Security Directory

The website finanzamt-geilenkirchen.de serves as the official online presence of the Finanzamt Geilenkirchen, a regional tax office under the Oberfinanzdirektion Nordrhein-Westfalen in Germany. It provides comprehensive tax-related information, contact details, online services such as appointment booking and electronic tax declaration (ELSTER), and current news updates. The site targets residents and businesses in the Nordrhein-Westfalen region, offering clear navigation and well-structured content tailored to public service needs. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies including Apache server, Matomo analytics for user tracking, and a robust Content Security Policy. The site demonstrates good mobile optimization and accessibility features, ensuring usability across devices and for users with disabilities. However, the SSL/TLS configuration is critically flawed, with no valid certificate and no TLS protocols enabled, which undermines secure HTTPS access. From a security perspective, the site implements several best practices such as strict security headers (X-Frame-Options, X-Content-Type-Options, CSP), HSTS with preload directive, and referrer policies. Despite these, the lack of a valid SSL certificate and HTTPS support is a major vulnerability that must be addressed urgently to protect user data and maintain trust. Overall, the website is professional, trustworthy, and compliant with GDPR, featuring clear privacy and cookie policies with consent mechanisms. The business credibility is high given its government affiliation, but the security posture is currently weak due to SSL issues. Strategic recommendations include immediate remediation of SSL/TLS configuration, enhancement of session security features, and continuous monitoring of security compliance.

S

S. Spitz GmbH

spitz.at

0

S. Spitz GmbH is a well-established Austrian food and beverage manufacturer with over 160 years of tradition, specializing in beverages, sweets, baked goods, and delicatessen products. The company operates multiple production sites in Austria and emphasizes quality, sustainability, and customer-specific private label solutions. Their website reflects a professional and comprehensive digital presence targeting B2B customers, job seekers, and sustainability-conscious consumers. Technically, the site is built on WordPress with common plugins and libraries, offering good mobile optimization and SEO features. However, the absence of a valid SSL/TLS certificate and missing DNS records represent significant security and technical weaknesses. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Overall, the business credibility is strong, but the security posture requires urgent improvement to protect user data and enhance trust.

Leder & Schuh AG operates the HUMANIC brand, a well-established shoe retailer and manufacturer with over 150 years of history. The company serves multiple Central and Eastern European markets through both online shops and physical stores, positioning itself as a market leader in Austria and surrounding countries. The website provides comprehensive business and product information, targeting consumers seeking quality footwear internationally. Technically, the site uses a modern tech stack including SAP Commerce, Google Tag Manager, and various marketing and analytics tools, hosted behind Cloudflare. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to potential risks. Privacy compliance is addressed with cookie consent mechanisms and privacy policies, though some improvements are recommended. Overall, the website is professional and trustworthy but requires urgent security enhancements to protect user data and maintain credibility.

The website cajamadrid.com is currently inaccessible beyond a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain lacks DNS records and does not have a valid SSL/TLS certificate configured, resulting in no HTTPS support. The visible content is minimal and only displays a generic Cloudflare challenge page with no metadata, forms, or contact details. Consequently, the website's technical infrastructure is immature, and its digital maturity is low. Security posture is weak due to missing HTTPS and incomplete SSL configuration, despite some security headers being present. Overall, the site presents a high risk due to lack of accessible content, no privacy or cookie policies, and no verifiable business credibility. Strategic recommendations include obtaining a valid SSL certificate, configuring DNS properly, and removing or properly configuring the WAF challenge to allow legitimate user access.

KREATIVE is a small creative branding agency focused on defining, strategizing, designing, and developing the identity of future iconic brands. The website presents a professional and consistent branding message targeting businesses seeking creative agency services. The technical infrastructure is basic, running on an Apache server with PHP implied, using jQuery and Google Analytics for tracking. However, the website lacks HTTPS, DNS records, and advanced security configurations, which impacts its security posture negatively. The cookie consent mechanism is implemented, but no contact information or security policies are provided on the homepage. Overall, the site is accessible and functional but requires significant improvements in security and technical setup to enhance trust and compliance.

