Security Directory

J

Jung Eco Building Solutions GmbH

jung-ingenieure.com

0

Jung Eco Building Solutions GmbH is a specialized engineering consultancy focused on climate engineering, green building design, and energy consulting primarily serving clients such as builders, planners, and architects in Germany. The company offers tailored energy and climate concepts, building envelope optimization, and certification services for sustainable buildings. Their market position is that of a niche player in the energy and sustainability sector with a small company size and a professional online presence. Technically, the website is built on WordPress with common libraries like Bootstrap and jQuery, but lacks HTTPS and modern security configurations, which is a significant risk. The absence of cookie consent mechanisms and incident response information indicates partial GDPR compliance. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

H

HOM Furniture

homfurniture.com

0

HOM Furniture is a large regional furniture retailer primarily serving the upper Midwestern United States, including Minnesota and surrounding states. The company offers a broad range of furniture, home décor, and design services both online and in physical stores. Their digital presence includes advanced features such as augmented reality visualization and room planning tools, indicating a moderate level of digital maturity. However, the website lacks a valid SSL certificate, which is a critical security shortfall that undermines user trust and data protection. While privacy policies are present, cookie consent mechanisms are missing despite the use of tracking and analytics tools. The site uses modern web technologies including MeteorJS and React, but performance data is lacking, suggesting potential optimization opportunities. Overall, the business appears legitimate and well-established, but security improvements are urgently needed to protect customer data and enhance trust.

REFLECTIONS Research & Consulting is a small consulting firm based in Austria, led by Franz Kühmayer, offering expertise, consulting services, visionary insights, references, and keynote speaking. The website is minimalistic with basic content and navigation but lacks critical security and privacy features. Technically, the site runs on Apache with simple HTML and CSS, but it lacks HTTPS and modern security headers, exposing visitors to potential risks. No privacy or cookie policies are present, and no contact information is provided, which impacts trust and compliance. Overall, the website's security posture is weak, and the digital maturity is low, requiring urgent improvements to secure communications and comply with privacy regulations.

The domain aisha.fi currently hosts a parked domain placeholder page provided by Hostinger, indicating no active business or website content. The page promotes Hostinger's hosting services and provides guidance for domain owners to set up hosting and manage nameservers. The technical infrastructure relies on Bootstrap, jQuery, Font Awesome, and Google Tag Manager, hosted on Hostinger with DNS managed by Cloudflare. However, the site lacks a valid SSL certificate and does not support HTTPS, which severely impacts security posture. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided, limiting trust and credibility. Overall, the site is non-operational as a business website and serves only as a parked domain.

The website rublys.com currently serves only a minimal placeholder page indicating hosting on host22.ssl-gesichert.at with no meaningful content or business information. The technical infrastructure is basic, running on Apache with an outdated PHP 5.3.29 version and no SSL/TLS certificate, resulting in unencrypted HTTP traffic. DNS records show standard MX entries using Google and Zendesk mail services, but no DNSSEC or CAA records are configured. Security posture is weak due to lack of HTTPS, missing security headers, and no HSTS policy. There are no privacy or cookie policies, no contact information, and no visible business or compliance documentation. Overall, the site appears inactive or improperly configured for public use, presenting significant security and trust concerns.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website radarcs.com is currently inaccessible beyond a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain is registered but lacks DNS records and a valid SSL certificate, resulting in no HTTPS support. The website's technical infrastructure is minimal and does not support modern security protocols. Security headers are present but insufficient to compensate for the lack of SSL and accessible content. No privacy, cookie, or terms of service policies are found, and no contact information or business details are available. Overall, the website exhibits a very low level of digital maturity and trustworthiness, with critical security and accessibility issues.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

Flexprint (part of delfortgroup AG)

delfortflexibles.com

0

Flexprint is a medium-sized, family-owned manufacturing company specializing in flexible packaging solutions for food, non-food, and tobacco products primarily in Eastern Europe. The company is part of the larger delfortgroup AG and has over 14 years of experience with a strong market presence in 40 countries and 200 clients. The website is built on WordPress using the Salient theme and WPBakery page builder, with a moderate level of technical sophistication but lacks a valid SSL certificate, which is a critical security concern. The site implements a cookie consent mechanism compliant with GDPR and links to a comprehensive privacy policy hosted on the parent company's domain. However, there is no visible terms of service or incident response policy. Security posture is weak due to missing HTTPS and modern TLS protocols, no HSTS, and lack of security headers. Business credibility is supported by multiple certifications and positive customer testimonials. Strategic improvements in security infrastructure and transparency policies are recommended to enhance trust and compliance.

