Security Directory

E

Energieberatung Burgenland GmbH

eb-bgld.at

0

Energieberatung Burgenland GmbH operates a professional and product-neutral energy consulting service focused on the Burgenland region in Austria. The company provides free energy advice, funding guidance, and support for energy communities, targeting local residents and municipalities. The website is built on WordPress with caching and social media integration, delivering a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and basic headers but lacks advanced protections like HSTS and OCSP stapling. Privacy compliance is partial due to absence of cookie consent mechanisms despite usage of Google Tag Manager. Overall, the domain registration and DNS data align well with the business claims, indicating legitimacy and trustworthiness.

B

Burgenland Energie

burgenlandenergie.at

0

Burgenland Energie is a regional energy provider based in Austria, specializing in renewable energy solutions such as photovoltaic systems, battery storage, heat pumps, and e-mobility services. The company targets private customers and municipalities within the Burgenland region, emphasizing energy independence and sustainability. Their market position is that of a trusted regional leader in renewable energy, supported by a comprehensive portfolio of products and services tailored to modern energy needs. Technically, the website is built on modern frameworks including React and Next.js, hosted on AWS infrastructure with Amazon S3 and CloudFront for content delivery. The site demonstrates strong digital maturity with fast performance, mobile optimization, and good SEO practices. Integration with marketing and analytics tools like Google Tag Manager and Zoho CRM is implemented with user privacy in mind, including cookie consent mechanisms. From a security perspective, the site enforces HTTPS with a valid SSL certificate and uses AWS KMS for server-side encryption. OCSP stapling is enabled, but HTTP security headers like HSTS are not fully implemented, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are present and comprehensive, supporting GDPR compliance. Overall, the website presents a professional, trustworthy, and secure digital presence aligned with the company's business objectives. Strategic recommendations include enhancing HTTP security headers, continuous monitoring of third-party scripts, and maintaining strong privacy compliance to further strengthen user trust and security posture.

S

Storebrand Fonder AB (publ)

storebrandfonder.se

0

Storebrand Fonder AB (publ) operates a professional website focused on sustainable investment funds in Sweden, positioning itself as one of the largest fund companies after major banks. The site offers a broad range of funds with a strong emphasis on ESG criteria and low fees, targeting private and corporate investors. Technically, the website uses modern frameworks such as Blazor and integrates with Salesforce and various marketing and analytics tools, hosted on Microsoft Azure DNS infrastructure. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user consent mechanisms. Overall, the website is professionally designed and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

syncONE Solutions GmbH

sync-one.net

0

syncONE Solutions GmbH operates a professional website focused on providing software solutions for optimizing communication processes and people management within organizations. Their flagship product, syncONE®, offers modular tools including ticketing, training via Mobile Learning®, news distribution, chat, calendar, and resource management. The company targets businesses seeking to improve internal communication and employee engagement. The website is well-structured, content-rich, and professionally designed, reflecting a mature digital presence.

Ö

Österreichischer Skiverband

oesv.at

0

The Österreichischer Skiverband (Austrian Ski Federation) operates the website 'Ski Austria' as the national governing body for skiing and winter sports in Austria. The website serves as a comprehensive digital platform offering information about various skiing disciplines, events, athlete teams, membership services, and a merchandise shop. It targets skiing athletes, enthusiasts, members, and partners within Austria, positioning itself as a key authority in the winter sports sector. The business model is non-profit, focusing on promotion, organization, and support of skiing activities nationwide. Technically, the website is built on the Pimcore CMS platform, utilizing modern web technologies such as Bootstrap for responsive design, Swiper.js for sliders, and Cookiebot for cookie consent management. It integrates Google Tag Manager for analytics and AccessiWay for accessibility enhancements. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a professional and consistent branding approach. From a security perspective, the site uses HTTPS with a valid SSL certificate covering multiple related domains. However, it lacks enabled TLS protocols and OCSP stapling, which are recommended for stronger security. Security headers are present but could be enhanced. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website presents a high-quality, trustworthy, and professional online presence for the Austrian Ski Federation. Strategic recommendations include upgrading TLS protocols, enabling OCSP stapling, and enhancing cipher suites to improve security posture further. Maintaining transparency in privacy and security policies will support ongoing trust and compliance.

I

Inn-Taler GmbH

inn-taler.tirol

0

Inn-Taler GmbH operates a local gift voucher system for Innsbruck, Austria, offering both physical and digital vouchers redeemable at a network of local retail and hospitality partners. The website is professionally designed with clear navigation and content targeting local consumers and businesses. The technical infrastructure is based on WordPress with modern plugins and PHP 8.1.7, though SSL/TLS configuration could be improved for stronger security. The site implements GDPR-compliant privacy and cookie policies with user consent mechanisms and uses Google Analytics with IP anonymization. Security posture is adequate but could benefit from enhanced headers and modern TLS protocols. No direct contact emails or phone numbers are publicly listed, which may affect immediate customer support access. Overall, the site is trustworthy and well-positioned in its local market niche.

