Security Directory

N

N-SIDE

n-side.com

0

N-SIDE is a specialized deeptech company focusing on providing optimization and analytics solutions for the life sciences and energy sectors. Their offerings include software and professional services aimed at improving pharmaceutical manufacturing efficiency, clinical trial management, and energy forecasting and power matching for market participants. The website reflects a professional digital presence built on HubSpot CMS, leveraging modern web technologies and marketing tools such as Google Tag Manager. However, the security posture is weak due to the absence of a valid SSL certificate and proper HTTPS configuration, which poses a significant risk to user trust and data security. Privacy compliance is minimal, with no visible privacy or cookie policies, and no explicit contact information is provided on the homepage. Overall, the site demonstrates moderate business credibility and technical maturity but requires urgent improvements in security and privacy compliance to meet industry standards.

din – Dietmar Nocker Sicherheitstechnik GmbH & Co KG is a medium-sized Austrian company specializing in emergency lighting solutions with over 40 years of industry experience. The company offers a comprehensive portfolio including product development, systems, and service support, targeting businesses requiring compliant emergency lighting. Their market position is strong in Austria and neighboring countries, supported by multiple locations and a professional online presence. Technically, the website is built on WordPress with multilingual support and privacy-conscious analytics via Matomo. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security shortfall, exposing users to risks and undermining trust. The company demonstrates good privacy compliance with detailed cookie consent mechanisms and GDPR-aligned policies. Overall, the business is credible and professional but must urgently address its security posture to protect users and maintain trust.

M

Microtronics Engineering GmbH

microtronics.at

0

Microtronics Engineering GmbH is a medium-sized Austrian company specializing in technology solutions for environmental technology and energy management. Their offerings include advanced data loggers, sensors, and an IoT platform designed for reliable data transmission even in harsh environments. The company has a strong international presence with partners in 80 countries and a focus on B2B markets in energy and environmental sectors. Technically, the website is built on WordPress with WooCommerce and Elementor, integrating marketing and analytics tools such as HubSpot and Google Analytics. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and enhance credibility.

Hoval Österreich operates as a leading provider of technologically advanced heating and climate control solutions in Austria, targeting both residential and commercial sectors. Their product portfolio includes heating systems for heat pumps, oil, gas, biomass, and solar, complemented by climate technology solutions for heating, cooling, and ventilation. The company maintains a strong market position supported by a comprehensive website that offers detailed product information, customer references, and service options including customer support and online ordering via myHoval. Technically, the website is built on the SAP Commerce (Hybris) platform, integrating modern marketing and analytics tools such as Google Tag Manager, Google Analytics, and OneTrust for cookie consent management. However, performance is moderate with slow DNS resolution and no page size or load time data available. Mobile optimization and SEO are well addressed, but accessibility is basic. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, significantly weakening its security posture. While security headers like HSTS, X-Frame-Options, and XSS protection are present, the absence of a valid certificate and weak SSL/TLS configuration are critical issues. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Contact information is available but lacks explicit security policy or incident response details. Overall, the website is professional and trustworthy from a business and content perspective but requires urgent improvements in SSL/TLS configuration to enhance security and user trust. Strategic recommendations include fixing the SSL certificate, enabling modern TLS versions, and tightening CORS policies.

P

Pan American Energy S.L., sucursal Argentina

pan-energy.com

0

Pan American Energy (PAE) is a leading integrated private energy company operating primarily in Argentina and the Latin American region. The company focuses on upstream oil and gas operations, downstream refining and distribution, and renewable energy projects. It positions itself as a major producer, employer, and investor in the energy sector of Argentina, with presence in neighboring countries. The website reflects a corporate and professional image with clear navigation and multilingual support, targeting investors, suppliers, and job seekers. Technically, the site is built on Microsoft SharePoint and ASP.NET technologies, leveraging modern JavaScript libraries and frameworks for UI and analytics integration. However, the absence of HTTPS and SSL certificates is a critical security flaw, exposing users to potential risks. Security headers are partially implemented, but key protections like HSTS and TLS protocols are missing. Privacy compliance is weak, with no visible cookie consent or GDPR indicators. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

Xylem Inc. is a leading enterprise specializing in innovative water solutions and water technology, serving diverse sectors including energy, municipal water, healthcare, and manufacturing. The company offers a broad portfolio of products and services such as water and wastewater treatment systems, pumps, digital water solutions, and parts and supplies. Their market position is strong with a global footprint and multiple subsidiary brands. The website reflects a professional and comprehensive digital presence with excellent content quality and consistent branding. Technically, the site uses modern JavaScript frameworks, Google Tag Manager for analytics, and is hosted behind Cloudflare, but lacks a valid SSL certificate, which significantly impacts its security posture. Security headers are present but the absence of HTTPS and related SSL/TLS features lowers the overall security score. Privacy policies and terms of service are well documented, though no explicit cookie consent mechanism was detected. Contact information is primarily via contact forms with no direct emails or phone numbers found. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

Ploier + Hörmann is a medium-sized Austrian construction company specializing in energy and telecommunications infrastructure, with over 50 years of experience. The company operates as part of the larger Unternehmensgruppe LEYRER + GRAF, which strengthens its market position and resource base. Their website is professionally designed using TYPO3 CMS, providing clear navigation and relevant content targeted at clients in the construction and infrastructure sectors. However, the absence of a valid SSL certificate and HTTPS severely impacts their security posture and user trust. While cookie consent and privacy policies are implemented, there is a lack of explicit security policies or incident response information. The company maintains active social media channels and links to sister companies, indicating a well-connected business ecosystem.

