Security Directory

Security assessment completed with an overall score of 0/100 (unknown risk). 12 critical issues require immediate attention. Total of 35 security findings identified across all modules.

LiSEC is a well-established Austrian manufacturer specializing in flat glass processing machinery and related software solutions. With over six decades of experience and a strong global export presence, LiSEC positions itself as a technology leader in the manufacturing sector, offering robust, innovative, and high-quality products. The company supports its customers with comprehensive after-sales services, training, and digital tools, emphasizing long-term partnerships and trust. Technically, the website is built on the TYPO3 CMS platform, hosted behind Amazon CloudFront CDN, and integrates marketing and analytics tools such as HubSpot and Google Tag Manager. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and cookie policies are present and appear GDPR compliant, supporting responsible data handling practices. Overall, the website demonstrates strong business credibility and professional presentation but requires urgent security improvements to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr. 15 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 20 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 27 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Website security analysis completed with a risk score of 40/100.

Security assessment incomplete. Successfully analyzed: nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr. 16 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr. 16 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

Microtronics Engineering GmbH

microtronics.at

0

Microtronics Engineering GmbH is a medium-sized Austrian company specializing in technology solutions for environmental technology and energy management. Their offerings include advanced data loggers, sensors, and an IoT platform designed for reliable data transmission even in harsh environments. The company has a strong international presence with partners in 80 countries and a focus on B2B markets in energy and environmental sectors. Technically, the website is built on WordPress with WooCommerce and Elementor, integrating marketing and analytics tools such as HubSpot and Google Analytics. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and enhance credibility.

K

Katun Corporation

katun.com

0

Katun Corporation is a well-established global provider of OEM-compatible imaging supplies, photoreceptors, and parts for copiers, printers, and multifunction printers (MFPs). With over 45 years in the industry, Katun serves a broad B2B audience including distributors and businesses worldwide. The company emphasizes quality, cost savings, and service levels, supported by a professional and content-rich website that highlights its global reach and product offerings. Technically, the website is built on WordPress with modern SEO and marketing tools such as Yoast SEO and Visual Website Optimizer, and supports multiple languages via WPML. However, the site suffers from a critical security deficiency: the absence of a valid SSL/TLS certificate and HTTPS support, which severely impacts its security posture and trustworthiness. Additionally, no cookie consent mechanism is present despite the use of tracking scripts, indicating partial privacy compliance. Overall, the business credibility and content quality are strong, but the security shortcomings require urgent remediation.

F

First Advisory

first.li

0

First Advisory is a well-established financial advisory and wealth management firm with over 70 years of private ownership and a strong presence in Liechtenstein and international financial centers. The company offers a broad range of services including asset structuring, legal and tax consulting, investment advisory, and family office services, targeting private and corporate clients seeking comprehensive financial solutions. The website reflects a mature digital presence built on Concrete CMS, with modern web technologies and a focus on user experience and multilingual support. Security posture is solid with appropriate HTTP security headers and cookie consent mechanisms, though DNSSEC and CAA records are absent and could be improved. Contact information is clearly provided with GDPR-compliant forms and multiple international office contacts. Overall, the site demonstrates high professionalism and trustworthiness, aligning well with the company's long-standing market position.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Website security analysis completed with a risk score of 40/100.

Eckes-Granini Group GmbH is a leading European manufacturer and provider of fruit juices and fruit-based beverages, operating as a family-owned business with a strong market position in Europe. The company emphasizes product quality, sustainability, and innovation in its offerings. The website reflects a professional digital presence with clear branding and comprehensive business information, targeting European consumers interested in healthy fruit beverages. Technically, the site uses modern frameworks such as Astro and a headless CMS (Storyblok), hosted on Microsoft Azure, with integration of Google Tag Manager for analytics and marketing. However, the website lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security vulnerability. Security headers are partially implemented but some important protections like X-XSS-Protection are disabled. Privacy and legal compliance are well addressed with dedicated pages and a cookie consent mechanism. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Hoval Österreich operates as a leading provider of technologically advanced heating and climate control solutions in Austria, targeting both residential and commercial sectors. Their product portfolio includes heating systems for heat pumps, oil, gas, biomass, and solar, complemented by climate technology solutions for heating, cooling, and ventilation. The company maintains a strong market position supported by a comprehensive website that offers detailed product information, customer references, and service options including customer support and online ordering via myHoval. Technically, the website is built on the SAP Commerce (Hybris) platform, integrating modern marketing and analytics tools such as Google Tag Manager, Google Analytics, and OneTrust for cookie consent management. However, performance is moderate with slow DNS resolution and no page size or load time data available. Mobile optimization and SEO are well addressed, but accessibility is basic. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, significantly weakening its security posture. While security headers like HSTS, X-Frame-Options, and XSS protection are present, the absence of a valid certificate and weak SSL/TLS configuration are critical issues. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Contact information is available but lacks explicit security policy or incident response details. Overall, the website is professional and trustworthy from a business and content perspective but requires urgent improvements in SSL/TLS configuration to enhance security and user trust. Strategic recommendations include fixing the SSL certificate, enabling modern TLS versions, and tightening CORS policies.