D

digital card solutions GmbH

erlebniscard.tirol

0

ErlebnisCard Tirol is a regional leisure service provider based in Tirol, Austria, offering a card that grants access to over 150 leisure experiences with a 1+1 free offer. The business targets families, couples, and friends seeking affordable cultural and recreational activities. The website is professionally designed using WordPress with a modern theme and SEO optimizations, providing a good user experience and clear navigation. Social media integration and a cookie consent mechanism demonstrate digital maturity and privacy awareness. Technically, the site uses PHP 8, nginx, and WordPress plugins such as Yoast SEO and Contact Form 7, hosted on a PleskLin environment. Security posture is adequate with HTTPS and no detected vulnerabilities, though improvements in security headers and HSTS are recommended. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. Overall, the site is trustworthy and professionally maintained, supporting the business's market position in the hospitality and tourism sector.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

D

Duftner und Partner

duftner.at

0

Duftner und Partner is a well-established Austrian company specializing in personnel management and recruitment services with over 25 years of experience. As part of the duftner.digital group, it leverages digital tools and processes to serve both companies seeking personnel and candidates looking for jobs. The website reflects a professional and consistent brand image, offering comprehensive services such as recruitment, management diagnostics, and personnel development. Technically, the site is built on WordPress with modern PHP and nginx infrastructure, optimized for performance and SEO. Security posture is adequate with HTTPS and TLS 1.2/1.3 support, though improvements like HSTS and additional security headers are recommended. Privacy compliance is strong, featuring GDPR-aligned cookie consent and privacy policies. Overall, the site presents a trustworthy and credible business presence in the Austrian HR consulting market.

PDW Logistik GmbH operates as a logistics and delivery service provider specializing in the distribution of print media within Austria. As part of the Mediaprintkonzern, it manages the home delivery of approximately 475,000 daily print media items and supports self-service sales through dedicated devices. The website targets print media distributors, delivery partners, and customers, emphasizing recruitment of delivery partners and service information. The business model focuses on logistics services within the media sector, positioning PDW as a key player in Austrian print media distribution. Technically, the website employs a traditional Apache server with a frontend built on Bootstrap 4.5.2, jQuery, and FontAwesome Pro. While the site is mobile optimized and uses modern libraries, it lacks HTTPS support, which is a significant security and trust concern. Performance metrics are unavailable or incomplete, but the site structure and navigation are clear and professional. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented via Didomi. From a security perspective, the absence of a valid SSL certificate and HTTPS support critically undermines the site's security posture. No advanced security headers or vulnerability disclosure policies are present. Cookies are set with HttpOnly flags, but the lack of encryption exposes users to potential risks. The domain registration data is consistent with the business identity, indicating legitimacy, but the security gaps pose risks to user trust and data protection. Overall, PDW Logistik GmbH's website is professionally designed and content-rich but requires urgent security improvements, particularly the implementation of HTTPS and enhanced security headers. Strengthening these areas will improve user trust, compliance, and overall digital maturity.

F

Frauenthal Handel Gruppe AG

frauenthal-service.at

0

Frauenthal Handel Gruppe AG is Austria's leading wholesaler in the sectors of sanitary, heating, installation technology, and electrical materials. The company operates multiple subsidiary brands including SHT, ÖAG, Kontinentale, and Elektromaterial.at, serving a broad target audience of installers, builders, architects, and municipalities. The website is professionally designed, content-rich, and well-branded, reflecting a mature digital presence. Technically, the site is built on WordPress with a modern PHP and Apache backend, but performance is moderate and security headers are minimal. SSL is enabled with TLS 1.2 and 1.3 support, though improvements such as HSTS and OCSP stapling are recommended. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Overall, the site demonstrates a solid business credibility and digital maturity, though security posture can be enhanced to reduce risk.

京

京东全球购

jd.hk

0

JD.hk operates as a major e-commerce platform specializing in cross-border and overseas shopping, targeting Chinese-speaking consumers interested in authentic global products. The platform offers a wide range of categories including mother and baby products, beauty, electronics, and luxury goods, supported by partnerships with well-known brands and stores such as Walmart and Rakuten. The website demonstrates a consistent brand presence aligned with JD.com's ecosystem, leveraging advanced front-end technologies and multiple JD.com subdomains for content delivery and user interaction. Technically, the site uses a modern JavaScript stack including jQuery, Sea.js, and JD's proprietary JMFE framework, but suffers from critical security shortcomings such as the absence of a valid SSL certificate and lack of modern TLS protocol support. Performance metrics are incomplete, and mobile optimization is basic with a redirect to a mobile subdomain. SEO and content quality are good, with clear navigation and rich product listings. From a security perspective, the lack of HTTPS and TLS support is a significant risk, exposing users to potential data interception. Security headers are minimal, and no incident response or vulnerability disclosure policies are evident. Privacy compliance is weak, with no cookie policy or consent mechanism detected, raising concerns about GDPR and other regulatory adherence. Overall, while JD.hk is a professionally designed and content-rich e-commerce platform with strong business credibility, its security posture and privacy compliance require urgent improvement to protect user data and maintain trust. Strategic recommendations include immediate SSL certificate deployment, enhanced security configurations, and implementation of comprehensive privacy policies.

