Security Directory

M

MMX e.U.

silberdraht.agency

0

Silberdraht Agency is a small Austrian online marketing firm specializing in services tailored for the BestAger demographic (age 50+). Founded in 2019 and operated by MMX e.U., the agency offers website analysis, creation, optimization, search engine marketing, social media marketing, and newsletter distribution. Their market position is niche-focused with a dedicated team and partnerships that enhance their service offerings. Technically, the website runs on WordPress with popular plugins and themes, but lacks HTTPS, which is a critical security shortfall. The site is mobile-optimized and SEO-friendly but suffers from slow or unmeasured performance. Security posture is weak due to missing SSL and security headers, and privacy compliance is minimal with no cookie consent mechanism. Overall, the business appears legitimate and consistent with its domain registration data, but security improvements are urgently needed.

K

Kienbaum Consultants Austria GmbH

kienbaum.at

0

Kienbaum Consultants Austria GmbH is a well-established HR and management consulting firm with a strong presence in Austria since 1958 and origins dating back to 1945. The company offers a comprehensive range of services including assessment, executive search, compensation management, and organizational transformation. Their Vienna office serves as an international hub for compensation data and global studies. Technically, the website is built on WordPress using the Divi theme, with modern tools like Matomo analytics and Cookiebot for privacy compliance. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing the site to risks and reducing trust. Despite this, the site demonstrates good privacy compliance and business credibility with clear contact information and certifications. Strategic improvements in SSL/TLS implementation and security headers are recommended to enhance overall security and user trust.

L

Leftshift One

leftshift.one

0

Leftshift One is an established Austrian technology company specializing in generative AI solutions, particularly their MyGPT platform which leverages Retrieval-Augmented Generation (RAG) to provide secure, scalable, and customizable AI-powered knowledge management for enterprises and SMEs. The company positions itself as a technology leader with over 8 years of experience and 200 successful AI projects, emphasizing data privacy and compliance with GDPR. Technically, the website is built on WordPress with modern frameworks like Elementor and optimized with WP Rocket, but lacks a valid SSL certificate and proper TLS configuration, which are critical security gaps. The security posture is moderate with some vulnerabilities such as a subdomain takeover risk. Overall, the website is professional, content-rich, and compliant with privacy regulations, but requires urgent improvements in SSL/TLS security to enhance trust and protect user data.

W

wphelp24.com - Your 24/7 WordPress Support Hub

wphelp24.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 24 security findings identified across all modules.

G

GS1 Austria

gs1.at

0

GS1 Austria is a well-established non-profit organization serving as the official barcode and GTIN issuing authority in Austria. It provides a comprehensive suite of GS1 standards and services to businesses across multiple sectors including retail, manufacturing, transportation, and government. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding supported by major corporate clients. Technically, the site is built on Drupal 10 with modern JavaScript libraries and integrates Google analytics and marketing tools, but suffers from a critical lack of HTTPS support due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Contact information is primarily via contact forms, with no direct emails or phone numbers publicly listed. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to improve security and user trust.

G

Gymnasium Camphusianum

camphusianum.nl

0

Gymnasium Camphusianum is a small, community-oriented gymnasium school located in Gorinchem, Netherlands, providing secondary education focused on broad academic knowledge and personal development. The website reflects a well-structured educational institution with clear communication channels, active social media presence, and comprehensive privacy and cookie policies compliant with GDPR. Technically, the site is built on WordPress with modern plugins and themes, leveraging Cloudflare CDN for content delivery. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly undermines the site's security posture. This exposes users to potential data interception risks and reduces trustworthiness from a security perspective. Overall, while the content and business credibility are strong, the lack of HTTPS is a major vulnerability that must be addressed promptly.

A

Austrian Institute of Economics and Social Philosophy

austrian-institute.org

0

The Austrian Institute of Economics and Social Philosophy is a small non-profit organization focused on promoting classical liberal social philosophy and Austrian economics primarily to a German-speaking audience. The website serves as an educational platform offering blogs, videos, podcasts, and events such as the Austrian Academy. The organization is funded by donations and maintains a professional online presence with consistent branding and active social media channels. Technically, the website is built on WordPress with modern plugins and page builders, but lacks a valid SSL certificate, which is a critical security flaw. The absence of HTTPS significantly undermines the site's security posture despite good privacy compliance and cookie consent mechanisms. No explicit security or incident response policies are published, and no phone contact is provided, only an official email address. Overall, the site is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

