Security Directory

R

Roomle GmbH

roomle.com

0

Roomle GmbH operates a sophisticated 3D commerce platform named Rubens, specializing in product personalization, room designing, and augmented reality visualization. The company targets furniture manufacturers, retailers, and other industries seeking to enhance their e-commerce offerings with interactive 3D configurators and AR experiences. The platform integrates with e-commerce and ERP/CRM systems, providing a seamless customer experience and boosting sales. Technically, the website leverages modern web technologies including Vue.js, Storyblok CMS, and Google Cloud hosting, with performance and mobile optimization rated good. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the security posture. Privacy and cookie policies are present and GDPR compliant, but incident response and vulnerability disclosure mechanisms are lacking. Overall, Roomle presents a professional and trustworthy business with strong market positioning but must urgently address its SSL/TLS deficiencies to ensure secure user interactions.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

WordPress

kapschcarrier.com

0

KapschCarrier.com is a small-scale WordPress-based blog focused on telecommunications policy and 5G network insights. The site provides regularly updated content authored by an identified individual, targeting telecom professionals and enthusiasts. Technically, the site uses WordPress with common libraries like jQuery and Swiper.js, hosted behind Cloudflare. However, the site lacks a valid SSL/TLS certificate and does not serve content over HTTPS, which is a critical security deficiency. No privacy, cookie, or terms of service policies are published, and no contact information is available, limiting trust and compliance. The site has good SEO metadata and structured data but lacks analytics or advertising integrations. Overall, the site is functional but has significant security and compliance gaps that should be addressed to improve trustworthiness and user safety.

H

Heidrick & Struggles International, Inc.

heidrick.com

0

Heidrick & Struggles International, Inc. operates a leading global retained executive search and leadership consulting firm. The company specializes in executive search, leadership development, on-demand talent, and organizational culture consulting, serving a broad range of industries with a strong market position. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting corporate clients seeking leadership solutions. Technically, the site uses Sitecore CMS, Microsoft IIS hosting, and integrates Coveo search and OneTrust cookie consent, indicating a modern and scalable infrastructure. However, a critical security gap exists as the site lacks HTTPS/SSL encryption, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and credible but urgently requires SSL implementation to meet security best practices.

L

LearnChamp Consulting GmbH & Co KG

learnchamp.com

0

LearnChamp Consulting GmbH & Co KG is a well-established E-Learning agency founded in 2001, specializing in tailored digital learning solutions and LMS implementation with Totara for corporate clients primarily in the DACH region. The company holds recognized certifications including ISO 27001:2022 and has received industry awards, positioning it as a leading provider in its sector. The website reflects a professional and consistent brand image with comprehensive content and multimedia elements targeting business customers. Technically, the site uses modern marketing and embedding technologies such as HubSpot and Vimeo, hosted via Cloudflare and built on Webflow CMS. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Contact information is clearly presented, enhancing business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The Spencer Stuart Portal website serves as a client or internal portal for Spencer Stuart, a global executive search and leadership advisory firm. The site is minimalistic, primarily acting as a loading or shell page that dynamically loads resources and scripts from local bundles and external services such as Pendo for analytics. The business focus is on executive search and leadership consulting, targeting enterprise clients and internal users. The portal likely supports client engagement and administrative functions rather than public marketing. Technically, the site is hosted on Amazon S3 with CloudFront CDN, leveraging AngularJS framework and JavaScript for dynamic content loading. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. The absence of modern TLS protocols, security headers, and privacy policies further weakens the security posture. Performance data is unavailable, but the site appears slow and basic in design and user experience. Security evaluation reveals no WAF or blocking mechanisms, but the lack of HTTPS and security best practices exposes the site to risks. No privacy or cookie policies are present, and no contact or legal information is provided, limiting trust and compliance. Pendo analytics is integrated, indicating moderate user tracking without visible privacy compliance measures. Overall, the site is functional as a portal shell but requires urgent improvements in security, privacy compliance, and content completeness to meet enterprise standards and user trust expectations.

