Security Directory

W

wb-bc Business Consulting und Beteiligungs GmbH

wb-bc.at

0

wb-bc Business Consulting und Beteiligungs GmbH is a small Austrian consulting firm specializing in digital and online business consulting services. Their offerings include business founding, digital transformation, performance improvement, financing, business model innovation, and succession planning. The company emphasizes practical, tailored solutions delivered through digital channels such as phone, Skype, MS Teams, and Zoom, with modular booking and payment options available online. The website is built on WordPress using Elementor and integrates various marketing and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. While the site is content-rich and professionally designed with good navigation and mobile optimization, it lacks a valid SSL certificate, serving content over HTTP only, which is a significant security concern. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. Contact information is clearly presented, and the company maintains an active social media presence. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS significantly impacts the security posture.

Nexxchange AG operates a specialized SaaS platform focused on golf course and resort management, offering tools for booking, marketing optimization, and sales intelligence. The company targets golf managers and multi-site operators, positioning itself as an all-in-one solution in the hospitality sector. The website is professionally designed with multi-language support and social media presence, but lacks explicit privacy policy and contact information on the homepage. Technically, the site uses a modern frontend stack including Bootstrap, jQuery, and FontAwesome, but critically lacks a valid SSL certificate, serving content over HTTP only, which severely impacts security posture. Security headers are partially implemented, but without HTTPS, their effectiveness is limited. The domain registration data is consistent with the business claims, indicating legitimacy. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in security and privacy compliance to enhance trust and protect users.

L

List SpA

list-group.com

0

List SpA is a medium-sized Italian company specializing in advanced software solutions for banking and finance, including trading, compliance, risk management, and treasury management. As part of the ION Group, it holds a strong market position with a professional digital presence targeting financial institutions and trading venues. The website is well-structured, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital infrastructure based on WordPress and Elementor. However, a critical security gap exists due to the absence of a valid SSL certificate, exposing users to potential risks and undermining trust. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the company demonstrates strong business credibility but must urgently address its SSL/TLS configuration to improve security posture and user trust.

D

Dataphone GmbH

dataphone.at

0

Dataphone GmbH is an Austrian company specializing in digitalizing supply chain processes, offering innovative software and hardware solutions primarily for warehouse logistics, transport, and retail sectors. Their market position is strong within Austria, providing comprehensive services including warehouse management systems (LOGIS 4 and LOGIS Light), hardware products like barcode scanners and label printers, and professional maintenance and support services. The company targets businesses seeking to modernize and optimize their logistics and supply chain operations through digital transformation. Technically, the website is built on WordPress with a modern theme and uses a variety of plugins for SEO, performance optimization, cookie consent, and analytics. However, a critical security shortfall is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. The site employs Google Analytics, Google Tag Manager, and other marketing tools with proper consent mechanisms, indicating good privacy compliance. Contact information and business details are clearly presented, enhancing business credibility. Overall, while the business and technical maturity are good, urgent improvements in security infrastructure are necessary to protect user data and build trust.

The website ae-net.info represents a small independent consulting business operated by Torsten A�, offering services in project management, marketing, coaching, and business consulting primarily targeting German-speaking clients. The business has a mature domain with 20 years of registration, consistent with the claimed experience and service offerings. The website content is static, primarily informational, and presented in German, with no interactive forms or contact details explicitly provided on the homepage. Technically, the site is hosted on Apache via IONOS SE, uses outdated HTML standards, and lacks modern web technologies or CMS platforms. Performance is slow, and mobile optimization is poor. Security posture is weak due to the absence of HTTPS and security headers, exposing visitors to potential risks. No privacy or cookie policies are present, indicating poor privacy compliance. Overall, the site reflects a basic digital presence with limited technical and security maturity.

1

101domain GRS Limited

psolutions.at

0

The website psolutions.at is currently a parked domain page managed by 101domain GRS Limited, a domain registration and related services provider. The site offers no original business content but promotes domain registration, Google Workspace, web hosting, and corporate brand services through 101domain. The target audience is individuals or businesses interested in acquiring this domain or other domains. The site is minimalistic with basic design and navigation, primarily serving as a placeholder and sales funnel for domain services. Technically, the site is hosted on an AWS IP with nginx server and uses modern frontend technologies such as jQuery and Modernizr. However, it lacks SSL/TLS encryption, serving content over HTTP only, which is a significant security shortfall. Performance metrics are not available, but the site appears lightweight. Mobile optimization is good due to responsive CSS, but accessibility and SEO are basic. Security posture is weak due to the absence of HTTPS, no HSTS, no DMARC, no DNSSEC, and no valid SSL certificate. Some security headers like Content-Security-Policy and X-Frame-Options are present, but overall security best practices are not fully implemented. There are no signs of vulnerabilities like Heartbleed or POODLE, but the lack of encryption is critical. Overall, the site poses low risk as it is a parked domain with no user data collection or business operations. However, the lack of HTTPS and privacy policies reduces trustworthiness and compliance. Strategic recommendations include implementing SSL/TLS, adding privacy and cookie policies, and improving security headers to enhance trust and security posture.