L

Lorencic GmbH Nfg. & Co KG

lorencic.com

0

Lorencic GmbH Nfg. & Co KG operates as a medium-sized company specializing in construction services and products, including workwear, reinforcement fabrics, construction profiles, diamond cutting discs, and rental of construction machinery. The company targets construction professionals and contractors primarily in Austria and surrounding European countries, as evidenced by multiple country-specific domains. The website presents a professional design with clear navigation and relevant content, supporting its business model as a B2B supplier and rental service provider. Technically, the website runs on an Apache server with Ubuntu, utilizing common JavaScript libraries such as jQuery and Bootstrap for frontend functionality. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. Performance metrics are unavailable, and mobile optimization is basic but functional. The site includes cookie consent mechanisms and basic privacy policy compliance, though more advanced privacy and security policies are lacking. From a security perspective, the lack of HTTPS is a critical vulnerability, exposing users to potential data interception risks. No advanced security headers or incident response information is published, and session management could be improved. The site uses Matomo analytics with user consent, indicating moderate user tracking with some privacy compliance. Overall, the security posture is weak and requires urgent improvements. Strategically, the company should prioritize implementing HTTPS with a valid certificate, enhance security headers, and publish clear security and incident response policies. Improving privacy compliance and expanding trust indicators will also strengthen business credibility and user confidence.

Summit Printing LLC operates as an established online commercial printing company founded in 2010, offering a wide range of printing services including banners, brochures, business cards, mailing services, and graphic design. The company targets businesses and graphic designers across the United States and Canada, leveraging multiple plant locations to provide fast production and free shipping. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site uses PHP 7.0.33, jQuery, Modernizr, and is hosted behind Cloudflare with LiteSpeed server technology. However, the absence of a valid SSL certificate and HTTPS implementation is a significant security shortfall. Security headers such as HSTS, X-Frame-Options, and X-Content-Type-Options are present, but the lack of TLS protocols and certificate transparency compliance reduces the overall security posture. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site scores moderately on content quality and business credibility but is penalized heavily for security deficiencies.

M

MWS

mws.eu

0

MWS is an international market leader specializing in aluminum casting technologies including sand casting, permanent mold casting, and low-pressure casting. The company offers comprehensive services from development and prototyping to series production and mechanical processing, targeting industrial sectors such as automotive, electromobility, and transportation. The website is built on Concrete CMS and employs standard web technologies with Google Analytics for user tracking. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit terms of service or security policies are present. Overall, the site presents professional content and clear navigation but requires urgent security improvements.

E

Eti

etietieti.com

0

Eti is a well-established Turkish food manufacturing company with a strong market presence and a diverse product portfolio including biscuits, chocolates, and health-oriented food products. The website serves as a comprehensive corporate portal providing product information, recipes, corporate governance details, career opportunities, and social responsibility initiatives. The site targets consumers interested in quality food products and healthy nutrition, leveraging a consistent brand identity and multiple language options for international reach. Technically, the website is built on ASP.NET WebForms and uses modern JavaScript libraries for UI enhancements. However, performance metrics are lacking and the site suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts user trust and security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance with GDPR requirements. Social media integration and partner links enhance the brand's digital ecosystem. Overall, Eti's website is professional and content-rich but requires urgent security improvements to meet modern standards.

R

Rail Cargo Group

railcargo.com

0

Rail Cargo Group is a well-established rail logistics provider operating primarily in Europe and Asia, offering a broad range of freight and logistics services including wagon loads, intermodal and multimodal logistics, and railway operations. The company targets businesses requiring efficient rail freight solutions and maintains a strong market position supported by its parent company ÖBB. Technically, the website employs modern JavaScript libraries and custom corporate scripts, with a focus on accessibility and SEO, though performance data is unavailable. Security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, despite good security header implementation. Privacy compliance is supported by a comprehensive privacy policy and GDPR adherence, with Matomo analytics used for privacy-conscious tracking. Overall, the site is professional and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

I

Irian Solutions Softwareentwicklungs GmbH

irian.com

0

Irian Solutions Softwareentwicklungs GmbH is a medium-sized Austrian technology company specializing in software development and digital solutions using Java, Angular, and .NET technologies. With over 20 years of experience, the company serves a B2B market, providing digital product development, data and AI solutions, and technology expert staffing. Their client portfolio includes major enterprises such as Allianz, BMW, and Deutsche Börse Group, positioning them as a reputable player in the software development sector. The website is professionally designed, multilingual (German and English), and showcases detailed project case studies and client logos, enhancing credibility. Technically, the website uses modern frameworks like Astro and integrates Google Tag Manager for analytics. However, performance is slow with a large page size and high load time. Mobile optimization and SEO are good, but accessibility is basic. Hosting and DNS services are managed via Cloudflare, but the SSL/TLS configuration is critically lacking, with no valid certificate or HTTPS enabled, exposing the site to security risks. Security posture is weak due to missing HTTPS, lack of security headers, no DMARC or DNSSEC, and absence of published security or incident response policies. Privacy compliance is good with a comprehensive privacy policy and cookie consent mechanism in place. Business credibility is strong based on content quality, client trust signals, and professional presentation. Overall, the site presents a trustworthy business but requires urgent security improvements, especially SSL/TLS implementation, to protect users and enhance trust. Strategic recommendations include securing the website with valid certificates, enabling security headers, and publishing security policies to improve compliance and risk management.