The website lobster.media is currently a parked domain landing page primarily monetized through advertising networks such as Google Adsense and Parklogic. It lacks substantive business content, contact information, or any clear business model beyond domain parking. The technical infrastructure is minimal, hosted on Hetzner Online with a Caddy server, but critically lacks a valid SSL certificate and HTTPS support, exposing visitors to security risks. The site does not implement privacy or cookie consent mechanisms and provides no security or incident response policies. Overall, the site demonstrates very low digital maturity and business credibility, with poor content quality and minimal technical sophistication.

A

Anker Innovations

anker-in.com

0

Anker Innovations is a globally recognized leader in charging technology and consumer electronics, offering products in premium audio, home entertainment, and home security. The company maintains a professional and well-branded online presence with regularly updated content and a focus on sustainability. Technically, the website is built on WordPress with Elementor and integrates modern marketing and analytics tools, although performance is moderate and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which poses significant risks. Privacy compliance is strong with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the website demonstrates good business credibility but requires urgent security improvements to protect user data and trust.

E

Evides N.V.

evides.nl

0

Evides N.V. is a large, established public utility company providing reliable and sustainable drinking water services to approximately 2.5 million consumers and businesses in the southwest Netherlands. The company operates a comprehensive digital infrastructure including a customer portal (Mijn Evides), extensive self-service options, and detailed information resources. Their market position is strong with a focus on quality, sustainability, and customer engagement. Technically, the website is built on modern frameworks like Nuxt.js and Vue.js, hosted on Microsoft Azure, and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Google Tag Manager. Security measures are in place including a strict Content Security Policy and multiple security headers; however, the SSL certificate is currently invalid and no modern TLS protocols are enabled, representing a critical security risk. Privacy compliance is robust with comprehensive GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of SSL issues to ensure secure user interactions.

The website jci.cc is currently inaccessible due to a Cloudflare security block, which prevents access to any meaningful content or business information. The site presents a Cloudflare challenge page indicating that the visitor has been blocked, likely due to security rules triggered by the request. This results in a lack of visible metadata, contact details, policies, or business descriptions. The technical infrastructure relies on Cloudflare for security and DNS, with Google MX records for email, but the SSL/TLS configuration is invalid or missing, which is a critical security concern. Overall, the security posture is weak due to the absence of a valid certificate and modern TLS protocols, though some security headers are present. Due to the blocking, the website's content quality, privacy compliance, and business credibility cannot be assessed, resulting in a low overall risk score. Strategic recommendations include resolving SSL issues, enabling HSTS, and providing accessible privacy and contact information to improve trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

MS Design GmbH is a medium-sized manufacturing company based in Tirol, Austria, specializing as a system supplier to the automotive industry. Founded in 1983, the company offers comprehensive services from design and prototyping to production start, emphasizing quality, innovation, and customer satisfaction. Their market position is supported by multiple certifications including IATF 16949 and ISO standards, reflecting a strong commitment to quality and environmental management. Technically, the website is built on TYPO3 CMS with a modern but basic technology stack including jQuery and various UI libraries. While the site is well-structured, mobile-optimized, and SEO-friendly, it lacks HTTPS support and a valid SSL certificate, which is a critical security gap. The hosting environment appears to be a Plesk-managed Apache server without advanced security configurations such as HSTS or DNSSEC. From a security perspective, the absence of HTTPS and modern TLS protocols severely impacts the site's security posture. Although some security headers are present and email obfuscation is implemented, the lack of encryption exposes users to risks. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms, but incident response and vulnerability disclosure information are missing. Overall, the website demonstrates good business credibility and content quality but suffers from critical security shortcomings. Strategic improvements in SSL implementation and enhanced security headers are recommended to elevate trust and compliance.