S

Stadtgemeinde Amstetten

amstetten.at

0

The website amstetten.at serves as the official online portal for the Stadtgemeinde Amstetten, a municipal government entity in Austria. It provides residents and visitors with comprehensive information about city administration, services, events, and public resources. The site targets local citizens and stakeholders, offering key services such as event announcements, service directories, job postings, and public transportation information. The business model is that of a government entity focused on public service delivery and community engagement. Technically, the website is built on the WordPress CMS platform, utilizing common plugins such as Yoast SEO for search optimization, WP Statistics for analytics, and Complianz for GDPR-compliant cookie management. The site employs Apache as the web server and includes JavaScript libraries like jQuery and RoyalSlider for interactive features. While the site is mobile-optimized and accessible, performance data is incomplete, and the site currently lacks a valid SSL certificate, resulting in no HTTPS support. From a security perspective, the absence of a valid SSL certificate is a critical vulnerability, exposing users to potential data interception risks. The site does not implement modern TLS protocols, HSTS, or OCSP stapling, which are essential for secure communications. However, no known vulnerabilities such as Heartbleed or POODLE were detected. Privacy compliance is strong, with a clear cookie consent mechanism and a comprehensive privacy policy aligned with GDPR requirements. Overall, the website is a well-structured and professionally maintained municipal portal with good content quality and user experience. The primary risk lies in the lack of HTTPS, which should be addressed urgently to protect user data and enhance trust. Strategic recommendations include implementing a valid SSL certificate, enabling modern security protocols, and enhancing security headers to improve the site's security posture and compliance.

The domain phagomed.com is registered since 2016 and appears to be a mature domain with no DNS or subdomain takeover vulnerabilities. However, the website content is inaccessible, returning only a minimal 'Not Found' message, indicating the site is either offline or under construction. There is no SSL certificate installed, and the site is served over HTTP only, which significantly reduces security and trustworthiness. No metadata, business information, or contact details are available on the site, limiting the ability to assess the business or its market position. The technical infrastructure is minimal with no modern technologies or frameworks detected, and no performance or SEO optimizations are present. Security posture is weak due to lack of HTTPS and security headers, and no privacy or cookie policies are found, indicating non-compliance with GDPR and other privacy regulations. Overall, the site is not currently functional or professionally maintained, posing a risk to visitors and limiting business credibility.

Website security analysis completed with a risk score of 40/100.

R

Redline Enterprise GmbH

redlineenterprise.com

0

Redline Enterprise GmbH is a leading Austrian full-service provider specializing in event technology, offering comprehensive solutions including lighting, sound, video, LED technology, live streaming, and stage and rigging construction. The company serves a diverse clientele including international brands, renowned events, and top musical acts, positioning itself as a trusted partner in the media and event production industry. Their website is professionally designed, content-rich, and targets event organizers, corporate clients, and production companies. Technically, the site runs on TYPO3 CMS with modern PHP and uses common web technologies such as jQuery and Bootstrap. However, the absence of a valid SSL certificate and proper HTTPS configuration significantly impacts their security posture. While security headers are partially implemented, critical improvements are needed to secure user data and communications. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website reflects a medium-sized enterprise with a solid market position but requires urgent security enhancements to align with best practices.

