Security Directory

P

Panduit

panduit.com

0

Panduit is a well-established enterprise specializing in network infrastructure and industrial electrical wiring solutions, serving a broad range of industries with a focus on scalable and smarter infrastructure. The company has a strong market position supported by decades of experience and a comprehensive product portfolio. Technically, the website leverages modern technologies including Adobe Experience Manager, AngularJS, and integrates multiple marketing and analytics tools, indicating a mature digital presence. However, the security posture is weak due to the absence of HTTPS and SSL/TLS configuration, exposing the site to potential risks. Privacy compliance is also lacking, with no visible privacy or cookie policies. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

Dyson's Finnish website presents a professional and well-structured digital storefront focused on retailing advanced home and personal care technology products. The site targets Finnish consumers with localized content, multiple product categories, and comprehensive customer support options including phone and chat. Technically, the site leverages Adobe Experience Manager CMS, Akamai CDN, and integrates marketing and analytics tools such as Adobe Launch, Google Analytics, and New Relic. However, a critical security weakness is the absence of a valid SSL certificate and enabled TLS protocols, severely impacting the site's security posture. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Business information aligns with Dyson's global brand, reinforcing trust. Overall, the site is functional and user-friendly but requires urgent security improvements to protect user data and maintain trust.

U

Unitedprint SE

unitedprint.com

0

Unitedprint SE operates as a major European web-to-print service provider, offering a range of print-related services including web-to-print shops, print material supply, and production partnerships. The company maintains multiple brands and portals targeting print industry professionals and businesses seeking print solutions. The website is built on WordPress with a modern theme and multilingual support, reflecting a mature digital presence. However, the technical infrastructure lacks a valid SSL certificate, which impacts security and user trust. Security posture is basic with no advanced headers or HTTPS enforcement, and privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is functional and professional but requires improvements in security and privacy to meet modern standards.

ING-DiBa AG operates as a leading digital and universal bank in Germany, serving over 9 million customers with a broad portfolio including checking accounts, loans, mortgages, savings, investments, and insurance products. The website reflects a mature digital presence with modern web technologies such as Lit and web components, supported by a proprietary CMS and hosted on a Microsoft Azure/Akamai infrastructure. The site is well-structured, mobile-optimized, and rich in content, including comprehensive privacy and cookie policies, and clear contact information. However, the security posture is weakened by a critical failure in SSL/TLS configuration, with no valid certificate and no TLS protocols enabled, which poses a significant risk to user trust and data security. Despite strong security headers and privacy compliance, these SSL issues must be urgently addressed. Overall, the site demonstrates high business credibility and professionalism but requires immediate remediation of its SSL/TLS setup to ensure secure user interactions.

J

Jacqueline Pehlemann

jacquelinepehlemann.de

0

Jacqueline Pehlemann is a small architecture and interior design office based in Berlin, specializing in residential and hospitality projects such as apartments and hotels. The website serves as a portfolio showcasing detailed project descriptions and high-quality images, targeting clients interested in bespoke architectural and interior design services. The business operates primarily through professional service offerings with a local market focus. Technically, the website is hosted on the Cargo platform, utilizing standard web technologies including HTML5, CSS3, JavaScript, and jQuery. However, the site lacks HTTPS support, which is a critical security deficiency. Security headers are minimal, and no advanced DNS security features like DNSSEC or CAA are implemented. Privacy compliance is weak, with no cookie consent mechanisms and only a basic privacy policy page found. Contact information is not explicitly provided on the site, which may hinder user trust and engagement. Overall, the site demonstrates good content quality and professional design but requires significant improvements in security and privacy to meet modern standards.

A

ASSA ABLOY

assaabloyentrance.com

0

ASSA ABLOY Entrance Systems is a global enterprise specializing in manufacturing and supplying advanced entrance solutions including automatic, commercial, industrial, and digital doors. The company positions itself as a leader in secure and efficient access solutions, targeting businesses and industries requiring high-quality entrance systems. The website reflects a mature digital presence with a professional design and comprehensive product information, supporting its market leadership claims. Technically, the site uses modern web technologies and a proprietary CMS platform, with good SEO and mobile optimization. However, the lack of a valid SSL certificate and HTTPS support is a critical security weakness, exposing users to potential risks. Security headers are well implemented, but the absence of encryption and privacy policies reduces trust and compliance. Overall, the site demonstrates strong business credibility but requires urgent security improvements to align with best practices and regulatory requirements.

