, performance is moderate and accessibility is basic. Mobile optimization is good, and the site uses cookie consent management to comply with GDPR. From a security perspective, the site has implemented several important HTTP security headers and uses secure cookies. However, a critical issue is the absence of a valid SSL certificate and the lack of enabled TLS protocols, which severely impacts the security posture and user trust. This is a significant vulnerability that should be addressed immediately. Overall, the website is professional and trustworthy in content and business representation but requires urgent improvements in SSL/TLS configuration to ensure secure communications and protect user data.

A

Aura Light International AB

auralight.com

0

Aura Light International AB is a well-established company specializing in sustainable and energy-efficient lighting solutions for professional environments such as public spaces, industry, and retail. The company offers a broad range of products including luminaires, light sources, and smart lighting control systems, positioning itself as a leading player in the Nordic and international markets. The website reflects a professional B2B business model with clear product segmentation and customer engagement channels. Technically, the website is built on the Litium e-commerce platform with integrations such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is well-structured, mobile-optimized, and SEO-friendly, although performance metrics are not available. Hosting appears to be via Fastly CDN with Varnish caching. From a security perspective, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical vulnerability impacting user trust and data security. Security headers are partially implemented, but modern TLS protocols are disabled. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Contact information is readily available, but no explicit security policy or incident response details are found. Overall, Aura Light's website demonstrates solid business credibility and content quality but requires urgent improvements in SSL/TLS configuration to enhance security posture and user trust. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and publishing incident response contacts to strengthen security transparency.

S&P Global Commodity Insights is a leading enterprise providing comprehensive commodity market data, price assessments, and analytics, leveraging over a century of expertise. The website is professionally designed, highly relevant to its target audience of energy and commodity market professionals, and employs modern technologies including Adobe Experience Manager and various JavaScript libraries. However, a critical security issue is present due to an invalid or missing SSL certificate, which significantly impacts the site's security posture. Despite this, the site maintains strong privacy compliance with clear policies and consent mechanisms. The domain registration data aligns well with the business identity, reinforcing legitimacy. Strategic recommendations include immediate remediation of SSL issues, enhancement of security policies, and implementation of incident response and vulnerability disclosure frameworks.

F

FLUSSBAU iC GesmbH

flussbau-ic.at

0

FLUSSBAU iC GesmbH is a specialized consulting company operating internationally with a focus on water and river engineering, including flood protection, hazard zone planning, and water infrastructure construction. The company offers comprehensive services from planning to execution and engages in research and development to maintain innovation. The website reflects a professional and consistent brand presence targeting professionals and organizations in the water engineering and environmental sectors. Technically, the website is built on TYPO3 CMS with common web technologies like jQuery and Bootstrap, providing a good user experience and mobile optimization. However, the absence of HTTPS is a critical security flaw that severely impacts the site's security posture. The site implements a cookie consent mechanism and provides clear contact information, but lacks advanced security headers and domain security features such as DNSSEC and CAA records. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in security and compliance are recommended to enhance trust and protect user data.

S

S.I.O.T. spa

tal-oil.com

0

The TAL Group operates a strategic transalpine oil pipeline transporting energy from the Port of Trieste to Central European refineries, with subsidiaries in Italy, Austria, and Germany. The website presents a professional and consistent business profile focused on energy transportation and sustainability, targeting European industrial and governmental stakeholders. Technically, the site is built on WordPress with common plugins for user management and GDPR compliance, hosted likely on Cloudways. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, despite the presence of several security headers. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit terms of service or incident response policies are found. Overall, the site is functional and professional but requires urgent security improvements to enable HTTPS and modern TLS protocols.

The Bernard Gruppe is a medium-sized, owner-managed engineering group founded in 1983, specializing in interdisciplinary engineering services across energy, industry, infrastructure, and transportation sectors. With approximately 400 employees and operations in over 40 countries, the company offers comprehensive consulting, planning, and project realization services, including specialized software and hardware solutions. The website content reflects a professional engineering firm with a broad service portfolio and international presence. Technically, the website is built on WordPress using the Avada theme and includes a cookie consent mechanism from an external provider. However, the site lacks HTTPS support and modern security configurations, which significantly impacts its security posture. Performance data is missing, and SEO and accessibility features are basic. No analytics or tracking services beyond cookie consent are detected. From a security perspective, the absence of a valid SSL certificate and HTTPS is a critical vulnerability, exposing users to potential data interception risks. The site also lacks security headers, DNSSEC, and other modern protections. No privacy policy, terms of service, or incident response information is provided, indicating gaps in compliance and security transparency. Overall, the website presents a moderate business credibility but suffers from significant security and privacy shortcomings. Strategic improvements in SSL deployment, security headers, and privacy documentation are essential to enhance trust and compliance.