B

Burton Snowboards

burton.com

0

Burton Snowboards is a well-established leader in the snowboarding retail industry, offering a comprehensive range of products including snowboards, boots, bindings, apparel, and accessories. Founded in 1977, the company has a strong brand presence and a loyal customer base, supported by a professional e-commerce platform that targets snowboarding enthusiasts and outdoor sports consumers. The website demonstrates excellent content quality, clear navigation, and consistent branding, reflecting a mature digital presence. Technically, the site leverages modern e-commerce technologies such as Salesforce Commerce Cloud (Demandware), Cloudflare CDN, and integrates multiple marketing and analytics tools including Google Analytics, OneTrust, and Yotpo. However, the current SSL certificate is invalid or missing, which poses a critical security risk and impacts user trust. Security headers are implemented but HSTS is not fully enabled, indicating room for improvement in HTTPS enforcement. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website is professional and trustworthy but requires urgent attention to SSL configuration to enhance security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Siltronic AG is a globally recognized leader in the manufacturing of hyperpure silicon wafers, serving major semiconductor manufacturers worldwide. The company operates production sites across Asia, Europe, and the USA, emphasizing quality, precision, and innovation. Their business model focuses on supplying essential silicon wafers for the semiconductor industry, positioning them as a key player in technology manufacturing. The website reflects a professional corporate presence with comprehensive investor relations and career information, targeting industry professionals, investors, and potential employees. Technically, the website is built on TYPO3 CMS and hosted via Amazon CloudFront, integrating modern tools such as Google Tag Manager and FriendlyCaptcha. The site is well-structured, mobile-optimized, and includes a GDPR-compliant cookie consent mechanism. However, the absence of a valid SSL certificate critically undermines the security posture, exposing users to risks and limiting the effectiveness of security headers. From a security perspective, while several best practices are implemented, the lack of HTTPS and TLS support is a major vulnerability. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and readiness. Overall, the site is professional and trustworthy in content but requires urgent security improvements to protect visitors and maintain compliance. Strategically, Siltronic should prioritize obtaining a valid SSL certificate and enabling modern TLS protocols to secure communications. Enhancing transparency around incident response and vulnerability disclosure would further strengthen their security culture and stakeholder confidence.

B

B&A Insurance Consulting

baic.cz

0

B&A Insurance Consulting is a Czech Republic-based IT consulting and software development company specializing in SAP systems and insurance sector applications. With over 16 years of market presence, the company serves insurance and banking clients, particularly within the VIG group, offering SAP implementation, maintenance, and custom software development services. The website reflects a professional and consistent brand with clear business focus and client testimonials supporting its market position. Technically, the site uses modern frameworks and technologies but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security. Privacy compliance is basic but present, with GDPR policies and cookie consent mechanisms implemented. Overall, the company demonstrates credible business operations but requires urgent improvements in security posture to protect its digital presence and client trust.

H

HOSTSTAR - Multimedia Networks AG

selinatec.com

0

Hoststar is a webhosting and domain registration provider targeting German-speaking customers with affordable hosting packages and cloud services. The website content is currently a default hosting placeholder page indicating readiness for customer content upload. The technical infrastructure uses nginx web server and common web libraries like jQuery and WOW.js, hosted by Hoststar itself. However, the SSL certificate is invalid or missing, resulting in poor HTTPS security. The site lacks cookie consent mechanisms and vulnerability disclosures, indicating limited privacy and security maturity. Contact information and business details are clearly presented, supporting moderate business credibility. Overall, the website is functional but requires significant improvements in security and privacy compliance to meet modern standards.

R

Regus

regus.com

0

Regus is a well-established global provider of flexible workspace solutions, including office space, coworking, virtual offices, and meeting rooms. With a mature domain age of 29 years and a strong market presence as part of the IWG Group, Regus serves a broad audience of businesses seeking flexible and scalable workspace options. The website is professionally designed, leveraging modern technologies such as Next.js and Sitecore CMS, and offers comprehensive content and clear navigation to support user engagement. However, the current lack of a valid SSL certificate and disabled TLS protocols represent significant security vulnerabilities that must be addressed promptly to ensure secure communications and maintain user trust. Privacy and cookie policies are present and indicate good compliance with GDPR requirements. Overall, the site demonstrates a strong business credibility and digital maturity but requires immediate security improvements.

E

ertex solar

ertex-solar.at

0

Ertex solar is a specialized company focused on building-integrated photovoltaics (BIPV), offering innovative solar energy solutions integrated into architectural elements such as façades, balconies, and roofs. With a strong emphasis on aesthetics and energy transition, the company serves architects, developers, and environmentally conscious clients globally. The website reflects a mature digital presence with professional design, multilingual support, and comprehensive product information. Technically, the site runs on a modern WordPress stack with SEO and performance optimizations, hosted on OVHcloud. Security posture is solid with HTTPS and multiple security headers, though SSL/TLS protocol support requires enhancement. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain and WHOIS data corroborate the legitimacy and consistency of the business claims.

