Security Directory

R

Retarus GmbH

retarus.com

0

Retarus GmbH is a leading enterprise cloud services provider specializing in secure and efficient digital communication solutions including email, fax, SMS, and EDI. Positioned as a top player in the secure email market and certified under ISO 27001 and HITRUST, Retarus serves a global enterprise clientele with a comprehensive portfolio of cloud-based messaging platforms. Their services emphasize compliance, reliability, and integration with major business ecosystems such as SAP and Microsoft 365. Technically, the website is built on WordPress with modern frameworks and libraries, hosted on Amazon AWS infrastructure, and employs strong security practices including TLS 1.3, OCSP stapling, and SPF/DMARC email authentication. However, there is room for improvement in DNS security and HTTP security headers. The company demonstrates a mature security posture with certifications and a GDPR-compliant cookie consent mechanism, though incident response contact details are not publicly disclosed. Overall, Retarus presents a professional, trustworthy, and technically sound digital presence aligned with enterprise-grade security and compliance standards.

P

Payconomy GmbH

payconomy.de

0

Payconomy GmbH is a small German technology company specializing in payment automation, order to cash consulting, and enterprise software engineering. The company positions itself as a neutral expert across industries, offering consulting and SaaS solutions primarily focused on billing, finance, and payment automation. Their SAP Silver Partner status enhances their market credibility and indicates a strong partnership with SAP, targeting businesses seeking to digitize and automate payment processes. The website content is professional and well-structured, targeting B2B clients in need of scalable and automated payment solutions. Technically, the website employs Bootstrap and jQuery for frontend development and is hosted on Hetzner infrastructure. Performance is moderate with basic mobile optimization and SEO practices. Security-wise, the site supports modern TLS protocols (TLS 1.3 and 1.2) and has a valid SPF record, but lacks advanced security features such as HSTS, DMARC, DNSSEC, and OCSP stapling. The SSL certificate is valid but not compliant with Certificate Transparency standards, indicating room for improvement in trust and security posture. Overall, the security posture is moderate with no critical vulnerabilities detected but missing several best practices that could enhance protection against phishing and DNS attacks. The absence of cookie consent and limited privacy policy details suggest partial GDPR compliance. The company provides physical contact information but no direct email or phone contacts on the main page, which may affect user engagement and trust. Strategic improvements in security headers, privacy compliance, and contact transparency would strengthen their digital maturity and customer confidence.

S

SoSafe

sosafe-awareness.com

0

SoSafe is a leading European provider specializing in security awareness training and human risk management solutions. The company offers a behavioral science-based platform that empowers organizations to enhance their cybersecurity posture by educating employees and managing human-related risks. Positioned as Europe's largest provider in this niche, SoSafe delivers personalized, gamified training, phishing simulations, an AI-powered chatbot, and a comprehensive human risk management platform. Their market presence is reinforced by multiple certifications including ISO 27001, TISAX, and GDPR compliance, alongside strong customer testimonials and industry recognitions. Technically, SoSafe's website is built on WordPress and integrates a robust set of analytics and marketing tools such as Google Analytics, Matomo, Cookiebot for consent management, HubSpot forms, and Visual Website Optimizer for A/B testing. The infrastructure is hosted on Amazon AWS with DNS managed via Route53. While the site supports modern TLS protocols and has valid SPF and DMARC records, it lacks DNSSEC, CAA records, and HSTS, which are recommended for enhanced security. The website performance is moderate to slow, with room for optimization. From a security perspective, SoSafe demonstrates good practices including strong SSL configuration, OCSP stapling, and comprehensive cookie consent mechanisms. However, there is no public vulnerability disclosure or security.txt file, and incident response contact details are not explicitly provided. The company maintains a strong security posture with certifications and compliance but could improve transparency and DNS security. Overall, SoSafe presents a mature digital presence with a focus on privacy and compliance, extensive integration with enterprise platforms, and a clear commitment to security awareness. Strategic improvements in DNS security and incident response transparency would further strengthen their security posture and trustworthiness.

A

Atom

nucomgroup.com

0

Atom operates a premium domain marketplace platform offering domain sales, branding, naming contests, trademark services, and audience research. The company positions itself as a trusted marketplace with strong buyer protections and flexible payment options. The website is professionally designed, mobile-optimized, and integrates modern web technologies and analytics tools. However, the absence of a valid SSL certificate is a critical security gap that undermines user trust and data protection. The platform demonstrates moderate digital maturity with extensive user tracking and marketing integrations but requires improvements in security posture to meet industry standards.

B

Bundesverband Green Software e. V.

bundesverband-green-software.de

0

Bundesverband Green Software e. V. is a German non-profit association dedicated to promoting sustainable and resource-efficient software development practices in Germany. The organization focuses on advancing green software standards, tools, training, and policy advocacy to reduce the ICT sector's carbon footprint. Their market position is that of a leading national association in the green software domain, targeting companies and digital actors interested in sustainability. The website content is well-aligned with their mission and audience, providing information on initiatives, working groups, events, and membership opportunities. Technically, the website employs modern web technologies including Tailwind CSS and JavaScript libraries such as Marquee3k, hosted behind Cloudflare DNS and leveraging email infrastructure from Scaleway and Outlook. While the site is responsive and optimized for mobile devices, performance is somewhat slow with a load time of nearly 7 seconds. SEO practices are good, but accessibility is basic. No CMS or advanced frameworks are detected. From a security perspective, the site has a valid SSL certificate (though with suspicious validity dates), SPF and DMARC records configured, but lacks advanced security headers like HSTS or DNSSEC. There is no visible security policy, incident response contact, or vulnerability disclosure mechanism. Privacy compliance is supported by a comprehensive privacy policy, but no cookie consent mechanism is present. The security posture is moderate with room for improvement in email security policies and HTTPS hardening. Overall, the website and organization present a trustworthy and professional front for their green software advocacy mission. Strategic improvements in security headers, DNS security, and transparency around incident response would enhance their security maturity and stakeholder confidence.