H

HOT Microfluidics (fluidXlab)

fluidxlab.com

0

fluidXlab GmbH, formerly HOT Microfluidics, is a specialized technology company focused on advanced fluidic and laboratory services primarily serving the energy sector. Their offerings include microfluidic products, turnkey microfluidic technology platforms, and laboratory services supporting enhanced oil recovery, underground hydrogen storage, and carbon capture solutions. The company positions itself as a niche leader with a strong emphasis on innovation and compliance with high HSE standards. The website reflects a professional and consistent brand image, targeting energy companies and research institutions engaged in subsurface energy challenges. Technically, the website is built on WordPress with Elementor and employs modern web technologies and performance optimizations. However, the SSL certificate is currently invalid, which poses a critical security risk. The site includes GDPR-compliant privacy and cookie policies with a consent mechanism, and integrates marketing and analytics tools such as Google Tag Manager and LinkedIn Insight. Social media presence is active on LinkedIn, X (Twitter), and YouTube. Overall, the website demonstrates good business credibility and privacy compliance but requires urgent remediation of SSL issues to improve security posture.

The AES Corporation is a global energy company focused on delivering clean, renewable, and innovative energy solutions worldwide. The company positions itself as a Fortune 500 leader with a strong commitment to sustainability, serving diverse audiences including businesses, investors, and career seekers. Their business model emphasizes greener capacity, smart grids, carbon-free electricity, and digital solutions, supported by a broad network of regional subsidiaries. Technically, the website is built on Drupal 10 with modern frontend technologies and demonstrates good mobile optimization and accessibility. However, critical security issues exist, notably the absence of a valid SSL certificate and disabled TLS protocols, which severely impact the security posture. Privacy and cookie policies are present with consent mechanisms, and the site employs extensive analytics and marketing tools. Overall, the website is professional and content-rich but requires urgent security improvements to align with best practices.

The website energy.at is currently inaccessible beyond a Cloudflare security challenge page, which blocks direct content access. This prevents a full assessment of the business, its services, or its digital presence. The site lacks a valid SSL/TLS certificate, serving content only over HTTP, which is a critical security deficiency. No privacy, cookie, or terms of service policies are present, and no contact information or business details are visible. The technical infrastructure relies on Cloudflare for protection, but the challenge page limits user access and analysis. Overall, the site exhibits poor content quality, minimal technical implementation, and a weak security posture. The lack of HTTPS and visible business information significantly reduces trust and credibility.

Veolia Australia and New Zealand operates as a leading provider of sustainable environmental solutions focusing on water, energy, and waste management. The company leverages global expertise and innovative technologies to support ecological transformation and sustainability goals for businesses and communities in the region. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with a large enterprise. Technically, the site is built on Drupal 10 and uses modern web technologies and Cloudflare CDN for delivery. However, the absence of a valid SSL certificate and lack of modern TLS protocols significantly weaken the security posture. Privacy compliance is well addressed with accessible privacy and cookie policies and consent mechanisms. Contact is primarily facilitated through webforms and social media channels, with no explicit company emails or phone numbers publicly listed. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the site is professional and content-rich but requires urgent security improvements to meet best practices.

SCHOLLENBERGER Kampfmittelbergung GmbH is a specialized service provider in ordnance and explosive material recovery operating primarily in Austria and Germany. Established in 2009 and employing around 380 staff, the company offers comprehensive services including surface and depth probing, aerial image evaluation, and diving operations. It is part of the SOCOTEC Group, which enhances its market position and operational capabilities. The website presents detailed business information and service descriptions targeting industrial, governmental, and private clients requiring ordnance clearance and related environmental services. Technically, the site is built on TYPO3 CMS with modern frontend libraries but suffers from critical security shortcomings such as lack of HTTPS and DNS misconfigurations. These issues undermine trust and expose the site to risks. No privacy or cookie consent mechanisms are implemented, which may affect GDPR compliance. Overall, the business is credible and professional, but the digital infrastructure requires urgent security and technical improvements.