G

Generasitogel

qpsneuro.com

0

The website presents itself as an online slot gaming platform targeting Indonesian users with QRIS payment options and low minimum deposits. It is built on the Squarespace platform and hosted behind Cloudflare. However, the site lacks a valid SSL certificate, exposing users to security risks. There are no privacy or cookie policies, and contact information is minimal, limited to a single email address found in a script, which appears to be a user account email rather than official contact. The site content is promotional but basic, with limited trust indicators and no social media presence. Performance data is missing, and the site shows poor privacy compliance and security posture. Overall, the site appears functional but lacks critical security and compliance features, reducing its trustworthiness and professionalism.

The website metacure.com currently serves only a minimal HTML page that immediately redirects visitors to a /lander path, with no visible content, metadata, or business information. The domain is registered and resolves to IP addresses likely hosted on Amazon AWS, but lacks a valid SSL certificate and does not support HTTPS, exposing visitors to security risks. No privacy, cookie, or terms of service policies are present, and no contact or company information is available on the site. The technical infrastructure is minimal and lacks modern security and performance optimizations, resulting in a poor user experience and low trustworthiness. From a security perspective, the absence of HTTPS and security headers, combined with no DNSSEC or CAA records, indicates a weak security posture. The domain's DNS configuration is incomplete, with no valid MX records, which may affect email deliverability and trust. No analytics or tracking technologies are detected, suggesting minimal digital maturity. Overall, the site appears to be either under development, abandoned, or a placeholder with no active business presence. Given these findings, the overall risk level is high due to lack of encryption, absence of policies, and no verifiable business identity. Strategic recommendations include obtaining and configuring a valid SSL certificate, implementing security best practices such as HSTS and security headers, publishing privacy and cookie policies to comply with regulations, and providing clear contact and business information to improve credibility and trust.

P

Peschke

peschkedesign.at

0

Peschke Design GmbH is a well-established design agency based in Vienna, Austria, specializing in product design, UX/UI, app development, 3D visualization, and industrial design. With over 50 years of experience and a strong portfolio of reputable clients such as Carl Zeiss AG, ENGEL AUSTRIA GmbH, and Austrian Airlines, the company positions itself as a trusted partner for digital transformation and innovative design solutions. Their business model focuses on delivering comprehensive design and development services tailored to client needs, supported by a professional and content-rich website that targets businesses seeking high-quality design expertise. Technically, the website is built on WordPress, hosted on WP Engine, and uses Cloudflare as a CDN and proxy. It employs modern web technologies including React, jQuery, and Swiper.js, and supports multilingual content via WPML. SEO and accessibility are well addressed with Yoast SEO and adherence to WCAG guidelines. However, performance metrics are not available, though mobile optimization and navigation clarity are good. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. No TLS protocols are enabled, and security headers are minimal. While cookies are set with secure and HttpOnly flags, the absence of HTTPS exposes users to potential interception risks. Privacy compliance is strong with GDPR-aligned policies and a cookie consent mechanism. No explicit security or incident response policies are published. Overall, the website demonstrates high professionalism and business credibility but suffers from a critical security misconfiguration regarding SSL/TLS. Addressing this would significantly improve the security posture and trustworthiness of the site.

A

Aug. RATH jun. Gmbh

rath.at

0

RATH Austria is a well-established manufacturer specializing in high-quality chamotte stones and related refractory products for heating and stove systems, with a history spanning over 130 years. The company targets stove builders, dealers, and industrial clients primarily in Austria and Europe. Their website is built on TYPO3 CMS and provides comprehensive product and service information, including planning services for stove builders. However, the technical infrastructure shows critical security gaps, notably the absence of HTTPS, which exposes users to significant risks. The site employs some security headers but lacks modern SSL/TLS protocols and DNS records, indicating potential configuration issues. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the business credibility is solid, but the security posture requires urgent improvement to protect user data and maintain trust.

Austro Engine GmbH is a medium-sized Austrian manufacturer specializing in innovative aircraft engines, including jet fuel piston engines and rotary engines for UAV and APU applications. As part of the Diamond Aircraft Group, it holds recognized certifications and serves a global aviation market including private owners, flight schools, and special mission operators. The website is professionally designed, content-rich, and well-branded, reflecting a strong market position in general aviation engine manufacturing. Technically, the site uses TYPO3 CMS and integrates modern marketing and analytics tools, but suffers from poor performance and lacks HTTPS, which is a critical security concern. Security headers are minimal and SSL/TLS configuration is inadequate, exposing the site to risks. Privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect users and enhance trust.