The website kphgraz.at is currently inaccessible, returning an HTTP 403 Forbidden error indicating that access is denied due to insufficient permissions. The site lacks any visible content, metadata, or structured data, which prevents a full analysis of its business or technical attributes. The hosting provider is identified as World4You, an Austrian hosting company, and the domain is registered consistently with the website's country. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. No privacy, cookie, or terms of service policies are present, and no contact information is available, which further reduces trust and compliance levels. Overall, the site appears to be either misconfigured or a placeholder without active content.

E

ekey biometric systems GmbH

ekey.net

0

ekey biometric systems GmbH is a medium-sized Austrian technology company founded in 2002, specializing in fingerprint-based access control and smart home integration solutions. The company holds a leading market position in Europe for fingerprint access systems, offering a range of products including door-integrated fingerprint readers, wall-mounted units, and retrofit kits. Their business model focuses on manufacturing, sales, and providing support and training services. The website reflects a mature digital presence with multilingual support and comprehensive product information targeting homeowners, businesses, and smart home users. Technically, the site is built on WordPress with modern plugins and analytics tools, but suffers from a critical security issue due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Security headers are well configured, and privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

Lab Zero Games is an independent game development studio known for titles such as Skullgirls and Indivisible. The website serves primarily as a promotional platform for their games, targeting gamers interested in indie and retro-style games. The business model focuses on game development and publishing within the technology sector. The company appears to be small-sized with consistent branding and good content quality. Technically, the website is built on WordPress 5.2.21 with PHP 7.3.33 and Apache server. The site lacks HTTPS support, which is a significant security concern. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. No advanced frameworks or analytics tools are detected. From a security perspective, the absence of SSL/TLS encryption, lack of security headers, and missing privacy and cookie policies indicate a low security posture. No incident response or vulnerability disclosure mechanisms are present. The domain registration data is consistent and legitimate, but the site would benefit greatly from implementing modern security best practices. Overall, the website is functional and professional in design but requires urgent improvements in security and privacy compliance to protect users and enhance trustworthiness.

T

Tyco

tyco.com

0

Tyco, a subsidiary of Johnson Controls, is a mature enterprise-level provider of integrated security products and solutions, including access control, video surveillance, cloud services, and fire suppression. The company targets commercial and enterprise customers globally, leveraging a broad partner ecosystem and multiple subsidiary brands. The website demonstrates a professional design with good content quality and clear navigation, supported by modern technologies such as Sitecore CMS and Bootstrap. However, the security posture is weakened by an invalid SSL certificate and lack of enabled TLS protocols, which poses risks to secure communications. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the domain registration and WHOIS data confirm the legitimacy and maturity of the business. Strategic improvements in SSL and TLS configuration are recommended to enhance security and trust.

L

Lebenshilfe Österreich

lebenshilfe.at

0

Lebenshilfe Österreich is a well-established non-profit organization dedicated to advocating for the rights and support of people with intellectual and multiple disabilities across Austria. Serving as the umbrella organization for regional Lebenshilfe groups, it offers services including support, advocacy, public relations, and organizes events such as the Austrian Inclusion Prize. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency targeting individuals and stakeholders interested in disability rights and inclusion. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Cookiebot for consent management. It uses Apache hosting with DNS managed by easyname.eu. Accessibility features and structured data are implemented, enhancing user experience and SEO. However, performance metrics are not provided. From a security perspective, the site lacks a valid SSL/TLS certificate, exposing it to significant risks and undermining user trust. No advanced security headers or protocols are configured, and no incident response or security policies are publicly disclosed. Cookie consent is properly implemented, and privacy policies are present and GDPR compliant. Overall, while the website excels in content quality, user experience, and privacy compliance, the absence of HTTPS is a critical vulnerability that must be addressed immediately to protect users and maintain credibility. Strategic improvements in security posture and transparency around security policies are recommended to enhance trust and resilience.

Tarian Group, LLC is a large US-based security services provider specializing in guarding services, integrated security technology, risk advisory, and preparedness training. The company targets critical infrastructure, government, healthcare, commercial, and residential sectors, positioning itself as North America’s fastest growing security provider with a client-centric and innovative approach. The website is built on WordPress with the Divi theme and several plugins, showing a modern but somewhat basic technical infrastructure. However, the absence of HTTPS and SSL certificates is a significant security shortfall. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information and multiple licensed office locations. The security posture is weak due to lack of HTTPS and missing security headers, but no active vulnerabilities were detected. Overall, the site is professional and trustworthy but requires urgent security improvements.