E

EQUES Advisors

equesadvisors.com

0

EQUES Advisors is a boutique advisory firm based in Vienna, Austria, specializing in transforming potential into growth by connecting investors, projects, and ideas. The firm emphasizes trust, discretion, and strategic alignment to facilitate successful business partnerships. Their key services include investor search and selection, information and knowledge search, real estate advisory, and strategic business development. The website reflects a professional and consistent brand image targeting investors and businesses seeking advisory services. Technically, the site is built on the Wix platform using modern JavaScript frameworks like React, but lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. The site has basic mobile optimization and SEO metadata but lacks comprehensive privacy and cookie policies, impacting privacy compliance. Security headers are partially implemented, but the absence of SSL and modern TLS protocols significantly lowers the security posture. Overall, the website is functional and professional but requires urgent improvements in security and privacy compliance to enhance trust and protect user data.

R

Home

relocation.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 33 security findings identified across all modules.

A

AutomationX GmbH

automationx.com

0

AutomationX GmbH is a mature, medium-sized Austrian company specializing in automation solutions for manufacturing, food, construction, and infrastructure sectors. Their business model focuses on consulting, system integration, service, and development of automation software and hardware, targeting industrial clients. The website reflects a professional and consistent brand presence with clear service offerings and international project experience. Technically, the site is built on the Contao CMS with Apache server hosting by graz4u.at, using common web technologies like jQuery and Google Tag Manager. However, the site lacks a valid SSL certificate and modern TLS support, which significantly impacts security posture. Cookie consent mechanisms and privacy policies are present but basic. Overall, the site is functional but requires critical security improvements to meet modern standards.

B

BDO

bdo.com.qa

0

BDO Qatar operates as part of the global BDO network, providing professional audit, advisory, tax, and business outsourcing services. The firm targets businesses in Qatar and internationally, emphasizing exceptional client service and global connectivity. The website reflects a professional services firm with a consistent brand and good content quality. Technically, the site uses modern frameworks including React and Kentico CMS, hosted on Microsoft Azure, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Security headers are partially implemented, but the absence of HTTPS and TLS protocols severely impacts the security posture. Privacy and cookie policies exist but are basic, with a consent mechanism in place. Contact information is primarily via contact forms and social media, with no direct emails or phone numbers disclosed. Overall, the site is functional and professional but requires urgent security improvements to protect user data and build trust.

T

T3K-Forensics GmbH

t3k-forensics.com

0

T3K-Forensics GmbH operates the website t3k-forensics.com, presenting itself as a global leader in AI-powered digital forensic solutions, primarily serving law enforcement and private enterprises. Their key offerings include AI-based media classifiers designed to detect illicit content such as child sexual abuse material, terrorism-related content, and other harmful media. The company emphasizes its expertise in expert witness work and digital forensics consulting, leveraging machine learning to accelerate investigations and reduce emotional burdens on investigators. The website is professionally designed, with clear navigation and comprehensive content about their products and partnerships.

H

Hotel Elisabeth

hotel-elisabeth-tirol.com

0

Hotel Elisabeth is a well-established family hotel located in Kirchberg, Tyrol, Austria, offering a blend of traditional hospitality and modern amenities including wellness spa, outdoor activities, and event hosting. The website reflects a strong market position targeting families and multi-generational guests seeking a premium alpine experience. Technically, the site is built on TYPO3 CMS with integrations for marketing and consent management, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and disabled TLS protocols. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

W

WOMEN AGAINST VIOLENCE EUROPE

wave-network.org

0

WOMEN AGAINST VIOLENCE EUROPE (WAVE) is a well-established non-profit network comprising over 180 European women’s NGOs dedicated to preventing and protecting women and children from violence. The organization focuses on capacity building, advocacy, research, and awareness raising, positioning itself as a leading entity in the European women's rights sector. Their website reflects a professional and content-rich platform targeting NGOs, professionals, policymakers, and the general public interested in gender equality and violence prevention. Technically, the website is built on WordPress with a modern plugin ecosystem including Gravity Forms, Event Tickets, and MemberPress. While the design and content quality are excellent, technical performance is moderate, and mobile optimization is good. The site uses Matomo for analytics and Borlabs Cookie for privacy compliance, indicating a mature approach to user data and consent. Security-wise, the site suffers from a critical issue: an invalid or missing SSL certificate, resulting in no active TLS protocols and weak encryption posture. Although some security headers are present, the lack of proper HTTPS implementation significantly lowers the security score. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information and consent mechanisms. Overall, the site is trustworthy and professionally managed but requires urgent remediation of SSL/TLS issues to ensure secure user interactions and maintain credibility. Strategic improvements in security infrastructure will enhance user trust and compliance with modern web standards.