The website lgefund.com currently serves as a minimal placeholder that redirects visitors to lgefund.net via a frameset. There is no substantive content, metadata, or business information available on the site itself. The lack of privacy, cookie, or terms of service policies and absence of contact information indicate a very low level of digital maturity and business transparency. Technically, the site is hosted on Amazon AWS infrastructure but lacks HTTPS support due to an invalid or missing SSL certificate, which severely impacts security posture and user trust. No modern web technologies, analytics, or tracking mechanisms are detected, and the site does not implement any security best practices such as HSTS or security headers. The domain registration is standard without privacy protection, but the absence of business details and minimal site content reduce the legitimacy and credibility of the domain. Overall, the site poses a high risk from a security and compliance perspective and does not provide sufficient information to assess business operations or compliance with data protection regulations.

D

DXC Technology

csc.com

0

DXC Technology is a leading global IT services company specializing in helping enterprises and public sector organizations modernize and secure their IT infrastructure and operations. The company offers a broad portfolio of services including cloud and infrastructure, consulting and engineering, insurance software and business process services, modern workplace solutions, and security services. The website reflects a mature digital presence with comprehensive content, multi-language support, and strong branding consistency. Technically, the site is built on Adobe Experience Manager with integrations for marketing and cookie consent management, providing a modern and responsive user experience. However, the security posture is weakened by the absence of a valid SSL certificate and lack of TLS protocol support, which is a critical issue for trust and data protection. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit security policy or incident response information is found. Overall, the site is professional and credible but requires urgent remediation of SSL/TLS issues to improve security and user trust.

长沙县聚福市场营销策划有限公司是一家位于中国湖南省长沙市长沙县的综合性企业，业务涵盖市场营销策划、数字化转型、技术咨询、人工智能硬件销售及相关制造和服务领域。公司在本地市场具有一定的知名度和影响力，提供多样化的技术和咨询服务，面向企业客户，致力于推动企业数字化升级和智能化发展。网站内容丰富，涵盖公司介绍、产品展示、服务项目及联系方式，体现了较好的业务覆盖和客户导向。技术基础较为基础，采用nginx服务器和Tailwind CSS框架，网站设计良好且移动优化表现良好，但性能数据不完整，需进一步优化加载速度和资源管理。安全方面，网站未配置有效的SSL证书，未启用HTTPS，缺少关键安全头，存在较大安全隐患，严重影响用户信任和数据安全。隐私合规方面缺乏隐私政策和Cookie政策，未体现GDPR或其他数据保护法规的遵循。整体风险较高，建议优先部署HTTPS，完善安全配置，并补充隐私合规内容以提升整体安全和合规水平。

P

Peter Ofner GmbH

dirak.at

0

Peter Ofner GmbH is a specialized Austrian company providing innovative and tailored locking technology, hinges, and connection solutions primarily for industrial clients. The company positions itself as an expert in the manufacturing sector with a focus on quality products and personalized consulting. The website reflects a professional and well-structured digital presence, leveraging modern consent management and analytics tools, but lacks a valid SSL certificate and HTTPS support, which is a critical security shortfall. DNS records are notably missing or incomplete, which raises concerns about domain configuration consistency. Overall, the site offers comprehensive contact information and basic privacy compliance but lacks explicit security policies and incident response details.

L

Leadcom

leadcom-is.com

0

Leadcom Integrated Solutions (L.I.S.) Ltd., a Tech Mahindra company, is a medium-sized international telecommunications network deployment and solutions provider with a strong presence across Africa. The company offers a comprehensive portfolio of services including telecom infrastructure solutions, tower portfolio management, coverage enhancement, energy efficiency, site security, and network services. Their business model focuses on serving telecom operators, TowerCos, OEMs, and governmental/private enterprises with a professional and efficient network and operations platform. The website reflects a consistent and professional brand image with clear service offerings and geographic presence.

The website at fill.at is currently inaccessible, returning a 403 Forbidden error with minimal HTML content. This indicates that the site is either restricted or blocked, preventing any meaningful content or business information from being accessed. The domain has valid DNS records including multiple A records and an Outlook-based MX record, suggesting some legitimate email infrastructure. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. No metadata, privacy policies, contact information, or business details are available, limiting the ability to assess the company's market position or services. Overall, the site exhibits poor technical implementation and security maturity, with critical issues that must be addressed to enable secure and accessible web presence.

VALGRAP is a Spanish small business specializing in the distribution and online sales of fastening systems and related industrial tools, including brands such as STANLEY BOSTITCH and SIMES. The company targets professional and industrial customers seeking quality fastening products. The website is built on WordPress with WooCommerce, leveraging common plugins and marketing tools such as Google Analytics and Slider Revolution. While the site offers a good user experience with clear navigation and relevant content, it lacks a valid SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are present with consent mechanisms, indicating basic GDPR compliance. Contact information is clearly provided, enhancing business credibility. However, the absence of advanced security headers and DNS security features suggests room for improvement in security maturity.