D

DORDA Rechtsanwälte GmbH

dbj.at

0

DORDA Rechtsanwälte GmbH is a leading Austrian law firm specializing in business and economic law, offering a broad range of legal services including transactions, restructurings, and digital transformation advisory. The website reflects a professional and comprehensive digital presence with excellent content quality and user experience, targeting business clients nationally and internationally. Technically, the site is built on Drupal 10 with modern features such as video backgrounds and Matomo analytics, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of HTTPS and security headers significantly lowers the security posture. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

S

SIG Combibloc Group Ltd.

sig.biz

0

SIG Combibloc Group Ltd. is a leading enterprise in the manufacturing sector specializing in innovative and sustainable packaging solutions including carton, bag-in-box, and spouted pouch packaging. The company holds a strong market position as an industry leader with a comprehensive portfolio and a global reach. Their website reflects a mature digital presence with professional design, clear navigation, and a focus on sustainability and innovation. Technically, the site uses modern frameworks such as Next.js and React, hosted on Microsoft Azure, with good mobile optimization and SEO practices. However, the security posture is impacted by an invalid or missing SSL certificate, which is a critical issue that should be addressed promptly. Privacy compliance is well managed with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy and professional but requires improvements in SSL configuration to enhance security.

The website denkstatt.sk currently serves as a parked domain page primarily linking to Regery, Ltd., a company specializing in domain registration, SSL certificates, and web hosting services. The site content is minimal and focused on redirecting users to Regery's main platform for domain and SSL management. The technical infrastructure relies on Bootstrap and particles.js for frontend presentation and is hosted behind Cloudflare DNS services. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. Additionally, the website performance is slow, with a load time exceeding 15 seconds, and there are no advanced security headers or privacy policies implemented. The WHOIS data presents suspicious future creation and update dates, which undermines trust in the domain's legitimacy. Overall, the site functions as a placeholder with limited business information and weak security posture.

B

BoehlerBrothers GmbH

boehlerbrothers.com

0

BoehlerBrothers GmbH is a small technology company based in Vorarlberg, Austria, specializing in app and web development, technology consulting, and artificial intelligence solutions. The company positions itself as a regional innovator with a strong focus on digital transformation and partnerships with reputable local and regional businesses. Their website reflects a professional and modern digital presence built on Next.js and React technologies, hosted via Cloudflare, and integrates marketing and feedback tools such as Google Analytics and Gleap. However, the site suffers from a critical security deficiency due to the absence of a valid SSL certificate, resulting in no HTTPS support and lack of security headers, which significantly impacts the security posture and user trust. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is evident. Contact information is clearly provided, enhancing business credibility. Overall, the website is content-rich and professionally designed but requires urgent security improvements to meet modern standards.

I

Innconcepts IT GmbH

innconcepts.at

0

Innconcepts IT GmbH is a specialized Oracle Partner providing innovative hospitality software solutions tailored for hotels, gastronomy, and wellness sectors. Their offerings include cloud-based hotel and restaurant management software, wellness and leisure software, and comprehensive hospitality IT services. The company positions itself as a customer-centric and authentic partner, emphasizing personalized service and modern technology adoption. The website reflects a professional and consistent brand image with excellent content quality and clear messaging targeting hospitality industry professionals. Technically, the website is built on Drupal 10 CMS, hosted on Apache servers with modern JavaScript libraries such as Alpine.js and AOS for animations. It employs Google Tag Manager and Google Analytics for tracking and marketing purposes, alongside a compliant cookie consent mechanism. Performance is fast, mobile optimization is excellent, and SEO practices are good. Security headers are present, and the SSL certificate is valid, although HSTS is not enabled, which is a recommended improvement. From a security perspective, the site demonstrates good baseline security practices with no detected vulnerabilities or exposed sensitive data. However, the absence of a dedicated security policy or incident response contact and lack of security.txt file indicates room for maturity improvement. Privacy compliance is well addressed with cookie consent and a privacy policy, but terms of service and data protection officer contact details are missing. Overall, the website and business present a trustworthy and professional front with moderate to high security posture and good privacy compliance. Strategic recommendations include enabling HSTS, publishing a security policy and vulnerability disclosure mechanism, and enhancing transparency around incident response to further strengthen trust and security culture.