P

Pan American Energy S.L., sucursal Argentina

pan-energy.com

0

Pan American Energy (PAE) is a leading integrated private energy company operating primarily in Argentina and the Latin American region. The company focuses on upstream oil and gas operations, downstream refining and distribution, and renewable energy projects. It positions itself as a major producer, employer, and investor in the energy sector of Argentina, with presence in neighboring countries. The website reflects a corporate and professional image with clear navigation and multilingual support, targeting investors, suppliers, and job seekers. Technically, the site is built on Microsoft SharePoint and ASP.NET technologies, leveraging modern JavaScript libraries and frameworks for UI and analytics integration. However, the absence of HTTPS and SSL certificates is a critical security flaw, exposing users to potential risks. Security headers are partially implemented, but key protections like HSTS and TLS protocols are missing. Privacy compliance is weak, with no visible cookie consent or GDPR indicators. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

KiwiSecurity.com is a website representing Genetec's KiwiVision unified video analytics solution, targeting enterprise customers requiring advanced video management and analytics. The site is primarily JavaScript-driven with minimal visible content in the raw HTML, indicating a modern single-page application architecture. The technical infrastructure leverages Cloudflare CDN for hosting and caching, integrates multiple third-party analytics and marketing tools such as Google Analytics, Microsoft Clarity, OneTrust for cookie consent, and Visual Website Optimizer for A/B testing. However, the site lacks a valid SSL certificate and does not enable any TLS protocols, which is a critical security vulnerability that undermines user trust and data protection. Additionally, no privacy policy, terms of service, or contact information is directly accessible in the provided HTML content, limiting transparency and compliance with privacy regulations. Overall, the website demonstrates moderate technical maturity but requires urgent improvements in security and compliance to meet industry standards.

New City Press Bookstore, operated under Focolare Media, is an online platform specializing in academic and spiritual books aimed at promoting unity and spirituality. The website offers a range of products including books, magazines, podcasts, and other resources, targeting readers interested in Christian living and spirituality. The business model is primarily e-commerce with additional subscription and donation services, positioning itself as a niche media and publishing entity within the non-profit sector. Technically, the website is built on Drupal 10 and hosted on Pantheon, leveraging modern web technologies and caching mechanisms. While the site demonstrates good mobile optimization, accessibility, and SEO practices, its performance is currently slow, and it lacks a valid SSL certificate, which critically impacts security and user trust. From a security perspective, the site has implemented some security headers but fails to provide HTTPS, lacks modern TLS protocols, and does not have a cookie consent mechanism despite using tracking tools like Google Tag Manager. These gaps expose the site to potential risks and reduce its compliance with privacy regulations such as GDPR. Overall, the website is functional and professionally presented but requires urgent improvements in SSL/TLS configuration and privacy compliance to enhance security posture and user trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, implementing cookie consent, and enhancing security headers and incident response capabilities.

I

Insight Technology Solutions, LLC

insighttsi.com

0

Insight Technology Solutions, LLC is a well-established Federal contractor headquartered in the National Capital Region, with over 20 years of experience delivering management consulting, business operations, and engineering solutions to Federal agencies. The company holds multiple government contract vehicles and certifications such as ISO 9001:2015, ISO/IEC 20000-1:2018, and CMMI Maturity Level 3, demonstrating a commitment to quality and compliance. Their target audience primarily includes U.S. government agencies, particularly in sectors like maritime, IT, and cybersecurity services. Technically, the website is built on the Wix platform utilizing modern JavaScript frameworks like React and includes various Wix apps for enhanced functionality. While the site is moderately optimized for performance and basic mobile responsiveness, there is room for improvement in accessibility and SEO practices. The hosting is managed by Wix, with standard security headers present, but the SSL certificate is currently invalid, which poses a significant security risk. From a security perspective, the site implements some best practices such as HSTS and secure cookie attributes but lacks a valid SSL certificate and comprehensive security headers. No vulnerabilities or exposed sensitive data were detected, but the absence of a cookie consent mechanism and privacy compliance indicators suggests partial adherence to privacy regulations. Overall, the website presents a professional and trustworthy image with clear business information and contact details. However, critical security improvements, especially regarding SSL certification and privacy compliance, are necessary to enhance trust and protect user data effectively.