The website datafund.net is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that blocks access to actual content. The page only displays a minimal 'Just a moment...' message with JavaScript and cookie enforcement, preventing analysis of business or security content. The domain has DNS records pointing to Cloudflare and Google MX servers but lacks a valid SSL certificate, resulting in no HTTPS support. No privacy, cookie, or terms of service policies are detectable, nor is any contact or company information available. This severely limits the ability to assess the company's business model, market position, or compliance posture. The security headers present are standard but insufficient without HTTPS. Overall, the site appears to be under protection or maintenance, and the lack of accessible content results in a low trust and security score.

COS is a well-established international fashion brand specializing in modern, sustainable wardrobe essentials for women and men. The website reflects a strong brand identity with comprehensive content, multi-market localization, and a focus on sustainability. The technical infrastructure is modern, leveraging Next.js and React frameworks, hosted via Akamai CDN, and integrated with Storyblok CMS. However, a critical security gap is the absence of a valid SSL certificate, resulting in no HTTPS support and disabled TLS protocols, which severely impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Business credibility is high due to consistent branding, social media presence, and comprehensive legal documentation. Strategic improvements in security infrastructure are essential to protect user data and enhance trust.

S&P Global Ratings operates as a leading global credit rating agency providing essential financial intelligence embedded into the workflows of customers worldwide. The website reflects a mature enterprise with a comprehensive offering of credit ratings, research, and analytics services targeted at investors, issuers, and intermediaries. The digital infrastructure leverages modern JavaScript libraries, marketing tools, and analytics platforms, hosted primarily on Amazon AWS with content delivery via Akamai. While the site is professionally designed with excellent content quality and user experience, it lacks a valid SSL certificate and proper HTTPS configuration, which significantly impacts its security posture. Security headers are present, but the absence of TLS protocols and certificate transparency compliance are critical gaps. Privacy policies and cookie notices are well implemented, indicating good privacy compliance. Overall, the website demonstrates high business credibility but requires urgent security improvements to align with best practices and protect user data.

V

Vela Labs

vela-labs.at

0

Vela Labs GmbH is a GLP and GMP certified contract laboratory specializing in analytical services for pharmaceutical and biotechnology companies. The company supports all phases of drug development with services including physico-chemical analysis, ligand binding assays, cell based assays, microbiological analysis, clinical sample analytics, and GMP storage. As part of the Tentamus Group, Vela Labs positions itself as a trusted partner with strong compliance credentials and a focus on quality and regulatory adherence. The website demonstrates a professional digital presence built on WordPress with SEO and analytics integrations, targeting pharma and biotech professionals. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the company shows a solid market position but should urgently address its SSL/TLS configuration to improve security posture and user confidence.

S

SimTech GmbH

simtechnology.com

0

SimTech GmbH is a specialized software company providing advanced simulation technology primarily for energy and chemical engineering sectors. With over 30 years of experience, the company offers simulation software (IPSEpro), model libraries, consulting, and training services targeted at plant manufacturers, consultants, and R&D organizations. The website reflects a professional and consistent brand with clear business information and reputable client references. Technically, the site is built on Joomla CMS with modern frameworks but lacks HTTPS, which is a critical security gap. Security headers are present but insufficient without SSL/TLS. Privacy compliance is good with a clear privacy policy, though no cookie consent mechanism is implemented. Overall, the site is content-rich and trustworthy but requires urgent security improvements to protect user data and enhance trust.

The website saa.at currently presents an empty HTML page with no visible content, metadata, or interactive elements. The domain is registered and active with DNS records pointing to a valid IP address and Microsoft Outlook mail servers, indicating some level of operational infrastructure. However, the lack of SSL/TLS certificate and absence of HTTPS support severely undermines the site's security posture. No privacy, cookie, or terms of service policies are present, and no contact or business information is available on the site. The technical infrastructure appears minimal and outdated, with no modern web technologies or security best practices implemented. Overall, the site is not suitable for professional or commercial use in its current state and poses significant security and trust risks.

