Security Directory

C

COLOP Stempelerzeugung Skopek Gesellschaft m.b.H. & Co. KG

colop.com

0

COLOP Stempelerzeugung Skopek Gesellschaft m.b.H. & Co. KG is a well-established Austrian manufacturer specializing in stamps and marking solutions with a global footprint. Founded in 1981, the company operates multiple subsidiaries worldwide and offers a broad range of products including traditional stamps, mobile printing devices, and creative arts and crafts stamps. Their business model combines manufacturing with e-commerce and partner distribution, targeting both professional and creative markets. The website reflects a professional and comprehensive digital presence with strong branding and content quality.

D

DHK

dhk.be

0

DHK is a Belgian company specializing in aluminum and composite building materials, offering a range of products including aluminum profiles, pergolas, carports, and custom folded sheet metal work. The company targets both professional and private customers in the construction and renovation sectors, providing online configurators and a digital showroom to enhance customer experience. The website reflects a medium-sized business with a consistent brand presence and active social media engagement. Technically, the site is built on a Ruby on Rails framework, hosted on OVH infrastructure, and uses modern marketing tools such as Google Tag Manager and ActiveCampaign. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, exposing users to potential risks. Security headers are partially implemented but some important protections like X-XSS-Protection are disabled. Privacy and cookie policies exist but lack explicit consent mechanisms, which may impact GDPR compliance. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

N

Nixplay Frames | #1 Selling Digital Picture Frame | On Sale

nixplay.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 22 security findings identified across all modules.

The website espon.eu is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any substantive content. As a result, no business-related information, contact details, or policies are available for analysis. The site is protected by Cloudflare, but it lacks a valid SSL/TLS certificate, which is a critical security deficiency. DNS records are properly configured with multiple A and AAAA records, MX records pointing to Outlook protection, and a valid SPF record, indicating a legitimate email setup. However, the absence of DNSSEC and CAA records slightly reduces trust. Overall, the website's security posture is weak due to missing HTTPS and modern TLS protocols, and the lack of visible privacy or cookie policies indicates poor compliance with data protection standards. The site’s technical infrastructure relies on Cloudflare for hosting and security, but the current blocking status severely limits usability and trust.

The website at discovery.com currently presents only a minimal 'Not found' page with no accessible content, metadata, or business information. The domain is registered and hosted on Amazon AWS infrastructure, but the lack of valid SSL/TLS configuration and absence of HTTPS severely undermines the site's security posture. No privacy, cookie, or terms of service policies are present, and no contact or social media information is available, indicating the site is either under construction or improperly configured. From a technical perspective, the site suffers from very slow load times despite minimal content, no modern web technologies detected, and no SEO or accessibility features implemented. Security best practices are absent, with no security headers, no HSTS, and no certificate transparency compliance. The DNS setup appears legitimate with multiple MX and NS records, but the invalid SSL certificate and lack of HTTPS are critical vulnerabilities. Overall, the site is not currently functional or trustworthy for users or business partners. The absence of content and security controls poses significant risks and undermines credibility. Immediate remediation is required to install a valid SSL certificate, enable HTTPS, and deploy basic website content and policies to establish trust and compliance.

C

Welcome to Constantia Flexibles

cflex.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 27 security findings identified across all modules.

I

Istmobil

istmobil.at

0

Istmobil.at is an independent informational website focused on providing detailed reviews, guides, and affiliate referrals related to mobile casinos and online gambling targeted at Austrian players. The site offers comprehensive content on casino apps, bonuses, payment methods, and gaming options, positioning itself as a niche media player in the online gambling affiliate space. Technically, the site is hosted behind Cloudflare and uses standard web technologies including HTML5, CSS3, and JavaScript, with Google Fonts for typography. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. This significantly impacts the site's security posture and user trust. Privacy compliance is minimal, with no visible cookie consent mechanism and only basic privacy and terms of service pages linked in the footer. The site uses Matomo analytics and affiliate marketing links to partner casino domains. Overall, while content quality and business credibility are moderate to good, the lack of HTTPS and modern security practices present a major risk. Strategic improvements in security and privacy compliance are essential to enhance trust and protect users.

T

Therefore Corporation

therefore.net

0

Therefore Corporation operates a comprehensive information management platform targeting businesses across multiple industries. The company positions itself as a market leader in ECM and workflow automation, offering a wide range of software solutions designed to improve document management, workflow digitization, and data accessibility. Their website reflects a mature digital presence with professional design, rich content, and clear navigation. Technically, the site is built on WordPress with modern optimization plugins and uses Google Tag Manager for analytics. However, the absence of a valid SSL certificate is a significant security gap, undermining the otherwise strong security headers and policies. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the business credibility is high, supported by certifications, partner relationships, and extensive case studies.