K

Kpler

jbcenergy.com

0

Kpler is a medium-sized, Belgium-based data and analytics company specializing in commodity and energy markets. It provides proprietary data, market analysis, forecasts, and maritime tracking services to a professional B2B audience including traders, analysts, and logistics managers. The company has strengthened its market position through acquisitions such as JBC Energy and ClipperData, consolidating its leadership in commodity data analytics. Technically, the website is built on Webflow CMS, hosted via Cloudflare, and employs modern JavaScript libraries and marketing tools. However, the site suffers from a critical security issue due to an invalid SSL certificate and lack of TLS protocol support, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

P

Primagaz

primagaz.fr

0

Primagaz is a well-established French energy supplier specializing in propane, butane, GPL, and biopropane gas products and services. Founded in 1938, the company targets both residential and professional customers, including those in remote areas not connected to natural gas networks. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. However, the technical infrastructure shows weaknesses, notably the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Marketing and analytics tools such as Google Tag Manager, Visual Website Optimizer, and Cludo search are integrated, indicating a focus on user experience and conversion optimization. Privacy and cookie policies are present and GDPR compliant, enhancing trust. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and comply with modern web standards.

A

ATMOSA Petrochemie GmbH

atmosa.at

0

ATMOSA Petrochemie GmbH is a medium-sized Austrian company specializing in the production and supply of Phthalic Anhydride, a key petrochemical product. Established in 1995, it has positioned itself as a major European producer with a focus on reliability and long-term supply to chemical producers globally. The website reflects a professional business presence with clear company information, product details, and contact options targeting industrial clients and partners. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and analytics tools, hosted on infrastructure linked to hostprofis.com. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to risks and undermining trust. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Overall, the site is functional and professional but requires urgent security improvements to meet modern standards.

C

CANBERRA PACKARD Central Europe GmbH

cpce.net

0

CANBERRA PACKARD Central Europe GmbH is a well-established company specializing in the sales, installation, and servicing of nuclear and environmental radiation detection and measurement equipment, as well as medical radiation diagnostic and therapy equipment. Founded in 1987 in Austria, the company has grown to become the largest supplier in Central and Eastern Europe, serving a diverse clientele including government organizations, nuclear power plants, research centers, and international bodies. The website reflects a professional corporate presence with relevant content and clear contact information, targeting industry professionals and institutional customers. Technically, the website is built on WordPress 6.8.1 running PHP 8.2.28 and hosted on DigitalOcean infrastructure. While the site demonstrates good mobile optimization and accessibility, performance metrics are lacking, and SEO optimization is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks and undermining trust. Security headers are minimal, and no advanced security frameworks or incident response policies are evident. From a security perspective, the site’s posture is weak due to the lack of HTTPS, no cookie or privacy policies, and no vulnerability disclosure mechanisms. The SPF record is valid, and DNS configurations are consistent with the business location, but the SSL/TLS configuration is non-existent, which is a major vulnerability. No WAF or blocking mechanisms are detected, indicating open accessibility but also potential exposure. Overall, the site is functional and professional in content but requires urgent improvements in security and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies, and enhancing security headers and incident response readiness to improve trust and compliance.

B

Bioquadrat Energie- und Wassertechnik Holding GmbH

biogest.at

0

BIOGEST is a well-established Austrian company specializing in the design, construction, and operation of biomethane and biogas plants. With over 30 years of experience and more than 200 plants worldwide, they position themselves as a full-service provider offering project development, engineering, co-investment, construction, and maintenance services. Their target audience includes farmers, investors, and customers interested in sustainable energy solutions. The website is professionally designed, content-rich, and provides comprehensive contact information and social media presence. Technically, the site is built on TYPO3 CMS and served via Cloudflare, but lacks a valid SSL certificate, which is a critical security shortfall. Cookie consent mechanisms and tracking via Google Tag Manager are implemented, but GDPR compliance is basic. No explicit security or incident response policies are published, which could be improved to enhance trust and compliance.

Landis+Gyr is a global leader in smart metering and grid edge intelligence technologies, providing advanced energy management solutions to utilities and energy providers. The company offers a broad portfolio including smart meters, analytics, consumer engagement, and managed services, positioning itself as a key enabler of the modern digital energy grid. Their website reflects a mature enterprise with comprehensive content, strong branding, and active communication channels including news, blogs, and social media. Technically, the site is built on WordPress with a robust set of plugins and integrations for analytics, marketing, and multilingual support. However, the current lack of a valid SSL certificate and disabled TLS protocols represent significant security weaknesses that undermine user trust and data protection. Security headers are partially implemented, and cookie consent mechanisms comply with GDPR standards. Overall, the website demonstrates high professionalism and business credibility but requires urgent remediation of its SSL/TLS configuration to meet modern security expectations.