The website chavabeijk.nl represents a personal artist site for soprano Chava Beijk, providing information about her musical repertoire, collaborations, and contact details for concerts and singing lessons. The site targets classical music enthusiasts, concert organizers, and students interested in vocal training. The business model is focused on personal promotion and service offerings in the niche classical music sector, with a small scale and localized presence in the Netherlands. Technically, the site is hosted on an Apache server with basic JavaScript for UI interactions and is hosted by Mijndomein. The site lacks modern frameworks, CMS, or advanced performance optimizations, resulting in slow loading and poor mobile optimization. No analytics or tracking technologies are detected, indicating minimal digital maturity. From a security perspective, the site lacks HTTPS and a valid SSL certificate, exposing users to potential risks. No advanced security headers or policies are implemented, and no privacy or cookie policies are present, indicating poor compliance with GDPR and modern privacy standards. The DNS configuration is basic with SPF but lacks DNSSEC and CAA records. Overall, the security posture is weak, with critical recommendations needed to improve encryption and security headers. Overall, the site is functional for its purpose but requires urgent improvements in security and privacy compliance to enhance trustworthiness and protect visitors. The lack of HTTPS is a critical issue that significantly lowers the security score and overall AI rating.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Eurofins Scientific

eurofins.com

0

Eurofins Scientific operates a comprehensive global network of laboratory testing services specializing in food, environment, pharmaceutical product testing, and agroscience CRO services. With approximately 63,000 employees and over 950 laboratories across 60 countries, Eurofins is a world leader in its sector, offering more than 200,000 analytical methods. The website reflects this extensive business scope with detailed service offerings and a strong global presence. Technically, the site uses modern JavaScript libraries and analytics tools, but suffers from critical SSL/TLS configuration issues that undermine its security posture. Security headers are implemented, but the lack of a valid SSL certificate and disabled TLS protocols represent significant vulnerabilities. Privacy compliance is well addressed with cookie consent mechanisms and privacy policies in place. Overall, the site is professional and trustworthy but requires urgent remediation of its SSL/TLS issues to ensure secure user interactions.

V

VERITAS Verlags- und Handelsges.m.b.H.&Co.OG

veritas.at

0

VERITAS Verlags- und Handelsges.m.b.H.&Co.OG is a leading Austrian educational publisher specializing in printed and digital school books and learning materials. The company offers a broad portfolio of over 400 product lines and 80,000 digital and printed resources targeting teachers, students, and parents primarily in Austria. Their market position is strong within the Austrian education sector, supported by comprehensive digital platforms and learning apps. The website reflects a mature digital presence built on Magento Commerce, integrating modern analytics and marketing tools such as Google Analytics and New Relic. However, the website's security posture is weakened by an invalid SSL certificate and incomplete enforcement of HTTPS, which poses a risk to user trust and data security. Content Security Policy is implemented in report-only mode, indicating partial adoption of security best practices. Overall, the site is professionally designed with excellent content quality and navigation, but security improvements are necessary to enhance trust and compliance.

NEVEON Holding GmbH is a large, leading integrated foam manufacturer specializing in polyurethane flexible and composite foams with a broad portfolio serving comfort, mobility, and specialty sectors. The company operates globally with 44 locations across 13 countries and is part of the Greiner Group. The website is professionally designed using TYPO3 CMS and hosted behind Cloudflare, offering good mobile optimization and accessibility. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture. Security headers are partially implemented, but critical SSL/TLS configurations are missing, exposing the site to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies, and contact information is readily available. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

H

Heller Consult Tax & Business Solutions GmbH

hellerconsult.com

0

Heller Consult Tax & Business Solutions GmbH is a Vienna-based tax and business consulting firm targeting entrepreneurs and businesses primarily in Austria. The company offers a range of services including tax consulting, accounting, business consulting, digital booking, and client portals. Their market position is that of a small but professional local firm with an international network partner, InterGest® Austria, supporting clients with expansion needs. The website is well structured, professionally designed, and provides clear contact channels and trust indicators such as customer testimonials and a ProvenExpert rating widget. Technically, the site is built on TYPO3 CMS with UIkit framework and integrates analytics tools like Google Tag Manager and Hotjar. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security vulnerability. Cookie consent and privacy policies are well implemented and GDPR compliant. Overall, the business presents a credible and professional image but must urgently address its SSL/TLS deficiencies to improve security and trust.

M

Mayway

mayway.at

0

Mayway.at is currently a placeholder website indicating an upcoming launch, featuring a simple landing page with a newsletter subscription form. The business behind the site is not explicitly described, and no detailed company information or contact details are provided. The site targets general internet users interested in updates about the launch. Technically, the site uses basic web technologies including Google Fonts and FontAwesome, hosted on World4You servers, but lacks modern CMS or frameworks. Performance is slow with a large page size and long load times. Security posture is weak due to absence of HTTPS, no security headers, and no advanced protections. Privacy compliance is minimal with no policies or cookie consent mechanisms. Overall, the site is low trust and low maturity, suitable only as a temporary placeholder.