A

Aumayr GmbH

aumayr.com

0

Aumayr GmbH is a well-established Austrian manufacturing company specializing in ventilation and metal technology solutions with over 50 years of experience. The company offers a broad range of products and services including custom ventilation components, metal fabrication, installation, and maintenance. Their market position is strong regionally, supported by certifications such as ISO and the Austria Gütezeichen. The website reflects a professional digital presence with good content quality and clear navigation targeting industrial clients and business customers. Technically, the site is built on WordPress with modern plugins but lacks a valid SSL certificate, which is a critical security gap. Privacy compliance is well addressed through the use of a consent management platform and clear privacy and cookie policies. Overall, the business credibility is high, but the lack of HTTPS significantly impacts the security posture and overall risk profile.

N

NETxAutomation Software GmbH

netxautomation.com

0

NETxAutomation Software GmbH is a medium-sized company specializing in building management software and multi-protocol gateways for medium-sized and enterprise building automation projects. With over 20 years of experience and a presence in more than 100 countries, the company offers a comprehensive suite of products including the NETx BMS Platform and NETx Multi Protocol Server, alongside services such as project analysis, commissioning, and driver development. Their target audience includes system integrators, electrical engineers, and end customers seeking integrated building automation solutions. Technically, the website is built on Joomla CMS with jQuery and FontAwesome libraries, served by an Apache 2.4.62 server. However, the site lacks a valid SSL certificate and does not support HTTPS or modern TLS protocols, which significantly impacts its security posture. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. SEO is basic but includes meta tags and alternate language links. From a security perspective, the site implements some security headers such as Strict-Transport-Security and X-Content-Type-Options, and uses HttpOnly cookies. However, the absence of a valid SSL certificate, lack of TLS support, and missing advanced security headers reduce the overall security score. No explicit security or incident response policies are found, and no vulnerability disclosure or security.txt file is present. Overall, the website is professional and content-rich but suffers from critical security shortcomings due to missing HTTPS. Strategic improvements in SSL/TLS deployment and enhanced security policies are recommended to improve trust and compliance.

L

Ligabue

ligabue.it

0

Ligabue S.p.a. is a well-established company specializing in global food service and logistics for the maritime and energy sectors. The company operates in 16 countries with a network of 200 partners and suppliers across 417 ports, providing ship supply, cargo services, industrial services, and maritime hospitality. Their website reflects a professional and comprehensive digital presence, leveraging WordPress CMS and modern frontend technologies. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy policies are well addressed through a reputable third-party provider, indicating good compliance with GDPR standards. Overall, the company demonstrates strong business credibility and market positioning but must urgently address its security posture to align with best practices and regulatory requirements.

KAICIID is an intergovernmental organization dedicated to promoting intercultural and interreligious dialogue to foster peace globally. The website reflects a mature organization with a clear mission, targeting religious leaders, educators, and policymakers. It offers capacity building, dialogue platforms, and regional initiatives. Technically, the site is built on Drupal 10 with modern frontend libraries and hosted on Pantheon, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security posture. Privacy compliance is basic, with no cookie consent mechanisms despite tracking scripts. Contact information and social media presence are well established, supporting business credibility. Overall, the site is professional and content-rich but requires urgent security improvements.

Q

QuoVadis

quovadisglobal.com

0

QuoVadis, now a part of DigiCert, is a well-established international Certification Service Provider specializing in digital certificates, SSL/TLS, managed PKI, digital signature solutions, and root signing. The company holds strong accreditations such as WebTrust and ETSI and serves a broad clientele including top banks, e-commerce sites, and Fortune 500 companies primarily in Europe and Bermuda. Their business model focuses on providing high-assurance digital identity and security services with local compliance and disaster recovery capabilities. The website reflects a professional and consistent brand presence with comprehensive service offerings and multiple country offices.