P

POWERSERV Austria GmbH

powerserv.at

0

POWERSERV Austria GmbH operates as a medium-sized personnel service provider in Austria, specializing in tailored job placement, HR services, and workforce solutions. The company maintains a strong market position supported by certifications such as ISO 9001 and memberships in industry organizations. Their website targets job seekers and companies, offering services like temporary staffing, payroll outsourcing, and HR consulting. Technically, the website is built on WordPress with Elementor and Astra theme, incorporating modern SEO practices and cookie consent management via Usercentrics. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing users to potential risks. While no critical vulnerabilities are detected, the lack of advanced security headers and incident response information indicates room for improvement. Overall, the site presents professional content and good business credibility but requires urgent security enhancements to protect user data and improve trust.

H

High Sierra Pools

highsierrapools.com

0

High Sierra Pools is a well-established commercial pool management company offering a range of services including lifeguard staffing, pool maintenance, repairs, and renovations primarily in the Mid-Atlantic and Northeastern United States. The company has a strong regional presence with over 25 years of experience and serves a diverse clientele including commercial properties and community pools. The website reflects a professional business model focused on safety, compliance, and customer satisfaction. Technically, the site is built on WordPress with modern marketing and analytics tools integrated, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and lack of modern TLS support, which undermines user trust and data security. Privacy compliance is basic with a privacy policy present but no cookie policy or explicit GDPR compliance indicators. Overall, the business credibility is high, supported by clear contact information, testimonials, and consistent branding. Strategic improvements in security posture and privacy compliance are recommended to enhance trust and protect user data.

A

Avantor, Inc.

vwr.com

0

VWR.com is the online presence of Avantor, Inc., a large enterprise specializing in providing life science products and service solutions. The website targets life science professionals and organizations globally, offering a broad range of scientific supplies and services. The business model is primarily B2B, with a strong market position as an established global supplier in the healthcare sector. The site uses localized subdomains to serve different countries, indicating a mature international presence. Technically, the website employs a variety of modern JavaScript libraries and tracking tools, including Google Analytics, Hotjar, and Cloudflare for CDN and security. However, the site lacks a valid SSL certificate and does not enable modern TLS protocols, which is a significant security concern. The content is professionally presented with good navigation and branding consistency, but mobile optimization and accessibility are basic. From a security perspective, while the site implements a comprehensive Content Security Policy and some security headers, the absence of HTTPS and modern TLS support severely impacts the security posture. No incident response or vulnerability disclosure information is provided, and no explicit contact details are available on the landing page, limiting transparency. Overall, the website is functional and professional but requires urgent improvements in SSL/TLS implementation and privacy compliance mechanisms to enhance trust and security. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, implementing cookie consent mechanisms, and providing clear contact and security policy information.

A

asp.com.mx

asp.com.mx

0

The website asp.com.mx currently serves as a minimal placeholder or parked domain with very limited content and no visible business information or contact details. The lack of privacy policies, cookie consent mechanisms, and terms of service indicates a very low level of digital maturity. Technically, the site lacks HTTPS support and a valid SSL certificate, exposing visitors to security risks. The DNS configuration is basic without DNSSEC or CAA records, and no modern security headers are implemented. Overall, the security posture is weak with critical vulnerabilities such as no encryption and no security best practices in place. The website does not provide any forms, social media links, or analytics, suggesting it is not actively used for business operations. The domain registration appears consistent with the website domain, but the lack of content and security measures significantly reduces trust and credibility.

A

Artaneon

artaneon.com

0

Artaneon is a small German-based company specializing in coaching and consulting services that help businesses integrate artificial intelligence into their marketing strategies. The website is hosted on WordPress.com and uses modern WordPress technologies such as Gutenberg and Jetpack. The content is well-structured and relevant, targeting marketing professionals interested in AI tools and techniques. However, the site lacks critical security configurations such as a valid SSL certificate and HTTPS enforcement, which significantly impacts its security posture. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Social media presence is strong, providing trust signals and engagement channels. Overall, the business demonstrates a good level of digital maturity but requires urgent improvements in security and privacy compliance to enhance trust and protect users.