S

smartclip.net

smartclip.net

0

The website smartclip.net currently presents an empty HTML page with no visible content, metadata, or business information. The domain is registered and DNS is managed via AWS Route53 with multiple A records and a valid SPF record including mailgun.org. The SSL configuration is good, supporting modern TLS protocols without known vulnerabilities, but lacks advanced security headers and HSTS. No privacy, cookie, or terms of service policies are present, nor any contact or security policy information. Overall, the site lacks content and transparency, limiting its business and security posture visibility.

Q

qwertiko GmbH

navigate-it-services.de

0

qwertiko GmbH is a medium-sized German IT service provider specializing in professional hosting and Platform-as-a-Service (PaaS) solutions. With over 10 years of experience, the company offers tailored, high-performance cloud hosting, managed services, firewall solutions (notably pfSense®), and personalized consulting. Their market position is strengthened by official partnerships and a focus on personal customer service, targeting businesses and agencies requiring reliable and scalable IT infrastructure. Technically, the website is built on WordPress using WPBakery Page Builder and several plugins, hosted on infrastructure managed by nroute.de. While the site demonstrates good SEO and mobile optimization, the analyzed domain lacks a valid SSL certificate and modern TLS support, which is a critical security gap. The company maintains GDPR compliance with a comprehensive privacy and cookie policy and provides clear contact information and customer testimonials, enhancing trust. However, there is no explicit terms of service or security policy published, and incident response details are absent. Overall, qwertiko presents a professional digital presence with room for security improvements.

I

International Data Spaces Association (IDSA) / Associação Brasileira de Internet das Coisas (ABINC)

idsa-brasil.org

0

The IDSA Hub Brazil website represents a collaborative initiative between the International Data Spaces Association (IDSA) and the Associação Brasileira de Internet das Coisas (ABINC) to promote the future of the digital economy in Brazil through the creation and adoption of data spaces. The site serves as a knowledge transfer and community-building platform, targeting businesses and organizations interested in data sovereignty, IoT, and digital innovation. The business model is non-profit and partnership-driven, positioning itself as a key facilitator in the Brazilian technology ecosystem with global ties. Technically, the website is built on WordPress using Elementor and Astra theme, hosted by HostGator Brazil, with moderate performance and good mobile optimization. However, the security posture is weak due to the absence of a valid SSL certificate, lack of security headers, and missing DNS and email security records. No privacy or cookie policies are present, which may impact compliance and user trust. Overall, the site is professional and content-rich but requires significant improvements in security and compliance to enhance trust and protect user data.

E

Elo Criativo

elocriativo.com.br

0

Elo Criativo is a small Brazilian design and web strategy agency specializing in branding, web design, and graphic design services. The company targets businesses seeking to improve their digital presence through well-crafted design and web solutions. Their market position is that of a niche service provider with a portfolio showcasing diverse projects. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Foundation, and various JavaScript libraries. The hosting is managed via Cloudez nameservers. Performance is moderate with a page load time of approximately 5.8 seconds and a page size of about 200KB. Security posture shows a valid SSL certificate but lacks advanced configurations such as HSTS, DNSSEC, and security headers. SPF and DMARC records are configured but with a relaxed DMARC policy. Analytics usage includes Google Analytics, Google Tag Manager, and RD Station, indicating moderate user tracking but no visible privacy or cookie policies, which is a compliance gap. Overall, the website is professional and functional but could improve security and privacy compliance to enhance trust and reduce risk.

P

Press Manager

pressmanager.com.br

0

Press Manager is a Brazilian technology company specializing in software solutions for press management and communication services. Positioned as a market leader in Brazil, it offers a comprehensive SaaS platform targeting marketing departments, public agencies, press offices, communication agencies, freelancers, and journalists. The platform provides key services including press mailing, release distribution, news monitoring, and online management, supported by a strong brand presence and client trust signals. Technically, the website is built on WordPress, hosted on AWS infrastructure, and employs modern web technologies and SEO best practices. However, the security posture is weakened by the absence of a valid SSL certificate and lack of advanced security configurations, despite proper email authentication records and cookie consent mechanisms. Overall, the company demonstrates a mature digital presence with room for critical security improvements.

R

Resonanz Digital

resonanz-digital.at

0

Resonanz Digital is a well-established digital agency based in Austria, specializing in WordPress websites, online shops, eCommerce solutions, online marketing, SEO, and Google Ads. With over 20 years of experience and a Google Partner certification, the company targets small and medium enterprises, founders, and individual entrepreneurs. Their service portfolio includes web design, WordPress development, maintenance, plugin development, and marketing services, positioning them as a trusted partner for digital presence creation. The website demonstrates a strong brand consistency and excellent content quality, supported by positive customer reviews from ProvenExpert. Technically, the site runs on WordPress with the Enfold theme and uses various performance and multilingual plugins. Hosting is provided via Google Cloud infrastructure. Security-wise, the site supports modern TLS protocols and has valid SPF and DMARC records but lacks advanced security features like HSTS, DNSSEC, and OCSP stapling, which could be improved. The cookie consent mechanism is implemented with opt-in for marketing and statistics cookies, reflecting good privacy compliance. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience, though performance could be enhanced.