W

Wirtschaftskammer Österreich (WKO)

wkoecg.at

0

The website wkoecg.at serves as an official business directory for Austrian companies, operated by the Wirtschaftskammer Österreich (WKO), the Austrian Chamber of Commerce. It provides a comprehensive and up-to-date listing of over 600,000 Austrian businesses, targeting business users and the general public seeking company information. The platform offers additional services such as ECG compliance support and eServices, positioning itself as a central hub for business-related information in Austria. Technically, the site is built on an ASP.NET WebForms framework with modern JavaScript enhancements, including Google Tag Manager and a consent management platform to comply with privacy regulations. The site demonstrates good accessibility and SEO practices, with structured navigation and mobile optimization. However, performance metrics are unavailable, and the hosting provider is not explicitly identified. From a security perspective, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS availability, which is a critical vulnerability exposing users to potential data interception. While security headers such as HSTS, X-Frame-Options, and secure cookie flags are implemented, the absence of HTTPS severely undermines the overall security posture. Privacy policies and cookie consent mechanisms are present and appear comprehensive, supporting GDPR compliance. Overall, the site is a credible and authoritative business resource with strong content and privacy compliance but suffers from a critical security flaw due to missing valid HTTPS. Addressing this issue is paramount to protect user data and maintain trust. Strategic improvements in SSL deployment and ongoing security audits are recommended to elevate the site's security and user confidence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Pint-Pharma is a pharmaceutical company focused on serving patients with rare diseases in Latin America, particularly Brazil. The company emphasizes a community-centric approach and participates in public health consultations, aiming to become a leader in its specialized market segment. The website reflects this positioning with content in Portuguese and links to relevant public health consultation pages. Technically, the site is built on WordPress with Elementor and hosted on a LiteSpeed server. While the site is accessible and well-structured with good design and navigation, there are notable security shortcomings, including the absence of modern TLS protocols and lack of HSTS enforcement. The SSL certificate is valid but the overall SSL/TLS configuration is weak. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site demonstrates moderate digital maturity but requires improvements in security and privacy compliance to enhance trust and protect users.

A

Appac Mediatech Pvt. Ltd

appacmedia.com

0

Appac Mediatech Pvt. Ltd is a digital marketing and web development agency based in Coimbatore, India, with over 18 years of experience. The company offers a wide range of services including SEO, social media marketing, web design and development, corporate branding, and ecommerce solutions. Positioned as a leading B2B agency in South India, Appac emphasizes 100% in-house production and strong domain knowledge in industries such as manufacturing, healthcare, education, and real estate. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website uses a traditional Apache server on Ubuntu, with common JavaScript libraries and tools such as jQuery, Owl Carousel, Google Tag Manager, Ahrefs Analytics, and Microsoft Clarity. However, the site lacks a valid SSL certificate and proper DNS records, which significantly impacts its security posture. The absence of HTTPS and security headers exposes the site to risks and reduces trustworthiness. Performance metrics are missing, but the site appears to have moderate mobile optimization and basic accessibility features. From a security perspective, the site has critical issues including no valid SSL certificate, no HSTS, no OCSP stapling, and no security.txt or incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR indicators. Business credibility is supported by multiple trust signals such as Google Partner status, client testimonials, and active social media presence. Overall, the site is functional and professional but requires urgent improvements in security and privacy compliance to enhance trust and protect user data. Strategic recommendations include installing a valid SSL certificate, configuring DNS properly, enabling security headers, and implementing cookie consent mechanisms.

Bharat Fritz Werner Ltd. (BFW) is a well-established Indian manufacturer specializing in Vertical Machining Centers (VMCs) and CNC machine tools, boasting over 60,000 global installations. The company targets industrial manufacturing sectors and offers an online platform for machine enquiries and purchases. The website reflects a professional and consistent brand presence with clear contact details and social media integration. Technically, the site uses a modern JavaScript and CSS stack including jQuery, Bootstrap, and FontAwesome, hosted on GoDaddy infrastructure. However, the absence of a valid SSL certificate and HTTPS significantly undermines the security posture. While forms implement CSRF tokens and OTP verification, the lack of HTTPS and security headers exposes users to risks. Privacy compliance is minimal, with no cookie consent mechanism despite cookie usage. Overall, the site is functional and business-focused but requires urgent security improvements to protect user data and enhance trust.