T

twinformatics GmbH

twinformatics.at

0

twinformatics GmbH is a medium-sized Austrian IT service provider specializing in software development and operation for major insurance companies such as Wiener Städtische Versicherung AG and Vienna Insurance Group. The company positions itself as a strong IT partner with end-to-end responsibility for innovative software solutions trusted by thousands of users. The website is professionally designed, primarily in German, targeting IT professionals and potential employees. Technically, the site runs on WordPress with modern PHP and uses several plugins for enhanced functionality. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, despite the presence of HSTS headers. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. The security posture is basic and requires immediate improvements in SSL/TLS configuration and vulnerability disclosure practices. Overall, the website reflects a credible and professional business but needs technical security enhancements to align with best practices.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Emerson Electric Co.

flexim.com

0

The website flexim.com serves as a comprehensive brand page for Flexim, a division of Emerson Electric Co., specializing in non-intrusive, clamp-on ultrasonic flow meters for liquids, gases, and steam. The site positions Flexim as an industry leader with a strong focus on industrial and energy sectors, offering a wide range of products, services, and customer support resources. The content is rich, professionally designed, and well-structured, targeting industrial customers and professionals seeking advanced flow measurement solutions. Technically, the site employs modern web technologies including Bootstrap, Google Tag Manager, and Visual Website Optimizer, hosted behind Cloudflare for performance and security. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, significantly impacting the site's security posture. Privacy and compliance measures are well addressed with clear privacy and cookie policies, and incident response channels are available. Overall, the site demonstrates high business credibility and digital maturity but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions and maintain trust.

P

PXP Financial

pxpfinancial.com

0

PXP Financial is a UK-based payment technology company offering a unified commerce platform that simplifies global payments and commerce operations. The company targets a broad range of industries including retail, hospitality, gaming, and travel, providing services such as point of sale, eCommerce, acquiring, and cross-border payments. Their platform emphasizes intelligent payment routing, real-time business intelligence, and self-service capabilities, positioning them as a modern and innovative player in the payment solutions market. Technically, the website is built on HubSpot CMS with integrations of popular marketing and analytics tools such as Google Analytics, Hotjar, and Cookiebot for privacy compliance. However, the security posture is weakened by the absence of a valid SSL certificate and lack of modern TLS protocol support, which is a critical issue for a financial services provider. The domain registration is consistent and mature, registered with a reputable UK registrar, and the business is FCA authorized, enhancing credibility. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS security to meet industry standards and protect user data.

Genuine Parts Company is a well-established global leader in the distribution of automotive and industrial replacement parts, founded in 1928. The company operates extensively across North America, Europe, and Australasia with a large workforce and numerous locations. Their business model focuses on providing quality parts and value-added solutions through a network of subsidiaries and partner brands such as NAPA and Motion. The website reflects a mature corporate presence with investor relations, sustainability reporting, and career opportunities prominently featured. Technically, the site is built on WordPress with common libraries and frameworks, and is hosted behind Cloudflare. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy compliance is addressed through a OneTrust cookie consent mechanism and a comprehensive privacy policy, but no explicit terms of service or security policies are found. Overall, the site is professional and content-rich but requires urgent security improvements to meet modern standards.

Ö

Österreichische Gesundheitskasse

ooegkk.at

0

The Österreichische Gesundheitskasse (ÖGK) operates as a major public health insurance provider in Austria, delivering comprehensive health insurance services and support to insured individuals, employers, and contract partners. The website serves as an official portal offering information, appointment scheduling, customer service, and career opportunities, targeting Austrian residents and stakeholders in the healthcare sector. The digital presence is supported by a modern technology stack including Apache, Jakarta Faces, and jQuery, managed via a Gentics CMS platform, and hosted within the Austrian social insurance infrastructure. Despite a professional and content-rich website, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. The site implements a strong Content Security Policy and cookie consent mechanisms, reflecting good privacy compliance, but the lack of HTTPS and TLS protocols is a critical vulnerability. Social media integration and clear contact information enhance trust and user engagement. Overall, the website is functional and credible but requires urgent security improvements to protect user data and comply with modern standards.