G

Greyd GmbH

greyd.de

0

Greyd GmbH operates the Greyd.Suite, an all-in-one WordPress platform designed to help freelancers, agencies, and enterprises scale their WordPress businesses efficiently. The company positions itself as a comprehensive solution provider with a unique block-based builder, centralized content and design management, and advanced features such as headless CMS capabilities and dynamic content management. Their market position is strengthened by a consistent brand presence, extensive feature set, and a focus on performance and accessibility. Technically, the website is built on WordPress 6.8.1 with a rich tech stack including custom plugins, Borlabs Cookie for GDPR-compliant consent management, and Chargebee for subscription billing. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocols, which poses risks to user data confidentiality and trust. The site demonstrates good SEO and accessibility practices, with comprehensive legal and privacy documentation. Overall, Greyd GmbH shows strong digital maturity but should urgently address SSL and TLS issues to improve security and user trust.

F

Formalize ApS

formalize.com

0

Formalize ApS is a Denmark-based technology company specializing in compliance software solutions designed to streamline governance, risk, and compliance operations for organizations. Their platform supports compliance with major regulatory frameworks such as NIS2, DORA, ISO 27001, and GDPR, offering customizable dashboards, automation, and a Trust Center for sharing compliance documentation. The company is positioned as a trusted provider with over 8,000 customers and strong partnerships with leading law and accounting firms. Technically, Formalize leverages modern web technologies including Alpine.js, AWS hosting, and integrates marketing and analytics tools such as Hubspot, Google Tag Manager, and Cookiebot for consent management. However, the website currently suffers from an invalid SSL certificate and lacks modern TLS protocol support, which poses a significant security risk. Despite this, the company demonstrates strong security practices with SPF, DMARC, and HSTS configurations, alongside certifications like ISO 27001 and ISAE 3000. Overall, Formalize presents a mature compliance platform with excellent user experience and comprehensive content, but should urgently address SSL and TLS issues to maintain trust and security.

B

Bentley Systems, Incorporated

virtuosity.com

0

Bentley Systems, Incorporated is a leading global infrastructure engineering software company offering a comprehensive portfolio of software solutions for design, construction, and operations of infrastructure projects. Their e-commerce platform, Virtuosity, provides Bentley software subscriptions bundled with customizable expert training and support, targeting engineers, architects, constructors, and owner-operators. The company maintains a strong market position with a consistent brand presence and a large enterprise footprint. Technically, the website is built on the Magento Commerce platform with extensive use of JavaScript libraries and integrations including HubSpot, OneTrust, VWO, and New Relic. The site offers multi-language and multi-currency support, with good mobile optimization and accessibility features. However, the SSL configuration is currently invalid or missing, which poses a significant security risk. From a security perspective, the site implements SPF and DMARC for email protection and uses cookie consent mechanisms compliant with GDPR. Despite these strengths, the lack of a valid SSL certificate, absence of HSTS, and no evidence of a security policy or incident response plan indicate areas for urgent improvement. No explicit vulnerability disclosure or data protection officer contact information was found. Overall, while the business and technical infrastructure are robust and mature, the security posture requires immediate attention to protect user data and maintain trust. Strategic recommendations include securing the site with valid SSL/TLS, enhancing security headers, and formalizing security and incident response policies.

C

Cesium GS, Inc.

cesium.com

0

Cesium GS, Inc. operates a leading platform for 3D geospatial data visualization, data pipelines, and analytics, serving a broad range of industries including aerospace, defense, real estate, and smart cities. The company leverages an open source core and open standards to provide interoperable and precise geospatial solutions. Technically, the website employs modern frameworks such as React and Next.js, is hosted on AWS, and integrates accessibility and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with valid TLS certificates, SPF and DMARC policies, and OCSP stapling, though improvements in HSTS and DNSSEC are recommended. Overall, Cesium demonstrates a high level of professionalism, community engagement, and technical sophistication, positioning it well in the competitive geospatial technology market.

N

NordProtect

nordprotect.com

0

NordProtect is a comprehensive identity theft and cyber protection service operated by Nord Security, targeting U.S. customers with a subscription-based model. The service offers a broad range of features including dark web monitoring, credit monitoring, security alerts, identity theft recovery coverage up to $1 million, cyber extortion protection, and online fraud coverage. The website is professionally designed with excellent content quality and clear branding consistent with the Nord Security group. Technically, the site uses modern web technologies such as the Astro framework and Solid-js, hosted on Cloudflare, with moderate performance and good mobile optimization. Security posture is solid with valid SSL, SPF, and DMARC policies, but lacks advanced DNS security features like DNSSEC and CAA records. No explicit security or incident response policies are published on the site. Advertising and analytics are managed primarily through Google services with a moderate level of user tracking and good privacy compliance. Overall, NordProtect presents a trustworthy and professional identity protection service with room for security enhancements.

W

Wake Experience

allin.com.br

0

Wake Experience, formerly All In, is a technology company specializing in customer data platforms and AI-driven marketing solutions. Positioned as a medium-sized enterprise in Brazil under the parent company LWSA, it offers services that enable businesses to capture, integrate, and leverage customer data to create personalized experiences across multiple channels. The website demonstrates a mature digital presence with integrations for consent management and analytics, reflecting a commitment to privacy compliance and data-driven marketing. However, the absence of a valid SSL certificate is a critical security gap that undermines data protection efforts. The DNS and email security configurations are well-managed, indicating operational security awareness. Overall, the company shows strong market positioning in technology-driven customer experience but needs to address fundamental security infrastructure to reduce risk and enhance trust.

S

SoftBank Group Corp.

softbank.com

0

SoftBank Group Corp. is a leading multinational holding company specializing in technology investments and telecommunications. The company operates significant investment funds such as the SoftBank Vision Fund and Latin America Fund, focusing on AI and breakthrough technologies to drive sustainable growth. The website reflects a mature digital presence with comprehensive investor relations, sustainability initiatives, and corporate governance information. Technically, the site uses modern frameworks like Next.js and React, hosted likely on AWS infrastructure, with integrations for analytics and performance monitoring. However, the current SSL/TLS configuration is invalid, posing a critical security risk that undermines user trust and data protection. The site employs cookie consent mechanisms and maintains GDPR-compliant privacy and cookie policies. Overall, SoftBank's digital footprint is professional and content-rich but requires urgent security improvements to align with best practices.