A

ANWR Norden AB

anwr.se

0

ANWR Norden AB operates as a leading organization in the voluntary shoe retail sector in the Nordic region, founded in 1919 in Hamburg, Germany. The company connects shoe retailers with top brands and offers a portfolio of services tailored to the needs of trade and industry, including financial services through its own bank, DZB Bank. The website reflects a medium-sized enterprise with a clear business model focused on membership services and retail support. Technically, the website uses standard web technologies and a consent management platform but suffers from slow load times and lacks modern CMS or frameworks. Security posture is weak due to the absence of a valid SSL certificate and modern TLS protocols, despite the presence of HSTS headers. The lack of DMARC, DNSSEC, and other DNS security features further reduces security maturity. Privacy compliance is basic with a privacy policy present but no strong GDPR indicators. Overall, the site is functional but requires significant improvements in security and performance to meet modern standards.

C

Corteva Commercial

pioneer.com

0

Pioneer.com represents the global seed brand of Corteva Commercial, a large agricultural manufacturing company. The website provides seed products, agronomic expertise, and local data support aimed at farmers and agricultural professionals worldwide. The site is built on Adobe Experience Manager and uses Adobe's digital marketing and analytics tools, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. Privacy and terms pages exist but are basic, and no cookie consent mechanism is implemented, which may raise compliance concerns in regulated jurisdictions. Contact information is limited to a contact form without direct emails or phone numbers, reducing accessibility for users seeking support. Overall, the site is professional and content-rich but requires urgent security and privacy improvements.

I

IC Resources

ic-resources.com

0

IC Resources is a well-established technology recruitment agency specializing in deep tech sectors such as software, semiconductor, electronics, and manufacturing. Founded in 1999, it operates globally with offices in the UK, Germany, and the USA. The company connects innovative organizations with highly skilled technology professionals, offering services including job search assistance, CV advice, and talent acquisition for clients. The website reflects a professional and comprehensive digital presence with rich content and client testimonials, positioning IC Resources as a trusted partner in the technology recruitment market. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Contact Form 7, supported by a PHP 8.2 backend and hosted via StackCDN. While the site is mobile-optimized and SEO-friendly, performance metrics are not available, and accessibility is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks. Security headers are present but insufficient to compensate for the lack of encryption. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is detected. Overall, the security posture is weak due to missing HTTPS and TLS protocols, which should be addressed urgently. The business credibility is strong, supported by consistent WHOIS data and transparent contact information. Strategic recommendations include immediate SSL/TLS implementation, enhanced security headers, and improved privacy and cookie consent mechanisms to align with GDPR requirements and user trust expectations.

T

TDK Electronics AG

epcos.com

0

TDK Electronics AG, formerly EPCOS, is a mature and established enterprise specializing in the manufacturing and sales of electronic components, primarily serving industrial, automotive, and energy sectors. The company operates under the TDK Group umbrella, with a strong European presence and a comprehensive product catalog that includes capacitors, sensors, inductors, transformers, and more. Their website reflects a professional and well-structured digital presence, targeting engineers, distributors, and industrial clients with detailed product information and design support resources. Technically, the website employs modern analytics and marketing tools such as Piwik PRO, Google Tag Manager, and OneTrust for cookie consent, indicating a good level of digital maturity. However, the absence of a valid SSL/TLS certificate and HTTPS implementation significantly undermines the security posture, exposing users to potential risks. Despite this, the domain is mature, well-registered, and consistent with the business claims, enhancing overall trustworthiness. Strategic improvements in security infrastructure are recommended to align with industry best practices and regulatory compliance.