C

Campaigning Bureau

campaigning-bureau.com

0

Campaigning Bureau is a well-established political campaigning agency based in Austria with offices in Vienna and Berlin. They specialize in movement campaigning, political communication, stakeholder mobilization, and ESG communication, serving political actors, companies, NGOs, and organizations. The company holds a strong market position in Europe, supported by international awards and recognition as a top employer. Technically, the website employs modern tracking and consent management tools such as Google Tag Manager and Truendo CMP, but suffers from slow load times and lacks a valid SSL certificate, which impacts security and user trust. The security posture is basic with no HTTPS and missing security headers, representing a critical vulnerability. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies. Contact information is transparent and complete, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and improve trust.

D

Dorotheum GmbH & Co KG

dorotheum.com

0

Dorotheum GmbH & Co KG operates the largest auction house in Central Europe, specializing in art, antiques, jewelry, and collectibles with over 300 years of experience. The company holds numerous auctions annually, both online and in physical salerooms, and offers additional services such as private sales and expert consultations. The website is professionally designed, content-rich, and targets collectors, buyers, and sellers in the art and luxury goods market primarily in Austria and surrounding regions. Technically, the site is built on TYPO3 CMS with modern frontend libraries and integrates analytics and marketing tools like Google Tag Manager and Facebook Pixel. However, the absence of a valid SSL certificate and lack of security headers represent significant security weaknesses. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Overall, the site demonstrates strong business credibility but requires urgent improvements in security posture to protect user data and enhance trust.

E

Ecker & Partner

eup.at

0

Ecker & Partner is a well-established PR and Public Affairs agency based in Vienna, Austria, offering a broad range of communication services including crisis communication, litigation PR, digital content, and storytelling. The company positions itself as a leading agency in its sector with a strong network and long-standing client relationships. Technically, the website is built on WordPress with common marketing and analytics integrations but suffers from a critical lack of a valid SSL certificate, resulting in insecure HTTP connections. The site is content-rich and professionally designed but experiences slow load times and lacks some security best practices. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy page. Overall, the business credibility is high, but the security posture requires urgent improvement to protect user data and trust.

Bühler Group is a well-established enterprise specializing in manufacturing and technology solutions primarily for the food processing and advanced materials industries. The company offers a broad portfolio of industrial solutions, including extrusion, milling, and process technologies, supported by global services such as maintenance, expert consulting, and training centers. Their website reflects a mature digital presence with consistent branding and comprehensive corporate governance information. Technically, the site is built on Adobe Experience Manager and hosted on AWS infrastructure with CloudFront CDN, leveraging modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms on forms. Overall, Bühler Group's website demonstrates strong business credibility and content quality but requires urgent improvements in SSL/TLS security to protect user data and enhance trust.

Irish Bank Resolution Corporation Limited (IBRC) is a financial institution currently in special liquidation, managing the orderly conclusion of its liquidation process. The website serves primarily as an informational portal to communicate the status of the liquidation, provide contact details, and notify stakeholders about deadlines for deeds of release and edischarges. The business operates under the supervision of the Central Bank of Ireland and is a successor to Irish Nationwide Building Society and Anglo Irish Bank Corporation Limited. The target audience includes creditors, impacted customers, and parties requiring documentation related to the liquidation. Technically, the website is built on Microsoft IIS with ASP.NET and uses Google Analytics for tracking. The hosting IP suggests Amazon AWS infrastructure. However, the site lacks a valid SSL/TLS certificate, serving content over HTTP only, which significantly impacts security posture. The site has basic design and content quality, reflecting its winding-down status, with limited interactivity and no forms. SEO and accessibility features are minimal. From a security perspective, the absence of HTTPS and security headers, lack of DNSSEC and CAA records, and no vulnerability disclosure policy indicate a low security maturity level. While no active vulnerabilities or malware were detected, the site is exposed to risks due to missing encryption and security best practices. Privacy compliance is partial, with a data protection notice available but no cookie consent mechanism despite use of Google Analytics. Overall, the website presents moderate business credibility but suffers from critical security shortcomings. Strategic improvements in SSL implementation, security headers, and privacy compliance are recommended to enhance trust and protect visitors. Given the nature of the business in liquidation, the website's limited functionality and content are understandable but should still meet basic security standards.

A

Amiblu Group

amiblu.com

0

Amiblu Group operates as the world's largest producer and technology partner for GRP (glass-fiber reinforced plastics) pipe systems, focusing on sustainable water infrastructure solutions. The company targets urban and rural communities, industries, and infrastructure planners, offering a broad portfolio of pipe products, technical documentation, and reference databases. Their market position is strong, supported by certifications such as EcoVadis and partnerships like the UNESCO World Engineering Day 2025. The website reflects a mature, well-established business with a professional and consistent brand presence. Technically, the website is built on WordPress with a modern tech stack including caching and multilingual support. However, performance is moderate and accessibility is basic. The site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are minimal, and no advanced security policies are implemented. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to potential risks. No incident response or security policy information is publicly available. The domain registration is consistent and mature, supporting the legitimacy of the business. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and enhance trust.