S

Short&Sweet Marketing

shortandsweet.com.br

0

Short&Sweet Marketing is a Brazilian digital marketing agency specializing in data-driven performance marketing, including SEO, inbound marketing, PPC, and lead generation. Positioned as an RD Station Silver Partner, the company demonstrates a strong market presence with over 15 years of experience and a portfolio of successful client case studies. The website reflects a professional and consistent brand image targeting businesses seeking to enhance their digital sales channels. Technically, the site is built on modern frameworks such as React and Next.js, utilizing Material-UI for UI components, and integrates various marketing and analytics tools including Google Analytics, Google Tag Manager, and reCAPTCHA for security. However, the absence of a valid SSL certificate and lack of HTTPS support represent significant security weaknesses. The site implements basic email security measures like SPF and DMARC but lacks advanced security headers and practices. Overall, the digital infrastructure supports the business model but requires urgent improvements in security to protect data and enhance user trust.

C

Contentserv

contentserv.com

0

Contentserv is an enterprise-level technology company specializing in AI-powered Product Experience Management (PXM) cloud solutions. Recently acquired by Centric Software, Contentserv offers a comprehensive suite of services including Product Information Management, Digital Asset Management, and Multichannel Publishing, targeting marketers, product teams, and IT professionals. The website is built on HubSpot CMS and integrates multiple marketing and analytics tools, demonstrating a mature digital infrastructure. However, the current SSL/TLS configuration is invalid, posing a significant security risk. While privacy and cookie policies are present and GDPR compliant, there is no explicit security policy or incident response information publicly available. Overall, the company maintains a strong market position with excellent branding and content quality but should urgently address its SSL/TLS issues and enhance transparency around security practices.

S

SecureServer

secureserver.net

0

SecureServer.net operates as a comprehensive web services provider specializing in domain registration, hosting, website building, email, SSL certificates, and website security solutions. The company targets a broad audience including businesses, resellers, and individual customers, offering a reseller program and multi-market support. Their market position is that of an established enterprise-level provider with a global footprint and a focus on reseller sales. The website content and structure reflect a professional and consistent brand with good quality content and user experience.

S

Sendcloud

sendcloud.dev

0

Sendcloud is a technology company specializing in shipping automation and logistics integration through a developer-focused API platform. Their developer portal provides comprehensive API documentation and supports integration with over 50 platforms and 80 carriers, positioning them as a significant player in the e-commerce shipping technology sector. The website targets developers and businesses looking to streamline shipping processes via API integrations. Technically, the site is built using the Hugo static site generator, hosted on AWS infrastructure, and employs modern TLS protocols with a wildcard SSL certificate. Performance is moderate with good mobile optimization and basic SEO and accessibility features. Security posture is solid with no known SSL vulnerabilities and support for TLS 1.3, but lacks advanced security headers, HSTS, DMARC, and OCSP stapling. The site includes a cookie consent mechanism and links to a privacy policy but lacks visible terms of service, security policy, or incident response information. Overall, the site demonstrates a good level of professionalism and trustworthiness but could improve security and compliance transparency.

G

group.one

jobs.one

0

group.one is a large technology company operating primarily in the DACH region, providing a broad range of IT services including domain registration, web hosting, cloud servers, digital marketing, and SaaS solutions. The company supports over 1,300 employees and serves more than one million customers through multiple brands. Their market position is strong with a diversified portfolio of partner brands and a focus on customer success and team development. Technically, the website uses modern web technologies including a Teamtailor recruitment widget and a consent management platform, but lacks a valid SSL certificate and several security best practices, which impacts the overall security posture. The cookie consent mechanism and privacy notice indicate good GDPR compliance, but the absence of security policies and incident response information suggests room for improvement in security governance. Overall, the website is professionally designed with good user experience and trust indicators, but the technical security gaps present a moderate risk that should be addressed.

P

Profihost GmbH

profihost-status.com

0

Profihost GmbH operates a status page providing real-time and historical operational information for its cloud and hosting services. The company targets its customers and subscribers who require transparency on service availability. The website leverages the Hund.io platform for status management and is hosted by Dogado GmbH. The technical infrastructure includes standard web fonts, cookie consent mechanisms, and Google Analytics for tracking. However, the website lacks a valid SSL certificate and modern TLS support, which poses security risks. Privacy policies and terms of service are linked but hosted externally, with GDPR compliance noted but not fully ensured. Overall, the site demonstrates moderate digital maturity but requires significant security improvements.

K

KAMP Netzwerkdienste GmbH

kamp.de

0

KAMP Netzwerkdienste GmbH is a medium-sized German IT service provider specializing in colocation, cloud services, and data center operations. The company holds multiple ISO certifications including ISO 27001 and ISO 14001, positioning itself as a trusted and certified provider in the German market, particularly in the Ruhr region. Their offerings include server housing, private server rooms, cloud-based virtual data centers, and specialized health-care IT services, targeting businesses requiring secure and flexible IT infrastructure solutions. The company enjoys a strong market position, recognized by industry awards and analyst reports such as ISG Provider Lens. Technically, the website is built on TYPO3 CMS with Bootstrap framework, employing modern web technologies and a cookie consent mechanism compliant with GDPR. Performance is moderate with good mobile optimization and SEO practices. Security posture is solid with strong TLS 1.2 configuration and no known vulnerabilities, though improvements are recommended in email authentication (DMARC), DNS security (DNSSEC), and HTTPS hardening (HSTS). Overall, KAMP demonstrates a mature digital presence aligned with its business focus on secure and certified IT infrastructure services.