A

Austrian Baseball Softball Federation

baseballaustria.com

0

The Austrian Baseball Softball Federation operates as the national governing body for baseball and softball in Austria, providing comprehensive information on events, rankings, and federation activities primarily targeting players, clubs, and fans within Austria and Europe. The website serves as a central hub for news, schedules, and official communications, leveraging affiliations with the World Baseball Softball Confederation (WBSC) and related organizations to maintain authoritative content. Technically, the site employs a modern tech stack including nginx, Bootstrap, jQuery, and DataTables, hosted on Amazon CloudFront CDN, but suffers from a critical lack of a valid SSL certificate, resulting in no HTTPS support and outdated TLS configurations. This significantly impacts the security posture and user trust. Security headers are present but insufficient to compensate for the missing HTTPS. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism, though terms of service and incident response policies are absent. Overall, the site is professionally designed with good content relevance and navigation, but the lack of HTTPS is a major risk that should be remediated promptly.

Xylem Inc. is a leading enterprise specializing in innovative water solutions and water technology, serving diverse sectors including energy, municipal water, healthcare, and manufacturing. The company offers a broad portfolio of products and services such as water and wastewater treatment systems, pumps, digital water solutions, and parts and supplies. Their market position is strong with a global footprint and multiple subsidiary brands. The website reflects a professional and comprehensive digital presence with excellent content quality and consistent branding. Technically, the site uses modern JavaScript frameworks, Google Tag Manager for analytics, and is hosted behind Cloudflare, but lacks a valid SSL certificate, which significantly impacts its security posture. Security headers are present but the absence of HTTPS and related SSL/TLS features lowers the overall security score. Privacy policies and terms of service are well documented, though no explicit cookie consent mechanism was detected. Contact information is primarily via contact forms with no direct emails or phone numbers found. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

The website squer.at is currently inaccessible, returning a 403 Forbidden error with minimal HTML content. This prevents any meaningful analysis of the business, content, or user engagement features. The domain is registered and DNS records indicate standard configuration with GoDaddy nameservers and Microsoft Outlook for email services. However, the lack of a valid SSL certificate and absence of security headers indicate a poor security posture. No privacy, cookie, or terms of service policies are present, and no contact information or social media links are available. Performance is very poor with extremely slow load times and no page content. Overall, the site appears either under maintenance, misconfigured, or intentionally restricted, limiting trust and usability.

S

SK STURM SALES & COMMUNICATION GMBH

sksturm.at

0

SK Sturm Graz is a well-established Austrian football club with a strong digital presence through its official website. The site offers comprehensive information about the club, including news, match schedules, team rosters, membership options, and an online shop. The business model revolves around sports entertainment, fan engagement, and commercial activities such as merchandise sales and sponsorships. The website demonstrates a high level of content quality and professional design, targeting football fans and stakeholders. Technically, the site uses modern frameworks like Vue.js and is built on Craft CMS, but lacks HTTPS, which is a critical security flaw. The absence of SSL/TLS significantly impacts the security posture, despite the presence of privacy and cookie policies that comply with GDPR. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

R

Moody's Analytics PFaroe | Home

riskfirst.com

0

Website security analysis completed with a risk score of 40/100.

S

SILVERLINE

silverline24.de

0

Silverline24.de is a German-based manufacturer and retailer specializing in kitchen appliances, particularly kitchen ventilation products such as wall-mounted hoods, island hoods, cooktop extractors, and related accessories. The company holds a recognized market position supported by industry awards like the Plus X Award for Fachhandelsmarke des Jahres 2020 and membership in the Arbeitsgemeinschaft Die Moderne Küche e.V. (AMK). Their website targets kitchen appliance buyers, retailers, and partners primarily in Germany and Europe, offering detailed product information, customer service, and partner portals. Technically, the website is built on WordPress with WooCommerce and uses modern plugins for SEO, cookie consent, and performance optimization. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Other security best practices such as HSTS, DMARC, DNSSEC, and security headers are missing or not configured. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

T

TENTE International GmbH

tente.com

0

TENTE International GmbH is a well-established manufacturer of high-quality castors and wheels, with a history spanning over 100 years. The company serves a broad range of industries including automotive, healthcare, logistics, and retail, offering both standard and custom mobility solutions. Their global presence is supported by localized websites and a comprehensive product catalog. Technically, the website is built on Shopware 6, leveraging modern web technologies and third-party services such as Usercentrics for consent management and Google Analytics for tracking. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly undermines the site's security posture. Despite this, the site implements several security headers and privacy policies that align with GDPR requirements. Overall, the business credibility and website quality are high, but immediate remediation of the SSL issue is essential to protect user data and maintain trust.