W

Wiener Privatbank

wienerprivatbank.com

0

Wiener Privatbank is a medium-sized Austrian private bank specializing in wealth and asset management, capital market investments, and real estate. The bank emphasizes personalized service, crisis-proof investment strategies, and trusted FATCA solutions. The website is built on a modern CMS platform (Craft CMS) with SEOmatic for SEO optimization and includes rich content and clear navigation targeting private banking clients and investors. However, the absence of a valid SSL certificate and HTTPS support is a critical security vulnerability that undermines user trust and data protection. While privacy policies are present and GDPR compliance appears addressed, no cookie consent mechanism or terms of service were found. Social media presence on Facebook, LinkedIn, and YouTube supports brand visibility. Overall, the website demonstrates good business credibility and content quality but requires urgent security improvements to protect users and enhance trust.

T

TeCoB GmbH

tecob.at

0

TeCoB GmbH's website is currently under construction and provides minimal information about the company or its services. The site uses WordPress with an under construction plugin and basic frontend technologies such as Bootstrap and Font Awesome. The domain is registered in Austria and DNS records are properly configured, including MX records pointing to Outlook mail protection. However, the website lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security and trust. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available, limiting user engagement and compliance with data protection regulations. Performance is poor with a very slow load time, and no analytics or tracking technologies are detected.

The website proz.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any substantive content, including business information, policies, or contact details. The domain is registered and uses Cloudflare for DNS and security, with email services routed through Google and marketing integrations via HubSpot and SendGrid. However, the SSL/TLS configuration is invalid or missing, which is a critical security concern. No privacy or cookie policies are detectable, and no contact information is available on the challenge page. Overall, the site’s security posture is limited by the lack of valid HTTPS and the blocking of content by the WAF, resulting in a low trust and usability score.

W

Werner Mertz Professional

wmprof.com

0

Werner Mertz Professional is a medium-sized manufacturing company specializing in high-performance hygiene solutions for professional cleaning markets. With over 50 years of history and a strong commitment to sustainability, the company operates under well-known brands such as Green Care Professional and Tana Professional. The website reflects a mature digital presence with comprehensive content, professional design, and strong SEO practices. However, the lack of a valid SSL certificate and proper HTTPS configuration represents a significant security risk that undermines user trust and data protection. The company has implemented cookie consent mechanisms and privacy policies compliant with GDPR, indicating awareness of privacy regulations. Overall, the business is credible and well-positioned in its sector but must urgently address its security posture to meet modern standards.

A

AirBerlin PLC & Co. Luftverkehrs KG

airberlin.com

0

The website for airberlin.com currently serves as a minimal placeholder 'Coming Soon' page referencing insolvency information for AirBerlin PLC & Co. Luftverkehrs KG, a former airline company. The site lacks substantive business content, contact information, and user engagement features, reflecting the company's insolvency status and inactive operations. Technically, the site uses Tailwind CSS for styling and is hosted on Hetzner infrastructure, but suffers from poor performance with a high load time and lacks modern web optimizations. Critically, the site does not have a valid SSL certificate and is served over HTTP only, exposing users to security risks. No privacy, cookie, or terms of service policies are present, and no contact or social media links are provided, limiting transparency and user trust. Overall, the website's security posture is weak, with no HTTPS, no security headers, and no advanced DNS security features enabled.

R

Rosenfelt & West Engineering A/S

rwe.dk

0

Rosenfelt & West Engineering A/S is a Danish engineering company specializing in railway safety systems, including automatic secured level crossings and marshalling yard safety installations. The company offers comprehensive services such as equipment renovation, training courses, and career opportunities within the railway safety sector. Their market position is supported by certifications in environmental management, quality management, and railway safety standards, reflecting a commitment to reliability and compliance. Technically, the website is built on WordPress with common plugins and hosted on a LiteSpeed server, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS and related security headers exposes the site and its visitors to potential risks. Privacy compliance is partial, with a privacy policy present but no cookie policy or consent mechanism detected. Contact information is limited to a phone number and contact page link, with no email addresses or social media profiles found. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and enhance trust.