B

BILTON LEDON Technology GmbH

biltongroup.com

0

BILTON LEDON Technology GmbH operates under the brand Better Light, specializing in high-quality LED lighting solutions manufactured in Austria. The company leverages its expertise from established LED brands BILTON and LEDON to offer a broad portfolio including LED strips, profiles, power supplies, and lighting management systems. Their market position is solidified by a mature domain and professional online presence targeting architects, industrial clients, and lighting professionals. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes Google Analytics for user tracking. However, performance is slow and security headers are minimal, indicating room for improvement in technical optimization and security hardening. The SSL certificate is valid but nearing expiration, and no advanced security features like HSTS or OCSP stapling are enabled. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site demonstrates good business credibility and trustworthiness but would benefit from enhanced security practices and performance optimization.

The website wilsonsons.com.br is currently inaccessible due to a 403 Forbidden error, indicating restricted access or blocking at the server or security layer. This prevents extraction of any meaningful content, metadata, or business information from the site itself. The domain is registered and uses professional DNS and email infrastructure, including Amazon AWS name servers and Google MX servers, suggesting a legitimate and established business presence in Brazil, likely in the transportation sector. The SSL certificate is valid and supports modern TLS protocols, but lacks advanced security features such as HSTS and OCSP stapling. No privacy, cookie, or terms of service policies are detectable on the root page, and no contact information or social media links are present in the accessible content. Overall, the site’s security posture is basic but could be improved with additional headers and DNS security measures. Due to the blocked content, the overall risk assessment is limited and the AI scoring is low, reflecting the inability to fully evaluate the site’s content and compliance.

D

Digital Wallonia

digitalwallonia.be

0

Digital Wallonia is the official digital strategy platform for the Wallonia region in Belgium, managed by the Walloon Government. It serves as a comprehensive resource for digital transformation initiatives, programs, and ecosystem mapping in the region. The platform targets businesses, public authorities, and digital stakeholders, providing detailed publications, event agendas, and strategic information. Technically, the site is built on a modern React Static framework, hosted on Amazon infrastructure, and uses Cloudflare DNS services. Despite a valid SSL certificate and no detected vulnerabilities, the site lacks advanced security headers and HSTS, which are recommended for enhanced security. Performance is notably slow, with a page load time exceeding 26 seconds, indicating room for optimization. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness as a government entity but could improve technical and security aspects to enhance user experience and protection.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Evelyn Partners

tilney.co.uk

0

Evelyn Partners is a well-established UK-based wealth management firm offering a comprehensive range of financial planning and investment management services. The company positions itself as a leader in the UK market with significant assets under management and a broad client base including individuals, families, entrepreneurs, and professional partners. Their website reflects a mature, professional business with strong branding, clear service offerings, and multiple client engagement channels including forms and contact options. Technically, the website leverages modern JavaScript frameworks and is hosted on Microsoft Azure, with good SEO and accessibility practices. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocol support, which poses a critical risk to user trust and data security. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and credible but requires urgent remediation of SSL issues to ensure secure client interactions.

R

Revetas Capital

revetas.com

0

Revetas Capital is a Pan-European Real Estate Fund Manager and Investment Advisor with a focus on capital recovery and value creation in European and American markets. The company operates a professional website built on WordPress, featuring an investor login portal protected by password. The website demonstrates moderate digital maturity with integration of Google Tag Manager and cookie consent mechanisms, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Contact information and social media presence are clearly provided, enhancing business credibility. However, the absence of HTTPS and security headers exposes users to potential risks, and no explicit security or incident response policies are found on the site.

S

SHP Harmanec, a.s.

shpgroup.eu

0

SHP Harmanec, a.s. operates a corporate website focused on paper hygiene products for household and professional use, with a history dating back to 1829. The company positions itself as a trusted regional manufacturer with a consistent brand presence and active engagement through social media and newsletters. The website is built on WordPress with modern front-end technologies such as Bootstrap and jQuery, supported by SEO tools like Yoast and analytics via Google Analytics and Tag Manager. However, the absence of HTTPS/SSL is a critical security gap that exposes users to risks and undermines trust. Privacy and cookie policies are well implemented with GDPR compliance and consent mechanisms. Contact information is clearly presented, including phone numbers, physical address, and contact forms. Overall, the site demonstrates good content quality and business credibility but requires urgent security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

Metzenhof

metzenhof.at

0

Metzenhof is a hospitality business based in Austria offering a combination of hotel accommodation, restaurant services, a golf course, and event hosting. The website presents a professional and well-structured digital presence targeting tourists, golfers, and event attendees. The technical infrastructure is built on WordPress with modern frameworks and optimization tools, though performance could be improved. Security posture is basic with valid HTTPS and SPF records but lacks advanced security headers and DNS protections. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is trustworthy and professionally managed, with room for security enhancements.