P

Paperform

dubble.so

0

Dubble is a technology company specializing in automated documentation tools that capture user workflows and convert them into step-by-step guides, videos, and screenshots. Positioned as a niche SaaS provider, Dubble targets individuals and teams seeking to simplify documentation and onboarding processes. The company operates under the parent company Paperform and offers its services primarily through a Chrome extension and web platform. The website demonstrates a strong brand presence with excellent content quality and user experience, supported by modern web technologies such as React and Next.js. Technical infrastructure leverages Cloudflare for DNS and likely CDN services, with integration of Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is adequate with a valid SSL certificate and DMARC email protection, but lacks advanced security headers, DNSSEC, and HSTS enforcement. Privacy and terms of service policies are present and GDPR compliant, though no cookie consent mechanism was detected. Overall, the company shows a mature digital presence with room for security enhancements and improved transparency around incident response and vulnerability disclosure.

P

Paperform

papersign.com

0

Paperform operates Papersign, a secure and user-friendly electronic signature platform designed to simplify document signing for individuals and businesses. The company positions itself as a design-conscious and powerful solution that integrates seamlessly with its core form-building product, Paperform. The website demonstrates a mature digital presence with modern technologies such as React and Gatsby, hosted on AWS, and employs multiple analytics and marketing tools to optimize user engagement and conversion. Security is a key focus, with compliance to major eSignature regulations and SOC 2 certification, although some improvements in security headers and DNS configurations are recommended. Overall, Paperform maintains a strong market position with clear pricing, comprehensive content, and robust trust indicators, supporting a medium-sized technology business model.

F

Free email accounts with mail.com | Log in here or register today

mail.com

0

mail.com operates as a webmail service provider offering email hosting and access services to a broad audience. The website content analyzed is primarily a consent management page, indicating a focus on privacy compliance mechanisms, although no explicit privacy policy or terms of service were found on this page. The business appears to be established with a large user base, leveraging DNS infrastructure managed by GMX DNS servers and employing standard email security protocols such as SPF and DMARC with a quarantine policy. From a technical perspective, the website uses JavaScript-based consent management scripts and iframe sandboxing to handle cookie consent. However, the SSL/TLS configuration is critically lacking, with no valid certificate and no enabled TLS protocols, which severely impacts secure communications. DNSSEC is not enabled, and CAA records are malformed, indicating gaps in DNS security hardening. Performance is slow with a high page load time and moderate resource usage. Security posture shows strengths in email authentication (SPF, DMARC) and HSTS enforcement with preload, but major weaknesses in SSL/TLS deployment and DNS security. No security policy or incident response contacts are published, limiting transparency and readiness. Overall, the site demonstrates moderate trustworthiness but requires urgent improvements in SSL/TLS and DNS security to protect user data and maintain compliance. Strategic recommendations include immediate renewal and proper configuration of SSL certificates, enabling modern TLS protocols, fixing DNS CAA records, enabling DNSSEC, and publishing comprehensive privacy and security policies. Enhancing these areas will improve user trust, compliance posture, and reduce risk exposure.

S

ScriptRunner Software GmbH

scriptrunner.com

0

ScriptRunner Software GmbH operates a specialized enterprise IT automation platform focused on PowerShell script automation, delegation, and compliance. The company targets IT directors, administrators, and partners, offering a comprehensive solution to streamline IT operations and enhance security. The website demonstrates a mature digital presence with extensive content, customer testimonials, and integration with major ITSM platforms. However, the current SSL/TLS configuration is invalid, which poses a significant security risk for users and should be addressed promptly. Marketing and analytics tools such as HubSpot, Google Tag Manager, and Facebook Pixel are actively used with consent mechanisms in place, indicating a moderate level of user tracking balanced with privacy compliance. Overall, the business shows strong market positioning in the technology sector with a medium-sized enterprise profile and a consistent, professional online brand.

T

TeamLinx42

teamlinx42.app

0

TeamLinx42 is a technology company offering a Microsoft Teams integrated app designed to facilitate quick and easy access to documents and information within teams. Positioned as a collaborative and decentralized knowledge management tool, it targets organizations using Microsoft Teams to improve information sharing and reduce knowledge silos. The company operates under the parent company AppSphere AG, based in Germany, and offers a SaaS model with a focus on ease of use and team collaboration. Technically, the website is built on WordPress with Elementor and Yoast SEO, but suffers from performance issues and lacks a valid SSL certificate, which impacts security posture. The security configuration is basic, with no advanced headers or TLS protocols enabled, and no published security or incident response policies. Privacy and cookie policies are present and GDPR compliant, with a cookie consent mechanism implemented. Overall, the website demonstrates moderate professionalism and trustworthiness but requires significant improvements in security and performance to enhance user trust and compliance.

S

SucesuSP

sucesusp.org.br

0

SucesuSP is a well-established technology user society based in São Paulo, Brazil, with a history dating back to 1967. The organization focuses on fostering technological development, digital transformation, and innovation through networking, educational events, and interest groups in areas such as cybersecurity, artificial intelligence, and IoT. Their business model revolves around membership and partnerships, providing value to technology professionals and companies in the region. Technically, the website is built on WordPress with Elementor and Yoast SEO, but suffers from performance issues and lacks a valid SSL certificate, which poses security risks. The presence of a cookie consent mechanism indicates some level of privacy compliance, though no explicit privacy or security policies are found. Overall, the security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Strategic improvements in security infrastructure and policy transparency are recommended to enhance trust and compliance.