S

Stefanel

stefanel.com

0

Stefanel is a European retail and e-commerce brand specializing in women's fashion, operating a multi-country website with localized country selectors. The business targets European consumers seeking stylish women's clothing. The website is built on the Salesforce Commerce Cloud (Demandware) platform and uses various marketing and analytics tools including Google Tag Manager, CQuotient, and LiveStory. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security flaw. Privacy compliance is partially addressed with a OneTrust cookie consent mechanism, but no privacy policy or terms of service are found on the splash page. Contact information is also absent, limiting user trust and support options.

The website kainhofer.eu is currently inaccessible due to an HTTP 403 Forbidden error, indicating that access to the content is denied. The domain is registered with IONOS SE, a reputable registrar and hosting provider, and DNS records are properly configured. However, the lack of a valid SSL/TLS certificate and absence of HTTPS support significantly reduce the security posture of the site. No business or contact information, privacy policies, or terms of service are available on the site, limiting the ability to assess the company's operations or compliance status. The website performance is poor with a very slow load time despite minimal content, and no modern web technologies or analytics tools are detected.

Stellantis NV operates a comprehensive global website representing one of the world's largest automotive groups with a portfolio of 14 iconic brands and mobility services. The site targets industry stakeholders, investors, customers, and the general public, providing rich content including press releases, investor relations, sustainability initiatives, and innovation highlights. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries like jQuery, and performance monitoring tools such as Boomerang, hosted on Microsoft Azure with Akamai CDN integration. While the website demonstrates excellent design quality, mobile optimization, and SEO practices, it critically lacks a valid SSL certificate and HTTPS support, severely impacting its security posture. Security headers are partially implemented but insufficient without TLS encryption. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is strong with consistent branding and comprehensive content. Overall, the site scores moderately due to the critical absence of HTTPS, which should be prioritized to protect user data and maintain trust.

H

HAKOM Time Series GmbH

hakom.at

0

HAKOM Time Series GmbH is a medium-sized Austrian company specializing in time series management software and cloud services for the energy sector. The company positions itself as a technology leader with over 30 years of experience, offering both on-premises and cloud-based solutions under the PowerTSM® brand. Their website reflects a professional and comprehensive digital presence, targeting energy industry professionals and IT developers with detailed product information, news, webinars, and customer success stories. The company maintains active engagement through social media and newsletter subscriptions. Technically, the website is built on TYPO3 CMS and uses modern web technologies including jQuery and Swiper.js for interactive content. The hosting provider is identified as Web-Crossing. While the site is mobile-optimized and SEO-friendly with proper metadata and structured data, performance metrics are not explicitly available. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy in German. From a security perspective, the site lacks a valid SSL/TLS certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Security headers such as HSTS and CSP are present but cannot compensate for the missing HTTPS encryption. No explicit security policy or incident response information is found, which could be improved to enhance transparency and trust. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS configuration to meet modern security standards and protect user data effectively. Strategic recommendations include obtaining a valid SSL certificate, enabling TLS 1.2/1.3, and enhancing security policies and incident response disclosures.

B

BFI Salzburg BildungsGmbH

bfi-sbg.at

0

BFI Salzburg BildungsGmbH is a prominent educational institution in Salzburg, Austria, offering a wide range of courses, certifications, and educational services targeting individuals and companies seeking professional development. The website demonstrates a comprehensive and well-structured presentation of their offerings, including course programs, school qualifications, health and nursing professions, and corporate services. The digital infrastructure is built on Pimcore CMS and served via nginx, with Matomo analytics implemented for privacy-conscious user tracking. However, the absence of a valid SSL/TLS certificate and HTTPS significantly undermines the site's security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements.

N

NGS Global

ngs-global.com

0

NGS Global is a partner-led executive search and leadership advisory firm with a global presence spanning the Americas, Europe, Asia Pacific, Africa, and the Middle East. The company offers personalized executive search services leveraging a mid-sized platform that combines the resources of major global firms with high-touch client service. Their key services include executive search, leadership consulting, and industry-specific expertise across multiple sectors. Technically, the website is built on Joomla CMS with modern JavaScript libraries and frameworks such as jQuery and Bootstrap, but suffers from a lack of HTTPS support due to an invalid or missing SSL certificate, which significantly impacts security posture. The site implements cookie consent via Cookiebot and uses Google Analytics and ZoomInfo for tracking, indicating moderate digital maturity. Security headers are partially implemented, but critical vulnerabilities exist due to the absence of SSL/TLS encryption. Overall, the website presents professional content and a clear business model but requires urgent security improvements to protect user data and enhance trust.