V

VINICKY Armaturen Handels GmbH

vinicky.at

0

VINICKY Armaturen Handels GmbH is an established Austrian company specializing in industrial valves and pumps, serving sectors such as water treatment, petrochemical, building technology, and power plants. The company has a long history dating back to 1952 and recently expanded its portfolio by acquiring Sonnleitner Industriearmaturen GmbH, enhancing its market position and product offerings. The website reflects a professional B2B supplier model targeting industrial clients with a focus on reliability and comprehensive solutions. Technically, the website is built on Joomla CMS with common JavaScript libraries and plugins, but lacks modern performance optimizations and mobile responsiveness is basic. Security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to risks. Privacy compliance is partially addressed with cookie consent mechanisms and basic privacy policy presence. Overall, the site is functional but requires significant improvements in security and technical modernization to meet current standards.

R

RP Global

rp-global.com

0

RP Global is a well-established large-scale developer, operator, and investor in the renewable energy sector with over 40 years of experience. The company focuses on solar PV, wind, hydro, hydrogen, and energy storage projects primarily in Europe and Latin America, with a significant project pipeline exceeding 14 GW(p). Their business model centers on project development, investment, and strategic partnerships, positioning them as a key player in the renewable energy market. Technically, the website is built on ASP.NET and hosted on Microsoft IIS with Umbraco CMS, incorporating modern web technologies such as Google Tag Manager and Google Fonts. However, performance is slow and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate, lack of HTTPS, missing security headers, and no incident response or security policy disclosures. Privacy compliance is minimal with policies present but no consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

E

EXERGY Studios, s.r.o.

exergystudios.com

0

EXERGY Studios, s.r.o. is a Slovak-based company specializing in building certification services such as BREEAM and LEED, building simulation, optimization, and integrated design. The company targets building owners, developers, and construction professionals seeking to enhance building performance and certification compliance. Their market position is that of a niche regional expert with a small business size and a focused service portfolio. Technically, the website is built on Joomla CMS using a Gavick template and includes legacy JavaScript libraries like jQuery 1.7 and MooTools. The site lacks HTTPS, which significantly impacts its security posture. Security headers are minimal, and no advanced security practices such as HSTS or OCSP stapling are implemented. Privacy compliance is poor, with no visible privacy or cookie policies or consent mechanisms. Business credibility is moderate due to the presence of trust indicators like membership in SKGBC and USGBC but is weakened by the lack of clear contact information and security best practices.

F

Fritz HOLTER GmbH

holter.at

0

Fritz HOLTER GmbH operates a comprehensive website focused on sanitary and heating wholesale distribution in Austria, with additional services in wellness and pool solutions. The company has a strong market presence with over 150 years of history, targeting both professional installers and end consumers. The website is content-rich, professionally designed, and offers multiple user engagement channels including partner installer search, online bathroom planner, and newsletter subscription. Technically, the site uses modern technologies such as Vue.js and Storyblok CMS, hosted on AWS CloudFront CDN, with good SEO and accessibility practices. However, the security posture is weakened by an invalid or missing SSL certificate, lack of HTTPS enforcement, and absence of modern TLS protocols, which poses a significant risk. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional but requires urgent SSL/TLS remediation to improve security and user trust.

S

SLB

slb.com

0

SLB is a global energy technology company focused on driving innovation for a balanced planet. Their website showcases a comprehensive portfolio of solutions spanning decarbonization, digital transformation, and traditional oil and gas services. The company targets energy industry professionals, investors, partners, and job seekers, positioning itself as a market leader with extensive service offerings and a strong sustainability commitment. Technically, the website employs modern technologies such as jQuery, Brightcove video, Coveo search, and integrates multiple analytics and marketing tools. The site is well-designed, mobile-optimized, and offers rich content with clear navigation. However, the security posture is weakened by an invalid or missing SSL certificate and lack of HTTPS support, which is a critical issue. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site reflects a mature enterprise with good business credibility but requires urgent security improvements to protect user data and maintain trust.

K

Kemira Oyj

kemira.com

0

Kemira Oyj is a global leader specializing in sustainable chemical solutions primarily for water-intensive industries such as pulp & paper, water treatment, and energy sectors. The company offers a comprehensive portfolio including water treatment chemicals, fiber production solutions, industrial chemicals, and digital services aimed at process optimization. Their website reflects a mature digital presence with strong emphasis on sustainability, investor relations, and corporate governance, targeting industry professionals, investors, suppliers, and potential employees. The company is headquartered in Helsinki, Finland, and maintains a large operational scale with over 4,700 employees.