Burgenland Energie is a regional energy provider based in Austria, specializing in renewable energy solutions such as photovoltaic systems, battery storage, heat pumps, and e-mobility services. The company targets private customers, municipalities, and businesses within the Burgenland region, emphasizing energy independence and sustainability. Their digital presence includes a professional website with comprehensive product information, customer portals, and active social media channels. Technically, the website is built using modern web technologies including React and Next.js, hosted on AWS infrastructure with CloudFront and S3. While the site is mobile-optimized and well-structured for SEO and accessibility, performance metrics indicate slow loading times, which could be improved. The use of Google Tag Manager and Zoho CRM scripts indicates integration with marketing and customer relationship management tools. From a security perspective, the website lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability that undermines user trust and data security. Other security best practices such as HSTS, OCSP stapling, and session resumption are also missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism in place. Overall, the website presents a trustworthy and professional business with strong content and user experience but requires urgent improvements in SSL/TLS configuration to enhance security posture and protect user data effectively.

I

ISZ Markt

isz-markt.at

0

ISZ Markt is a leading Austrian wholesale distributor specializing in installer supplies, heating, electrical, and home technology products. With 70 locations across Austria and a strong parent company, Frauenthal Handel Gruppe AG, ISZ Markt serves professional installers and contractors with a broad product range and fast delivery services. The website is professionally designed using WordPress and Elementor, featuring comprehensive content, structured data, and good SEO practices. However, the website suffers from a critical security issue due to an invalid SSL certificate and lack of enabled TLS protocols, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and detailed privacy policy. Contact is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, the site is credible and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

F

Franz Hasler AG

franzhasler.li

0

Franz Hasler AG is a well-established company based in Liechtenstein specializing in sustainable construction, solar energy solutions, and comprehensive construction management services. The company leverages over a century of tradition combined with ecological values to serve clients seeking environmentally conscious building solutions. Their business model focuses on acting as a general and total contractor, managing projects from planning through to completion, ensuring quality, timing, and cost control. The company maintains subsidiaries focused on solar energy and construction management, enhancing their service portfolio. Technically, the website is built on WordPress with standard web technologies and plugins. However, the site suffers from slow load times and lacks modern security configurations such as HTTPS, security headers, and cookie consent mechanisms. Mobile optimization and navigation are good, but performance and security are areas needing improvement. From a security perspective, the absence of a valid SSL certificate and HTTPS is a critical vulnerability, exposing users to potential data interception risks. The lack of security headers and no visible incident response or security policies further weaken the security posture. Privacy compliance is minimal, with no cookie consent or GDPR indicators present. Overall, while the business credibility and content quality are good, the technical and security shortcomings significantly impact the website's trustworthiness and user safety. Strategic improvements in security and privacy compliance are essential to enhance the company's digital maturity and protect its clients and reputation.

A

accilium GmbH

accilium.com

0

accilium GmbH is a medium-sized management and strategy consultancy specializing in digital transformation within the mobility, energy, and public sectors. With over 130 consultants across multiple European offices, it holds a strong market position among the top consultancies in the German-speaking region. The company offers services including strategy and innovation, business transformation, data intelligence, and organizational consulting. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. However, the security posture is weakened by the absence of a valid SSL certificate and lack of modern TLS protocol support, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, accilium demonstrates strong business credibility and digital maturity but requires urgent improvements in SSL/TLS security to protect its users and enhance trust.

I

Interenergo d.o.o.

interenergo.si

0

Interenergo d.o.o. is a medium-sized energy company based in Slovenia, operating as part of the Austrian Kelag group since 2009. The company focuses on renewable energy investments, energy efficiency solutions, power purchase agreements, and energy trading across Southeast Europe. Their website is professionally designed with clear navigation and bilingual support, targeting businesses and investors interested in green energy solutions. Technically, the site uses modern JavaScript libraries and cookie consent mechanisms but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS significantly lowers the security posture. Contact information and privacy policies are clearly provided, supporting GDPR compliance. Overall, the website is functional and trustworthy but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

J

Jung Eco Building Solutions GmbH

jung-ingenieure.com

0

Jung Eco Building Solutions GmbH is a specialized engineering consultancy focused on climate engineering, green building design, and energy consulting primarily serving clients such as builders, planners, and architects in Germany. The company offers tailored energy and climate concepts, building envelope optimization, and certification services for sustainable buildings. Their market position is that of a niche player in the energy and sustainability sector with a small company size and a professional online presence. Technically, the website is built on WordPress with common libraries like Bootstrap and jQuery, but lacks HTTPS and modern security configurations, which is a significant risk. The absence of cookie consent mechanisms and incident response information indicates partial GDPR compliance. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