U

United Nations Commission On International Trade Law

uncitral.org

0

The United Nations Commission On International Trade Law (UNCITRAL) operates as a key intergovernmental organization under the United Nations, focused on developing and harmonizing international trade law frameworks. The website serves as an authoritative resource for legal texts, working documents, technical assistance, and research related to international trade law, targeting governments, legal professionals, and trade stakeholders globally. The organization is well-established with a mature domain and consistent branding aligned with UN standards. Technically, the website is built on Drupal 7 with common web technologies such as jQuery and Bootstrap. While the site demonstrates good content quality, navigation, and mobile optimization, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and lack of HTTPS enforcement, which severely impacts its security posture. Performance metrics are unavailable, but the technical stack suggests potential modernization needs. Security-wise, the site implements some security headers but fails to provide a valid SSL/TLS configuration, exposing users to risks and undermining trust. Privacy compliance is minimal, with no visible cookie consent mechanisms and only a basic privacy policy linked externally. Contact information is not explicitly provided on the homepage, limiting direct communication channels. Overall, the site is credible and authoritative but requires urgent security improvements to protect users and maintain trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, enhancing privacy and cookie consent mechanisms, and modernizing the technical infrastructure to improve performance and security.

P

Posthotel Achenkirch GmbH

posthotel.at

0

Posthotel Achenkirch GmbH operates a premium 5-star adults-only hotel located in Tirol, Austria, specializing in wellness, gourmet dining, and active holidays. The website presents a rich, multilingual content experience with clear business information and strong branding consistency. Technically, the site is built on TYPO3 CMS, uses modern JavaScript practices, and integrates marketing and analytics tools such as Google Analytics and Usercentrics for cookie consent. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate and HTTPS support, exposing visitors to potential risks. The site implements basic security headers but lacks advanced protections like HSTS and OCSP stapling. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the business is credible and well-positioned in the hospitality market, but urgent security improvements are needed to protect user data and enhance trust.

B

Bosch Global Software Technologies Private Limited

bosch-india-software.com

0

Bosch Global Software Technologies Private Limited is a large, well-established technology and engineering services provider based in India, operating as part of the global Bosch group. The company focuses on delivering software and engineering solutions across multiple sectors including technology, healthcare, manufacturing, retail, and transportation. Their business model is primarily B2B, targeting enterprises seeking digital transformation and operational efficiency improvements. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistent with Bosch's global identity. However, the technical infrastructure shows areas for improvement, particularly in security where the absence of a valid SSL certificate and missing security headers pose risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the company demonstrates high business credibility but should urgently address security weaknesses to protect user data and enhance trust.

W

World Data Lab

worlddata.io

0

World Data Lab is a mature data analytics company specializing in global consumer and demographic insights, offering detailed forecasting across numerous categories and geographies. Their platform, World Data Pro, leverages advanced data science and peer-reviewed methodologies to provide credible and consistent intelligence to businesses and policymakers. The company maintains a professional digital presence with clear navigation, consistent branding, and integration of modern marketing and analytics tools, hosted on HubSpot and protected by Cloudflare. However, a critical security gap exists due to the absence of a valid SSL certificate and proper HTTPS configuration, which undermines user trust and data security. Privacy compliance is partial, with a privacy policy present but no detected cookie consent mechanism. Contact information is primarily via web forms, with no direct emails or phone numbers published. Social media presence is active on major platforms. Overall, the website is functional and credible but requires urgent security improvements to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Edelweiss Consulting GmbH

edelweiss-consulting.at

0

Edelweiss Consulting GmbH is a small Austrian consulting firm specializing in strategy development, organizational development, and personnel development, primarily serving clients in Vienna and Linz. The company presents itself professionally with a well-structured website, social media presence, and recognized certifications such as the Top Berater Gütesiegel Kurier 2024. Technically, the website is built on WordPress using common plugins for SEO, forms, and cookie consent, hosted on world4you.at. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing visitors to risks and undermining trust. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, supporting GDPR adherence. Overall, the website is functional and professional but requires urgent security improvements.

C

ConVista Consulting AG

convista.com

0

ConVista Consulting AG is a leading SAP and IT consulting firm based in Germany, specializing in digital transformation across multiple industries including insurance, energy, healthcare, and manufacturing. The company offers comprehensive end-to-end solutions, combining deep industry expertise with technological innovation. Their market position is strong, supported by multiple industry awards and certifications such as SAP Gold Partner and Great Place to Work recognitions. The website reflects a professional and well-branded presence targeting enterprise clients seeking SAP and IT consulting services. Technically, the website is built on WordPress with modern optimization tools like WP Rocket and uses a variety of JavaScript libraries including jQuery and Swiper.js. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. However, the technical infrastructure shows weaknesses in security, notably the absence of a valid SSL certificate and lack of TLS protocol support, which critically undermines secure communications. Security posture is currently basic, with several HTTP security headers implemented but critical SSL/TLS deficiencies present. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies and consent mechanisms in place. Contact information is transparent and comprehensive, including phone, email, physical address, and contact forms. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and maintain credibility. Strategically, the company should prioritize obtaining and maintaining a valid SSL certificate and enabling modern TLS protocols to secure all communications. Enhancing security best practices will improve trust and compliance, supporting their strong market position and client relationships.