P

Pel

pelstudio.com

0

Pel is a small, bicoastal creative collective specializing in digital design services including website creation, branding, online advertising, mobile applications, and digital video. The company targets businesses seeking high-quality digital creative solutions and positions itself as a niche player with a focus on design excellence and interactivity. The website content is professional and consistent with the brand identity, featuring an interactive pixel-catching game as a unique user engagement element. Technically, the website runs on an Apache server with PHP 8.2 and uses jQuery 3.3.1 along with Google Fonts and Google Analytics. However, the site lacks a valid SSL certificate, serving content over HTTP only, and DNS records are missing, which raises concerns about domain configuration and reliability. Performance data is incomplete but suggests slow loading. Mobile optimization and accessibility are basic but functional. From a security perspective, the absence of HTTPS and missing DNS records are critical vulnerabilities that significantly reduce the site's trustworthiness. No privacy, cookie, or terms of service policies are present, and no incident response or security frameworks are disclosed. Google Analytics is used for tracking, but no cookie consent mechanism is implemented, indicating poor privacy compliance. Overall, while the business content and branding are solid, the technical and security shortcomings present risks to user trust and data protection. Strategic improvements in SSL deployment, DNS configuration, and privacy compliance are essential to enhance the site's credibility and security posture.

T

TBWA

tbwa.com

0

TBWA is a globally recognized advertising agency network specializing in disruptive creativity to build strong brands. The website reflects a professional and consistent brand image, targeting businesses seeking innovative marketing solutions. The technical infrastructure is based on WordPress, leveraging modern JavaScript libraries and third-party marketing tools, hosted on WP Engine with Cloudflare CDN. While the site is well-structured and optimized for SEO and mobile, a critical security gap exists due to the absence of a valid SSL certificate and disabled TLS protocols, which significantly impacts the security posture. Privacy compliance is well addressed with cookie consent and legal policies present. Overall, the site demonstrates strong business credibility but requires urgent security improvements.

The website grawe.ua is currently inaccessible due to a security block or Web Application Firewall (WAF) mechanism, as evidenced by the minimal HTML content showing a 'Request Rejected' message and a support ID. This prevents any meaningful extraction of business, contact, or policy information. The SSL certificate presented is for grawe.at and its wildcard, not grawe.ua, which may indicate a misconfiguration or unrelated certificate usage. The DNS records for grawe.ua are missing or not detected, which is unusual for an active website. Security headers are partially implemented but lack critical enhancements such as HSTS and OCSP stapling. Overall, the site’s security posture is basic but incomplete, and the lack of accessible content severely limits the ability to assess privacy compliance, business credibility, or technical maturity.

B

Beontag

beontag.com

0

Beontag is a global manufacturing and technology company specializing in identification and digital transformation solutions, including graphics and label materials as well as RFID and IoT enablers. The company has a strong market presence with over 16 facilities worldwide and operations in more than 60 countries. Their website reflects a professional and comprehensive digital presence targeting businesses requiring advanced labeling and IoT solutions. Technically, the site is built on modern frameworks such as Next.js and hosted on AWS CloudFront, ensuring scalability and performance. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, which significantly impacts the overall security posture. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR compliance and consent mechanisms. The site integrates analytics and marketing tools like Google Analytics and HubSpot, balancing user tracking with privacy considerations. Overall, while the business and technical maturity are strong, immediate attention to SSL/TLS implementation is necessary to enhance security and trust.

T

Default Parallels Plesk Panel Page

testacuitysolutions.com

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website vbleasing.com currently presents only a minimal HTML page that immediately redirects visitors to a /lander path, with no accessible content, metadata, or business information. The domain is registered but lacks any DNS records and does not have a valid SSL certificate, resulting in no HTTPS support. This severely limits the website's accessibility, security, and trustworthiness. There are no privacy, cookie, or terms of service policies, nor any contact or security-related information available. The technical infrastructure is incomplete and does not follow basic web security best practices. Overall, the site appears non-operational or under development, with significant gaps in security posture and compliance.

