Security Directory

P

promitto organisationsberatung gmbh

promitto.at

0

promitto organisationsberatung gmbh is a small Austrian consulting firm specializing in organizational development, leadership coaching, and change management. Their website presents a professional image with clear descriptions of their services, targeting organizations and leadership teams seeking vitality and transformation support. The technical infrastructure is based on WordPress with common plugins like Yoast SEO and Contact Form 7, but lacks a valid SSL certificate, which is a significant security concern. The site includes GDPR-compliant privacy and cookie policies with consent mechanisms, but no terms of service or explicit security policies are found. Contact information is clearly provided, including email, phone, and physical address, enhancing business credibility. Overall, the website is functional and informative but requires urgent security improvements to protect user data and improve trust.

NETCONOMY GmbH is a mature technology consulting and digital platform services company founded in 2000 and based in Austria. The company focuses on helping businesses transform digitally by providing services in digital strategy, consulting and innovation, platform building, and operations excellence. Their market position is supported by long-term global customer relationships and partnerships with leading technology providers such as SAP, Google Cloud, and Microsoft Azure. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, GDPR compliance plugins, and marketing tools like HubSpot and Facebook Pixel. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security shortfall. Security headers are minimal, and no explicit security or incident response policies are published. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect user data and enhance trust.

P

planetsoftware

cad.at

0

planetsoftware is a well-established Austrian company specializing in 3D CAD software solutions, primarily focusing on SOLIDWORKS and 3DEXPERIENCE platforms. As a partner of the Bechtle Group, they provide comprehensive product lifecycle management software and services including design, data management, simulation, and manufacturing solutions. Their website reflects a mature digital presence with detailed product offerings, customer references, and educational resources targeting industrial and technical sectors. Technically, the site is built on WordPress with modern plugins and tools, but lacks a valid SSL certificate, which is a significant security concern. Privacy compliance is well addressed with cookie consent mechanisms and GDPR-aligned policies. Overall, the business demonstrates strong market positioning and professional online representation but must urgently address its lack of HTTPS to improve security posture and trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Ö

ÖSB Consulting GmbH

oesb.at

0

ÖSB Consulting GmbH is a prominent consulting firm specializing in labor market policy and related services in Austria. As part of the ÖSB Group, it holds a strong market position with a broad portfolio including diversity, entrepreneurship, health management, and sustainability consulting. The company serves a diverse audience including businesses, unemployed individuals, and youth, with a focus on innovative and impactful labor market solutions. Technically, the website is built on WordPress with Elementor and uses LiteSpeed hosting and caching technologies, ensuring a modern and responsive user experience. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines trust and data protection. The site employs privacy-conscious analytics and cookie management, aligning well with GDPR requirements. Overall, the business demonstrates professionalism and credibility, but urgent improvements in security infrastructure are necessary.

N

NCT Heidelberg

nct-heidelberg.de

0

NCT Heidelberg is a prominent German healthcare and research institution specializing in oncology. The website serves multiple audiences including patients, physicians, and researchers, offering comprehensive information on patient care, clinical studies, and cancer research programs. The site is well-structured and professionally designed, reflecting its institutional nature and affiliations with major German research and medical organizations. Technically, the website is built on TYPO3 CMS and integrates modern consent management tools like Usercentrics, alongside Matomo for privacy-focused analytics. However, the absence of a valid SSL certificate is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but DNSSEC and proper CAA records are missing, indicating room for improvement in DNS security. Privacy compliance is strong with clear GDPR mechanisms in place. Overall, the site demonstrates good business credibility and content quality but requires urgent security enhancements to meet modern standards.

SGL Carbon is a global technology leader specializing in carbon-based materials and solutions, serving key industries such as sustainable mobility, energy, semiconductor technology, and chemical manufacturing. The company operates worldwide with a strong presence in Europe, North America, and Asia, employing approximately 4,700 people and generating significant revenue. The website reflects a mature and professional business with comprehensive content, clear branding, and a focus on sustainability and innovation. Technically, the site is built on TYPO3 CMS and integrates modern marketing and analytics tools, but suffers from a critical lack of HTTPS and valid SSL certificates, severely impacting security posture. Privacy compliance is well addressed with cookie consent mechanisms and detailed policies. Overall, the site is trustworthy and professional but requires urgent security improvements to protect users and data.