Georg Fischer Ltd is a well-established Swiss enterprise specializing in manufacturing and providing flow solutions across industrial, infrastructure, and building sectors. The company operates through four main divisions offering piping systems, casting solutions, machining solutions, and building flow solutions. The website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and job seekers. Technically, the site leverages Adobe Experience Manager, integrates modern analytics and marketing tools, and provides a good user experience with mobile optimization and accessibility features. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which is a critical issue that significantly impacts the overall security score. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by detailed investor relations and trust indicators. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

N

N26 SE

number26.de

0

N26 SE operates a leading mobile-first digital banking platform in Germany and Europe, offering a range of financial services including checking accounts, savings, investments, and a mobile telecom service branded as N26 SIM. The company holds a full banking license from BaFin, ensuring regulatory compliance and deposit protection up to 100,000 EUR. The website is professionally designed with excellent content quality and clear navigation, targeting consumers who prefer intuitive, app-based banking solutions. Technically, the site leverages modern web technologies such as React, Contentful CMS, and cloud hosting via AWS CloudFront, with integrated analytics and marketing tools like Datadog and Google Tag Manager. However, a critical security issue is the invalid SSL certificate and lack of modern TLS support, which undermines the security posture. Security headers and policies are well implemented, but SSL/TLS must be fixed to ensure trust and compliance. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent SSL remediation to maintain security and user trust.

P

PolyQuest, Inc.

polyquest.com

0

PolyQuest, Inc. is a medium-sized manufacturing company specializing in the distribution and production of virgin and recycled thermoplastic resins including PET, rPET, PP, PE, and PS. Positioned as the largest distributor of PET resins in North America and a leading manufacturer of recycled PET products, the company serves manufacturers and converters across multiple applications such as bottles, films, textiles, and injection molding. The website reflects a professional business model with clear product and application information, targeting industry customers and suppliers. Technically, the site is built on WordPress with Elementor and uses Cloudflare for hosting and CDN services, but lacks a valid SSL certificate, which is a critical security shortfall. The site includes a Salesforce-integrated contact form collecting detailed lead information, and uses Google Analytics for user tracking without a visible cookie consent mechanism, indicating limited privacy compliance. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly lowers the security posture. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is functional and professional but requires urgent improvements in security and privacy compliance to enhance trust and protect user data.

H

Hotel Das Innsbruck GmbH & CO. KG

hotelinnsbruck.com

0

Hotel Das Innsbruck GmbH & CO. KG operates a 4-star hotel located in the historic center of Innsbruck, Austria. The business offers a range of hospitality services including accommodation, wellness and spa facilities, conference and seminar hosting, and dining options. The website is professionally designed with excellent content quality and clear navigation, targeting tourists and business travelers seeking premium lodging and event services in Innsbruck. The company has a strong market position supported by recognized certifications such as the TripAdvisor Certificate of Excellence and Gault Millau recommendations. Technically, the website uses a modern CMS (Condeon) and popular JavaScript libraries, but suffers from slow performance and lacks HTTPS, which is a critical security gap. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policy. Business credibility is high with transparent contact information and structured data markup.

E

Engel + Falaise | Studio

efstudio.com

0

Engel + Falaise | Studio is a small boutique design studio specializing in contemporary residential home design, serving clients primarily in the San Francisco Bay Area and La Romieu, France. The website showcases a portfolio of projects and offers services including full residential design and virtual design. The site is built on the Squarespace platform, leveraging modern web fonts and a clean, professional design with clear navigation. However, the technical infrastructure lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. Security headers are minimal, and no advanced security or privacy policies are publicly available. Contact information is limited to an email address, with no phone numbers or physical addresses explicitly provided on the site. Overall, the site presents a professional image but requires significant improvements in security and privacy compliance to meet modern standards.

F

Friendly Fire Communications GmbH

friendlyfire.at

0

Friendly Fire Communications GmbH is a Vienna-based technology company specializing in advanced 3D visualizations, virtual production, and interactive digital experiences. With approximately 20 years of experience and a client portfolio of over 100 brands, they offer a broad range of services including product visualization, real-time 3D configurators, digital brand storytelling, and virtual production solutions. Their business model focuses on delivering customized digital transformation packages tailored to client needs, targeting businesses seeking innovative digital marketing and product engagement tools. Technically, the website is built on WordPress with modern plugins such as Elementor Pro, Yoast SEO, and WPML for multilingual support. The site integrates multiple analytics platforms including Google Analytics and Matomo, and employs performance optimizations via WP Rocket. Hosting is provided by World4You. The site is well-structured, mobile-optimized, and rich in multimedia content, reflecting a mature digital presence. From a security perspective, the site lacks HTTPS, which is a critical vulnerability exposing users to data interception risks. Other security best practices such as HSTS, DNSSEC, and security headers are not implemented. The site does have a comprehensive privacy policy and cookie consent mechanism, indicating good privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, while the business and website demonstrate professionalism and strong market positioning, the absence of HTTPS significantly undermines security posture and user trust. Immediate implementation of SSL/TLS is strongly recommended to mitigate this critical risk.