T

TEUFELBERGER Ges.m.b.H.

teufelberger.com

0

TEUFELBERGER Ges.m.b.H. is a family-owned, international manufacturing group specializing in fiber ropes, steel wire ropes, and strapping solutions. The company serves industrial sectors including construction, marine, mining, forestry, and safety equipment, positioning itself as a diversified leader in rope manufacturing. Their website reflects a comprehensive product catalog and detailed service offerings, targeting industrial clients globally. Technically, the website is built on Magento Commerce with modern JavaScript libraries and marketing tools such as Google Tag Manager and MailerLite, indicating a mature digital infrastructure. However, performance metrics are lacking, and the site currently lacks a valid SSL certificate, which is a critical security deficiency. Security headers are present but the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance indicators are evident. Contact information is transparent and includes physical address, phone numbers, and company emails, enhancing business credibility. Overall, while the business and content quality are strong, urgent improvements in SSL/TLS configuration and security practices are recommended to protect user data and improve trust.

Heidelberger Druckmaschinen AG (HEIDELBERG) is a globally recognized leader in the manufacturing and supply of printing and packaging solutions, including offset and digital printing technologies, post-press packaging machines, and related software and services. The company targets commercial, packaging, and label printing companies worldwide, positioning itself as a market leader with a comprehensive product and service portfolio. The website reflects a mature digital presence with rich content, clear navigation, and strong branding, supporting its enterprise-level stature. Technically, the site uses modern web technologies and tracking tools but lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security gap. Security headers are present but ineffective without SSL, and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism despite tracking scripts. WHOIS data confirms domain legitimacy and consistency with the company’s identity. Overall, the site is professional and trustworthy but requires urgent security improvements to meet modern standards.

B

BBMRI-ERIC

bbmri-eric.eu

0

BBMRI-ERIC is a European research infrastructure focused on biobanking and biomolecular resources, supporting researchers in health and life sciences to find new treatments. Established in 2013 and headquartered in Graz, Austria, it provides a range of services including a directory of biobank metadata, federated platforms for privacy-preserving data queries, and quality management. The website reflects a mature organization with consistent branding and professional content aimed at the scientific community. Technically, the site is built on WordPress with a variety of plugins supporting SEO, newsletter management, and social media integration. However, the site lacks HTTPS and a valid SSL certificate, which is a critical security vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy but requires urgent security improvements to protect user data and maintain credibility.

M

Microlife AG

microlife.ch

0

Microlife AG is a well-established Swiss company specializing in the development and production of medical diagnostic devices such as blood pressure monitors, thermometers, and respiratory therapy equipment. The company holds a strong market position as a world leader in healthcare technology, targeting both home users and healthcare institutions. Their website reflects a professional and consistent brand image with multilingual support and a comprehensive product portfolio. Technically, the website uses modern JavaScript and tracking tools but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS undermines user trust and exposes data to interception risks. Privacy compliance is well addressed with a cookie consent mechanism and clear privacy policies. However, no explicit security or incident response policies are publicly available. Overall, the site is functional and informative but requires urgent security improvements to align with best practices and user expectations.

F

Fenster. Türen. KATZBECK.

katzbeck.at

0

KATZBECK FensterGmbH Austria is a well-established manufacturer specializing in high-quality, custom windows and doors produced exclusively in Austria since 1950. The company emphasizes sustainability, regional production, and premium craftsmanship, targeting both end consumers and professional partners within Austria. Their website reflects a mature digital presence built on WordPress with the Divi theme, incorporating modern web technologies and user-friendly design. However, a critical security gap exists due to the absence of an SSL/TLS certificate, exposing users to potential risks. The site implements GDPR-compliant privacy and cookie policies, with clear contact channels and a professional content structure. To enhance trust and security, immediate implementation of HTTPS and additional security headers is recommended.

The website raye7.com currently serves as a minimal placeholder with no substantive content beyond a client-side redirect to a /lander path. There is no visible business information, metadata, or user-facing content to analyze. The domain is registered and active but lacks a valid SSL certificate, resulting in no HTTPS support and a poor security posture. DNS records are basic with no DNSSEC or CAA records, and MX records point to smtp.google.com, which may be a misconfiguration. Overall, the site appears to be under development or inactive. From a technical perspective, the infrastructure is minimal with hosting likely on Amazon AWS based on IP addresses. No modern web technologies, frameworks, or CMS platforms are detected. Performance metrics are unavailable due to lack of content. Security best practices are not implemented, with no security headers, no HSTS, and no certificate transparency compliance. Security posture is weak, with critical issues including lack of HTTPS and absence of security policies or headers. No privacy or cookie policies are present, indicating non-compliance with GDPR or other privacy regulations. No contact or business information is available, limiting trust and credibility. Given these factors, the overall risk is elevated due to lack of security controls and transparency. Strategic recommendations include immediate implementation of HTTPS, deployment of security headers, addition of privacy and cookie policies, and publication of business and contact information to improve trust and compliance.