B

BMC Software, Inc.

bmc.com

0

BMC Software, Inc. is a well-established enterprise software company specializing in IT service management, automation, and mainframe solutions. The website reflects a strong market position with a focus on AI-driven digital transformation and multi-cloud enterprise management. The content is comprehensive, professionally designed, and targets enterprise IT professionals and organizations. Technically, the site is built on Adobe Experience Manager and leverages modern personalization and analytics tools such as Mutiny and Adobe Launch, served via Cloudflare CDN. However, the security posture is weakened by an invalid SSL certificate and disabled TLS protocols, which are critical issues that need immediate remediation. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness but requires urgent security improvements to protect user data and maintain trust.

faigle Kunststoffe GmbH is a medium-sized, family-owned company specializing in thermoplastic plastic solutions for industrial sectors such as transportation, intralogistics, public transport, and manufacturing. The company offers a range of products including machined finished parts, holding loops, plastic rollers, and semi-finished products, supported by an online shop. The business is positioned as an innovative and quality-focused player with international subsidiaries and recognized certifications like the Red Dot Design Award and Creditreform creditworthiness certificate. Technically, the website uses nginx, Google Tag Manager, and Matomo Analytics, but lacks a valid SSL certificate, resulting in insecure HTTP access and weak security posture. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. The website is well-structured, mobile-optimized, and professionally branded, though performance is slow and accessibility is basic. Security headers are partially implemented but critical SSL/TLS deficiencies significantly reduce the security score. Overall, the domain registration is consistent and legitimate, matching the business claims.

E

e7 GmbH

e-sieben.at

0

e7 GmbH is an Austrian energy and environmental engineering consultancy specializing in energy efficiency, renewable energy, and climate protection. The company offers a broad range of services including energy audits, management, consulting for new construction and renovations, energy innovations, and international projects. Their market position is that of a specialized small enterprise with a strong focus on sustainable energy solutions. The website content is professionally presented, targeting businesses and organizations interested in energy and climate solutions. Technically, the website is built on the webEdition CMS platform and uses Matomo for analytics, reflecting a privacy-conscious approach. However, the site suffers from a lack of HTTPS support and valid SSL certificates, which significantly undermines its security posture. Performance is slow, and no modern TLS protocols or security headers are configured, exposing the site to potential risks. From a security perspective, the absence of HTTPS and security headers are critical vulnerabilities. No explicit security policies or incident response contacts are provided, which could impact trust and compliance. Privacy compliance is reasonably good due to the presence of a comprehensive privacy policy and cookie information, although no explicit consent mechanism is observed. Overall, the website is functional and professional but requires urgent security improvements, especially enabling HTTPS and implementing security best practices. Strategic recommendations include obtaining a valid SSL certificate, enabling HSTS, adding security headers, and enhancing incident response transparency to improve trust and compliance.

Hueck Folien GmbH is a specialized manufacturing company based in Austria, focusing on high-quality film coating solutions with a strong emphasis on security features for banknotes and other high-security applications. The company has a solid market position as a trusted partner for the world's most secure currencies and offers innovative products such as security threads and self-adhesive labeling surfaces. Their website reflects a professional and consistent brand image, targeting industrial clients and partners in security and design sectors. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates analytics and marketing tools like Google Analytics and Facebook Pixel. However, the absence of a valid SSL certificate and disabled TLS protocols significantly weaken the site's security posture, exposing users to risks and reducing trust. While security headers are well implemented, critical improvements in SSL/TLS configuration are necessary. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent security enhancements to align with best practices.

C

Consulteer

schindlercreations.com

0

Consulteer is a European consulting and software development company specializing in human-centered design, software engineering, and cybersecurity services. The company positions itself as a one-stop innovation partner delivering market-ready products and solutions with a strong focus on the human element. The website reflects a mature and professional business with a clear market position and a medium-sized operational scale, founded in 2015 and headquartered in Switzerland. Technically, the website is built on modern frameworks such as Next.js and React, hosted via Cloudflare, and uses Contentful as a CMS. However, the website suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture and user trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is limited to a contact form, with no direct emails or phone numbers publicly available. Overall, the website is content-rich and professionally designed but requires urgent security improvements to meet modern standards.