The website eci-d.com currently presents only a minimal error page with no accessible content, metadata, or business information. The absence of HTTPS and a valid SSL certificate severely impacts the site's security posture and trustworthiness. The technical infrastructure is basic, running on an Apache server without modern security configurations or performance optimizations. No privacy, cookie, or terms of service policies are present, indicating a lack of compliance with common data protection regulations. Overall, the site appears inactive or misconfigured, offering no meaningful business or security information to visitors.

T

TEDAI Vienna

tedxvienna.at

0

TEDAI Vienna is a prestigious, application-only TED conference focused on Artificial Intelligence, held in Vienna, Austria. It targets business leaders, innovators, and thinkers across multiple sectors including technology, healthcare, finance, and policy. The event offers a premium experience with curated TED Talks, workshops, networking, and exclusive dinners. The website is professionally designed, rich in content, and well-branded, reflecting a strong market position as Europe's exclusive TED AI event. Technically, the site uses modern web technologies such as Webflow CMS, Swiper.js, GSAP, and is hosted behind Cloudflare, but suffers from critical SSL/TLS misconfigurations that undermine its security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of explicit contact emails and phone numbers limits direct communication channels. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security improvements to protect user data and ensure secure communications.

querkraft.at is the website of an Austrian architecture and design firm showcasing a portfolio of projects including schools, residential buildings, museums, and pavilions. The firm targets clients interested in architectural and urban design services, primarily within Austria. The website is built on TYPO3 CMS with Bootstrap and several JavaScript libraries, providing a professional and visually appealing presentation of their work. However, the site lacks critical security features such as HTTPS, which significantly impacts trust and security posture. No privacy or cookie policies are present, and contact information is not explicitly provided, limiting user engagement and compliance with data protection regulations. Overall, the website demonstrates good content quality and business relevance but requires urgent improvements in security and privacy compliance to meet modern standards.

F

FH Kärnten gemeinnützige Gesellschaft mbH

fh-kaernten.at

0

FH Kärnten is a public higher education institution in Austria offering a wide range of Bachelor, Master, and continuing education programs focused on technology, health, social sciences, and management. The institution emphasizes practical orientation, international cooperation, and sustainable development. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding targeting prospective and current students. Technically, the site is built on TYPO3 CMS and served by Apache, but critically lacks a valid SSL certificate and HTTPS support, which undermines security and user trust. Security headers are partially implemented, but the absence of TLS protocols and HSTS reduces the site's security posture. Privacy compliance is moderate with a clear privacy policy but no cookie consent mechanism despite tracking scripts. Overall, the site is professional and credible but requires urgent security improvements to protect user data and enhance trust.

The website ledworx.com currently serves minimal content, consisting solely of a client-side redirect to a /lander path. There is no substantive business information, metadata, or user-facing content available. The domain is registered and resolves to two IP addresses hosted on Amazon AWS infrastructure, but lacks a valid SSL certificate and does not support HTTPS, which severely limits trust and security. No contact information, privacy policies, or terms of service are present, indicating a very low level of digital maturity and compliance. From a technical perspective, the site is underdeveloped with no detectable CMS, frameworks, or analytics tools. The absence of security headers, DNSSEC, and a valid SSL certificate exposes the site to potential security risks and undermines user trust. The SPF record is configured strictly but without MX records, which may cause email delivery issues if email services are intended. Security posture is weak due to lack of HTTPS and security best practices. No incident response or vulnerability disclosure mechanisms are found. The domain registration appears consistent but provides no additional trust signals. Overall, the site is not suitable for business operations in its current state and requires significant improvements in security, content, and compliance to be viable. Strategic recommendations include obtaining and configuring a valid SSL certificate, implementing security headers and DNSSEC, developing substantive website content including privacy and cookie policies, and establishing clear contact and business information to improve credibility and compliance.

S

SLB

slb.com

0

SLB is a global energy technology company focused on driving innovation for a balanced planet. Their website showcases a comprehensive portfolio of solutions spanning decarbonization, digital transformation, and traditional oil and gas services. The company targets energy industry professionals, investors, partners, and job seekers, positioning itself as a market leader with extensive service offerings and a strong sustainability commitment. Technically, the website employs modern technologies such as jQuery, Brightcove video, Coveo search, and integrates multiple analytics and marketing tools. The site is well-designed, mobile-optimized, and offers rich content with clear navigation. However, the security posture is weakened by an invalid or missing SSL certificate and lack of HTTPS support, which is a critical issue. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site reflects a mature enterprise with good business credibility but requires urgent security improvements to protect user data and maintain trust.