R

Rutar GmbH & Co KG

rutar.at

0

Rutar GmbH & Co KG operates a professional and comprehensive online presence for its retail furniture business in Austria. The website showcases a wide range of furniture categories, including kitchens, living rooms, bedrooms, and garden furniture, supported by detailed product listings and brand partnerships. The company emphasizes customer service with offerings such as free 3D kitchen planning, delivery, and assembly services. Technically, the website is built on WordPress with a modern tech stack including PHP 7.4, nginx, and popular plugins like Yoast SEO and Contact Form 7. The site is well-optimized for mobile devices and includes SEO best practices. Security measures include HTTPS with TLS 1.2 and 1.3, OCSP stapling, and secure cookie flags, though improvements like enabling HSTS and additional security headers are recommended. Privacy compliance is strong, with a clear privacy policy, cookie consent mechanisms, and GDPR adherence. Overall, the site reflects a mature digital infrastructure with a solid security posture and good business credibility.

The website musikalessons.com is currently inaccessible due to a Sucuri WebSite Firewall block triggered by a GEO-based country restriction. The site presents an access denied page with no actual business content, metadata, or interactive elements available for analysis. The technical infrastructure shows a lack of valid SSL/TLS certificates and no DNS records, indicating either misconfiguration or an inactive domain. Security headers are partially implemented but insufficient without proper HTTPS support. No privacy, cookie, or terms of service policies are present on the site itself, only a link to the Sucuri privacy policy. Overall, the site exhibits a very low security posture and lacks visible business credibility or compliance indicators.

The website horustechnology.com is currently inaccessible, serving an HTTP 403 Forbidden error indicating directory access is blocked or no index document is present. There is no visible content, metadata, or business information available on the site. The absence of DNS records and a valid SSL certificate further indicates that the domain is either misconfigured or inactive. Due to these factors, the website's technical infrastructure is minimal and lacks modern security and compliance features. The security posture is weak, with no HTTPS support, no security headers, and no evidence of privacy or cookie policies. Overall, the site presents a high risk and low trustworthiness profile, limiting its utility for business or customer engagement.

L

LexisNexis Verlag ARD Orac GmbH & Co KG

lexisnexis.at

0

LexisNexis Österreich is a leading provider of intelligent legal, tax, and business information solutions in Austria, offering a broad portfolio of products including Lexis 360®, Lexis+ AI, compliance tools, and educational seminars. The company operates under the parent company RELX plc and targets professionals such as lawyers, tax advisors, companies, and public sector entities. The website demonstrates a high level of professionalism, rich content, and strong branding consistency, positioning LexisNexis as a market leader in its sector. Technically, the website is built on WordPress with modern front-end technologies and SEO best practices, including structured data and accessibility features. However, performance is rated slow, and hosting details are not fully clear. The site integrates marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent management. From a security perspective, the website lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data protection. While some security headers like HSTS are present, the overall SSL/TLS configuration is poor. Privacy and cookie policies are comprehensive and GDPR compliant, but no explicit security or incident response policies are found. Overall, the website is credible and professional but requires urgent security improvements to enable HTTPS and strengthen its security posture. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and publishing security policies to enhance trust and compliance.

The website eurocajarural.es is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any meaningful content or business information. The visible page is a Cloudflare security challenge indicating that the visitor has been blocked due to triggered security rules. This severely limits the ability to analyze the website's content, business model, or compliance posture. The domain is registered but lacks DNS records and has an invalid SSL certificate, which are critical security and operational issues. The technical infrastructure relies on Cloudflare for security and hosting, but the absence of a valid SSL certificate and modern TLS protocols significantly weakens the security posture. No privacy, cookie, or terms of service policies are detectable, and no contact information or business details are available from the accessible content. Overall, the website's current state reflects poor accessibility, security, and compliance readiness, with a high risk of user trust erosion and operational disruption.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

SEQIS GmbH is a specialized IT service provider based in Austria, focusing on software testing, IT analysis, and project management. The company offers a broad range of services including remote testing, DevOps, training, and quality assurance, targeting businesses seeking to improve their software quality and IT project outcomes. The website is professionally designed, content-rich, and well-structured, primarily in German, with clear navigation and active social media engagement. Technically, the website runs on a PHP 8.2.28 backend with nginx and uses the Contao CMS along with Bootstrap and jQuery for frontend functionality. Despite a modern tech stack, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Performance data is missing, but the site appears mobile-optimized and SEO-friendly. Security posture is weak due to the absence of HTTPS, no DNSSEC, and no CAA records, although several security headers are present. Privacy compliance is good with a comprehensive privacy policy and cookie consent via Cookiebot. Contact information is clearly provided, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the business location. Overall, the site is functional and professional but requires urgent security improvements, especially SSL/TLS implementation, to enhance trust and protect user data.