HappyTezos is a small EU-based technology company specializing in Tezos blockchain baking and delegation services. The company provides a secure and transparent platform for Tezos token holders to delegate their tokens and track rewards in real time via a dashboard. Despite a solid niche market position and transparent business model, the service is scheduled to close by the end of 2023. Technically, the website uses modern frontend technologies such as ASP.NET Core, Bootstrap, and jQuery, hosted behind Cloudflare CDN, but lacks a valid SSL certificate, resulting in no HTTPS support which is a critical security flaw. The site includes cookie consent mechanisms and basic privacy policies, but lacks formal security policies or incident response information. Overall, the website is functional and professional but has significant security shortcomings that reduce trust and compliance.

C

CHANEL

chanel.com

0

CHANEL is a globally recognized luxury brand specializing in fashion, accessories, beauty products, and fine jewelry. The website serves a worldwide audience with extensive localization and multilingual support, reflecting its enterprise-scale operations and market leadership in the retail luxury sector. The site content is professionally presented with good SEO practices and consistent branding. Technically, the website leverages modern JavaScript, Google Tag Manager for analytics, and OneTrust for cookie consent management, hosted on Akamai's CDN infrastructure. However, the critical absence of a valid SSL certificate and disabled TLS protocols severely undermine the security posture, exposing users to risks and potentially impacting trust. While security headers are implemented, the lack of HTTPS is a major vulnerability. Privacy compliance is partially addressed through cookie consent mechanisms, but no explicit privacy policy or terms of service were detected in the provided content. Overall, the website demonstrates strong business credibility and digital maturity but requires urgent remediation of its SSL/TLS configuration to meet security best practices and regulatory compliance.

U

Unique Computing Solutions

ucs-inc.net

0

Unique Computing Solutions is a well-established IT managed services provider specializing in tailored IT support and advanced IT solutions for small and medium-sized businesses. With over 25 years of experience, the company emphasizes customer service and long-term client relationships, serving diverse industries with a comprehensive portfolio of IT and security services. The website reflects a professional digital presence with strong branding, client testimonials, and integrated social proof. However, the technical infrastructure shows gaps, notably the absence of a valid SSL certificate and HTTPS, which significantly impacts security posture. While privacy policies and GDPR compliance mechanisms are in place, the lack of modern security protocols and performance optimization presents risks. Strategic improvements in SSL/TLS implementation and security headers are critical to enhance trust and protect client data.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Z

Zynga

zynga.com

0

Zynga is a leading global interactive entertainment company specializing in mobile and online games with a broad portfolio of popular franchises. As a wholly-owned subsidiary of Take-Two Interactive Software, Zynga has a strong market position with billions of downloads worldwide. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting mobile and online gamers globally. Technically, the site is built on WordPress with SEO optimizations and uses Amazon CloudFront for hosting and CDN services. However, the absence of a valid SSL certificate and disabled modern TLS protocols represent significant security gaps. Security headers are partially implemented but require tightening to mitigate risks such as cross-site scripting. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, Zynga's website demonstrates strong business credibility and digital maturity but needs urgent improvements in SSL/TLS security to protect user data and maintain trust.

D

Doppler LLC

fromdoppler.com

0

Doppler LLC operates a comprehensive marketing automation platform primarily targeting Spanish-speaking businesses in Latin America and Spain. Their website offers a wide range of services including email marketing, push notifications, SMS marketing, WhatsApp marketing, chatbots, landing pages, and data intelligence. The company positions itself as a leading SaaS provider in the marketing technology sector with a strong brand presence and extensive client testimonials. Technically, the website is built on WordPress and leverages modern marketing and analytics tools such as Google Tag Manager, OneTrust for cookie consent, and Zendesk for customer support. However, the security posture is notably weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance is evident. Overall, the site is professional, content-rich, and user-friendly but requires urgent security improvements to meet modern standards.