K

Kemira Oyj

kemira.com

0

Kemira Oyj is a global leader specializing in sustainable chemical solutions primarily for water-intensive industries such as pulp & paper, water treatment, and energy sectors. The company offers a comprehensive portfolio including water treatment chemicals, fiber production solutions, industrial chemicals, and digital services aimed at process optimization. Their website reflects a mature digital presence with strong emphasis on sustainability, investor relations, and corporate governance, targeting industry professionals, investors, suppliers, and potential employees. The company is headquartered in Helsinki, Finland, and maintains a large operational scale with over 4,700 employees.

V

Versicherungsbüro Schättle GmbH

schaettle.at

0

Versicherungsbüro Schättle GmbH is an independent insurance brokerage firm based in Vienna, Austria, operating three physical offices and offering a range of insurance advisory and brokerage services. The company emphasizes personal consultation, competitive pricing, and strong partnerships with major insurance providers. Their website is professionally designed with good content quality and clear navigation, targeting private individuals and families in Vienna seeking insurance solutions. Technically, the website is built on WordPress with Elementor and several plugins, hosted on a LiteSpeed server with DNS managed by Dynamix. However, a critical security issue is the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is comprehensive and easily accessible. Overall, the site demonstrates good business credibility but requires urgent security improvements.

STADA is a leading German pharmaceutical company specializing in high-quality medicines, including consumer healthcare products, generics, and specialty pharmaceuticals. The company holds a strong market position as the fourth largest consumer healthcare company in Europe and is recognized as a Top Employer in Germany. Their website reflects a professional and comprehensive digital presence targeting consumers, healthcare professionals, and partners. Technically, the site uses modern JavaScript libraries, consent management tools, and is built on the Umbraco CMS platform. However, the website suffers from a critical security issue: the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly undermines user trust and security. Performance is also suboptimal with slow load times and a large page size. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high with detailed contact information and consistent WHOIS data. Overall, while the business and content quality are excellent, the security posture requires urgent improvement to protect users and maintain trust.

Hawle Beteiligungsgesellschaft m.b.H. is a well-established Austrian manufacturer specializing in water supply valves and related products, serving a global market with a strong European manufacturing base. The company emphasizes sustainability, quality, and innovation, with a broad product portfolio including gate valves, butterfly valves, and digital water management solutions. The website reflects a mature digital presence with multi-language support and professional branding. Technically, the site uses modern JavaScript frameworks (Vue.js), Pimcore CMS, and integrates analytics and consent management tools, indicating a good level of digital maturity. However, a critical security weakness is the lack of a valid SSL certificate and proper HTTPS configuration, which significantly impacts the security posture and user trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business appears credible and trustworthy, but urgent improvements in SSL/TLS deployment are recommended to secure user interactions and data.

R

Roomle GmbH

roomle.com

0

Roomle GmbH operates a sophisticated 3D commerce platform named Rubens, specializing in product personalization, room designing, and augmented reality visualization. The company targets furniture manufacturers, retailers, and other industries seeking to enhance their e-commerce offerings with interactive 3D configurators and AR experiences. The platform integrates with e-commerce and ERP/CRM systems, providing a seamless customer experience and boosting sales. Technically, the website leverages modern web technologies including Vue.js, Storyblok CMS, and Google Cloud hosting, with performance and mobile optimization rated good. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the security posture. Privacy and cookie policies are present and GDPR compliant, but incident response and vulnerability disclosure mechanisms are lacking. Overall, Roomle presents a professional and trustworthy business with strong market positioning but must urgently address its SSL/TLS deficiencies to ensure secure user interactions.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

WordPress

kapschcarrier.com

0

KapschCarrier.com is a small-scale WordPress-based blog focused on telecommunications policy and 5G network insights. The site provides regularly updated content authored by an identified individual, targeting telecom professionals and enthusiasts. Technically, the site uses WordPress with common libraries like jQuery and Swiper.js, hosted behind Cloudflare. However, the site lacks a valid SSL/TLS certificate and does not serve content over HTTPS, which is a critical security deficiency. No privacy, cookie, or terms of service policies are published, and no contact information is available, limiting trust and compliance. The site has good SEO metadata and structured data but lacks analytics or advertising integrations. Overall, the site is functional but has significant security and compliance gaps that should be addressed to improve trustworthiness and user safety.