A

Associação Brasileira de Internet das Coisas

abinc.org.br

0

Associação Brasileira de Internet das Coisas (ABINC) is a Brazilian technology association focused on the Internet of Things (IoT) sector. It provides membership services including access to digital materials, event participation, brand exposure, and committee involvement. The organization targets IoT industry stakeholders and professionals primarily in Brazil. The website is built on WordPress with Elementor and integrates event calendars and cookie consent mechanisms, reflecting a moderate level of digital maturity. However, the site suffers from critical security weaknesses, notably the absence of a valid SSL certificate and lack of modern TLS protocols, which exposes visitors to security risks. While cookie consent is implemented, no explicit privacy or security policies are published, indicating compliance gaps. Overall, ABINC maintains a good content quality and user experience but requires urgent improvements in security posture to protect its users and enhance trust.

H

Hostinger

hostinger.com.br

0

Hostinger is a well-established global web hosting and domain registration provider founded in 2004, serving over 3 million users worldwide. The company offers a comprehensive suite of services including shared hosting, VPS, cloud hosting, WordPress optimized hosting, domain registration, and AI-powered website builders. Their market position is strong, supported by numerous trust indicators such as WordPress.org recommendation, Trustpilot reviews, and a 30-day refund policy. Technically, Hostinger employs modern web technologies including Nuxt.js and Vue.js, with integrations for Google Tag Manager, Microsoft Clarity, and Bing Ads, indicating a mature digital infrastructure. Security measures include valid SSL certificates, SPF and DMARC records with strict policies, though improvements can be made by enabling HSTS and DNSSEC. Overall, Hostinger demonstrates a solid security posture with no evident vulnerabilities and a good compliance level. The website is professionally designed, optimized for mobile, and provides a seamless user experience with clear navigation and comprehensive content. Strategic recommendations include enhancing security headers, implementing DNSSEC, and maintaining regular audits of third-party scripts to further strengthen security and trust.

H

Hi, I'm Tobias. | rixx.de

rixx.de

0

The website rixx.de serves as a personal hub for Tobias, an open source software author, conference speaker, and community organizer primarily in the technology sector. The site highlights his projects, blog posts, and involvement in events such as Chaos Communication Congress and DjangoCon Europe. The business model centers on personal branding and community engagement rather than commercial transactions. Technically, the site is built with standard web technologies including HTML, CSS, and JavaScript, with hosting provided by INWX. Performance is moderate, and SEO is well addressed through metadata, but mobile optimization and accessibility are basic. Security posture is weak due to the absence of a valid SSL certificate, lack of TLS support, missing security headers, and no DNSSEC. SPF is configured correctly, but other email authentication and security mechanisms are minimal. No privacy, cookie, or terms policies are published, and no contact information is explicitly provided on the site. Overall, the site is trustworthy for its niche audience but requires significant security and compliance improvements to enhance user trust and data protection.

W

WP-Network

wp-network.org

0

WP-Network is a non-profit association based in Austria that unites WordPress professionals, digital agencies, freelancers, and web developers primarily in the Austrian and DACH region. The organization offers networking opportunities through monthly WordPress meetups, an expert search platform, and a job board targeting WordPress-related roles. It is supported by sponsorships from recognized companies in the WordPress ecosystem and funded through membership fees and event revenues. The website is well-branded and professionally presented, targeting a niche community of WordPress professionals. Technically, the website is built on WordPress 6.8.1 using the Enfold theme and child theme customizations. It employs modern web technologies including jQuery, Font Awesome, and Matomo analytics for user tracking. The site is hosted with domaintechnik.at and uses structured data (JSON-LD) for SEO enhancement. However, the website suffers from a critical security weakness due to the absence of a valid SSL certificate and lack of HTTPS support, which undermines user trust and data security. From a security perspective, the site has implemented a GDPR-compliant cookie consent mechanism with detailed cookie categories and uses SPF records for email authentication. Nevertheless, it lacks essential security headers, modern TLS protocols, HSTS, and DMARC records. These gaps expose the site to potential risks such as data interception, phishing, and email spoofing. No explicit security policy, incident response contacts, or vulnerability disclosure statements are found. Overall, WP-Network is a valuable community resource with a solid business model and good digital maturity but requires urgent improvements in its security posture to protect its users and maintain trust. Strategic recommendations include immediate SSL certificate installation, enabling HTTPS, and implementing comprehensive security headers and email authentication policies.

D

DRVLESS

drvless.com

0

Drvless is a technology company specializing in AI-powered software solutions for test automation, test case generation, robotic process automation, and continuous monitoring to optimize quality assurance processes. The company positions itself as an innovative player with over 25 years of automation experience and recognized excellence by the European Commission. Their product suite targets software development and QA teams seeking efficient and easy-to-use automation tools. The website reflects a mature digital presence built on WordPress with Elementor, featuring clear product offerings, trial options, and partnership with Objentis consultancy for enhanced customer support. Technically, the website leverages modern web technologies and plugins such as Matomo for analytics and Borlabs for cookie consent management, indicating a commitment to privacy compliance. However, the absence of a valid SSL certificate and lack of modern TLS support represent significant security weaknesses that could undermine user trust and data protection. The DNS configuration is standard but lacks DNSSEC and CAA records, which could improve domain security. Security posture is moderate with good email authentication (SPF) but critical gaps in transport security and missing security policies or incident response information. The site implements GDPR-compliant privacy and cookie policies with consent mechanisms, but no explicit terms of service or vulnerability disclosure policies were found. Contact information is clearly provided, supporting user engagement and support. Overall, Drvless demonstrates a strong business and technical foundation with room for improvement in security hardening and transparency. Addressing SSL/TLS issues and publishing comprehensive security policies would enhance trust and compliance, supporting their market position as a reliable AI automation provider.