M

MEGA International

mega.com

0

MEGA International is an established enterprise SaaS solutions provider specializing in enterprise architecture, business process management, governance, risk and compliance, and data governance. The company holds a strong market position as a leader in enterprise architecture tools, recognized by Gartner for 16 consecutive years. Their HOPEX platform offers collaborative, AI-driven capabilities to accelerate digital transformation for large enterprises. Technically, the website is built on Drupal 10 with modern front-end frameworks and integrates multiple marketing and analytics tools. However, a critical security gap exists due to the absence of a valid SSL certificate, undermining HTTPS security. While security headers are well configured, the lack of TLS support poses a significant risk. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates high professionalism and business credibility but requires urgent remediation of SSL/TLS issues to ensure secure user interactions.

M

Motorola Mobility LLC

motorola.com

0

Motorola.com is the official Finnish website for Motorola Mobility LLC, a subsidiary of Lenovo, offering Android smartphones and accessories. The site targets Finnish consumers with localized content and product families such as moto razr, moto edge, moto g, and moto e. The technical infrastructure leverages Akamai CDN, OpenResty web server, and modern JavaScript frameworks, with integrations for Google Tag Manager and Adobe DTM for marketing and analytics. However, the site currently lacks a valid SSL certificate, which is a critical security vulnerability. Security headers are well implemented, but absence of cookie consent mechanisms may impact GDPR compliance. The website demonstrates good business credibility and professional design but requires improvements in security and privacy compliance to enhance trust and user safety.

G

Gelateria Romana - La Romana Srl

romanagroup.com

0

Gelateria Romana - La Romana Srl is a well-established Italian gelateria business founded in 1947, specializing in traditional gelato and pastry products with a franchising business model. The company targets entrepreneurs interested in franchising opportunities and consumers seeking quality artisanal gelato. The website reflects a consistent brand with good content quality and clear business information. Technically, the site uses a proprietary CMS (TITANKA!) with older JavaScript libraries and Bootstrap 3.2.0, indicating moderate digital maturity. However, the lack of HTTPS and modern TLS protocols is a critical security gap. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site is functional but requires urgent security improvements to protect user data and enhance trust.

F-Secure Corporation is a well-established Finnish cybersecurity company with over 35 years of experience and a global user base exceeding 30 million. The company offers a comprehensive suite of cybersecurity products including antivirus, VPN, identity protection, and scam protection, targeting both consumers and service providers. Their business model is subscription-based, emphasizing digital security and privacy. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site uses modern frameworks like Next.js and is hosted on Netlify, with good mobile optimization and SEO practices. However, the current SSL/TLS configuration is invalid or missing, which is a critical security concern that needs immediate remediation. Security headers are properly set, but the lack of valid HTTPS reduces the overall security posture. The site complies with GDPR and provides comprehensive privacy and cookie policies. Overall, the domain registration and WHOIS data align well with the company's identity, supporting high legitimacy and trust. Strategic recommendations include renewing SSL certificates, enabling modern TLS protocols, and enhancing security best practices to improve trust and compliance.

T

TOPPAN Digital Language GmbH

meinrad.cc

0

TOPPAN Digital Language GmbH is a medium-sized, ISO-certified translation and localization service provider based in Austria, serving leading companies primarily in the DACH region. The company offers a comprehensive suite of services including documentation translation, marketing translations, software and website localization, and outsourcing solutions, supported by consulting and workflow optimization. The website reflects a professional and well-branded digital presence, leveraging WordPress with Elementor and integrating multiple marketing and analytics tools such as HubSpot and Google Analytics. Despite strong content quality and privacy compliance, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and disabled TLS protocols, which significantly impact its security posture. The domain registration and DNS configurations are consistent and trustworthy, with no signs of privacy protection or suspicious patterns. Overall, the website is functional and credible but requires urgent security improvements to protect user data and enhance trust.

X

XYZ

wearexyz.com

0

XYZ is a creative visual production agency based in San Francisco specializing in 3D rendering, photography, retouching, video, motion graphics, and other visual content creation services. The company partners with notable brands to deliver compelling content and experiences that drive results. Their website showcases a strong portfolio of industry-leading clients, reflecting a solid market position in the media and creative production sector. Technically, the website is built on WordPress with Elementor and leverages modern JavaScript libraries and third-party services such as Vimeo and Google Analytics. Hosting is provided by WP Engine with Cloudflare as a CDN, indicating a professional infrastructure. However, the site lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. Security headers are minimal, and no advanced security policies or incident response contacts are found. Privacy and cookie policies are absent, which may impact compliance with GDPR and other regulations. Overall, the site presents a professional business front but requires urgent improvements in security and privacy compliance to reduce risk and enhance trust.