W

Whataventure

whataventure.com

0

Whataventure is a medium-sized consulting and venture building firm specializing in leveraging corporate assets and entrepreneurial agility to create new business ventures. The company serves corporate leaders and innovation teams across multiple sectors including construction, consumer goods, energy, industrial goods, and mobility. Their market position is strong, supported by significant investments in projects and numerous ventures built in partnership with clients. The website is professionally designed, content-rich, and well-branded, reflecting a mature digital presence. Technically, the site uses modern web technologies such as Webflow CMS, Cloudflare hosting, Weglot for translation, and Google Tag Manager for analytics. However, a critical security weakness is the absence of a valid SSL certificate and lack of TLS protocol support, which severely impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Contact information is comprehensive with multiple direct emails and contact forms. Overall, the site is trustworthy and professional but requires urgent remediation of SSL and TLS issues to ensure secure user interactions.

B

Bombardier

bombardier.com

0

Bombardier is a mature enterprise specializing in the design, manufacture, and maintenance of ultra-long-range business jets and specialized defense aircraft. The company targets discerning individuals, businesses, and governments globally, maintaining a strong market position with a comprehensive portfolio of aircraft and support services. The website reflects a high level of professionalism, rich multimedia content, and consistent branding aligned with Bombardier's industry stature. Technically, the site leverages Drupal CMS, modern JavaScript frameworks, and monitoring tools like New Relic, but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. However, the absence of HTTPS and security headers presents significant vulnerabilities. Overall, the domain registration is consistent with the business history, reinforcing legitimacy. Strategic improvements in SSL deployment and security configurations are essential to enhance trust and compliance.

The website dyna-meet.at is currently inaccessible due to a Cloudflare anti-bot challenge page, which prevents access to any meaningful content or business information. The domain is registered and configured with DNS records including Google MX servers and Jimdo nameservers, suggesting the use of Jimdo as a website builder and Google Workspace for email. However, the lack of a valid SSL certificate and absence of HTTPS severely impacts the security posture. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available on the landing page. The site performance is poor, with a very slow load time likely caused by the challenge mechanism.

dormakaba Holding is a globally recognized leader in smart and secure access solutions, providing a comprehensive range of products and services for secure access to buildings and rooms. The company operates internationally with a strong presence in multiple countries and serves diverse markets including security, technology, and manufacturing sectors. The website reflects a mature, well-established business with a clear focus on innovation, sustainability, and customer engagement. Technically, the site leverages modern frameworks such as Vue.js and Contentful CMS, ensuring a responsive and user-friendly experience across devices. Security measures are robust with multiple security headers and a comprehensive content security policy, although the SSL certificate is currently invalid, which is a critical issue that needs immediate attention. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, dormakaba demonstrates a strong security posture and business credibility, supported by transparent investor relations and active communication channels.

H

Hartlauer Handelsgesellschaft m.b.H.

hartlauer.at

0

Hartlauer Handelsgesellschaft m.b.H. operates a large retail and e-commerce platform focused on optics, photography, mobile phones, and hearing aids in Austria. With over 160 physical stores and a comprehensive online shop, it serves a broad consumer base with premium products and services including free eye tests and hearing aid trials. The website is professionally designed with excellent content quality and user experience, supported by a modern technology stack primarily based on Salesforce Commerce Cloud and integrated marketing and analytics tools. However, a critical security issue is present due to the lack of a valid SSL certificate and absence of HTTPS, severely impacting the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, and the company demonstrates strong business credibility with clear contact information and trust seals. Strategic security improvements are urgently needed to protect user data and maintain trust.

C

CONVISIO Völkermarkt WTH-STB GmbH & Co KG

convisio.at

0

CONVISIO Völkermarkt WTH-STB GmbH & Co KG is a medium-sized Austrian financial services company specializing in tax consulting, auditing, financial advisory, accounting, and startup consulting. The company operates multiple offices across Austria, targeting clients seeking professional financial and tax services. The website is built on WordPress with Elementor and includes modern SEO and cookie consent tools, reflecting a moderate level of digital maturity. However, the absence of a valid SSL certificate and lack of advanced security headers represent critical security weaknesses that could undermine user trust and data protection. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the company presents a professional image with clear contact information and trust signals such as certifications, but must urgently address its SSL and security posture to improve its risk profile.