M

Media Magic Video Production Services

mediamagic.tv

0

Media Magic Video Production Services is a small, established business based in Southern California specializing in video production services for businesses and nonprofits since 1984. Their offerings include website videos, fundraising presentations, trade show videos, commercials, PSAs, and training programs. The website is built on Squarespace, leveraging standard web technologies and Google Analytics for tracking. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security posture. Contact information is clearly provided, and social media presence is active across multiple platforms. Despite good content quality and professional presentation, the absence of HTTPS and privacy policies introduces compliance and trust concerns.

A

Akras Flavours GmbH

akras.at

0

Akras Flavours GmbH is an established Austrian manufacturer specializing in flavors and ingredients for the food and beverage industry. Founded in 1938, the company has evolved into an international leader offering a broad portfolio of aroma and beverage base products. Their website reflects a mature digital presence with comprehensive content, multilingual support, and active engagement through news and trend analytics. Technically, the site is built on WordPress with modern plugins and SEO optimizations, though performance is moderate and accessibility is basic. Security posture is a concern due to the absence of a valid SSL certificate and lack of HTTPS, which exposes the site to risks and undermines user trust. Privacy compliance is well addressed with a detailed privacy policy and cookie consent mechanism. Overall, the business demonstrates strong credibility and trust signals but must urgently address its SSL/TLS configuration to improve security and user confidence.

T

Urlaub & Reisen direkt beim Reiseveranstalter buchen – TUI.at

tui.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 25 security findings identified across all modules.

2

2beFOUND Performance Marketing GmbH

2befound.at

0

2beFOUND Performance Marketing GmbH is a specialized digital marketing agency based in Austria, focusing on search engine marketing and optimization services. The company holds a Google Partner certification for 2025, indicating recognized expertise in Google Ads and related services. Their website is built on the Jimdo CMS platform and targets German-speaking business clients seeking to improve their online visibility and search engine rankings. The site content is professionally presented with clear navigation and relevant marketing messaging. Technically, the website uses standard web technologies and integrates Google Analytics for visitor tracking. However, the lack of a valid SSL certificate and HTTPS support is a significant security shortfall that undermines user trust and data protection. The company provides clear contact information including a physical address and phone number, but lacks a Terms of Service page and explicit incident response or security policies. Overall, the business appears credible and established, but the website's security posture requires urgent improvement to meet modern standards.

D

DRK-Kreisverband Nordwestmecklenburg e. V.

drk-nwm.de

0

DRK-Kreisverband Nordwestmecklenburg e. V. is a regional non-profit organization providing a wide range of social, healthcare, emergency, and community services in the Nordwestmecklenburg area of Germany. The website serves as an information portal for their services, events, and engagement opportunities, targeting local residents, families, seniors, and volunteers. The organization is part of the larger Deutsches Rotes Kreuz network, emphasizing humanitarian aid and social support. Technically, the website is built on TYPO3 CMS and hosted by dt-internet.de, but it lacks a valid SSL certificate, which is a critical security shortfall. The site includes cookie consent mechanisms and uses Google Analytics with IP anonymization, indicating some privacy compliance efforts. However, the absence of HTTPS and modern security headers exposes the site to risks and undermines user trust. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect visitors and comply with best practices.

P

PVH Corp.

pvh.com

0

PVH Corp. is a leading global apparel company known for its iconic brands Calvin Klein and Tommy Hilfiger. The company operates in over 40 countries with a large workforce and focuses on delivering fashion and lifestyle products. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive business information targeting consumers, investors, and job seekers. Technically, the site uses modern frameworks like Vue.js and is hosted on Microsoft IIS with Akamai CDN support, but lacks a valid SSL certificate, which is a critical security gap. Security headers are properly configured, but the absence of HTTPS and modern TLS protocols significantly reduces the security posture. Privacy compliance is partially addressed with a clear privacy policy and GDPR indicators, but no cookie consent mechanism is present. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

Wenzel Logistics GmbH

wenzel-logistics.com

0

Wenzel Logistics GmbH is a medium-sized Austrian transport and logistics company offering a broad range of services including intermodal transport, road freight, sea freight, warehousing, and special transports across Europe. The company maintains a professional online presence with clear service descriptions and active social media channels. Technically, the website is built on WordPress using Elementor and optimized with WP Rocket, but critically lacks a valid SSL certificate, impacting security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. The domain registration is consistent with the business claims, indicating legitimacy. Strategic recommendations include immediate SSL implementation and enhanced security headers to improve trust and compliance.