W

Wake Creators

wakecreators.com.br

0

Wake Creators is a Brazilian technology company specializing in influencer marketing data and solutions. With a decade of experience, it holds a leading market position by maintaining the largest influencer database and leveraging AI and machine learning to optimize marketing campaigns. The company operates as part of the LWSA group and integrates into the broader Wake ecosystem, targeting brands, advertisers, and influencers. Technically, the website is built on WordPress using Oxygen Builder, hosted on AWS with DNS managed by Cloudflare. However, the site lacks a valid SSL certificate and modern TLS support, which poses significant security risks. The presence of SPF and DMARC records indicates some email security awareness, but the DMARC policy is permissive. Analytics usage is moderate with Google Analytics and Tag Manager implemented, but no cookie consent mechanism is present, which may impact privacy compliance. Overall, the site demonstrates moderate digital maturity with room for security and compliance improvements.

S

Saulės spektras, UAB

saulesspektras.lt

0

Saulės spektras, UAB is a Lithuanian digital marketing company specializing in providing digital marketing solutions for small and medium-sized businesses. Their offerings include website creation, SEO, SEM, and social media marketing services, supported by a network of business information portals. The company positions itself as a trusted partner in the Lithuanian market with certifications such as Google Partner and Duda Expert badges, indicating a strong commitment to quality and professionalism. Their target audience primarily consists of small and medium enterprises seeking to enhance their online presence and marketing effectiveness. Technically, the website is built on the Duda CMS platform, leveraging modern web technologies including Google Analytics, Google Tag Manager, and Cookiebot for privacy compliance. While the site demonstrates good mobile optimization and SEO practices, performance is somewhat slow due to a large page size and numerous resources. Security-wise, the site employs strong TLS protocols and has a valid SPF record, but lacks advanced security headers, HSTS, OCSP stapling, and DMARC, which are recommended for enhanced protection. Privacy and cookie policies are comprehensive and GDPR compliant, with an effective consent mechanism in place. Overall, the company maintains a solid digital infrastructure with room for security enhancements and performance optimization to further strengthen trust and compliance.

B

banibis GmbH

banibis.com

0

banibis GmbH is a small Austrian technology company specializing in modular ERP software solutions tailored for small and medium-sized enterprises, particularly in the trade and service sectors. Their cloud-based ERP system offers comprehensive features including CRM, project management, purchasing and sales, and accounting, with a strong emphasis on customization and customer-centric support. The company maintains a professional online presence with clear contact information, social media integration, and compliance with GDPR and cookie consent regulations. Technically, the website is built on WordPress using the Divi theme, enhanced with various plugins for performance optimization, analytics, and user interaction. The infrastructure is hosted via domaintechnik.at, with a moderate performance profile and good mobile optimization. However, the absence of a valid SSL certificate and lack of modern TLS protocols represent significant security shortcomings that could impact user trust and data protection. From a security perspective, while the site implements SPF records and avoids common vulnerabilities like Heartbleed and POODLE, the lack of HTTPS and missing DMARC records are critical gaps. No explicit security or incident response policies are publicly available, which may affect the company's security posture and compliance readiness. Overall, banibis GmbH demonstrates a solid business and technical foundation with room for improvement in security practices. Addressing these vulnerabilities will enhance trust, compliance, and user confidence in their digital offerings.

D

D4Sign

d4sign.com.br

0

D4Sign is Brazil's leading electronic and digital signature platform, offering a comprehensive SaaS solution that integrates advanced AI capabilities to streamline document signing and contract management. The company serves a broad audience including businesses and individuals, providing secure authentication methods linked to government data for enhanced trust and legal compliance. Technically, the website is built on WordPress with multiple modern plugins and integrates various marketing and analytics tools, hosted on AWS. However, the current SSL/TLS configuration is invalid, posing a significant security risk. The company demonstrates strong market presence with over 500,000 companies trusting its services and certifications such as Great Place To Work and sustainability seals. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms.

P

Prima Estúdio Produções

primaestudio.com.br

0

Prima Estúdio Produções is a Brazilian digital communication company specializing in multimedia production, streaming, web development, and IT services. Established since 2016, it serves a medium-sized client base including notable companies, positioning itself as a reputable service provider in the technology sector. The website reflects a professional digital presence with good SEO and client trust indicators but lacks visible privacy and terms of service policies. Technically, the site is built on WordPress with Themify Ultra theme and uses several plugins including Sendinblue for marketing automation and Google Tag Manager for analytics. However, the site suffers from a lack of valid SSL/TLS configuration, resulting in insecure HTTP delivery and exposing visitors to potential risks. Security posture is weak with missing modern security headers and DNS security features. Cookie consent mechanisms are implemented, indicating some compliance with privacy regulations. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

C

Capgo, Inc.

capgo.app

0

Capgo, Inc. is a technology company specializing in providing live Over-the-Air (OTA) update solutions for Capacitor-based mobile applications. Their platform enables developers to push instant updates, fixes, and new features directly to users without the delays associated with app store approvals. Positioned as an innovative and secure solution, Capgo offers both cloud-hosted and self-hosted options, with a strong emphasis on end-to-end encryption and real-time analytics. The company targets development teams seeking efficient app update workflows and enhanced user experience. Their business model includes SaaS offerings, consulting services, and CI/CD pipeline integrations, supported by a transparent trust center and open source code availability.

S

Sebastian Gepperth

rash.codes

0

The website rash.codes represents a personal brand and portfolio of Sebastian Gepperth, a software developer and designer specializing in open source projects and freelance coding services. The site targets developers and potential clients interested in modern web technologies and open source contributions. The business model revolves around personal branding and showcasing expertise to attract freelance opportunities. Technically, the site uses a modern frontend stack including Vue.js and Vitepress, hosted on a Hetzner server. However, the site lacks a valid SSL certificate and does not implement HTTPS, which is a significant security concern. DNS records show partial email security with SPF and DMARC configured, including an abuse contact email for incident reporting. Overall, the security posture is weak due to missing TLS, HSTS, and DNSSEC, exposing the site to potential interception and spoofing risks. Strategic improvements in SSL deployment and security policies are recommended to enhance trust and compliance.