E

Evides N.V.

evides.nl

0

Evides N.V. is a large, established public utility company providing reliable and sustainable drinking water services to approximately 2.5 million consumers and businesses in the southwest Netherlands. The company operates a comprehensive digital infrastructure including a customer portal (Mijn Evides), extensive self-service options, and detailed information resources. Their market position is strong with a focus on quality, sustainability, and customer engagement. Technically, the website is built on modern frameworks like Nuxt.js and Vue.js, hosted on Microsoft Azure, and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Google Tag Manager. Security measures are in place including a strict Content Security Policy and multiple security headers; however, the SSL certificate is currently invalid and no modern TLS protocols are enabled, representing a critical security risk. Privacy compliance is robust with comprehensive GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of SSL issues to ensure secure user interactions.

E

ertex solar

ertex-solar.at

0

Ertex solar is a specialized company focused on building-integrated photovoltaics (BIPV), offering innovative solar energy solutions integrated into architectural elements such as façades, balconies, and roofs. With a strong emphasis on aesthetics and energy transition, the company serves architects, developers, and environmentally conscious clients globally. The website reflects a mature digital presence with professional design, multilingual support, and comprehensive product information. Technically, the site runs on a modern WordPress stack with SEO and performance optimizations, hosted on OVHcloud. Security posture is solid with HTTPS and multiple security headers, though SSL/TLS protocol support requires enhancement. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain and WHOIS data corroborate the legitimacy and consistency of the business claims.

T

Thöni Industriebetriebe GmbH

thoeni.com

0

Thöni Industriebetriebe GmbH is a well-established family-owned industrial group based in Austria, specializing in aluminum manufacturing, automotive components, environmental energy technology, machinery and plant construction, and hose production. The company operates internationally with multiple production sites across Austria, Germany, Italy, and the USA. The website reflects a professional and comprehensive digital presence, targeting industrial clients and partners in related sectors. Technically, the site is built on WordPress with modern frontend frameworks and plugins, but suffers from a critical lack of HTTPS support due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business credibility and content quality are high, but the security deficiencies pose a risk to user trust and data protection.

I

IMPROCESS GmbH

improcess.at

0

IMPROCESS GmbH is a small Austrian biotech consulting engineering firm specializing in process improvement, energy efficiency, and environmental performance for manufacturing operations. Their website presents a professional image with clear business focus and partner affiliations. The technical infrastructure is based on WordPress with common web technologies but lacks HTTPS, which is a critical security gap. The site uses Google Analytics for user tracking but does not provide privacy or cookie policies, indicating poor privacy compliance. Security posture is weak due to missing SSL, lack of security headers, and exposed PHP version. Overall, the website is functional and informative but requires significant improvements in security and privacy to meet modern standards.

S

Schmied & Fellmann

schmied-fellmann.at

0

Schmied & Fellmann is a medium-sized Austrian company specializing in electrical engineering services including consulting, planning, installation, and maintenance. They also operate a retail business offering electrical devices, installation materials, postal services, and school and office supplies. The company targets businesses and institutions primarily in the St. Pölten and Wilhelmsburg regions. Their market position is solid locally, supported by certifications such as 'Leitbetrieb' and a broad portfolio of services and references. Technically, the website is built on TYPO3 CMS with common frontend libraries and demonstrates good content quality and navigation. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security posture. No modern security headers or cookie consent mechanisms are implemented, and no analytics or tracking scripts are detected. Overall, the website is functional and professional but requires urgent security improvements to protect user data and improve trust. Strategic recommendations include obtaining a valid SSL certificate, implementing security headers, and adding privacy compliance features.

ITS Industrial Turbine Services GmbH is a specialized company focused on providing advanced systems and solutions for industrial gas turbines, including monitoring, control, and spare parts. Their key offerings include the TMOS SCADA monitoring system, MACH7 turbine control system, premium flame scanners, and GE Speedtronic™ spare parts. The company targets industrial sectors such as oil, gas, steel, aluminum, and paper industries worldwide, positioning itself as a reliable and experienced partner with over a decade of expertise. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Font Awesome, with integration of Google Tag Manager and Cookiebot for analytics and cookie consent management. However, the absence of a valid SSL certificate and HTTPS support is a significant technical and security shortfall. The site is mobile-optimized and SEO-friendly but lacks advanced accessibility features. From a security perspective, the lack of HTTPS and related security headers severely impacts the security posture. No explicit security policies or incident response contacts are published, and DNS security features like DNSSEC and CAA are not enabled. Cookie consent is implemented, but GDPR compliance indicators are minimal. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is professional and content-rich but requires urgent improvements in security infrastructure to protect user data and enhance trust. Strategic recommendations include implementing HTTPS, enhancing security headers, publishing security policies, and improving GDPR compliance measures.