A

Adapt Centre

adaptcentre.ie

0

The ADAPT Centre is a prominent Irish research centre specializing in AI-driven digital content technology, collaborating with leading academic institutions such as Trinity College Dublin, Dublin City University, University College Dublin, and Dublin Institute of Technology. It serves a diverse audience including industry partners, researchers, and the public, focusing on advancing AI research, fostering innovation, and supporting enterprise collaboration. The centre is well-positioned in the technology research sector with strong government funding and industry partnerships. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for enhanced functionality such as Gravity Forms and FacetWP. Hosting is managed by WP Engine with Cloudflare CDN providing content delivery and some security features. While the site is mobile-optimized and SEO-friendly, performance data is missing, and some accessibility features are basic. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS properly, which is a critical vulnerability. Other security headers and best practices are partially implemented, but the absence of HTTPS and HSTS significantly lowers the security posture. No explicit security or incident response policies are found on the site, and cookie consent mechanisms are missing, indicating partial privacy compliance. Overall, the website is professional and trustworthy in terms of business credibility and content quality but requires urgent improvements in security infrastructure to protect user data and comply with best practices. Strategic recommendations include implementing valid SSL/TLS certificates, enabling modern TLS protocols, and adding privacy and security policies to enhance compliance and user trust.

M

Maschinenring Schweiz

maschinenring.ch

0

Maschinenring Schweiz is a Swiss umbrella organization dedicated to fostering inter-company collaboration in agriculture. It connects members, organizes purchasing cooperatives, and offers various services to support agricultural businesses. The website is professionally designed using TYPO3 CMS and hosted on Hostpoint, with a clear structure and multilingual support. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. Privacy and cookie policies are well implemented with consent mechanisms, and social media presence is established on Facebook and Instagram. Overall, the site reflects a medium-sized, established non-profit entity with a strong community focus but requires urgent security improvements.

D

DAXNER GmbH

daxner.at

0

DAXNER GmbH is a medium-sized Austrian manufacturing company specializing in bulk material technology and engineering solutions for various industrial sectors including food, chemical, and non-food industries. The company has a strong market position as an internationally leading provider with a comprehensive portfolio of products and services such as engineering, production, assembly, and control technology. Their website reflects a professional and well-structured digital presence with excellent content quality and SEO optimization. Technically, the site is built on WordPress with modern plugins and scripts, but lacks a valid SSL certificate and proper HTTPS configuration, which is a significant security concern. Security headers are well implemented, but the absence of TLS protocols and session resumption reduces the overall security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information and social media presence enhance business credibility. Overall, the website is trustworthy and professional but requires urgent improvements in SSL/TLS security to protect user data and improve trust.

R

retailsolutions AG

retailsolutions.ch

0

retailsolutions AG is a leading SAP Retail consulting firm in Europe, specializing in digital transformation, forecasting, omnichannel customer centricity, and analytics solutions. With over 350 employees and multiple international offices, the company supports retail clients worldwide in implementing SAP projects with a focus on sustainable and future-proof IT solutions. The website reflects a professional and content-rich digital presence, leveraging TYPO3 CMS and modern web technologies to deliver a good user experience and clear navigation. However, the website suffers from critical security shortcomings, notably the absence of a valid SSL certificate and lack of HTTPS support, which severely impacts the security posture and user trust. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business credibility and content quality are high, but urgent improvements in security infrastructure are necessary to protect users and enhance trust.

P

promitto organisationsberatung gmbh

promitto.at

0

promitto organisationsberatung gmbh is a small Austrian consulting firm specializing in organizational development, leadership coaching, and change management. Their website presents a professional image with clear descriptions of their services, targeting organizations and leadership teams seeking vitality and transformation support. The technical infrastructure is based on WordPress with common plugins like Yoast SEO and Contact Form 7, but lacks a valid SSL certificate, which is a significant security concern. The site includes GDPR-compliant privacy and cookie policies with consent mechanisms, but no terms of service or explicit security policies are found. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Overall, the website is functional and informative but requires urgent security improvements to protect user data and improve trust.

NETCONOMY GmbH is a mature technology consulting and digital platform services company founded in 2000 and based in Austria. The company focuses on helping businesses transform digitally by providing services in digital strategy, consulting and innovation, platform building, and operations excellence. Their market position is supported by long-term global customer relationships and partnerships with leading technology providers such as SAP, Google Cloud, and Microsoft Azure. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, GDPR compliance plugins, and marketing tools like HubSpot and Facebook Pixel. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security shortfall. Security headers are minimal, and no explicit security or incident response policies are published. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect user data and enhance trust.

P

planetsoftware

cad.at

0

planetsoftware is a well-established Austrian company specializing in 3D CAD software solutions, primarily focusing on SOLIDWORKS and 3DEXPERIENCE platforms. As a partner of the Bechtle Group, they provide comprehensive product lifecycle management software and services including design, data management, simulation, and manufacturing solutions. Their website reflects a mature digital presence with detailed product offerings, customer references, and educational resources targeting industrial and technical sectors. Technically, the site is built on WordPress with modern plugins and tools, but lacks a valid SSL certificate, which is a significant security concern. Privacy compliance is well addressed with cookie consent mechanisms and GDPR-aligned policies. Overall, the business demonstrates strong market positioning and professional online representation but must urgently address its lack of HTTPS to improve security posture and trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Ö