T

TCG GreenChem, Inc.

tcggreenchem.com

0

TCG GreenChem, Inc. is a US-based subsidiary of TCG Lifesciences Pvt. Ltd., specializing in contract research and manufacturing services for the pharmaceutical industry, focusing on drug discovery, development, and commercialization. The company offers a broad range of CMC development services including process research, analytical R&D, and cGMP API manufacturing, supported by US FDA approved facilities. Their leadership team comprises experienced pharmaceutical executives with extensive industry backgrounds. Technically, the website is built on WordPress with modern libraries and SEO optimizations, hosted behind Cloudflare for performance and security. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the business credibility is strong, but security posture requires urgent improvement.

I

i5invest corporate development

i5equity.com

0

i5invest corporate development is a corporate development and M&A advisory firm specializing in supporting innovative technology founders. The company leverages a vast network of over 150,000 executives and has completed more than 250 transactions globally. Their services include corporate development, capital provision, advisory board mentoring, and cross-border M&A processes. The firm operates internationally with offices in Austria, the United States, and additional locations in Berlin, Madrid, and Seattle. The website presents a professional and comprehensive portfolio of success stories and partner companies, reflecting a strong market position in the technology sector. Technically, the website is built on WordPress with Elementor and Yoast SEO, indicating a modern CMS and SEO optimization. However, a critical security gap is the absence of a valid SSL certificate and HTTPS, which significantly impacts the security posture. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, including physical addresses and a contact form. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

O

Otto GmbH & Co. KGaA

otto.market

0

OTTO Market operates as a prominent German online marketplace platform enabling sellers to register and sell products on otto.de. The platform emphasizes quality, transparency, and partnership with sellers, offering a comprehensive suite of services including onboarding, marketing, product management, shipping, payment processing, and reporting. The website is professionally designed with excellent content quality and clear navigation, targeting German merchants seeking a reputable e-commerce channel. Technically, the site is built on Neos CMS and Flow Framework, integrating modern marketing and analytics tools such as Google Tag Manager and LinkedIn Insight Tag. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture, exposing users to risks and reducing trust. Security headers are partially implemented, but critical TLS configurations are missing. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the business credibility is high, supported by clear company information and partner testimonials, but the technical security gaps require urgent remediation.

E

Erwachsenenbildungsforum Oberösterreich

weiterbilden.at

0

Erwachsenenbildungsforum Oberösterreich operates as a regional consortium providing adult education services and information in the Oberösterreich region of Austria. The website serves as a central hub for course listings, educational providers, libraries, and funding information, targeting adult learners and education professionals. The business model is non-profit and focused on educational coordination and support. Technically, the site is built on WordPress with the Avada theme and Fusion Builder, incorporating GDPR-compliant cookie consent and Matomo analytics for user tracking. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. While privacy policies and cookie consent mechanisms are well implemented, the lack of HTTPS and security headers exposes the site to risks. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and enhance trust.

L

LBA Leitbetriebe GmbH

leitbetriebe.at

0

Leitbetriebe Austria operates as a certification and excellence platform for leading Austrian companies, promoting exemplary businesses across various sectors including energy, transportation, manufacturing, and finance. The platform offers certification services, news dissemination, educational initiatives, and partnerships with industry and government entities. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to Austrian business stakeholders. Technically, the site is built on WordPress with modern plugins and optimizations, hosted on a reputable provider, and demonstrates good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforcement, multiple security headers, and no detected vulnerabilities, though some CSP relaxations and missing OCSP stapling suggest room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site presents a trustworthy and professional business front with active content updates and strong branding consistency.

H

HOFER KG

rettenswert.at

0

Rettenswert.at is a website representing a sustainable private label brand by HOFER KG, focused on rescuing agricultural food surpluses and converting them into consumer products. The brand operates in Austria and targets environmentally conscious consumers interested in reducing food waste. The website is built on WordPress with WooCommerce and Elementor, featuring a professional design and good content quality. However, the site lacks a valid SSL certificate, which critically impacts its security posture. Security headers are partially implemented, and a cookie consent mechanism is present, indicating some privacy compliance efforts. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. The domain registration aligns well with the business claims, showing legitimacy and consistency. Overall, the site is functional and professional but requires urgent security improvements.

L

Leifheit Group

leifheit-group.com

0

Leifheit Group is a well-established German manufacturer and retailer of household products with over 60 years of market presence and approximately 1,100 employees. The company maintains a strong brand portfolio including Leifheit and Soehnle, targeting consumers, investors, and job seekers primarily in Europe. Their website provides comprehensive investor relations information, career opportunities, and corporate news, reflecting a mature business model focused on product quality and sustainable growth. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, though performance metrics are unavailable. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, exposing the site to risks and undermining user trust. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the site is professional and trustworthy but requires urgent security improvements.