A

Angst+Pfister

angst-pfister.com

0

Angst+Pfister is a large Swiss-based engineering and manufacturing company specializing in custom materials design and engineering solutions. With over 300 engineers and a global presence across 24 locations, the company serves diverse industries including food & beverage, pharma, automotive, and energy. Their business model focuses on B2B partnerships delivering tailored solutions from design to production and distribution. The website reflects a mature digital presence with professional design, comprehensive content, and multilingual support. However, the absence of a valid SSL/TLS certificate is a critical security gap that undermines trust and data protection. Privacy policies and cookie consent mechanisms are in place, indicating GDPR compliance. The company maintains active social media channels and an online shop partner domain, supporting their market reach and customer engagement.

T

Tiki Surf

twoseasons.co.uk

0

Tiki Surf operates an e-commerce platform specializing in skate, surf, and snow sports products, including clothing, accessories, and equipment. The website is built on the Shopify platform, leveraging multiple third-party marketing and analytics tools such as Google Analytics, Klaviyo, and Trustpilot to enhance customer engagement and trust. The business targets enthusiasts in the UK market, offering a broad product range with a professional and consistent brand presentation. Technically, the site uses modern web technologies and is hosted via Cloudflare and Google Cloud Platform, ensuring scalability and reliability. However, the absence of a valid SSL certificate is a significant security concern that undermines user trust and data protection. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Overall, the site demonstrates a solid e-commerce presence but requires urgent remediation of its SSL configuration to improve security posture.

P

pewag International GmbH

pewag.com

0

pewag International GmbH is a historic Austrian manufacturer specializing in chains and lifting solutions with a global market presence. The company offers a broad portfolio including snow chains, forestry technique, conveyor systems, and DIY products, supported by digital configurators and advisory tools. The website reflects a mature digital infrastructure built on WordPress with multilingual support and integrated analytics and consent management tools. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security vulnerability, undermining user trust and data protection. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, pewag demonstrates strong business credibility and content quality but must urgently address its security posture to align with industry best practices.

V

VISITECH a.s.

visitech.cz

0

VISITECH a.s. is a Czech-based technology company specializing in cybersecurity, IT infrastructure, and enterprise systems. The company positions itself as a reliable partner for digital transformation and cybersecurity services, offering unique solutions such as the SOC365 security monitoring service. Their market position is strong within the Czech Republic, supported by partnerships with leading global IT vendors and a portfolio of case studies demonstrating successful implementations. The website content is professionally crafted, targeting business clients seeking advanced IT and security solutions. Technically, the website is built on WordPress with modern plugins and frameworks such as Yoast SEO, Bootstrap, and Slick Carousel, indicating a mature digital infrastructure. However, the lack of a valid SSL certificate and HTTPS support is a critical security flaw that undermines trust and exposes users to risks. The site includes GDPR-compliant privacy and cookie policies with a consent mechanism, reflecting good privacy practices. Security posture is currently weak due to missing HTTPS and modern TLS protocols, absence of HSTS, and no OCSP stapling. While content security policy headers are present, the overall SSL/TLS configuration requires urgent improvement. No explicit incident response or vulnerability disclosure information is available, which could be enhanced to improve security transparency. Overall, VISITECH a.s. demonstrates a solid business and technical foundation but must prioritize securing its web presence with proper SSL/TLS implementation to maintain credibility and protect client data. Strategic recommendations include immediate SSL deployment, enhanced security headers, and publishing incident response contacts.

B

Billa BG

billa.bg

0

BILLA Bulgaria operates as a major retail supermarket chain with a strong presence in the Bulgarian market, offering a wide range of food and non-food products, including own brands and partner brands. The company emphasizes customer loyalty through its BILLA Card program and engages actively in social responsibility initiatives. Technically, the website is built on modern frameworks such as Vue.js and Nuxt.js, hosted on Google Cloud, and integrates payment services like Payone. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocols, which is a critical issue. Privacy and cookie policies are comprehensive and GDPR compliant, supporting good privacy compliance. Overall, the website is professional and content-rich but requires urgent security improvements to ensure safe user interactions.

Cegeka is a well-established European IT company specializing in end-to-end IT solutions, consulting, and digital transformation services. The company targets enterprise clients across multiple sectors including technology, energy, finance, telecommunications, manufacturing, and government. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation. Technically, the site is built on HubSpot CMS, leveraging modern web technologies such as Lit and custom web components, and is hosted behind Cloudflare. However, the SSL certificate is invalid or missing, which significantly impacts the security posture. Security headers are well implemented but cannot fully compensate for the lack of proper HTTPS. Privacy and cookie policies are present and GDPR compliant, though no explicit security or incident response policies are found. Overall, the website demonstrates strong business credibility and marketing sophistication but requires urgent SSL remediation to improve security and trust.