F

Forerunners Network

roadmap2050.at

0

Forerunners Network is a German-language media platform based in Austria focusing on ESG (Environmental, Social, Governance) topics, infrastructure, and sustainability. It offers news articles, podcasts, videocasts, and a newsletter subscription service targeting an audience interested in sustainable development and innovation. The platform maintains a consistent brand presence and active social media engagement across multiple channels. Technically, the website runs on WordPress with the Bricks theme and uses plugins such as Borlabs Cookie for consent management and Podigee for podcast integration. However, the site lacks HTTPS, which is a critical security shortcoming. Security headers are minimal, and no incident response or security policies are publicly disclosed. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

BE-terna

be-terna.com

0

BE-terna is a medium-sized technology solutions provider specializing in ERP, CRM, business intelligence, data analytics, and automation solutions. The company partners with leading global technology providers such as Microsoft, Infor, Qlik, and UiPath, positioning itself as a trusted partner for businesses seeking digital transformation across multiple industries including manufacturing, retail, energy, and financial services. The website reflects a professional and comprehensive digital presence with strong branding and relevant content tailored to its target audience. Technically, the website is built on a modern stack including Webflow CMS, jQuery, and various JavaScript libraries for UI enhancements. However, the site suffers from critical SSL/TLS misconfigurations, lacking a valid certificate and modern TLS protocol support, which significantly impacts its security posture and user trust. Performance is moderate with good mobile optimization and SEO practices, but accessibility could be improved. Security-wise, while several security headers are implemented, the absence of a valid SSL certificate and lack of explicit security policies or incident response information are notable weaknesses. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Contact information is primarily via forms, with no explicit emails or phone numbers displayed. Overall, BE-terna presents a credible and professional business front with strong industry partnerships and content quality but requires urgent improvements in SSL configuration and privacy compliance to enhance security and trustworthiness.

D

d:code:it Ltd

dcodeit.com

0

d:code:it Ltd is a digital design and development studio specializing in transforming enterprises, particularly in the financial services sector. The company targets global banks and enterprises, offering innovative financial solutions, trading applications, and management consulting services. Their market position is that of a niche, specialized provider with a strong focus on complex UI and fintech applications. The website reflects a professional and consistent brand image with detailed leadership information and a comprehensive privacy policy demonstrating GDPR compliance. Technically, the website is hosted on AWS infrastructure using Amazon S3 and CloudFront CDN, with modern JavaScript and SVG animations enhancing user experience. However, the site suffers from an invalid SSL certificate and lack of modern TLS protocols, which significantly impacts its security posture. Privacy compliance is well addressed in the policy, but no explicit cookie consent mechanism is present. Overall, the site is functional and professional but requires urgent security improvements to ensure trust and compliance.

F

F/LIST

f-list.at

0

F/LIST is a well-established Austrian family business specializing in luxury interior outfitting for business jets, private jets, and high-end living spaces such as hotels. The company emphasizes craftsmanship, innovation, and premium materials, positioning itself as a global leader in the luxury interiors market. The website reflects a professional and consistent brand image with multilingual support and rich content tailored to its affluent target audience. Technically, the site is built on WordPress with modern plugins and libraries, hosted on Hostinger with LiteSpeed server technology. However, the security posture is weakened by the absence of a valid SSL certificate and lack of modern TLS protocol support, which critically impacts secure communications. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a clear privacy policy. Contact information is transparent and includes multiple channels, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to meet modern standards.

P

PennWhite

pennwhite.co.uk

0

PennWhite is a mature, medium-sized global manufacturer specializing in foam control agents and chemical solutions, operating as a subsidiary of Manali Petrochemicals Limited. The company serves a broad industrial audience with over 35 years of experience and a presence in 40+ countries. The website is a modern Angular-based single-page application hosted on AWS infrastructure, demonstrating a good level of digital maturity with responsive design and professional branding. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy compliance is basic, with no cookie consent mechanism or explicit GDPR adherence visible. The company shows trustworthiness through certifications and corporate affiliations but should urgently address security shortcomings to improve its posture and compliance.

M

Medaprint Solutions Limited

mediaprint.design

0

Mediaprint Solutions Limited is a small UK-based company specializing in graphic design and print services, targeting businesses seeking professional branding and print solutions. The website is built on WordPress using the BeTheme and Revolution Slider plugins, hosted by IONOS SE. While the site presents a professional design and clear contact information, it lacks HTTPS support, which is a critical security deficiency. The absence of cookie consent mechanisms and limited privacy compliance indicators suggest room for improvement in regulatory adherence. Overall, the business appears legitimate with a mature domain age and consistent branding, but the technical and security posture requires enhancement to protect users and improve trust.