C

CTP Chemisch Thermische Prozesstechnik GmbH

ctp-airpollutioncontrol.com

0

CTP Chemisch Thermische Prozesstechnik GmbH is a well-established Austrian company specializing in industrial air pollution control solutions with 40 years of experience. The company offers customized turnkey systems for air purification, VOC emission control, and hazardous pollutant removal, serving a global industrial clientele. Their website reflects a professional presence with clear business information and a focus on environmental technology. Technically, the site is built on Drupal 8 with modern web components but lacks a valid SSL certificate, which is a critical security shortfall. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided. However, the absence of HTTPS significantly undermines the site's security posture and trustworthiness. Strategic improvements in SSL implementation and enhanced security headers are recommended to elevate the site's security and compliance standing.

N

NETxAutomation Software GmbH

netxautomation.com

0

NETxAutomation Software GmbH is a medium-sized company specializing in building management software and multi-protocol gateways for medium-sized and enterprise building automation projects. With over 20 years of experience and a presence in more than 100 countries, the company offers a comprehensive suite of products including the NETx BMS Platform and NETx Multi Protocol Server, alongside services such as project analysis, commissioning, and driver development. Their target audience includes system integrators, electrical engineers, and end customers seeking integrated building automation solutions. Technically, the website is built on Joomla CMS with jQuery and FontAwesome libraries, served by an Apache 2.4.62 server. However, the site lacks a valid SSL certificate and does not support HTTPS or modern TLS protocols, which significantly impacts its security posture. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. SEO is basic but includes meta tags and alternate language links. From a security perspective, the site implements some security headers such as Strict-Transport-Security and X-Content-Type-Options, and uses HttpOnly cookies. However, the absence of a valid SSL certificate, lack of TLS support, and missing advanced security headers reduce the overall security score. No explicit security or incident response policies are found, and no vulnerability disclosure or security.txt file is present. Overall, the website is professional and content-rich but suffers from critical security shortcomings due to missing HTTPS. Strategic improvements in SSL/TLS deployment and enhanced security policies are recommended to improve trust and compliance.

L

Ligabue

ligabue.it

0

Ligabue S.p.a. is a well-established company specializing in global food service and logistics for the maritime and energy sectors. The company operates in 16 countries with a network of 200 partners and suppliers across 417 ports, providing ship supply, cargo services, industrial services, and maritime hospitality. Their website reflects a professional and comprehensive digital presence, leveraging WordPress CMS and modern frontend technologies. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy policies are well addressed through a reputable third-party provider, indicating good compliance with GDPR standards. Overall, the company demonstrates strong business credibility and market positioning but must urgently address its security posture to align with best practices and regulatory requirements.

B

BDI Bioenergy

bdi-bioenergy.com

0

BDI-BioEnergy International GmbH is a medium-sized Austrian company specializing in technology development and industrial plant engineering focused on chemical recycling, bioenergy, and sustainable industrial solutions. The company positions itself as an innovative leader with a strong emphasis on research, development, and turnkey plant solutions for the circular economy. Their key services include biodiesel retrofit, advanced pretreatment, smart operations, biogas, and green technology solutions. The website is built on WordPress with a modern tech stack including Yoast SEO, WPML for multilingual support, and various plugins for user interaction and spam protection. However, the site lacks HTTPS, which is a critical security shortfall. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided. The company holds ISO 9001:2015 certification, enhancing its credibility. Overall, the website is professional and well-structured but requires urgent security improvements to protect user data and enhance trust.

ENERGIEALLIANZ Austria GmbH is a well-established energy sales and trading company founded in 2001, serving millions of customers in Austria and abroad with electricity, natural gas, and related services. The website reflects a mature digital presence built on TYPO3 CMS with modern web technologies and a focus on sustainability and customer service. Security posture is strong with HTTPS, secure cookies, and OCSP stapling, though improvements like HSTS and security.txt could enhance it further. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. Contact information is transparent and includes multiple channels. Overall, the site demonstrates professionalism, trustworthiness, and good technical implementation.