H

Heidrick & Struggles International, Inc.

heidrick.com

0

Heidrick & Struggles International, Inc. operates a leading global retained executive search and leadership consulting firm. The company specializes in executive search, leadership development, on-demand talent, and organizational culture consulting, serving a broad range of industries with a strong market position. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting corporate clients seeking leadership solutions. Technically, the site uses Sitecore CMS, Microsoft IIS hosting, and integrates Coveo search and OneTrust cookie consent, indicating a modern and scalable infrastructure. However, a critical security gap exists as the site lacks HTTPS/SSL encryption, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and credible but urgently requires SSL implementation to meet security best practices.

L

LearnChamp Consulting GmbH & Co KG

learnchamp.com

0

LearnChamp Consulting GmbH & Co KG is a well-established E-Learning agency founded in 2001, specializing in tailored digital learning solutions and LMS implementation with Totara for corporate clients primarily in the DACH region. The company holds recognized certifications including ISO 27001:2022 and has received industry awards, positioning it as a leading provider in its sector. The website reflects a professional and consistent brand image with comprehensive content and multimedia elements targeting business customers. Technically, the site uses modern marketing and embedding technologies such as HubSpot and Vimeo, hosted via Cloudflare and built on Webflow CMS. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Contact information is clearly presented, enhancing business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The Spencer Stuart Portal website serves as a client or internal portal for Spencer Stuart, a global executive search and leadership advisory firm. The site is minimalistic, primarily acting as a loading or shell page that dynamically loads resources and scripts from local bundles and external services such as Pendo for analytics. The business focus is on executive search and leadership consulting, targeting enterprise clients and internal users. The portal likely supports client engagement and administrative functions rather than public marketing. Technically, the site is hosted on Amazon S3 with CloudFront CDN, leveraging AngularJS framework and JavaScript for dynamic content loading. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. The absence of modern TLS protocols, security headers, and privacy policies further weakens the security posture. Performance data is unavailable, but the site appears slow and basic in design and user experience. Security evaluation reveals no WAF or blocking mechanisms, but the lack of HTTPS and security best practices exposes the site to risks. No privacy or cookie policies are present, and no contact or legal information is provided, limiting trust and compliance. Pendo analytics is integrated, indicating moderate user tracking without visible privacy compliance measures. Overall, the site is functional as a portal shell but requires urgent improvements in security, privacy compliance, and content completeness to meet enterprise standards and user trust expectations.

The website lobster.media is currently a parked domain landing page primarily monetized through advertising networks such as Google Adsense and Parklogic. It lacks substantive business content, contact information, or any clear business model beyond domain parking. The technical infrastructure is minimal, hosted on Hetzner Online with a Caddy server, but critically lacks a valid SSL certificate and HTTPS support, exposing visitors to security risks. The site does not implement privacy or cookie consent mechanisms and provides no security or incident response policies. Overall, the site demonstrates very low digital maturity and business credibility, with poor content quality and minimal technical sophistication.

A

Anker Innovations

anker-in.com

0

Anker Innovations is a globally recognized leader in charging technology and consumer electronics, offering products in premium audio, home entertainment, and home security. The company maintains a professional and well-branded online presence with regularly updated content and a focus on sustainability. Technically, the website is built on WordPress with Elementor and integrates modern marketing and analytics tools, although performance is moderate and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which poses significant risks. Privacy compliance is strong with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the website demonstrates good business credibility but requires urgent security improvements to protect user data and trust.

E

Evides N.V.

evides.nl

0

Evides N.V. is a large, established public utility company providing reliable and sustainable drinking water services to approximately 2.5 million consumers and businesses in the southwest Netherlands. The company operates a comprehensive digital infrastructure including a customer portal (Mijn Evides), extensive self-service options, and detailed information resources. Their market position is strong with a focus on quality, sustainability, and customer engagement. Technically, the website is built on modern frameworks like Nuxt.js and Vue.js, hosted on Microsoft Azure, and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Google Tag Manager. Security measures are in place including a strict Content Security Policy and multiple security headers; however, the SSL certificate is currently invalid and no modern TLS protocols are enabled, representing a critical security risk. Privacy compliance is robust with comprehensive GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of SSL issues to ensure secure user interactions.