H

Hair & Makeup by Lois Poulsen

hairandmakeup.com.au

0

Hair & Makeup by Lois Poulsen is a small Australian business specializing in professional hair and makeup services primarily for weddings, formals, special events, and photo shoots in the Brisbane and Gold Coast regions. The website presents a clear business focus with detailed service descriptions and customer testimonials, targeting individuals seeking mobile and venue-based beauty services. The technical infrastructure is based on Joomla CMS with modern frontend libraries such as Bootstrap and jQuery, hosted on a LiteSpeed server. However, the website lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security and trustworthiness. Security headers are minimal, and no advanced security or privacy policies are present. The absence of privacy and cookie policies indicates non-compliance with GDPR and related regulations. Overall, the site is functional and professionally presented but requires urgent security and compliance improvements.

H

HANRO

hanro.com

0

HANRO is a well-established luxury brand specializing in premium underwear, nightwear, and loungewear for both women and men, with a history dating back to 1884. The company operates a global retail and e-commerce presence, offering high-quality products certified by OEKO-TEX standards and emphasizing sustainable European production. Technically, the website is built on Magento 2 and uses modern marketing and consent management tools, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security flaw. Privacy compliance is strong with clear policies and consent mechanisms. Security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Overall, the site is professional and trustworthy but urgently needs to address its SSL and security header deficiencies to improve user trust and security.

E

Englisch Dekor

englisch.at

0

Englisch Dekor is a well-established Austrian company specializing in the manufacturing and supply of flame-retardant furniture fabrics, curtains, and decorative textiles primarily for the hospitality, gastronomy, and healthcare sectors. With a history dating back to 1866, the company holds a leading position in the European market, offering a wide range of functional and sustainable textile solutions. Their business model focuses on B2B sales supported by a comprehensive global network of sales representatives and an online webshop. Technically, the website is built on TYPO3 CMS and hosted on Apache servers managed by internex.at. The site features modern interactive elements such as global contact maps and language selection, with good mobile optimization and accessibility. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. While several security headers are present, the absence of HTTPS significantly impacts the overall security posture. The site implements a cookie consent mechanism with detailed cookie information, indicating good privacy compliance. Contact information is comprehensive and includes multiple regional sales contacts. Overall, the website is professionally designed and content-rich, reflecting a mature business with strong market presence. However, the lack of proper SSL/TLS configuration poses a significant risk that should be addressed promptly to ensure secure communications and maintain trust.

M

Melitta

melitta.com

0

Melitta is a well-established company specializing in coffee products and related services, operating a professional website that serves both consumers and B2B partners. The site provides comprehensive information about the company, its sustainability initiatives, and customer service options, supported by a consistent brand presence and active social media engagement. The technical infrastructure leverages modern JavaScript libraries, Google Analytics, and Cloudflare CDN services, with good mobile optimization and accessibility features implemented via a third-party widget. However, the website's security posture is weakened by an invalid SSL certificate and lack of enabled TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is functional and professional but requires urgent remediation of SSL and TLS issues to improve security and trustworthiness.

A

American Austrian Foundation

aaf-online.org

0

The American Austrian Foundation is a well-established non-profit organization dedicated to fostering knowledge transfer and experience exchange in medicine, culture, and media through fellowship programs and bilateral exchanges. The website reflects a professional and consistent brand with clear program offerings and international reach. Technically, the site is built on WordPress with Elementor and uses modern web technologies, but suffers from a critical lack of HTTPS, which undermines security and user trust. The security posture is weak due to the absence of a valid SSL certificate and missing security headers, although no major vulnerabilities were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Business credibility is strong, supported by trust badges and consistent WHOIS data. Overall, the site is functional and informative but requires urgent security improvements to protect users and enhance trust.