L

Legrand

legrand.com

0

Legrand is a global specialist in electrical and digital building infrastructures, offering a wide range of products and solutions tailored for various countries and global markets. The company positions itself as a leader in its industry, targeting both B2B and B2C customers seeking advanced electrical infrastructure solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation, although some key contact information is not directly visible on the landing page. Technically, the website is built on Drupal 10 and leverages modern technologies such as Google Tag Manager and tarteaucitron.js for cookie consent management, hosted via Amazon CloudFront CDN. While the site shows basic mobile optimization and accessibility features, performance data is unavailable. SEO optimization is basic but present through meta tags and Open Graph data. From a security perspective, the site implements several important HTTP security headers and a content security policy. However, the lack of a valid SSL certificate and absence of TLS protocols severely undermine the security posture, exposing users to risks and reducing trust. No vulnerabilities like Heartbleed or POODLE were detected, but the SSL misconfiguration is a critical issue. Overall, the website demonstrates moderate digital maturity and business credibility but requires urgent remediation of SSL issues to improve security and user trust. Privacy compliance is good with clear cookie consent mechanisms and GDPR-aligned policies. Strategic improvements in security infrastructure and enhanced contact transparency would strengthen the company's online presence and risk posture.

F

Flowserve Corporation

flowserve.com

0

Flowserve Corporation is a global enterprise specializing in manufacturing and servicing industrial flow control products such as pumps, valves, seals, and actuators. The company serves critical industries including energy, chemicals, water management, and oil & gas, positioning itself as a market leader with a comprehensive product portfolio and strong brand presence. The website reflects a mature digital infrastructure built on Drupal 10, with modern front-end technologies and multi-language support, indicating a high level of digital maturity and user experience focus. Security posture is mixed; while security headers and policies are well implemented, the SSL certificate is invalid or missing, and no modern TLS protocols are enabled, which poses a significant risk to secure communications. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website is professional, content-rich, and trustworthy but requires urgent remediation of SSL/TLS issues to improve security and user trust.

C

Christof Group

christof-group.at

0

Christof Group is a large, family-owned industrial group specializing in critical process equipment manufacturing and plant engineering services, operating across Austria, Germany, and Slovenia. The company is positioned as a world leader in its sector with a strong portfolio of subsidiaries and a history of over 150 years in the industry. The website reflects a professional B2B business model targeting industrial clients in energy, petrochemical, and pharmaceutical sectors. Technically, the site is built on WordPress with modern SEO and multilingual capabilities but lacks HTTPS, which is a significant security shortfall. The security posture is weak due to the absence of SSL/TLS encryption and limited security headers, exposing the site to potential risks. Privacy compliance is addressed with a cookie consent mechanism and privacy policy, but incident response and security policies are missing. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

I

ILF Consulting Engineers

ilf.com

0

ILF Consulting Engineers is a large, privately owned international engineering and consulting firm specializing in infrastructure, energy, water, and environmental projects. With over 3,000 employees and a global presence spanning 45+ offices across six continents, ILF positions itself as a leader in sustainable engineering solutions. The website reflects a professional and comprehensive digital presence, offering detailed information about their services, business areas, and corporate values. Technically, the site is built on WordPress with modern JavaScript libraries and frameworks, providing a good user experience and mobile optimization. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture, exposing users to potential risks. Security headers are present, but the lack of TLS protocols and HSTS reduces overall security. Privacy compliance is addressed with a comprehensive privacy and cookie policy, though no explicit consent mechanism is detected. Business credibility is strong with clear company information and trust indicators such as ISO 27001 certification and Great Place to Work recognition. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

E

Excellence AG

excellence.ag

0

Excellence AG is an international technology partner specializing in engineering and IT services with a strong focus on green technology and sustainability. The company operates multiple offices across Germany and the Netherlands, offering green tech job opportunities and supporting sustainable projects in energy and transportation sectors. Their website is professionally designed, content-rich, and targets professionals interested in green technology careers and partnerships. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, integrated with Google Tag Manager and social login plugins for LinkedIn and Xing. The hosting appears to be on AWS infrastructure. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortfall. Performance metrics are not available, but the site shows good mobile optimization and SEO practices. From a security perspective, the absence of HTTPS and modern TLS protocols significantly lowers the security posture. No advanced security headers or incident response policies are evident. Privacy compliance is partially met with a comprehensive privacy policy and GDPR consent statements on forms, but no cookie consent mechanism is detected. Business credibility is supported by ISO 9001 certification, multiple office locations, and professional content. Overall, the website presents a trustworthy and professional business front but requires urgent security improvements, especially enabling HTTPS and enhancing security headers, to protect user data and improve trustworthiness. Strategic recommendations include SSL implementation, security header enhancements, and adding explicit cookie consent mechanisms to align with privacy regulations.

A

AMETEK Grabner Instruments

grabner-instruments.com

0

AMETEK Grabner Instruments is a medium-sized business specializing in the development and manufacturing of automatic petroleum testing equipment, including vapor pressure testers, flashpoint testers, and fuel analyzers. The company operates globally with a strong market position as an innovator and thought leader in fuel analysis technology. Their website reflects a professional business model focused on manufacturing, sales, training, and technical support services for the petroleum and energy sectors. Technically, the website uses ASP.NET technology with JavaScript libraries and is hosted on AWS infrastructure. While the site is mobile optimized and has good content quality, it suffers from slow load times and lacks a valid SSL certificate, which impacts security posture significantly. Privacy compliance is well addressed with comprehensive cookie and privacy policies and a consent mechanism. Security best practices are partially implemented but require urgent improvements, especially regarding HTTPS and security headers. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate entity.