The website jci.cc is currently inaccessible due to a Cloudflare security block, which prevents access to any meaningful content or business information. The site presents a Cloudflare challenge page indicating that the visitor has been blocked, likely due to security rules triggered by the request. This results in a lack of visible metadata, contact details, policies, or business descriptions. The technical infrastructure relies on Cloudflare for security and DNS, with Google MX records for email, but the SSL/TLS configuration is invalid or missing, which is a critical security concern. Overall, the security posture is weak due to the absence of a valid certificate and modern TLS protocols, though some security headers are present. Due to the blocking, the website's content quality, privacy compliance, and business credibility cannot be assessed, resulting in a low overall risk score. Strategic recommendations include resolving SSL issues, enabling HSTS, and providing accessible privacy and contact information to improve trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

MS Design GmbH is a medium-sized manufacturing company based in Tirol, Austria, specializing as a system supplier to the automotive industry. Founded in 1983, the company offers comprehensive services from design and prototyping to production start, emphasizing quality, innovation, and customer satisfaction. Their market position is supported by multiple certifications including IATF 16949 and ISO standards, reflecting a strong commitment to quality and environmental management. Technically, the website is built on TYPO3 CMS with a modern but basic technology stack including jQuery and various UI libraries. While the site is well-structured, mobile-optimized, and SEO-friendly, it lacks HTTPS support and a valid SSL certificate, which is a critical security gap. The hosting environment appears to be a Plesk-managed Apache server without advanced security configurations such as HSTS or DNSSEC. From a security perspective, the absence of HTTPS and modern TLS protocols severely impacts the site's security posture. Although some security headers are present and email obfuscation is implemented, the lack of encryption exposes users to risks. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms, but incident response and vulnerability disclosure information are missing. Overall, the website demonstrates good business credibility and content quality but suffers from critical security shortcomings. Strategic improvements in SSL implementation and enhanced security headers are recommended to elevate trust and compliance.

B

Burton Snowboards

burton.com

0

Burton Snowboards is a well-established leader in the snowboarding retail industry, offering a comprehensive range of products including snowboards, boots, bindings, apparel, and accessories. Founded in 1977, the company has a strong brand presence and a loyal customer base, supported by a professional e-commerce platform that targets snowboarding enthusiasts and outdoor sports consumers. The website demonstrates excellent content quality, clear navigation, and consistent branding, reflecting a mature digital presence. Technically, the site leverages modern e-commerce technologies such as Salesforce Commerce Cloud (Demandware), Cloudflare CDN, and integrates multiple marketing and analytics tools including Google Analytics, OneTrust, and Yotpo. However, the current SSL certificate is invalid or missing, which poses a critical security risk and impacts user trust. Security headers are implemented but HSTS is not fully enabled, indicating room for improvement in HTTPS enforcement. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website is professional and trustworthy but requires urgent attention to SSL configuration to enhance security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Siltronic AG is a globally recognized leader in the manufacturing of hyperpure silicon wafers, serving major semiconductor manufacturers worldwide. The company operates production sites across Asia, Europe, and the USA, emphasizing quality, precision, and innovation. Their business model focuses on supplying essential silicon wafers for the semiconductor industry, positioning them as a key player in technology manufacturing. The website reflects a professional corporate presence with comprehensive investor relations and career information, targeting industry professionals, investors, and potential employees. Technically, the website is built on TYPO3 CMS and hosted via Amazon CloudFront, integrating modern tools such as Google Tag Manager and FriendlyCaptcha. The site is well-structured, mobile-optimized, and includes a GDPR-compliant cookie consent mechanism. However, the absence of a valid SSL certificate critically undermines the security posture, exposing users to risks and limiting the effectiveness of security headers. From a security perspective, while several best practices are implemented, the lack of HTTPS and TLS support is a major vulnerability. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and readiness. Overall, the site is professional and trustworthy in content but requires urgent security improvements to protect visitors and maintain compliance. Strategically, Siltronic should prioritize obtaining a valid SSL certificate and enabling modern TLS protocols to secure communications. Enhancing transparency around incident response and vulnerability disclosure would further strengthen their security culture and stakeholder confidence.