A

Anyline GmbH

anyline.io

0

Anyline GmbH is a mature technology company specializing in AI-powered mobile data capture and OCR scanning solutions, primarily serving industries such as automotive, retail, logistics, enforcement, and energy. The company offers a broad portfolio of products including tire scanning, vehicle identification, barcode scanning, license plate scanning, meter reading, and ID scanning. Their market position is strong with over 10 years of experience and a global customer base including Fortune 500 companies. Technically, the website is built on WordPress with modern JavaScript libraries and integrates translation and consent management tools. However, the site suffers from a lack of HTTPS due to an invalid SSL certificate, resulting in a basic security posture. Privacy compliance is supported by a cookie consent mechanism and a privacy policy, though terms of service and incident response policies are not evident. Overall, the website is content-rich and professionally designed but requires critical security improvements to protect user data and enhance trust.

W

WILD GmbH

wild.at

0

WILD GmbH is a well-established Austrian technology partner specializing in contract development and manufacturing of optomechatronic systems, serving sectors such as medical technology, in-vitro diagnostics, optical metrology, laboratory, laser, and semiconductor technology. The company has a strong market position with decades of experience and multiple subsidiaries, offering comprehensive services including development, production, and supply chain management. Their website reflects a mature digital presence with multilingual support, professional design, and rich content tailored to their target audience of technology and healthcare companies. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, hosted on infrastructure associated with a1.net. The site demonstrates good performance, mobile optimization, and accessibility. Security headers and SSL configurations are robust, with HSTS, CSP, and XSS protections in place, although some improvements like enabling HSTS preload and DMARC records are recommended. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well managed through Borlabs Cookie consent mechanisms and a comprehensive privacy policy. Contact information is clear and detailed, supporting business credibility. Overall, the website scores highly in content quality, technical implementation, security, privacy compliance, and business credibility, indicating a trustworthy and professional online presence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

Bose

bose.com

0

Bose.com is the official e-commerce website of Bose Corporation, a leading premium audio equipment brand. The site offers a wide range of products including headphones, earbuds, speakers, soundbars, and home theater systems, targeting consumers seeking high-quality audio solutions. The business model focuses on direct-to-consumer sales supported by comprehensive customer service and product support. The website demonstrates a strong brand presence with consistent messaging and professional design, reflecting Bose's market position as a trusted leader in the audio retail sector. Technically, the website is built on Salesforce Commerce Cloud, hosted on AWS infrastructure, and integrates multiple modern marketing and analytics technologies such as Google Tag Manager, Bazaarvoice, Qualtrics, and Forter. While the site is mobile-optimized and accessible, performance is somewhat slow, and there is room for improvement in technical implementation, particularly in SSL configuration and security headers. From a security perspective, the site currently lacks a valid SSL certificate, which is a critical issue impacting user trust and data protection. No security headers are detected, and advanced security policies or incident response information are not publicly available. Privacy and cookie policies are present and include consent mechanisms, indicating good privacy compliance. WHOIS data confirms the domain's legitimacy and consistency with the brand's identity. Overall, Bose.com is a professionally managed, content-rich e-commerce platform with strong business credibility but requires urgent improvements in SSL and security configurations to enhance its security posture and user trust.