LineMetrics GmbH is a medium-sized Austrian company specializing in smart building solutions through integrated sensor systems based on LoRaWAN technology. Their platform enables real-time data collection and analysis for energy consumption, room climate monitoring, and operational efficiency improvements. The company has a strong market presence with over 400 clients and 15,000 sensors deployed, positioning itself as a reliable provider in the real estate and technology sectors. Technically, the website is built on WordPress with modern plugins and integrations such as Kadence Blocks, WP Rocket, Google Tag Manager, and Zoho CRM, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of HTTPS, which significantly impacts the security posture. Privacy compliance is well addressed with comprehensive policies and active consent mechanisms. Overall, while the business and content quality are excellent, urgent improvements in security configurations are recommended to enhance trust and protect user data.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Burgenland Energie is a regional energy provider based in Austria, specializing in renewable energy solutions such as photovoltaic systems, battery storage, heat pumps, and e-mobility services. The company targets private customers, municipalities, and businesses within the Burgenland region, emphasizing energy independence and sustainability. Their digital presence includes a professional website with comprehensive product information, customer portals, and active social media channels. Technically, the website is built using modern web technologies including React and Next.js, hosted on AWS infrastructure with CloudFront and S3. While the site is mobile-optimized and well-structured for SEO and accessibility, performance metrics indicate slow loading times, which could be improved. The use of Google Tag Manager and Zoho CRM scripts indicates integration with marketing and customer relationship management tools. From a security perspective, the website lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability that undermines user trust and data security. Other security best practices such as HSTS, OCSP stapling, and session resumption are also missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism in place. Overall, the website presents a trustworthy and professional business with strong content and user experience but requires urgent improvements in SSL/TLS configuration to enhance security posture and protect user data effectively.

myClubs is a membership platform offering access to a wide variety of sports and fitness activities across multiple providers, primarily targeting sports enthusiasts seeking flexible and commitment-free training options. The website is built using modern web technologies such as React and Next.js and is served via Cloudflare CDN, indicating a contemporary digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. While privacy and terms of service pages are present and appear comprehensive, the lack of a cookie consent mechanism despite the use of tracking scripts suggests incomplete privacy compliance. Overall, the site demonstrates good content quality and user experience but requires urgent security improvements to meet industry standards.

Alupress AG is a medium-sized manufacturing company specializing in automotive aluminum die casting components and full-service system solutions. Founded in 1965 and headquartered in Brixen, Italy, the company offers a comprehensive range of services from in-house development to aftermarket support. The website reflects a professional B2B focus with detailed service descriptions and multilingual support. Technically, the site is built on TYPO3 CMS and uses Matomo and Facebook Pixel for analytics and marketing. However, the absence of a valid SSL certificate and HTTPS is a critical security shortfall that undermines user trust and data protection. The cookie consent mechanism and privacy policy indicate good GDPR compliance. Overall, the site is well-structured and content-rich but requires urgent security improvements.

S

Sodexo

sodexo.com

0

Sodexo is a global leader in integrated food services, facilities management, and employee benefits, serving a diverse clientele including corporate, healthcare, education, and community sectors. The company emphasizes sustainability and quality of life improvements, positioning itself as a trusted enterprise with a strong global footprint and multiple localized websites. Technically, the website leverages modern frameworks such as Next.js and Sitecore CMS, hosted on Vercel, ensuring a contemporary digital presence. However, the current SSL certificate is invalid or missing, significantly impacting the security posture. Despite this, the site implements several security headers and maintains comprehensive privacy and cookie policies aligned with GDPR standards. The presence of a Vulnerability Disclosure Policy and ethical certifications further reinforce Sodexo's commitment to security and corporate responsibility. Overall, the website is professional and content-rich but requires urgent remediation of SSL and TLS configurations to enhance trust and security.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Regions Hospital, part of the HealthPartners care system, is a large, well-established healthcare provider located in St. Paul, Minnesota. Founded in 1872, it operates a Level I Trauma Center and multiple specialty care centers including Burn, Cancer, Heart, Stroke, and Mental Health Centers. The hospital is recognized regionally for excellence and holds several prestigious awards. The website reflects a professional and comprehensive digital presence, targeting patients, healthcare providers, and job seekers with clear navigation and rich content. Technically, the site uses modern web components and Adobe Experience Manager CMS, but lacks a valid SSL certificate, which is a critical security concern. Security headers are minimal but include HSTS. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is clearly provided, including phone numbers and physical address. Social media presence is strong and consistent with the brand.