D

Daikin

daikin-ce.com

0

Daikin Central Europe operates as a regional branch of Daikin Industries, Ltd., specializing in air conditioning, heating, ventilation, heat pump, and refrigeration solutions. The website targets businesses and consumers in Central Europe, offering a broad portfolio of HVAC products and services. The company maintains a strong market position with multiple country-specific domains, reflecting a well-established regional presence. Technically, the website is built on Adobe Experience Manager CMS and leverages modern frontend technologies including Adobe Helix RUM for performance monitoring and Google Tag Manager for analytics. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap. Security headers are partially implemented but insufficient without proper encryption. Privacy compliance is weak, with no visible privacy or cookie policies, and no contact information is provided on the landing page, limiting user trust and regulatory compliance. Overall, the site is professional and well-branded but requires urgent security and privacy improvements.

The website routeco.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, presenting a security challenge page instead of business content. This prevents direct analysis of the website's content, policies, or contact information. The domain is mature, registered since 1997, and protected with strong domain status flags, indicating a legitimate business presence. However, the lack of a valid SSL/TLS certificate and the presence of a WAF block significantly limit the ability to assess the website's security posture and user experience. Technically, the site is hosted behind Cloudflare, which provides DNS and security services, but the absence of HTTPS and modern TLS protocols is a critical security gap. The security headers are partially implemented but insufficient without proper SSL. Performance and SEO cannot be evaluated due to the blocked content. No privacy, cookie, or terms of service policies are visible, nor is any contact information or business metadata. From a security perspective, the site suffers from critical issues including no SSL, no HSTS, and no OCSP stapling. The Cloudflare WAF block suggests active protection against potential threats but also impacts legitimate user access. The domain WHOIS data is consistent and trustworthy, with no suspicious patterns detected. Overall, the website's current state poses a high risk for user trust and accessibility. Strategic recommendations include immediate SSL certificate deployment, reviewing WAF rules to avoid blocking legitimate users, publishing clear privacy and cookie policies, and providing accessible contact information to improve business credibility and compliance.

H

Hoval Aktiengesellschaft

hoval.com

0

Hoval Aktiengesellschaft operates as a leading provider of advanced indoor climate control solutions, specializing in heating, ventilation, and energy-efficient systems for a broad range of building types including residential, commercial, and industrial sectors. The company maintains a strong international presence with a well-structured website that clearly communicates its product offerings and corporate philosophy focused on sustainability and energy responsibility. Technically, the website leverages modern web technologies and SAP Commerce platform, supported by Google Tag Manager and OneTrust for privacy compliance. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocol support, which poses risks to user trust and data security. Privacy compliance is robust with clear policies and consent mechanisms in place. Overall, the website reflects a mature digital presence but requires urgent remediation of SSL and TLS issues to enhance security and trust.

S

SimTech GmbH

simtechnology.com

0

SimTech GmbH is a specialized software company providing advanced simulation technology primarily for energy and chemical engineering sectors. With over 30 years of experience, the company offers simulation software (IPSEpro), model libraries, consulting, and training services targeted at plant manufacturers, consultants, and R&D organizations. The website reflects a professional and consistent brand with clear business information and reputable client references. Technically, the site is built on Joomla CMS with modern frameworks but lacks HTTPS, which is a critical security gap. Security headers are present but insufficient without SSL/TLS. Privacy compliance is good with a clear privacy policy, though no cookie consent mechanism is implemented. Overall, the site is content-rich and trustworthy but requires urgent security improvements to protect user data and enhance trust.

E

e7 GmbH

e-sieben.at

0

e7 GmbH is an Austrian energy and environmental engineering consultancy specializing in energy efficiency, renewable energy, and climate protection. The company offers a broad range of services including energy audits, management, consulting for new construction and renovations, energy innovations, and international projects. Their market position is that of a specialized small enterprise with a strong focus on sustainable energy solutions. The website content is professionally presented, targeting businesses and organizations interested in energy and climate solutions. Technically, the website is built on the webEdition CMS platform and uses Matomo for analytics, reflecting a privacy-conscious approach. However, the site suffers from a lack of HTTPS support and valid SSL certificates, which significantly undermines its security posture. Performance is slow, and no modern TLS protocols or security headers are configured, exposing the site to potential risks. From a security perspective, the absence of HTTPS and security headers are critical vulnerabilities. No explicit security policies or incident response contacts are provided, which could impact trust and compliance. Privacy compliance is reasonably good due to the presence of a comprehensive privacy policy and cookie information, although no explicit consent mechanism is observed. Overall, the website is functional and professional but requires urgent security improvements, especially enabling HTTPS and implementing security best practices. Strategic recommendations include obtaining a valid SSL certificate, enabling HSTS, adding security headers, and enhancing incident response transparency to improve trust and compliance.