B

B&A Insurance Consulting

baic.cz

0

B&A Insurance Consulting is a Czech Republic-based IT consulting and software development company specializing in SAP systems and insurance sector applications. With over 16 years of market presence, the company serves insurance and banking clients, particularly within the VIG group, offering SAP implementation, maintenance, and custom software development services. The website reflects a professional and consistent brand with clear business focus and client testimonials supporting its market position. Technically, the site uses modern frameworks and technologies but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security. Privacy compliance is basic but present, with GDPR policies and cookie consent mechanisms implemented. Overall, the company demonstrates credible business operations but requires urgent improvements in security posture to protect its digital presence and client trust.

H

HOSTSTAR - Multimedia Networks AG

selinatec.com

0

Hoststar is a webhosting and domain registration provider targeting German-speaking customers with affordable hosting packages and cloud services. The website content is currently a default hosting placeholder page indicating readiness for customer content upload. The technical infrastructure uses nginx web server and common web libraries like jQuery and WOW.js, hosted by Hoststar itself. However, the SSL certificate is invalid or missing, resulting in poor HTTPS security. The site lacks cookie consent mechanisms and vulnerability disclosures, indicating limited privacy and security maturity. Contact information and business details are clearly presented, supporting moderate business credibility. Overall, the website is functional but requires significant improvements in security and privacy compliance to meet modern standards.

R

Regus

regus.com

0

Regus is a well-established global provider of flexible workspace solutions, including office space, coworking, virtual offices, and meeting rooms. With a mature domain age of 29 years and a strong market presence as part of the IWG Group, Regus serves a broad audience of businesses seeking flexible and scalable workspace options. The website is professionally designed, leveraging modern technologies such as Next.js and Sitecore CMS, and offers comprehensive content and clear navigation to support user engagement. However, the current lack of a valid SSL certificate and disabled TLS protocols represent significant security vulnerabilities that must be addressed promptly to ensure secure communications and maintain user trust. Privacy and cookie policies are present and indicate good compliance with GDPR requirements. Overall, the site demonstrates a strong business credibility and digital maturity but requires immediate security improvements.

E

ertex solar

ertex-solar.at

0

Ertex solar is a specialized company focused on building-integrated photovoltaics (BIPV), offering innovative solar energy solutions integrated into architectural elements such as façades, balconies, and roofs. With a strong emphasis on aesthetics and energy transition, the company serves architects, developers, and environmentally conscious clients globally. The website reflects a mature digital presence with professional design, multilingual support, and comprehensive product information. Technically, the site runs on a modern WordPress stack with SEO and performance optimizations, hosted on OVHcloud. Security posture is solid with HTTPS and multiple security headers, though SSL/TLS protocol support requires enhancement. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain and WHOIS data corroborate the legitimacy and consistency of the business claims.

A

ANWR Norden AB

anwr.se

0

ANWR Norden AB operates as a leading organization in the voluntary shoe retail sector in the Nordic region, founded in 1919 in Hamburg, Germany. The company connects shoe retailers with top brands and offers a portfolio of services tailored to the needs of trade and industry, including financial services through its own bank, DZB Bank. The website reflects a medium-sized enterprise with a clear business model focused on membership services and retail support. Technically, the website uses standard web technologies and a consent management platform but suffers from slow load times and lacks modern CMS or frameworks. Security posture is weak due to the absence of a valid SSL certificate and modern TLS protocols, despite the presence of HSTS headers. The lack of DMARC, DNSSEC, and other DNS security features further reduces security maturity. Privacy compliance is basic with a privacy policy present but no strong GDPR indicators. Overall, the site is functional but requires significant improvements in security and performance to meet modern standards.

C

Corteva Commercial

pioneer.com

0

Pioneer.com represents the global seed brand of Corteva Commercial, a large agricultural manufacturing company. The website provides seed products, agronomic expertise, and local data support aimed at farmers and agricultural professionals worldwide. The site is built on Adobe Experience Manager and uses Adobe's digital marketing and analytics tools, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. Privacy and terms pages exist but are basic, and no cookie consent mechanism is implemented, which may raise compliance concerns in regulated jurisdictions. Contact information is limited to a contact form without direct emails or phone numbers, reducing accessibility for users seeking support. Overall, the site is professional and content-rich but requires urgent security and privacy improvements.