F

Fluidtime Data Services GmbH

fluidtime.com

0

Fluidtime Data Services GmbH is a medium-sized Austrian company specializing in Mobility-as-a-Service (MaaS) solutions and sustainable mobility management tools. Positioned as a pioneer in the transportation technology sector, Fluidtime offers tailored software platforms that enable businesses and organizations to implement green mobility projects efficiently. Their website is professionally designed, content-rich, and targets organizations aiming to achieve sustainability goals through innovative mobility services. The company maintains a strong partnership network and active social media presence, enhancing its market credibility. Technically, the website is built on WordPress with the Enfold theme and supports multilingual content via WPML. It employs modern JavaScript libraries such as jQuery and integrates Matomo Analytics for privacy-conscious user tracking. SEO is enhanced through Yoast SEO plugin, and the site is mobile-optimized with good accessibility features. However, performance metrics are not explicitly available. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, representing a critical vulnerability. No modern TLS protocols or security headers like HSTS are enabled, which exposes users to potential risks. Cookie consent mechanisms and GDPR-compliant privacy policies are well implemented, reflecting good privacy compliance. Contact information is clearly provided, but no explicit security or incident response policies are found. Overall, while Fluidtime demonstrates strong business credibility and technical maturity in content and privacy compliance, the absence of HTTPS significantly undermines its security posture. Addressing this critical issue should be a top priority to protect user data and maintain trust.

INNOS GmbH is a regional innovation and development company based in Osttirol, Austria, operating as a Public Private Partnership. The company focuses on strengthening local businesses and supporting startups through services such as consulting, networking, location services, and coworking spaces. Their market position is that of a key regional innovation facilitator with a strong network and community presence. Technically, the website is built on WordPress using the Avada theme and several plugins, including LayerSlider and Borlabs Cookie for cookie consent management. While the site has good SEO, content quality, and user experience, it lacks a valid SSL/TLS certificate, which severely impacts its security posture. The absence of HTTPS exposes users to risks and reduces trust. Privacy compliance is addressed with a comprehensive cookie policy and GDPR-aligned consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements.

The website adcockingram.com is currently a parked domain landing page primarily aimed at domain resale. It lacks substantive business content, contact information, or active services. The site is monetized through third-party advertising networks such as Afternic and ParkingCrew, indicating a business model focused on domain parking and sales. The technical infrastructure is minimal, hosted on Hetzner Online with a Caddy server, but lacks a valid SSL certificate and proper DNS records, resulting in no HTTPS support and poor security posture. The site content is in Finnish and provides a basic privacy policy accessible via a popup, but no cookie consent or terms of service are present. Overall, the site does not represent an active business or service provider but rather a domain marketplace participant.

Z

Zertifizierungsstelle ERC

e-r-c.at

0

ERC is a European certification body specializing in the railway sector, offering comprehensive vehicle approval services primarily in the German-speaking region of Europe. Their key services include TSI conformity assessment as a Notified Body, ECM certification, and DeBo and AsBo evaluations. The website is professionally designed using Joomla CMS with a Bootstrap framework, providing clear navigation and relevant content in German with English alternatives. Technically, the site uses a valid SSL certificate but lacks modern TLS protocol support and advanced security headers, which slightly reduces its security posture. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR explicit indicators. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy but would benefit from security and privacy improvements.

R

R Systems

rsystems.com

0

R Systems is a large, established digital product engineering company specializing in cloud, AI, automation, and software modernization services across multiple industries including technology, healthcare, finance, manufacturing, and telecommunications. The company holds recognized certifications and partner statuses, positioning itself as a major contender in its market segment. Technically, the website is built on WordPress with modern frameworks and plugins, optimized for SEO and mobile responsiveness. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses significant risks for data protection and user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website presents a professional and trustworthy business front but requires urgent security improvements to meet industry standards.

Security assessment incomplete. Successfully analyzed: sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, emailSecurity, dnsHealth. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, emailSecurity, dnsHealth. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: nis2, sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, emailSecurity, dnsHealth. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: nis2, sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, emailSecurity, dnsHealth. 16 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 19 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

farmgold.com

farmgold.com

0

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 19 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, emailSecurity, dnsHealth. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2, dnsHealth. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 20 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 23 security findings identified across all modules.