V

Vereinigte Bühnen Wien

musicalvienna.at

0

Musical Vienna, operated by Vereinigte Bühnen Wien, is the official platform for musicals at the Raimund Theater and Ronacher in Vienna, Austria. It serves as a comprehensive source for musical event information, ticket sales, souvenirs, and membership benefits. The website targets musical theater enthusiasts locally and internationally, positioning itself as a leading cultural entertainment provider in Vienna. Technically, the site uses a custom CMS with modern JavaScript libraries such as jQuery and Swiper.js, integrates embedded Vimeo videos, and employs Google Tag Manager and Truendo Privacy Center for analytics and consent management. However, the site critically lacks a valid SSL certificate and HTTPS support, which severely impacts its security posture. While privacy and cookie policies are well implemented with consent mechanisms, the absence of HTTPS and TLS protocols exposes users to potential risks. Business credibility is strong with clear branding, partner and sponsor affiliations, and active social media presence. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and maintain trust.

G

Geberit Vertriebs GmbH

geberit.at

0

Geberit Vertriebs GmbH operates as a European market leader in sanitary products, offering a comprehensive range of bathroom and piping systems, along with digital tools and professional services. The company maintains a strong local presence in Austria and is part of the larger Geberit Group, as indicated by DNS records and authoritative nameservers. The website is professionally designed, with excellent content quality and clear navigation, targeting both professional installers and end customers. Technically, the site uses modern frameworks such as Next.js and React, hosted on Microsoft Azure, and integrates Usercentrics for cookie consent management. However, the absence of a valid SSL/TLS certificate and proper HTTPS configuration is a critical security concern. Security headers are present but insufficient without proper encryption. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance indicators are evident. Overall, the website is trustworthy and credible but requires urgent improvements in SSL configuration to enhance security and user trust.

N

Novunex

novunex.com

0

Novunex is a technology company specializing in integrated software solutions for quality management, Internet of Things (IoT), IT service management (ITSM), and business process digitization via a low-code platform. The company targets businesses seeking to optimize and streamline their quality and operational processes, leveraging modular software and Microsoft partnership services. The website presents a professional and comprehensive overview of their offerings, supported by case studies and structured data for enhanced SEO. Technically, the website is built on WordPress with Elementor and related plugins, hosted behind Cloudflare DNS. While the site has rich content and good SEO practices, it suffers from a lack of a valid SSL certificate, resulting in no HTTPS protection, which is a critical security concern. Performance is slow due to a high number of resources and load time. Accessibility and mobile optimization are basic to good. Security posture is weak due to missing HTTPS and absence of security headers, although no active vulnerabilities or malware were detected. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Business credibility is supported by detailed product information and case studies but lacks direct contact emails or phone numbers on the site. Overall, Novunex presents a credible and professional business with room for improvement in technical security and performance to enhance trust and user experience.

The website diversey.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) blocking access, presenting a security challenge page instead of the actual site content. This prevents any meaningful analysis of the website's content, business information, or user experience. The domain is registered with consistent WHOIS data and uses Cloudflare for DNS and security services. However, the SSL/TLS configuration is invalid or missing, resulting in no HTTPS support, which is a critical security issue. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available from the provided data. Overall, the website's digital presence is severely limited by the WAF block, resulting in poor content quality, technical implementation, security posture, and privacy compliance scores.

M

Mi Envío Entidad de Pago, S.L.

fonmoney.com

0

Fonmoney is an online financial services platform specializing in international money transfers and mobile top-ups. The company operates under Mi Envío Entidad de Pago, S.L., a subsidiary of Transpaygo Limited, and is regulated by the FCA and registered with the Bank of Spain. The platform targets individuals and families seeking fast, easy, and secure ways to send money or mobile credit internationally, with a presence in multiple countries through localized subdomains. Technically, the website uses the nopCommerce platform, integrates common marketing and analytics tools such as Google Analytics and Sendinblue, and is hosted behind Cloudflare. While the site offers good content quality, mobile optimization, and SEO practices, its performance is slow and accessibility features are basic. Critically, the site lacks a valid SSL certificate, resulting in no HTTPS protection, which is a major security concern. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture. No explicit security or incident response policies are published, and no direct contact emails or phone numbers are provided, limiting transparency. However, the site includes cookie consent with an opt-in mechanism and privacy policies indicating GDPR compliance. Overall, Fonmoney presents a moderately credible and professional financial service with strong regulatory backing but suffers from critical security implementation gaps. Immediate remediation of SSL issues and enhancement of security policies are recommended to improve trust and compliance.