C

C-Loans Commercial Loan Databank

c-loans.com

0

C-Loans.com operates a specialized commercial loan portal connecting borrowers, brokers, and lenders across the United States. The platform offers a streamlined application process to 750 commercial lenders, enabling users to submit loan requests and receive competitive offers efficiently. The website also provides extensive training resources and tools for mortgage brokers and real estate professionals, positioning itself as a comprehensive service provider in the commercial finance sector. Technically, the site is built on WordPress with Elementor and leverages modern plugins and a Sucuri WAF for protection. However, the absence of a valid SSL certificate is a critical security gap that undermines user trust and data protection. Security headers are implemented, but the lack of HTTPS and cookie consent mechanisms indicates compliance and security posture weaknesses. Business credibility is supported by clear licensing information, contact details, and client testimonials, though privacy compliance could be improved. Overall, the site is functional and content-rich but requires urgent security enhancements to meet modern standards.

S

SIAT

siat.com

0

SIAT S.p.A is a medium-sized Italian manufacturing company specializing in secondary packaging machinery. The company offers a broad range of products including taping machines, case erectors, wrapping machines, strapping tools, and flexographic printing machines, supported by after-sales service and spare parts. The website reflects a professional and consistent brand presence targeting industrial clients requiring reliable packaging solutions. Technically, the site is built on WordPress with a modern front-end stack including Bootstrap and jQuery, and integrates Google Analytics and Iubenda for privacy compliance. Security posture is adequate with valid SSL and several security headers, but the absence of modern TLS protocols and OCSP stapling indicates room for improvement. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is well-structured, trustworthy, and serves its business purpose effectively.

K

KAEFER

kaeferblu.com

0

KAEFERblu is a technology-driven service provider specializing in Corrosion Under Insulation (CUI) management and predictive maintenance solutions. Leveraging KAEFER’s extensive industry experience, the company offers sensor-based real-time monitoring and innovative robotic installation solutions to improve safety, reduce costs, and enhance sustainability in the energy sector. The website reflects a modern digital presence with interactive animations and video content aimed at industrial clients seeking advanced CUI solutions. Technically, the site is built on WordPress with popular plugins and libraries, but lacks a valid SSL certificate, which critically undermines its security posture. Privacy and cookie policies are present but basic, and contact information is limited to social media and a newsletter form, with no direct company emails or phone numbers visible. Overall, the site demonstrates good content quality and SEO practices but requires urgent security improvements to protect user data and build trust.

.

.kloos digital GmbH

kloos.de

0

The website represents .kloos digital GmbH, a specialized digital marketing and SEO agency based in Vienna, Austria. The company offers a comprehensive suite of services including SEO, Google Ads, analytics, content marketing, social media marketing, web design, WordPress development, and professional workshops. Positioned as a leading SEO agency in Vienna, it targets businesses seeking to improve their online presence and marketing effectiveness. The website is professionally designed, well-structured, and optimized for SEO and user experience, reflecting a mature digital presence. Technically, the site is built on WordPress with modern technologies such as jQuery, Yoast SEO, and Borlabs Cookie for consent management. Hosting is provided by kasserver.com, and the site supports modern TLS protocols with a valid SSL certificate. Performance is fast, mobile optimization is good, and accessibility features are present. Analytics are implemented via Google Analytics and Matomo Tag Manager, with a clear cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site uses HTTPS with TLS 1.2 and 1.3, includes some security headers, and employs a robust cookie consent framework. However, improvements are recommended such as enabling full HSTS, adding additional security headers, and implementing OCSP stapling. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, and no privacy protection or suspicious WHOIS patterns were found, indicating a trustworthy and legitimate operation. Overall, the website demonstrates a high level of professionalism, technical maturity, and compliance with privacy regulations. It effectively supports the business model of a digital marketing agency and provides clear contact channels and trust signals. Strategic recommendations include enhancing security headers and publishing a formal security policy to further strengthen trust and compliance.

.

.kloos

kloos.agency

0

The website kloos.agency represents .kloos, a small but established digital marketing agency based in Vienna, Austria, founded around 2020. The company offers a broad range of services including SEO, PPC advertising, analytics, content marketing, social media marketing, design, development, and training workshops. Their market position is strong within the European digital marketing space, supported by client testimonials and a professional online presence. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and cookie consent, but suffers from critical SSL/TLS misconfigurations that undermine security. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. However, the lack of a valid SSL certificate and modern TLS protocols significantly lowers the security posture, exposing the site to risks. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS issues to ensure secure user interactions and maintain credibility.