R

Research Industrial Systems Engineering (RISE)

rise-world.com

0

Research Industrial Systems Engineering (RISE) is a well-established independent IT service provider and system integrator based in Austria, with a strong European presence and multiple offices across Europe. The company specializes in planning and implementing large-scale IT systems, offering a broad range of engineering, operational, and research services. Their key markets include energy, transportation, banking, healthcare, telecommunications, and government sectors. RISE emphasizes 100% European value creation and maintains a large team of highly qualified technical experts. Technically, the website uses modern frameworks and libraries such as Bootstrap, jQuery, GSAP, Swiper, and Lottie Player, and employs Matomo for analytics, indicating a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines the overall security posture. Security headers are present but cannot compensate for the lack of encryption. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent improvements in security to protect users and data.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Julius Meinl is a well-established premium coffee and tea company with a rich heritage dating back to 1862. The company operates globally, targeting both business customers such as coffee houses, hotels, and restaurants, as well as home consumers. Their offerings include high-quality coffee and tea products, professional equipment, and tailored services including training. The website reflects a strong brand identity consistent with their market position as a premium hospitality supplier. Technically, the site is built on Microsoft IIS with ASP.NET and Kentico CMS, hosted on Azure, and integrates modern analytics and marketing tools. However, the site suffers from a critical security issue due to an invalid SSL certificate, resulting in no HTTPS availability, which significantly impacts user trust and security posture. Privacy compliance is partial, with no visible cookie consent mechanism despite tracking scripts. Contact information is primarily via forms and social media, with no explicit emails or phone numbers published. Overall, the site is professional and content-rich but requires urgent security improvements.

V

Virtual Identity AG

virtual-identity.com

0

Virtual Identity AG is a well-established digital agency founded in 1999, specializing in AI integration, UX design, software engineering, and digital marketing services. The company targets businesses aiming for digital transformation and human-centered business growth. Their market position is strong, supported by a reputable client portfolio and consistent branding. Technically, the website is built on WordPress, hosted on AWS CloudFront, and uses modern JavaScript libraries and SEO tools, though performance is moderate. Security posture is currently weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent security improvements to meet modern standards.

B

Breitenfeld Edelstahl AG

breitenfeld.at

0

Breitenfeld Edelstahl AG is a well-established Austrian manufacturer specializing in high-quality stainless steel and forged products, serving metal processing companies primarily in the manufacturing, energy, and transportation sectors. The company emphasizes environmentally friendly steel production using electric steelmaking processes and holds recognized certifications such as EN 9100, ISO 9001, and ISO 14001. Their digital presence is built on the HubSpot CMS platform, leveraging Cloudflare for hosting and content delivery. While the website is professionally designed with good content quality and navigation, there is a critical security gap due to the absence of a valid SSL certificate and HTTPS enforcement, which poses risks to user data confidentiality and trust. Privacy compliance is basic, with no visible cookie consent mechanisms or detailed privacy policies on the main site. Overall, the business credibility is high, supported by certifications and a consistent brand presence, but technical and security improvements are necessary to enhance trust and compliance.

A

AirPlus

airplus.com

0

AirPlus operates as a global enterprise specializing in corporate travel payment and expense management solutions. The company targets business travelers and corporate clients worldwide, offering localized website versions for multiple countries and languages. The business model focuses on B2B services within the transportation sector, positioning AirPlus as an established player in the corporate travel payment industry. Technically, the website is hosted on an Apache server with Akamai CDN support, utilizing JavaScript and Bootstrap frameworks for frontend presentation. While the site offers multilingual support and country-specific content, performance metrics are not provided, and the site shows basic mobile optimization and accessibility features. The technical stack is modern but lacks advanced CMS or platform indicators. From a security perspective, the website lacks a valid SSL certificate and does not enable any TLS protocols, which is a critical vulnerability. Although several security headers are present, some important protections like X-XSS-Protection are disabled, and HSTS is not fully configured. The site uses multiple external tracking and advertising services, leading to extensive user tracking without visible privacy or cookie policies, indicating poor privacy compliance. Overall, the website demonstrates moderate business credibility but suffers from significant security and privacy shortcomings. Strategic improvements in SSL/TLS configuration, privacy policy implementation, and security header enhancements are essential to reduce risk and improve trustworthiness.

Watts LLC is a well-established enterprise manufacturing and supplying plumbing, heating, water quality, drainage, and HVAC solutions globally. Founded in 1874 and headquartered in North Andover, Massachusetts, the company operates a broad portfolio of subsidiary brands and targets professionals and businesses in water technology sectors. The website reflects a mature digital presence with comprehensive content, strong branding consistency, and clear navigation tailored for a professional audience. Technically, the site leverages Sitecore CMS, Cloudflare hosting, and modern JavaScript libraries to deliver a good user experience with mobile optimization and accessibility features. However, the security posture is notably weak due to the absence of a valid SSL certificate and HTTPS support, which poses significant risks to user trust and data protection. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and credible but requires urgent security improvements to align with best practices.