A

AF Compressors

afcompressors.com

0

AF Compressors is a well-established manufacturer specializing in oil-free piston compressors, serving industrial sectors including PET bottling. The company positions itself as a world leader with a strong focus on energy and cost savings. Their website reflects a medium-sized enterprise with a global service network and a consistent brand presence. Technically, the site is built on WordPress with modern libraries and tracking tools, but suffers from a critical lack of HTTPS and valid SSL certificates, which severely impacts security posture. Privacy policies and cookie consent mechanisms are implemented, though extensive tracking scripts may affect privacy compliance. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

S

Symvaro GmbH

symvaro.com

0

Symvaro GmbH is a small Austrian company specializing in digital solutions for water and waste management, targeting municipalities and associations. Their key offerings include WATERLOO, a water meter data management system, and Die Müll App, a smart waste management service. The company positions itself as a niche provider focused on efficiency, simplicity, and data protection. Technically, the website uses modern JavaScript libraries such as jQuery, Bootstrap, and Leaflet, but lacks a valid SSL certificate and proper DNS configuration, which negatively impacts security and trust. The security posture is weak due to missing HTTPS and DNS records, although some security headers like HSTS are present. Privacy compliance is partially met with a comprehensive privacy policy hosted externally but lacks cookie consent mechanisms. Overall, the website is functional and professionally designed but requires significant improvements in security and domain management to enhance trust and compliance.

Sensus, a brand under Xylem Inc., specializes in smart solutions for water, energy, and communication infrastructure, targeting utilities and municipalities. The website presents a mature, well-branded digital presence with comprehensive product and service information, supporting a B2B business model focused on smart utility networks and managed services. Technically, the site uses modern web technologies including EPiServer CMS and Cloudflare for hosting, but suffers from critical SSL/TLS misconfigurations, lacking a valid HTTPS certificate which severely impacts security posture. Security headers are well implemented, but the absence of HTTPS and modern TLS protocols is a major vulnerability. Privacy compliance is partially met with a clear privacy policy and terms of service, but no cookie consent mechanism is observed despite cookie usage. Overall, the site is professional and trustworthy from a business perspective but requires urgent security improvements to protect user data and maintain trust.

A

ATMOsphere

atmo.org

0

ATMOsphere is a globally recognized event organizer specializing in conferences and networking events focused on natural refrigerants and clean cooling technologies. Established in 2009 and managed by the parent company shecco, ATMOsphere serves as a market accelerator by bringing together key industry stakeholders including policy makers, manufacturers, and end users. The website effectively communicates the business purpose, upcoming events, and team information, supported by multimedia testimonials and social media engagement. Technically, the website is built on WordPress with Elementor and uses modern plugins to enhance user experience and analytics. However, the absence of a valid SSL certificate and lack of a privacy policy represent significant security and compliance gaps. The cookie consent mechanism is implemented, but GDPR compliance cannot be fully confirmed due to missing privacy documentation. Overall, the business credibility is strong, but the security posture requires urgent improvement to protect user data and build trust.

A

ATMOsphere

naturalrefrigerants.com

0

NaturalRefrigerants.com is a well-established industry portal published by ATMOsphere, focusing on natural refrigerant-based cooling and heating technologies. It serves as a global marketplace and news source, connecting buyers and providers worldwide. The website demonstrates a strong market position as a leading source of information since 2006, with a professional design and comprehensive content. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern web technologies but suffers from slow performance and lacks a valid SSL certificate, which impacts its security posture. The absence of HTTPS and security headers are critical vulnerabilities that need immediate attention. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism detected. Overall, the site is credible and trustworthy but requires significant security improvements to protect user data and enhance trust.

The website imerys.com is currently inaccessible due to an AWS WAF security challenge that requires JavaScript verification, resulting in minimal HTML content and no visible business or security information. The domain is registered and uses professional DNS and email services, indicating a legitimate enterprise-level business likely operating in the energy sector. However, the lack of a valid SSL/TLS certificate and absence of accessible content severely limit the ability to assess the company's digital maturity and security posture. The DNS configuration and MX records suggest a well-established infrastructure, but the website's security configuration needs urgent improvement to enable secure HTTPS access and reduce user friction caused by the WAF challenge. Overall, the site presents a low trustworthiness score due to inaccessibility and missing security best practices.

F

Flaga s r.o.

flaga.cz

0

Flaga s r.o. is a mature Czech energy company specializing in the distribution of liquefied petroleum gas (LPG) in cylinders, tanks, and for automotive use. The company has a strong market presence supported by a 27-year domain age and recognized safety certifications. Their website targets both corporate and individual customers in the Czech Republic and Poland, offering a range of LPG products and customer services including electronic invoicing. Technically, the website is built on Joomla CMS with PHP 8.3.3 backend and jQuery frontend, integrating Google Tag Manager and OneTrust for analytics and cookie consent. However, the site lacks HTTPS, which is a critical security deficiency. Security headers are partially implemented but the absence of SSL/TLS and modern protocols significantly weakens the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the business credibility is solid, but the technical and security implementations require urgent improvements to meet modern standards.