A

AEROCOMPACT Europe GmbH

aerocompact.com

0

AEROCOMPACT Europe GmbH operates as a global provider of photovoltaic mounting solutions, specializing in intelligent solar racking systems for roofs and open spaces. The company positions itself as a dynamic pioneer in the energy transition sector, offering both physical products and digital planning tools such as the Aerotool platform. Their market presence is supported by multiple global offices and a comprehensive service portfolio targeting solar engineers, project developers, and wholesalers. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Google Tag Manager, Swiper.js, and Globe.gl for interactive features. While the site is content-rich and well-structured with good SEO practices, performance metrics indicate slow loading times, and accessibility features are basic. Mobile optimization is good, ensuring usability across devices. From a security perspective, the site lacks a valid SSL certificate and does not properly support HTTPS, which is a critical vulnerability. Security headers are minimal, and modern TLS protocols are not enabled. Despite these issues, the site uses secure cookies and has implemented privacy and cookie policies compliant with GDPR. Analytics and marketing tools are in use, with moderate user tracking. Overall, the website demonstrates strong business credibility and content quality but suffers from significant security shortcomings that must be addressed to protect user data and maintain trust. Strategic improvements in SSL/TLS configuration and security headers are recommended to elevate the security posture and compliance level.

BBI International operates as a specialized media and events company serving the biofuels, biomass, biodiesel, ethanol, carbon capture, sustainable fuels, and unmanned aircraft systems industries. The company publishes multiple niche magazines and organizes several well-established conferences and expos, positioning itself as a key information and networking hub within these sectors. The website content reflects a focused business model targeting industry professionals and companies seeking news, education, and event participation. Technically, the website runs on a Microsoft IIS server using ASP.NET with legacy jQuery scripts and integrates Google Analytics and Tag Manager for tracking. However, the site lacks HTTPS, exposing visitors to security risks and undermining trust. Security posture is weak with no SSL certificate, no advanced security headers, and no cookie consent mechanisms, indicating compliance gaps especially regarding GDPR. The WHOIS data aligns well with the business profile, confirming legitimacy and consistent registration details. Overall, the site provides relevant content but requires significant security and privacy improvements to meet modern standards.

M

mlu-recordum Environmental Monitoring Solutions GmbH

recordum.com

0

JCT NextGen AQMS is a specialized provider of air quality monitoring solutions, leveraging the acquisition of mlu-recordum to offer innovative and cost-effective environmental monitoring products. The company operates under the JCT Group umbrella, which includes subsidiaries focused on gas sampling, liquid sampling, and process analytics. The website presents a professional and consistent brand image targeting industrial and environmental sectors, primarily in Austria. Technically, the site is built on WordPress with Elementor and uses Borlabs Cookie for GDPR-compliant cookie management. However, the absence of a valid SSL certificate and HTTPS implementation is a significant security shortfall. While privacy policies and contact information are well presented, the lack of explicit security policies, incident response, and vulnerability disclosure pages indicates room for improvement in security transparency. Overall, the site is functional and informative but requires urgent security enhancements to protect users and improve trust.

C

Calderys

calderys.com

0

Calderys is a globally recognized enterprise specializing in refractory products and thermal protection solutions for industries operating under high temperature conditions, primarily serving the energy and manufacturing sectors. The company offers a comprehensive range of products and services including steel casting enhancement, metallurgical fluxes, and refractory services, supported by a broad international network of offices and experts. The website reflects a mature business with a strong market position and a recent strategic alliance with HarbisonWalker International, enhancing its footprint in the refractory industry. Technically, the website is built on Drupal 10 and incorporates modern front-end libraries and tools such as Google Tag Manager and Slick Carousel. While the site is mobile-optimized and SEO-friendly with good content quality and navigation, performance metrics indicate slow loading times. Accessibility is basic but present. The hosting is provided by Vox Teneo Web Engine. From a security perspective, the site lacks a valid SSL certificate and does not support any TLS protocols, which is a critical vulnerability exposing users to risks and undermining trust. Although some security headers like Content Security Policy and X-Frame-Options are implemented, the absence of HTTPS and HSTS significantly lowers the security posture. Privacy compliance is well addressed with GDPR-compliant cookie consent mechanisms and clear privacy policies. Business credibility is high with detailed contact information, social media presence, and consistent branding. Overall, the website is professionally designed and content-rich but suffers from critical security shortcomings that must be addressed urgently to protect user data and maintain trust. Strategic recommendations include immediate SSL/TLS deployment, enabling modern security protocols, and enhancing security headers and incident response capabilities.