The Kverneland Group's website at kvgportal.com currently serves as a simple notification page informing partners that the partner portal has moved to a new URL. The content is minimal and primarily targeted at existing partners, providing multilingual links and instructions to update bookmarks. The business is positioned as a manufacturing entity with a partner network, but the website itself does not provide detailed business information or services beyond portal access guidance. Technically, the site is hosted on an Apache server with basic DNS configuration but lacks a valid SSL certificate and modern TLS support, resulting in an insecure HTTP-only connection. Security headers are partially implemented but insufficient to ensure robust security. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available on the site. Overall, the website's digital maturity is low, with poor SEO, accessibility, and performance characteristics. The security posture is weak due to missing HTTPS and lack of DNSSEC. The domain registration appears consistent and legitimate, but the absence of critical security controls and policies poses risks. Strategic improvements in SSL deployment, security headers, and privacy compliance are recommended to enhance trust and security.

N

Net Patrol Italia srl

acaraweb.it

0

Net Patrol Italia srl operates a specialized whistleblowing platform called Acara, designed to support companies in compliance with European privacy and whistleblowing regulations. The platform emphasizes privacy by design, allowing anonymous or identified reporting, and aligns with ISO 37001:2016 anti-corruption standards. The website is built on WordPress with Elementor and uses modern SEO tools like Yoast. However, a critical security gap is the absence of a valid SSL certificate, leaving the site without HTTPS protection. Security headers are partially implemented, but the lack of TLS protocols and DNS security features reduces the overall security posture. Contact information and privacy policies are clearly presented, supporting GDPR compliance. The company maintains a moderate digital maturity with room for improvement in security and technical infrastructure.

S

SUPPLYGROUP, SAS

supplygroup.fr

0

SupplyGroup is a French medium-sized company specializing in supply chain, logistics, and business development solutions leveraging Big Data and artificial intelligence. Their offerings include software platforms for order management, shipment tracking, warehousing, data management, and quality control, targeting businesses from startups to large groups. The website is built on WordPress with integrations such as Google Tag Manager and reCAPTCHA, indicating a moderate level of digital maturity. However, the technical infrastructure shows weaknesses, notably the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts security posture. The site provides comprehensive legal and privacy information in French, including a named Data Protection Officer, but lacks a cookie policy and consent mechanism. Overall, the business credibility is strong with clear company registration details and contact information, but security improvements are critical to protect user data and enhance trust.

E

ENVASES Group

minikeg.blog

0

The MiniKEG Blog is operated by the ENVASES Group, a medium-sized German manufacturing company specializing in innovative packaging solutions, particularly 5-liter party kegs. The company holds a strong market position as a world leader in party keg production and packaging innovation. The website serves as an online magazine targeting beverage industry professionals and consumers interested in party kegs, providing product news, quality insights, and customer stories. Technically, the site is built on WordPress with the Divi theme and uses common plugins for cookie consent and newsletter management. However, the site suffers from a critical security flaw: the SSL certificate is invalid or missing, resulting in no HTTPS support and no modern TLS protocols enabled, which significantly impacts security posture. Privacy compliance is addressed with a privacy and cookie policy and consent mechanism, but no terms of service or security policies are published. Contact information is clearly provided, enhancing business credibility. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect users and business reputation.

4

4DESIGN

4design.com.au

0

4DESIGN is an established Australian industrial design studio with over 50 years of experience, specializing in product development, 3D CAD engineering, prototyping, and manufacturing services. The company targets businesses and startups requiring comprehensive industrial design and engineering solutions. Their market position is strong within the Australian design industry, supported by awards and a professional online presence. Technically, the website is built on WordPress, hosted on WP Engine with Cloudflare CDN, and uses modern web technologies including Google Analytics and Instagram integration. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap. The security posture is basic, lacking modern TLS protocols, HSTS, and other security headers. Privacy compliance is minimal, with a basic privacy policy but no cookie consent mechanism or GDPR indicators. Overall, the business credibility is solid, but security improvements are urgently needed to protect user data and enhance trust.

B

Boston Scientific Corporation

intracept.com

0

The website intracept.com represents the Intracept Procedure by Relievant, a medical treatment for chronic low back pain, supported by clinical evidence and patient testimonials. It is owned by Boston Scientific Corporation, a large healthcare company. The site targets patients and healthcare professionals, providing educational content and resources about the procedure. Technically, the site is built on WordPress with the Divi theme, hosted on WP Engine and served via Cloudflare CDN. It uses modern web technologies and includes tracking tools like Google Tag Manager and Facebook Pixel. However, the site currently lacks a valid SSL certificate, which is a critical security issue. Privacy policies and terms of service are present and comprehensive, but no cookie consent mechanism is detected. Overall, the site is professional and trustworthy but requires urgent security improvements to enable HTTPS and enhance user data protection.

T

The Intracept Procedure by Relievant

relievant.com

0

Relievant.com represents The Intracept Procedure by Relievant, a healthcare-focused business specializing in treatment for chronic low back pain through a clinically supported medical procedure. The website is professionally designed with clear navigation and rich content targeting patients and healthcare providers. It is owned by Boston Scientific Corporation, a recognized entity in the medical device industry. Technically, the site is built on WordPress with the Divi theme and uses common JavaScript libraries and external resources. However, the absence of a valid SSL certificate and HTTPS is a critical security flaw that undermines user trust and data protection. Privacy policies are present and comprehensive, but cookie consent mechanisms are lacking despite the use of tracking pixels. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements.