I

illwerke vkw AG

illwerkevkw.at

0

illwerke vkw AG is a well-established energy company based in Austria, specializing in renewable energy production including hydropower, wind, and photovoltaic sources, as well as energy trading and supply. The company has a strong regional presence in Vorarlberg and operates several subsidiaries in related sectors such as energy networks and tourism. The website reflects a professional and consistent brand image with comprehensive business information and active social media engagement. Technically, the site uses modern JavaScript libraries and frameworks, including Bootstrap and jQuery, and integrates Google Tag Manager and Usercentrics for analytics and consent management. However, the lack of a valid SSL certificate and HTTPS support is a significant security shortfall, impacting the overall security posture and user trust. Privacy policies and cookie consent mechanisms are well implemented, indicating good compliance with GDPR requirements. Overall, the website is informative and user-friendly but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

4ward Energy Research GmbH is a specialized research institution focused on energy technologies and energy economics. The company offers a broad range of services including technology development, business model creation, concept and study preparation, simulations, and knowledge transfer. Their expertise spans project leadership and coordination, particularly within national and EU research funding frameworks. The website targets research projects, companies, and municipalities involved in the energy sector, positioning itself as a reliable partner with extensive experience and a strong network. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. However, the site lacks HTTPS support, which is a critical security shortfall. Security headers are minimal but some best practices like X-Content-Type-Options are implemented. Privacy compliance is addressed with a cookie consent mechanism and a comprehensive privacy policy in German. Contact information is clearly presented with official company email, phone, and physical address. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

K

KOHLBACH

kohlbach.at

0

KOHLBACH is a company specializing in biomass energy solutions, targeting businesses and organizations interested in sustainable energy production. The website presents a basic digital presence with minimal content and limited business information. The technical infrastructure uses modern JavaScript frameworks such as React and integrates third-party services like CookiePro for cookie consent and Google Tag Manager for analytics. However, the website lacks HTTPS, which is a critical security deficiency, and does not provide privacy policies or contact information, limiting trust and compliance. Security posture is weak due to missing SSL, lack of security headers beyond Content-Security-Policy, and absence of domain security features like DMARC and DNSSEC. Overall, the site is functional but requires significant improvements in security and compliance to meet industry standards.

S

Stork

stork.com

0

Stork is an established industrial services company focused on asset management, maintenance, and consultancy primarily in the energy and process industries. Recently acquired by Bilfinger, Stork operates under its umbrella in several key countries including Belgium, the Netherlands, Germany, and the USA. The website presents a comprehensive overview of their services and global presence, targeting industrial clients seeking lifecycle asset support. Technically, the site uses modern React technology but suffers from slow load times and lacks a valid SSL certificate, which impacts its security posture. Privacy compliance is well addressed with clear cookie and privacy policies including consent mechanisms. However, explicit contact details like emails and phone numbers are not readily available, relying mainly on contact forms. Overall, the site is professional and trustworthy but would benefit from improved security configurations and performance optimizations.

C

Caterpillar Energy Solutions GmbH

mwm.net

0

MWM, operating under Caterpillar Energy Solutions GmbH, is a well-established company specializing in highly efficient and environmentally friendly combined heat and power plants and block heating power plants. With over 150 years of experience, the company offers a broad portfolio of gas engines and power generation solutions targeting industrial, commercial, and public utility sectors globally. The website reflects a mature digital presence with comprehensive product and service information, supported by a global service and sales network. Technically, the site is built on WordPress with common libraries and plugins, but suffers from a critical lack of a valid SSL certificate, which severely impacts its security posture. Privacy policies and GDPR compliance are well addressed, and contact is primarily via web forms. Overall, the site is professional and trustworthy but requires urgent security improvements.

F

FLSmidth A/S

flsmidth.com

0

FLSmidth A/S is a global leader in mineral processing equipment and services, serving the mining industry with a comprehensive portfolio of products, parts, and digital solutions. The company emphasizes sustainability through its MissionZero program, aiming for zero-emissions mining by 2030. The website is built on a modern Next.js framework and hosted on Vercel, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS enforcement, which significantly impacts the site's security posture. Despite this, the site provides extensive business and investor information, clear contact details, and demonstrates good privacy compliance with comprehensive legal pages. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

Weatherford's PetroVisor website presents a mature and comprehensive SaaS platform focused on unifying data and analytics for the energy sector, specifically oil and gas production optimization. The platform integrates AI/ML capabilities and offers multiple modules addressing production, artificial lift, completion optimization, ESG, and enhanced oil recovery. The website is professionally designed, content-rich, and targets enterprise-level energy industry professionals. Technically, the site uses a modern tech stack including Kentico CMS, jQuery, and various analytics and marketing tools. However, a critical security gap exists as the site lacks a valid SSL certificate and does not serve content over HTTPS, exposing users to potential risks. Privacy and cookie policies are present and indicate GDPR compliance, but no explicit security incident response or vulnerability disclosure information is found. Overall, the domain registration data supports the legitimacy and maturity of the business. Strategic security improvements are necessary to enhance trust and protect user data.