M

Motrada Handels GmbH

motrada.net

0

Motrada Handels GmbH is a specialized IT company based in Vienna, Austria, providing customized white-label remarketing platforms primarily for leasing companies, fleet managers, and importers across Europe. Established in 2005, the company has delivered over 60 platforms in 17 countries, positioning itself as a European specialist in this niche. The website reflects a professional and consistent brand image with clear business descriptions and target audience focus. Technically, the site is built on WordPress with modern plugins and frameworks such as Elementor and Slider Revolution, but lacks a valid SSL certificate, which is a critical security shortfall. The presence of cookie consent mechanisms and privacy policies indicates good privacy compliance, although no explicit security or incident response policies are found. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

K

Kirchliche Pädagogische Hochschule Edith Stein

kph-es.at

0

The Kirchliche Pädagogische Hochschule Edith Stein is a regional educational institution in Austria specializing in teacher training and pedagogical education. It operates across four locations in western Austria and offers a range of study programs, continuing education, and research activities. The website is professionally designed and targets prospective and current educators, social pedagogues, and related professionals. The institution is positioned as a reputable academic entity with a clear focus on education and professional development. Technically, the website is built on TYPO3 CMS and uses Apache server technology. It integrates Google Tag Manager for analytics but lacks HTTPS, which is a critical security shortfall. The absence of SSL/TLS encryption exposes users to potential data interception risks and undermines trust. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is evident. Contact information is provided primarily via a contact page and footer address, with no direct emails or phone numbers visible on the main page. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

TE Connectivity is a global enterprise specializing in the design and manufacture of connectors, sensors, and electronic components that enable innovation in data, power, signal, and sensing connectivity. With over 80 years of industry experience, TE Connectivity serves a broad range of sectors including energy, transportation, and technology. The company operates a comprehensive digital presence with a well-structured website offering extensive product information, customer engagement tools, and resources for engineers and industrial customers. Technically, the website leverages modern frameworks such as Angular, integrates with Adobe Experience Manager, and uses Akamai CDN for performance and security. However, a critical security gap exists due to the absence of a valid SSL certificate and disabled TLS protocols, which significantly undermines the site's security posture. Privacy and cookie policies are well implemented, reflecting compliance with GDPR and other regulations. Overall, TE Connectivity demonstrates strong business credibility and digital maturity but must urgently address its SSL/TLS configuration to ensure secure communications and maintain trust.

R

Raiffeisen Informatik Technical Services GmbH

ri-s.at

0

Raiffeisen Informatik Technical Services GmbH is a specialized IT service provider focused on delivering on-site user support and field services primarily for the Raiffeisenbanken group, RBI Konzern, and UNIQA in Austria. The company positions itself as a market leader in providing high-quality, timely, and competent IT and security services tailored to banking and insurance sectors. Their service portfolio includes security technology, banking technology, print management, IT services, and telecommunications. The website content and branding consistently reflect their business focus and certifications, including ISO 9001 and ISO 27001, underscoring their commitment to quality and security. Technically, the website is built on WordPress with Apache server infrastructure and uses jQuery and custom JavaScript for interactivity. DNS is managed via Cloudflare secondary nameservers, but the SSL/TLS configuration is critically lacking, with no valid certificate installed and no TLS protocols enabled, which severely impacts the security posture. Performance metrics indicate slow loading, and while mobile optimization is good, accessibility and SEO optimizations are basic. Security-wise, the site implements several important HTTP security headers such as Content Security Policy, X-Frame-Options, and X-XSS-Protection, but these are undermined by the absence of HTTPS. The lack of OCSP stapling, session resumption, and certificate transparency compliance further weakens the security stance. No cookie consent mechanism or incident response contact information is present, which may affect privacy compliance and incident handling readiness. Overall, the website demonstrates a moderate level of professionalism and business credibility but suffers from critical security configuration issues that must be addressed urgently. Strategic improvements in SSL/TLS deployment, privacy compliance, and incident response transparency are recommended to enhance trust and security posture.