ÖSB Consulting GmbH

oesb.at

0

ÖSB Consulting GmbH is a prominent consulting firm specializing in labor market policy and related services in Austria. As part of the ÖSB Group, it holds a strong market position with a broad portfolio including diversity, entrepreneurship, health management, and sustainability consulting. The company serves a diverse audience including businesses, unemployed individuals, and youth, with a focus on innovative and impactful labor market solutions. Technically, the website is built on WordPress with Elementor and uses LiteSpeed hosting and caching technologies, ensuring a modern and responsive user experience. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines trust and data protection. The site employs privacy-conscious analytics and cookie management, aligning well with GDPR requirements. Overall, the business demonstrates professionalism and credibility, but urgent improvements in security infrastructure are necessary.

N

NCT Heidelberg

nct-heidelberg.de

0

NCT Heidelberg is a prominent German healthcare and research institution specializing in oncology. The website serves multiple audiences including patients, physicians, and researchers, offering comprehensive information on patient care, clinical studies, and cancer research programs. The site is well-structured and professionally designed, reflecting its institutional nature and affiliations with major German research and medical organizations. Technically, the website is built on TYPO3 CMS and integrates modern consent management tools like Usercentrics, alongside Matomo for privacy-focused analytics. However, the absence of a valid SSL certificate is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but DNSSEC and proper CAA records are missing, indicating room for improvement in DNS security. Privacy compliance is strong with clear GDPR mechanisms in place. Overall, the site demonstrates good business credibility and content quality but requires urgent security enhancements to meet modern standards.

SGL Carbon is a global technology leader specializing in carbon-based materials and solutions, serving key industries such as sustainable mobility, energy, semiconductor technology, and chemical manufacturing. The company operates worldwide with a strong presence in Europe, North America, and Asia, employing approximately 4,700 people and generating significant revenue. The website reflects a mature and professional business with comprehensive content, clear branding, and a focus on sustainability and innovation. Technically, the site is built on TYPO3 CMS and integrates modern marketing and analytics tools, but suffers from a critical lack of HTTPS and valid SSL certificates, severely impacting security posture. Privacy compliance is well addressed with cookie consent mechanisms and detailed policies. Overall, the site is trustworthy and professional but requires urgent security improvements to protect users and data.

A

AF Compressors

afcompressors.com

0

AF Compressors is a well-established manufacturer specializing in oil-free piston compressors, serving industrial sectors including PET bottling. The company positions itself as a world leader with a strong focus on energy and cost savings. Their website reflects a medium-sized enterprise with a global service network and a consistent brand presence. Technically, the site is built on WordPress with modern libraries and tracking tools, but suffers from a critical lack of HTTPS and valid SSL certificates, which severely impacts security posture. Privacy policies and cookie consent mechanisms are implemented, though extensive tracking scripts may affect privacy compliance. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

C

conova communications GmbH

conova.com

0

conova communications GmbH is a well-established Austrian IT service provider specializing in tailored IT solutions including data center services, managed hosting, cloud, virtualization, and security. Founded in 1988, conova positions itself as a strategic partner for businesses requiring high availability and secure IT infrastructure, primarily serving the Austrian market with international reach. The company operates its own data centers and offers hybrid cloud solutions, emphasizing data sovereignty and security. The website reflects a mature digital presence with comprehensive service descriptions, customer testimonials, and certifications such as ISO 27001 and EN 50600, reinforcing its market credibility. Technically, the website is built on WordPress with modern plugins like Slider Revolution and Borlabs Cookie for cookie management, and integrates marketing tools such as HubSpot. The site is mobile-optimized and SEO-friendly, with structured data and Open Graph metadata enhancing search visibility. However, the absence of a valid SSL/TLS certificate and disabled TLS protocols represent significant security shortcomings, undermining the otherwise strong security posture indicated by HTTP headers and certifications. Security-wise, conova demonstrates good practices with multiple security headers and GDPR-compliant privacy and cookie policies. Yet, the lack of HTTPS and modern TLS support is a critical vulnerability that must be addressed urgently to protect data in transit and maintain trust. No incident response or vulnerability disclosure information was found, suggesting an area for improvement in transparency and security readiness. Overall, conova presents a professional and trustworthy business with strong market positioning and technical maturity, but the critical SSL/TLS issues pose a risk that could impact customer confidence and compliance. Strategic remediation of these security gaps is recommended to align the website's security posture with its business reputation.