E

ECM Label Production GmbH / ECM Marking Solutions GmbH

ecm.at

0

ECM.at represents a medium-sized Austrian manufacturing business specializing in label production and marking solutions with approximately 40 years of industry experience. The company offers a comprehensive range of services including label printing, dispensing systems, coding technologies, and engineering solutions tailored to various industries such as food packaging, automotive, electronics, and pharmaceuticals. The website reflects a professional B2B business model targeting companies requiring marking and labeling services. Technically, the site is built on WordPress with modern plugins and SEO optimizations but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Security posture is weak due to missing HTTPS, absence of security headers, and no incident response or security policy disclosures. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Jumio is a well-established enterprise technology company specializing in AI-powered identity verification, KYC, and AML compliance solutions. The company holds a strong market position with a comprehensive suite of services targeting businesses that require secure and compliant customer onboarding and fraud prevention. Their website reflects a mature digital presence with extensive content, multi-language support, and strong branding. Technically, the site is built on WordPress and leverages modern marketing and analytics tools, but suffers from slow performance and lacks a valid SSL certificate, which critically impacts security posture. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the business credibility is high, supported by client logos, awards, and detailed product information.

G

Glacier Financial Solutions (PTY) LTD

glacier.co.za

0

Glacier by Sanlam is a South African licensed financial services provider specializing in wealth management and investment solutions, including unit trusts, retirement products, and financial planning. The website serves as a comprehensive portal for personal and business clients, offering detailed product information and access to intermediary and client login portals. The business is positioned as a significant player within the Sanlam group, leveraging its brand and resources to serve a broad market segment. Technically, the website is built on Microsoft SharePoint with integration of common web technologies such as jQuery and Google Tag Manager, indicating a mature but somewhat traditional digital infrastructure. However, the absence of a valid SSL certificate and HTTPS severely undermines the site's security posture, exposing users to risks and impacting trust. Security headers are partially implemented, but critical modern security practices like HSTS and TLS are missing. Privacy and terms of service policies are linked to the parent Sanlam domain, suggesting centralized compliance management, though explicit cookie consent mechanisms are lacking. Overall, the site is professionally designed with good content quality and navigation but requires urgent security improvements to protect user data and maintain regulatory compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

Adria Film

adriafilm.com

0

Adria Film is a small media company based in Austria specializing in film production, distribution, and festival organization. The website serves as a platform to promote their films, provide news updates, and facilitate ticket sales. The company targets European cinema audiences and diaspora communities with a focus on regional film culture. Technically, the website is built on WordPress using a professional theme and several popular plugins, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate is a critical security weakness, exposing users to potential risks. The presence of tracking pixels from Facebook and TikTok suggests moderate user tracking, balanced by a visible cookie consent mechanism. Overall, the site is functional and professional but requires urgent security improvements and enhanced privacy compliance to reduce risk and build trust.

CEVA Logistics is a leading global supply chain management and freight company offering a broad range of logistics services including air, ocean, ground, contract logistics, and customs brokerage. The company operates worldwide with a large workforce and is part of the CMA CGM Group. The website demonstrates a mature digital presence with comprehensive content, multiple language support, and active news and career sections. Technically, the site uses modern frameworks like Nuxt.js and Vue.js and is hosted behind Cloudflare, but critically lacks a valid SSL certificate and proper HTTPS configuration, which severely impacts its security posture. Security headers are well implemented, but the absence of TLS protocols and session resumption reduces security effectiveness. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy from a business perspective but requires urgent security improvements to protect user data and maintain trust.

I

INFOMOTION GmbH

infomotion.de

0

INFOMOTION GmbH is a medium-sized German technology consulting company specializing in data performance, AI, and analytics services. With over 20 years of experience, it holds a strong market position as a leader in data-driven business transformation and consulting. The website reflects a professional and comprehensive digital presence, showcasing a broad range of services, partner integrations, and client testimonials. Technically, the site uses TYPO3 CMS, PHP 8.1, and nginx, with integrations for marketing and consent management such as Google Tag Manager and Cookiebot. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, significantly impacting the security posture score. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and professionally maintained but requires urgent security improvements to protect user data and enhance trust.