I

IC Resources

ic-resources.com

0

IC Resources is a well-established technology recruitment agency specializing in deep tech sectors such as software, semiconductor, electronics, and manufacturing. Founded in 1999, it operates globally with offices in the UK, Germany, and the USA. The company connects innovative organizations with highly skilled technology professionals, offering services including job search assistance, CV advice, and talent acquisition for clients. The website reflects a professional and comprehensive digital presence with rich content and client testimonials, positioning IC Resources as a trusted partner in the technology recruitment market. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Contact Form 7, supported by a PHP 8.2 backend and hosted via StackCDN. While the site is mobile-optimized and SEO-friendly, performance metrics are not available, and accessibility is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks. Security headers are present but insufficient to compensate for the lack of encryption. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is detected. Overall, the security posture is weak due to missing HTTPS and TLS protocols, which should be addressed urgently. The business credibility is strong, supported by consistent WHOIS data and transparent contact information. Strategic recommendations include immediate SSL/TLS implementation, enhanced security headers, and improved privacy and cookie consent mechanisms to align with GDPR requirements and user trust expectations.

T

TDK Electronics AG

epcos.com

0

TDK Electronics AG, formerly EPCOS, is a mature and established enterprise specializing in the manufacturing and sales of electronic components, primarily serving industrial, automotive, and energy sectors. The company operates under the TDK Group umbrella, with a strong European presence and a comprehensive product catalog that includes capacitors, sensors, inductors, transformers, and more. Their website reflects a professional and well-structured digital presence, targeting engineers, distributors, and industrial clients with detailed product information and design support resources. Technically, the website employs modern analytics and marketing tools such as Piwik PRO, Google Tag Manager, and OneTrust for cookie consent, indicating a good level of digital maturity. However, the absence of a valid SSL/TLS certificate and HTTPS implementation significantly undermines the security posture, exposing users to potential risks. Despite this, the domain is mature, well-registered, and consistent with the business claims, enhancing overall trustworthiness. Strategic improvements in security infrastructure are recommended to align with industry best practices and regulatory compliance.

B

BILTON LEDON Technology GmbH

biltongroup.com

0

BILTON LEDON Technology GmbH operates under the brand Better Light, specializing in high-quality LED lighting solutions manufactured in Austria. The company leverages its expertise from established LED brands BILTON and LEDON to offer a broad portfolio including LED strips, profiles, power supplies, and lighting management systems. Their market position is solidified by a mature domain and professional online presence targeting architects, industrial clients, and lighting professionals. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes Google Analytics for user tracking. However, performance is slow and security headers are minimal, indicating room for improvement in technical optimization and security hardening. The SSL certificate is valid but nearing expiration, and no advanced security features like HSTS or OCSP stapling are enabled. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site demonstrates good business credibility and trustworthiness but would benefit from enhanced security practices and performance optimization.

The website wilsonsons.com.br is currently inaccessible due to a 403 Forbidden error, indicating restricted access or blocking at the server or security layer. This prevents extraction of any meaningful content, metadata, or business information from the site itself. The domain is registered and uses professional DNS and email infrastructure, including Amazon AWS name servers and Google MX servers, suggesting a legitimate and established business presence in Brazil, likely in the transportation sector. The SSL certificate is valid and supports modern TLS protocols, but lacks advanced security features such as HSTS and OCSP stapling. No privacy, cookie, or terms of service policies are detectable on the root page, and no contact information or social media links are present in the accessible content. Overall, the site’s security posture is basic but could be improved with additional headers and DNS security measures. Due to the blocked content, the overall risk assessment is limited and the AI scoring is low, reflecting the inability to fully evaluate the site’s content and compliance.

D

Digital Wallonia

digitalwallonia.be

0

Digital Wallonia is the official digital strategy platform for the Wallonia region in Belgium, managed by the Walloon Government. It serves as a comprehensive resource for digital transformation initiatives, programs, and ecosystem mapping in the region. The platform targets businesses, public authorities, and digital stakeholders, providing detailed publications, event agendas, and strategic information. Technically, the site is built on a modern React Static framework, hosted on Amazon infrastructure, and uses Cloudflare DNS services. Despite a valid SSL certificate and no detected vulnerabilities, the site lacks advanced security headers and HSTS, which are recommended for enhanced security. Performance is notably slow, with a page load time exceeding 26 seconds, indicating room for optimization. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness as a government entity but could improve technical and security aspects to enhance user experience and protection.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.