D

DATEV eG

datev.com

0

DATEV eG is a leading European software and consulting company specializing in professional support for tax consultancy, auditing, companies, legal advice, and the public sector. The company holds a strong market position as one of Europe's largest software houses, offering over 200 software products and services, including payroll processing for about 14 million payrolls monthly. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding consistency targeting tax professionals and related sectors primarily in Germany. Technically, the site leverages Adobe Experience Manager as its CMS, integrates Adobe Helix RUM for analytics, and uses OneTrust for GDPR-compliant cookie consent management. The hosting infrastructure appears self-managed with dedicated DNS and mail servers, and the site supports modern TLS protocols ensuring secure communications. Security posture is good with strict SPF and DMARC policies, absence of known SSL vulnerabilities, but could be improved by enabling HSTS and OCSP stapling. Overall, the website demonstrates a professional and trustworthy digital footprint aligned with enterprise standards.

R

Resonanz Digital

resonanz-marketing.com

0

Resonanz Digital is a well-established digital agency based in Austria, specializing in WordPress websites, online shops, eCommerce solutions, SEO, and Google Ads optimization. With over 20 years of experience and a Google Partner certification, the company targets small and medium-sized enterprises, founders, and individual entrepreneurs primarily in the German-speaking market. Their service portfolio includes web design, development, online marketing, and ongoing maintenance, positioning them as a trusted partner for digital presence creation. Technically, the website is built on WordPress using the Avia Framework and integrates various modern web technologies including jQuery and WP Rocket for performance optimization. The hosting infrastructure appears to be on Google Cloud, providing a reliable platform. The site supports multilingual content via WPML and employs structured data for SEO enhancement. Performance is moderate with room for improvement in load times. From a security perspective, the site has correctly configured SPF and DMARC DNS records, indicating good email authentication practices. However, the lack of a valid SSL certificate and absence of TLS protocols represent significant security weaknesses, exposing users to potential data interception risks. The cookie consent mechanism is implemented, supporting GDPR compliance, but the DMARC policy is set to 'none', which could be strengthened. Overall, Resonanz Digital demonstrates a mature digital presence with strong business credibility and customer trust signals. The main risk lies in the missing HTTPS security layer, which should be addressed promptly to protect user data and enhance trust. Strategic improvements in security posture and performance optimization will further solidify their market position.

O

OBJENTIS Software Integration GmbH

objentis.com

0

OBJENTIS Software Integration GmbH is an established Austrian IT service provider specializing in software testing consulting, automation, and training. With over 26 years of experience and a portfolio of notable clients including major banks and insurance companies, OBJENTIS positions itself as a trusted partner in the software lifecycle. Their offerings include consulting solutions, innovative driverless test automation products, and tailored training workshops. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supported by modern web technologies and plugins for search and cookie management. Security-wise, the domain employs valid SPF and DMARC records with strict policies, supports TLS 1.2 and 1.3, and avoids known SSL vulnerabilities. However, improvements are needed in SSL configuration such as enabling HSTS and OCSP stapling, and publishing a security.txt file. Overall, the site demonstrates good digital maturity and professionalism, with moderate performance and good mobile optimization. The presence of client testimonials, certifications, and social media links enhance trust. Strategic recommendations include enhancing HTTPS security headers, formalizing security policies, and improving transparency around incident response.

W

Wake Creators

squidit.com.br

0

Wake Creators, formerly known as Squid, is a Brazilian technology company specializing in influencer marketing data and campaign optimization. With a decade of experience, it offers a large influencer database and leverages AI and machine learning to enhance marketing performance. The company operates under the LWSA group and targets brands, advertisers, and influencers seeking data-driven marketing solutions. Technically, the website is built on WordPress using Oxygen builder and integrates Google Analytics and Tag Manager for tracking. However, the site lacks a valid SSL certificate and modern TLS protocols, which poses significant security risks. Email security is well managed with SPF and DMARC policies, and multiple domain verifications indicate active ownership and SEO efforts. Overall, the security posture is weak due to missing HTTPS and security headers, but the business shows maturity in data and marketing technology.

T

Tiki

tiki.com.br

0

Tiki is a Brazilian digital marketing agency specializing in comprehensive marketing services including digital campaigns, social media management, content marketing, web design, and custom systems development. With over 15 years of experience and a portfolio of more than 150 brands, Tiki positions itself as a reliable partner for businesses seeking to enhance their digital presence. The website reflects a mature digital infrastructure utilizing modern frameworks such as Next.js and React, integrated with advanced marketing and consent management tools like RD Station and AdOpt. However, the absence of a valid SSL certificate and lack of advanced security headers indicate significant security gaps that could expose users to risks. The company demonstrates good privacy compliance with clear policies and consent mechanisms, but should prioritize securing its web infrastructure. Overall, Tiki presents a professional and trustworthy image with a strong focus on client growth and digital innovation.

O

Ouvidor Digital

ouvidordigital.com.br

0

Ouvidor Digital is a Brazilian technology company specializing in digital compliance solutions, primarily offering a whistleblower channel platform designed to reduce fraud and workplace harassment. Positioned as an innovative market player, it leverages AI and official WhatsApp Business API to provide accessible, secure, and anonymous reporting channels. The company targets medium to large enterprises, focusing on compliance, HR, legal, and financial managers. Technically, the website is built on WordPress with the Divi theme, hosted on AWS infrastructure, and integrates multiple analytics and marketing tools. However, the site lacks a valid SSL certificate, which poses a significant security risk. Security policies are robust in terms of compliance frameworks and certifications, but technical security configurations need improvement. Overall, the company demonstrates strong market positioning with comprehensive content and trust signals but should address critical security vulnerabilities to enhance trust and compliance.