The domain goldenerhirsch.com appears to be associated with the hospitality sector, likely representing a hotel or related service. However, the website content is completely inaccessible due to a security mechanism, likely a Web Application Firewall (WAF) provided by Akamai, which returns an Access Denied page. This prevents any meaningful content or business information extraction. The technical infrastructure shows hosting behind Akamai's edge network but lacks a valid SSL certificate, resulting in no HTTPS support. Security headers are minimal, and no privacy or cookie policies are present. Overall, the site exhibits a poor security posture and lacks digital maturity. The domain registration is consistent and legitimate but without accessible content, trust and credibility are low. Strategic recommendations include installing a valid SSL certificate, enabling full security headers, and resolving access issues to allow legitimate users to reach the site.

M

Mondial GmbH & Co. KG

mondial-congress.com

0

Mondial GmbH & Co. KG is a medium-sized Austrian company specializing in congress and event management services, including green meetings, virtual events, and travel management. The company holds several industry certifications and maintains a multilingual, content-rich website targeting organizations seeking professional event solutions. Technically, the website is built on WordPress with modern libraries but lacks a valid SSL certificate, resulting in a critical security gap. The absence of HTTPS and security headers exposes users to risks and reduces trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to meet modern standards.

S

Stryker

stryker.com

0

Stryker is a large multinational healthcare company specializing in medical devices and healthcare solutions, serving a global audience including healthcare professionals and patients. The website serves as an international homepage with localized country sites, reflecting a broad global presence. Technically, the site is built on Adobe Experience Manager and hosted via AWS CloudFront, utilizing various marketing and analytics technologies such as Adobe DTM, Google Analytics, and Marketo. However, the website lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security deficiency. Security headers are implemented but cannot compensate for the absence of HTTPS. Privacy and cookie policies are not found, and no explicit contact information is provided on the homepage, which impacts privacy compliance and user trust. Overall, the site demonstrates moderate business credibility but requires urgent improvements in security and privacy compliance to meet modern standards.

O

OBLIN Rechtsanwälte GmbH

oblin.at

0

OBLIN Rechtsanwälte GmbH is a specialized international law firm focusing on arbitration, litigation, and dispute resolution based in Austria and Germany. The firm targets businesses engaged in cross-border disputes and white collar crime matters, positioning itself as a leading boutique legal service provider with a strong international network and multiple awards. The website reflects a professional and consistent brand image with comprehensive content about their expertise and team. Technically, the website is built on TYPO3 CMS and served via Apache, with good mobile optimization and SEO practices. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but modern TLS protocols and HSTS are missing. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility but requires urgent security improvements.

S

Schäfer Shop Deutschland

schaefer-shop.de

0

Schäfer Shop Deutschland is a well-established e-commerce retailer specializing in office furniture, office supplies, and warehouse equipment, serving primarily business customers across Europe. With over 50 years of experience, the company offers a comprehensive product range exceeding 85,000 items, emphasizing quality, service, and fast delivery. The website reflects a mature digital presence with professional design, clear navigation, and multi-language support for various European markets. Technically, the site employs modern marketing and analytics tools including Usercentrics for consent management, Google Tag Manager, and Adobe Experience Cloud, ensuring compliance with privacy regulations and effective user tracking. However, a critical security concern is the absence of a valid SSL certificate and lack of HTTPS support, which significantly undermines the site's security posture and user trust. Despite this, the site maintains strong trust indicators such as ISO certifications, Trusted Shops membership, and sustainability awards. Overall, while the business and technical maturity are high, immediate remediation of SSL/TLS issues is essential to secure the platform and protect customer data.

B

Belimed INC.

belimed.com

0

Belimed INC. is a large healthcare-focused company specializing in medical and surgical instrument sterilization, disinfection, and cleaning products and services. The company positions itself as a trusted partner in advancing medical care and protecting patient and staff safety, with a global presence and over 1,000 employees across nine countries. Their business model is primarily B2B, serving sterile processing departments and healthcare providers with a comprehensive portfolio including washer-disinfectors, sterilizers, digitalization solutions, and training services. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with Tailwind CSS for styling. It integrates multiple analytics and marketing tools including Google Analytics, Facebook Connect, LinkedIn Pixel, and Calendly. The site is well-optimized for mobile and accessibility, with clear navigation and professional design. However, the SSL certificate is invalid or missing, which significantly impacts the security posture. From a security perspective, the site implements several important HTTP security headers and a restrictive Content-Security-Policy, but the lack of a valid SSL certificate and incomplete HSTS implementation are critical weaknesses. No explicit security or incident response policies are found, and there is no vulnerability disclosure or security.txt file. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is professional and trustworthy from a business and content perspective but requires urgent remediation of SSL issues to improve security and user trust. Strategic improvements in security policy transparency and incident response readiness are also recommended.