The website cismogroup.com currently serves as a minimal placeholder with no substantive content or business information. The site lacks essential elements such as privacy policies, contact details, and meaningful metadata. Technically, it is hosted on an Apache server but does not support HTTPS due to the absence of a valid SSL certificate, which critically undermines its security posture. The security headers present are insufficient to compensate for the lack of encryption and modern TLS protocols. Overall, the site exhibits poor digital maturity and minimal user engagement features. The lack of forms, social media links, or analytics indicates a very basic or inactive web presence. Security risks are elevated due to missing SSL and weak security configurations, and no compliance with privacy regulations is evident. Strategic recommendations include immediate SSL implementation, content development, and privacy compliance to improve trust and security.

Kellanova is a global leader in the food manufacturing sector, specializing in snacking, cereals, noodles, and plant-based foods with a strong portfolio of iconic brands. The company targets consumers worldwide, investors, and potential employees, operating at an enterprise scale with a mature domain presence of over 22 years. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the site leverages modern frameworks such as Bootstrap and Adobe Experience Manager, supported by Akamai CDN and integrated with marketing and privacy tools like Google Tag Manager and OneTrust. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the security posture and user trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The WHOIS data confirms strong domain registration practices and legitimacy. Overall, while the business and content aspects are strong, the lack of HTTPS is a major risk that should be remediated promptly.

Z

zustellpartner.at

zustellpartner.at

0

zustellpartner.at is a specialized regional job platform based in Austria, focusing on providing self-employed newspaper and food delivery jobs primarily in the regions of Steiermark, Kärnten, and Osttirol. The website targets pensioners, students, job seekers, and early risers looking for flexible part-time work. The business model revolves around connecting job seekers with delivery opportunities on a self-employed basis, emphasizing flexible scheduling and local engagement. The site is well-positioned within its niche market, offering clear job listings and application pathways.

K

Konfigurator

druck-und-zustellung.at

0

The website druck-und-zustellung.at presents a minimalistic Angular-based configurator interface with no visible business content, contact information, or legal pages such as privacy policy or terms of service. The technical infrastructure includes modern frontend technologies like Angular and the Didomi Consent SDK for cookie consent management, but lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security deficiency. Security headers are partially implemented, but the absence of TLS protocols and cipher suites severely weakens the security posture. The domain registration appears consistent with an Austrian business presence, but the lack of visible business details and minimal content reduces trust and credibility. Overall, the site is functional but immature in content and security maturity.

H

Hill Woltron Management Partner GmbH

hill-woltron.com

0

Hill Woltron Management Partner GmbH is a well-established HR consulting and personnel placement firm operating primarily in Austria and Germany. With over 50 years of experience as an owner-managed family business, it offers a broad range of HR services including recruiting, personnel development, management audits, and employee surveys. The company targets both corporate clients and job candidates, leveraging a strong network and professional expertise to connect people with career opportunities. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website is built on WordPress using Elementor as the page builder, supported by LiteSpeed Cache for performance optimization. It integrates Google Analytics and Google Tag Manager for analytics and marketing purposes. However, the website lacks HTTPS, which is a critical security shortfall. The site is mobile-optimized and SEO-friendly but suffers from slow performance due to missing SSL and possibly other optimizations. From a security perspective, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. While no other major vulnerabilities or exposed sensitive data were detected, the lack of HTTPS exposes users to risks such as data interception. The site includes a GDPR-compliant privacy and cookie policy with a consent mechanism, but no explicit security policy or incident response information is available. Overall, Hill Woltron presents a credible and professional business with strong market positioning in HR services. The primary risk is the missing HTTPS, which should be addressed urgently to protect user data and improve trust. Strategic recommendations include implementing SSL/TLS, enhancing security headers, and publishing security and incident response policies to strengthen compliance and user confidence.

Magenta.at is the official website of T-Mobile Austria GmbH, a leading telecommunications provider in Austria offering mobile, internet, TV, and bundled services for both consumers and business customers. The website is professionally designed with rich content, clear navigation, and strong branding consistency. It targets a broad audience including private and business users, providing detailed product offerings and customer support resources. Technically, the site is built on Adobe Experience Manager with modern web technologies including AngularJS and jQuery, and integrates marketing and analytics tools such as Google Tag Manager and Usercentrics CMP. However, the website suffers from a critical security issue: the SSL certificate is invalid and no TLS protocols are enabled, severely impacting the security posture. Security headers are partially implemented, but improvements are needed to ensure secure communications. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms in place. Contact information is available primarily via phone and web forms, but no direct company emails are published. Overall, the site is trustworthy and legitimate, with WHOIS data consistent with the company identity. Strategic security improvements are recommended to restore full HTTPS security and enhance user trust.