L

Law in Austria

laa.law

0

Law in Austria is a Vienna-based legal services provider specializing in multimedia, digital, and interdisciplinary legal advice. The firm positions itself as a client-oriented partner offering precise and timely legal solutions. The website reflects a professional and consistent brand image targeting clients seeking legal expertise in Austria. Technically, the site is built on the Webflow CMS platform, leveraging modern web fonts and JavaScript libraries such as jQuery and Finsweet Cookie Consent for privacy compliance. Hosting appears to be via Cloudflare CDN, enhancing content delivery performance. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of HTTPS enforcement, exposing visitors to potential risks. The site implements a cookie consent banner with opt-in capabilities, aligning with GDPR requirements, but lacks explicit contact information and terms of service pages, which could affect user trust and compliance completeness. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to meet industry standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

O

Orchestrade

orchestrade.com

0

Orchestrade is a specialized software provider offering a comprehensive cross-asset front-to-back trading and risk management platform primarily targeting investment banks, hedge funds, asset managers, and energy companies. The company positions itself as a market leader with a strong portfolio of industry awards and a broad client base. Technically, the website is built on WordPress with modern plugins and integrations, hosted on WP Engine with Cloudflare protection, and employs multiple analytics and marketing tools. However, the security posture is weakened by the absence of a valid SSL certificate and HTTPS support, which is a critical vulnerability. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates professionalism and trustworthiness but requires urgent security improvements to protect user data and maintain credibility.

M

Murex

murex.com

0

Murex is a leading provider of capital markets technology solutions, offering an integrated platform (MX.3) that supports trading, treasury, risk, and post-trade operations. The company serves a broad range of financial services clients globally, including banks, investment managers, and corporates. Their business model focuses on enterprise software and managed services, with a strong emphasis on regulatory compliance and risk management. The website reflects a mature digital presence with comprehensive content, strong branding, and extensive use of modern marketing and analytics technologies. However, a critical security gap exists due to the absence of HTTPS, which undermines the security posture despite well-implemented security headers. Privacy policies and cookie consent mechanisms are present and GDPR compliant. Overall, the site demonstrates high professionalism and trustworthiness but urgently requires SSL/TLS implementation to secure user data and communications.

Moody's Analytics is a well-established enterprise providing financial intelligence and risk management solutions primarily targeting financial institutions and business leaders. The company operates under the parent company Moody's Corporation and holds a strong market position in the finance sector. However, the website content is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block triggered by an ASN restriction, which prevents direct content analysis. The technical infrastructure includes Cloudflare for security and performance, but the SSL configuration lacks modern TLS protocol support and some security best practices such as HSTS and OCSP stapling are not enabled. Security headers are partially implemented, providing a basic security posture. The WHOIS data confirms the domain's legitimacy and consistency with the corporate identity. Overall, the website's security posture is basic but could be improved, and the lack of accessible content limits the ability to assess privacy compliance and user experience.

I

ITRS Group

itrsgroup.com

0

ITRS Group is a leading provider of AI-powered real-time monitoring and observability solutions tailored for demanding and regulated industries such as finance and investment banking. The company is recognized as a visionary in the digital experience monitoring space, serving top-tier investment banks and thousands of customers worldwide. Their platform focuses on preventing system outages, enhancing performance, and enabling continuous innovation through intelligent observability and digital experience monitoring. Technically, the website is built on Drupal 10 and leverages a modern technology stack including Google Tag Manager, Zendesk, Uptrends, and Cloudflare, hosted on AWS infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance metrics indicate moderate speed. Security headers are well implemented, but the SSL configuration is currently invalid, lacking proper TLS protocol support and OCSP stapling, which poses a significant security risk. From a security perspective, while the site employs several best practices such as Content Security Policy and X-Frame-Options, the absence of a valid SSL certificate and disabled TLS protocols significantly reduce the security posture. No critical vulnerabilities like exposed credentials or malware were detected, but improvements in SSL configuration and session management are recommended. Overall, the website presents a professional and trustworthy image with comprehensive privacy and cookie policies, clear contact information, and strong business credibility. The domain registration details align with the company's UK-based operations, supporting its legitimacy. Strategic recommendations include immediate SSL renewal and configuration, enhanced security monitoring, and continued compliance with privacy regulations.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