H

HKR Architects

hkrarchitects.com

0

HKR Architects is an established international architecture and urban design firm founded in 1992, with offices in London, Dublin, Dubai, and Abu Dhabi. The company offers a range of architectural services including masterplanning and modular design, targeting clients seeking professional architectural solutions globally. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the site is built on the Squarespace platform, leveraging modern web fonts and Google Tag Manager for analytics, but lacks performance metrics for a full assessment. Security posture is weak due to the absence of a valid SSL certificate and disabled HTTPS, exposing users to potential risks. Privacy compliance is basic with a cookie banner and privacy policy present, but GDPR compliance is not clearly demonstrated. Overall, the site is credible and professional but requires urgent security improvements to protect visitors and enhance trust.

The website peterbrett.com currently hosts only a minimal HTML page that immediately redirects visitors to a /lander path, with no visible content, metadata, or business information. The domain is registered and has DNS records pointing to AWS IP addresses, but no SSL/TLS certificate is installed, resulting in no HTTPS support. The absence of privacy policies, contact information, or any business-related content severely limits the ability to assess the company's market position or services. Technically, the site lacks modern web standards, security headers, and performance optimizations, indicating a very low digital maturity level. Security posture is weak due to missing HTTPS and security best practices, though no active vulnerabilities or WAF protections are detected. Overall, the site presents a high risk from a trust and security perspective and requires significant improvements to meet basic web and compliance standards.

S

Siemens

siemens.co.in

0

Siemens India operates as a key regional branch of the global Siemens AG conglomerate, focusing on electrification, automation, and digitalization solutions tailored for industrial and infrastructure sectors. The website reflects a mature digital presence with extensive content, professional design, and clear corporate messaging aimed at industrial clients, investors, and job seekers. Technically, the site leverages modern frameworks such as Vue.js and Apollo GraphQL, hosted on AWS CloudFront, and integrates multiple analytics and marketing tools, indicating a high level of digital maturity. However, a critical security gap exists due to the invalid or missing SSL certificate, which undermines HTTPS security and exposes the site to potential risks. Security headers and policies are well implemented, but the lack of proper SSL/TLS configuration significantly impacts the security posture. Overall, the site is trustworthy and professionally maintained but requires urgent remediation of SSL issues to ensure secure communications and compliance.

I

ICW Group

icwgroup.com

0

ICW Group is a national commercial insurance provider specializing in workers' compensation, catastrophe insurance, and assumed reinsurance coverage. The company targets businesses seeking comprehensive insurance solutions and risk management services. Their website reflects a mature digital presence built on WordPress with Elementor, featuring well-structured content, clear navigation, and integration with multiple marketing and analytics tools such as Hotjar, Pardot, and Google Tag Manager. However, the site lacks a valid SSL certificate, which significantly impacts its security posture. While cookie consent mechanisms and privacy policies are in place, explicit security policies and incident response information are absent. Overall, the website demonstrates good business credibility and user experience but requires urgent improvements in security to protect user data and enhance trust.

N

NNZ United States

nnzusa.com

0

NNZ United States is a well-established multinational packaging company with a history dating back to 1922. The company specializes in providing customized packaging solutions primarily for the fresh produce and industrial sectors. It operates through a broad network of subsidiaries across Europe, North America, and Africa, positioning itself as a market leader with a strong emphasis on sustainability and innovation. The website reflects a professional and comprehensive digital presence, offering detailed product portfolios, sustainability initiatives, and corporate information. Technically, the website is built on WordPress with modern tools such as Gravity Forms and Google Tag Manager integrated for analytics and marketing. While the site is well-structured, mobile-optimized, and SEO-friendly, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security headers are properly configured, but the lack of encryption undermines user trust and data protection. The company demonstrates good privacy compliance with clear privacy and cookie policies, including consent mechanisms. Contact information is readily available, including phone numbers, physical address, and contact forms, enhancing business credibility. However, no explicit security policy or incident response information is found on the site. Overall, NNZ USA presents a strong business and digital profile but must urgently address its SSL/TLS configuration to improve security and trustworthiness. Strategic improvements in this area will enhance user confidence and align the website with modern security standards.

Josef Thurner Holz GmbH operates as a medium-sized wood trading company based in Austria, specializing in both international and retail wood commerce, including wood mediation services. The company is positioned as the largest wood market in the Carinthia and East Tyrol regions, offering a broad range of wood products such as construction timber, laminated wood, biofuels, and wood protection products. Their business model combines wholesale, retail, and online sales channels, targeting both business clients and consumers interested in wood products. Technically, the website employs legacy technologies like jQuery and custom PHP-based CMS, hosted likely by A1.net, but suffers from slow performance and basic mobile optimization. Critically, the site lacks a valid SSL certificate and HTTPS support, which severely impacts its security posture. While privacy compliance is addressed with a cookie consent banner and a privacy policy, the absence of a security policy or incident response information indicates gaps in security maturity. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.