NCM - net communication management GmbH is a specialized digital marketing agency based in Salzburg, Austria, focusing on the tourism and hospitality sector. The company offers a comprehensive suite of services including SEO, SEA, social media marketing, web design, and proprietary tourism tools to enhance online presence and lead generation for hotels. The website is professionally designed, content-rich, and well-structured, targeting German-speaking tourism businesses. Technically, the site uses modern frameworks and CMS (Contao) but critically lacks a valid SSL/TLS certificate, exposing it to security risks and undermining user trust. Security headers are properly configured, but the absence of HTTPS significantly lowers the security posture. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Contact information is transparent and accessible, supporting business credibility. Overall, the site demonstrates strong business maturity and digital presence but requires urgent security improvements to protect users and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Arthur Hunt is a French-based human resources consulting firm specializing in executive search, HR strategy consulting, transition management, and talent development across France and Europe. The company positions itself as a medium-sized, established player with a professional and consistent brand presence. The website is built on WordPress using the Divi theme and incorporates modern plugins for multilingual support and user experience enhancements. However, the technical infrastructure lacks a valid SSL certificate and does not support modern TLS protocols, which poses a significant security risk. The site includes GDPR-compliant cookie consent mechanisms and clear contact information but lacks explicit security policies or incident response details. Overall, the business is credible and professionally presented, but the absence of HTTPS critically impacts the security posture.

M

MERKUR GAMING

merkur-gaming.com

0

MERKUR GAMING is an international sales and development brand under the German-based Gauselmann Group, specializing in gaming machines, linked progressive jackpots, and related gaming products. The website targets B2B clients in the gaming industry, offering a portfolio of games, cabinets, and linked solutions. The company maintains a consistent and professional brand presence with active social media channels and a corporate website featuring product showcases and news updates. Technically, the website uses a traditional Apache server with a variety of JavaScript libraries including jQuery and Bootstrap, and integrates a Usercentrics consent management platform along with Matomo analytics for privacy-conscious tracking. However, the site lacks HTTPS encryption, which is a critical security vulnerability. Security headers are partially implemented, but the absence of SSL/TLS severely impacts the security posture. Privacy compliance is supported by a cookie consent mechanism and a basic privacy policy, though no explicit security or incident response policies are found. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

S

SVD Büromanagement GmbH

svdgmbh.at

0

SVD Büromanagement GmbH is a medium-sized Austrian company specializing in providing comprehensive management and support services across multiple sectors including construction, procurement, IT, facility management, printing, information security, payroll, and legal services. The company primarily serves government and social insurance institutions, positioning itself as a key regional player with a strong focus on public sector needs. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience of government agencies, suppliers, and job seekers. Technically, the site employs modern JavaScript libraries such as jQuery 3.6.0 and Jakarta Faces framework, hosted on Apache servers with a CMS likely based on Gentics. However, performance is slow and SSL/TLS security is critically lacking due to an invalid or missing certificate and disabled TLS protocols. Security headers are present but insufficient to compensate for the lack of HTTPS, resulting in a low security posture score. Privacy compliance is strong with comprehensive privacy and cookie policies and an active consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and build trust.

E

EBNER Industrieofenbau GmbH

ebner.cc

0

EBNER Industrieofenbau GmbH is a well-established global leader in manufacturing heat treatment furnace facilities for the steel, aluminum, and copper base metal industries. The company is family-owned, founded in 1948, and headquartered in Austria. Their website reflects a mature digital presence with multilingual support, professional content, and clear business information targeting industrial B2B customers. Technically, the site runs on WordPress with modern plugins and Cloudflare CDN, but suffers from critical SSL/TLS misconfiguration, lacking a valid HTTPS certificate and modern protocol support, which severely impacts security posture. Privacy compliance is well addressed with GDPR cookie consent and a comprehensive privacy policy. However, no explicit security policy or incident response information is publicly available, which could be improved to enhance trust. Overall, the site is professional and credible but requires urgent security upgrades to protect visitors and maintain reputation.

IMAS International is a mature Polish market research company established in 1998, specializing in quantitative and qualitative research services including internet-based CAWI studies, CATI telephone surveys, and ethnographic research. The company targets businesses and organizations seeking data-driven insights to support decision-making. Their website reflects a professional presence with consistent branding and good content quality, offering reports, publications, and a panel internetowy service. Technically, the site is built on WordPress with common plugins for forms, slideshows, and marketing integrations such as Mailmunch and Jetpack. However, the site lacks HTTPS support, which is a significant security concern. No privacy or cookie policies are found, and contact information is limited to forms without explicit emails or phone numbers. Security posture is weak due to missing SSL/TLS and security headers, though no active vulnerabilities or malware are detected. Overall, the website is functional but requires urgent improvements in security and privacy compliance to enhance trust and protect user data.