Fenergo

fenergo.com

0

Fenergo is a medium-sized SaaS financial technology company founded in 2009, specializing in client lifecycle management (CLM) and regulatory compliance solutions for banking and financial institutions. The company offers a comprehensive suite of services including KYC, client onboarding, transaction monitoring, and regulatory compliance, supported by AI-powered technologies such as FinCrime OS and Agentic AI. Fenergo is recognized as a market leader in its sector, with strong client endorsements and multiple industry awards. Technically, the website is built on Webflow and leverages modern JavaScript libraries and Cloudflare CDN for delivery, with good mobile optimization and SEO practices. However, the site currently lacks a valid SSL certificate and modern TLS support, which is a critical security concern. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanisms. Overall, the business demonstrates strong credibility and trustworthiness, but the security posture requires urgent improvement to protect user data and maintain compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

Malmö Designer Village

malmodesignervillage.com

0

Malmö Designer Village is a premium retail outlet project positioned as the largest outlet in Scandinavia and the first premium outlet village serving the Greater Copenhagen region. The business model focuses on offering discounted fashion and lifestyle brands to residents and tourists in the Malmö and Copenhagen area. The website is built on the Squarespace platform, featuring professional design and clear navigation but lacks a valid SSL certificate, resulting in no HTTPS support. This is a critical security shortfall. The site includes a contact form for inquiries but does not provide explicit email addresses or phone numbers. Privacy compliance is minimal, with a basic privacy policy page but no cookie consent mechanism. Social media presence is limited to LinkedIn. Overall, the site demonstrates moderate digital maturity but requires significant security improvements to protect user data and build trust.

P

PEIQ

peiq.de

0

PEIQ is a medium-sized German company specializing in cloud-based publishing software solutions tailored for the DACH region's media industry. Their product portfolio includes automated newspaper production (PEIQ PRINT), a digital editor for multi-channel content creation (PEIQ CREATE), and a proprietary CMS platform (PEIQ PORTAL). The company holds a strong market position, serving major newspapers and media groups, with a significant share of newspaper circulation produced using their systems. Technically, the website employs modern JavaScript frameworks and responsive design, but lacks a valid SSL certificate, which is a critical security concern. The site includes cookie consent mechanisms and basic privacy compliance but lacks visible security policies or incident response contacts. Overall, the business demonstrates professionalism and trustworthiness, though the absence of HTTPS significantly impacts security posture and user trust.

The website consol-software.at currently presents only a minimal placeholder page with the title 'HTTP only' and the text 'HTTP only. Redirect?'. There is no meaningful content, metadata, or business information available on the site. The domain is registered but lacks any DNS records, including A, AAAA, MX, or NS records, which indicates the domain is not properly configured for web or email services. The SSL/TLS configuration is absent or invalid, with no supported TLS protocols and no valid certificate, resulting in no HTTPS support despite the presence of an HSTS header. This severely impacts the security posture and trustworthiness of the site. Technically, the site is hosted on an Apache server but lacks modern web technologies, frameworks, or CMS platforms. Performance data is unavailable, and the site is not optimized for mobile or accessibility. No analytics, advertising, or tracking technologies are detected. Security headers are partially present but ineffective due to the lack of HTTPS. No privacy, cookie, or terms of service policies are found, and no contact or business information is provided. From a security perspective, the absence of HTTPS and DNS records, combined with minimal content, suggests the site is either inactive, under development, or abandoned. There are no indications of WAF or security challenge blocking access. The overall risk is high due to poor security configuration and lack of transparency. Strategic recommendations include obtaining a valid SSL certificate, properly configuring DNS records, and publishing meaningful content and policies to improve trust and compliance.

W

webcapital

quli.nl

0

Quli.nl is a Dutch digital health platform offering a Personal Health Environment (PGO) that centralizes users' healthcare data, enabling better management and communication with healthcare providers. The platform targets patients, caregivers, healthcare organizations, and patient groups, positioning itself as a leader in digital accessibility and personal health data management in the Netherlands. The website is built on WordPress with modern web technologies and integrates Google Analytics and Tag Manager for analytics and marketing purposes. Security headers are properly configured; however, the absence of a valid SSL certificate and HTTPS implementation is a critical vulnerability that significantly impacts the site's security posture. Privacy policies and cookie consent mechanisms are well implemented and GDPR compliant. Overall, the site demonstrates good content quality and business credibility but requires urgent improvements in SSL/TLS configuration to ensure secure user interactions.

T

The AES Corporation

lightingsimplified.com

0

Miami Valley Lighting, a division of The AES Corporation, specializes in providing comprehensive outdoor lighting solutions including street lighting, parking lot and security lighting, decorative lighting, and customized solutions primarily serving West Central Ohio. The company positions itself as a regional leader with a focus on safety, security, energy savings, and responsive maintenance services. The website is built on Drupal 10 with modern front-end technologies and integrates multiple analytics and marketing tools, indicating a mature digital infrastructure. However, the absence of a valid SSL certificate and disabled TLS protocols represent significant security vulnerabilities that undermine user trust and data protection. Privacy and cookie policies are present but basic, and no explicit security or incident response policies are published. Overall, the website demonstrates good content quality and business credibility but requires urgent security improvements to meet modern standards.