A

AF Compressors

afcompressors.com

0

AF Compressors is a well-established manufacturer specializing in oil-free piston compressors, serving industrial sectors including PET bottling. The company positions itself as a world leader with a strong focus on energy and cost savings. Their website reflects a medium-sized enterprise with a global service network and a consistent brand presence. Technically, the site is built on WordPress with modern libraries and tracking tools, but suffers from a critical lack of HTTPS and valid SSL certificates, which severely impacts security posture. Privacy policies and cookie consent mechanisms are implemented, though extensive tracking scripts may affect privacy compliance. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

C

conova communications GmbH

conova.com

0

conova communications GmbH is a well-established Austrian IT service provider specializing in tailored IT solutions including data center services, managed hosting, cloud, virtualization, and security. Founded in 1988, conova positions itself as a strategic partner for businesses requiring high availability and secure IT infrastructure, primarily serving the Austrian market with international reach. The company operates its own data centers and offers hybrid cloud solutions, emphasizing data sovereignty and security. The website reflects a mature digital presence with comprehensive service descriptions, customer testimonials, and certifications such as ISO 27001 and EN 50600, reinforcing its market credibility. Technically, the website is built on WordPress with modern plugins like Slider Revolution and Borlabs Cookie for cookie management, and integrates marketing tools such as HubSpot. The site is mobile-optimized and SEO-friendly, with structured data and Open Graph metadata enhancing search visibility. However, the absence of a valid SSL/TLS certificate and disabled TLS protocols represent significant security shortcomings, undermining the otherwise strong security posture indicated by HTTP headers and certifications. Security-wise, conova demonstrates good practices with multiple security headers and GDPR-compliant privacy and cookie policies. Yet, the lack of HTTPS and modern TLS support is a critical vulnerability that must be addressed urgently to protect data in transit and maintain trust. No incident response or vulnerability disclosure information was found, suggesting an area for improvement in transparency and security readiness. Overall, conova presents a professional and trustworthy business with strong market positioning and technical maturity, but the critical SSL/TLS issues pose a risk that could impact customer confidence and compliance. Strategic remediation of these security gaps is recommended to align the website's security posture with its business reputation.

The domain goldenerhirsch.com appears to be associated with the hospitality sector, likely representing a hotel or related service. However, the website content is completely inaccessible due to a security mechanism, likely a Web Application Firewall (WAF) provided by Akamai, which returns an Access Denied page. This prevents any meaningful content or business information extraction. The technical infrastructure shows hosting behind Akamai's edge network but lacks a valid SSL certificate, resulting in no HTTPS support. Security headers are minimal, and no privacy or cookie policies are present. Overall, the site exhibits a poor security posture and lacks digital maturity. The domain registration is consistent and legitimate but without accessible content, trust and credibility are low. Strategic recommendations include installing a valid SSL certificate, enabling full security headers, and resolving access issues to allow legitimate users to reach the site.

M

Mondial GmbH & Co. KG

mondial-congress.com

0

Mondial GmbH & Co. KG is a medium-sized Austrian company specializing in congress and event management services, including green meetings, virtual events, and travel management. The company holds several industry certifications and maintains a multilingual, content-rich website targeting organizations seeking professional event solutions. Technically, the website is built on WordPress with modern libraries but lacks a valid SSL certificate, resulting in a critical security gap. The absence of HTTPS and security headers exposes users to risks and reduces trust. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to meet modern standards.

S

Stryker

stryker.com

0

Stryker is a large multinational healthcare company specializing in medical devices and healthcare solutions, serving a global audience including healthcare professionals and patients. The website serves as an international homepage with localized country sites, reflecting a broad global presence. Technically, the site is built on Adobe Experience Manager and hosted via AWS CloudFront, utilizing various marketing and analytics technologies such as Adobe DTM, Google Analytics, and Marketo. However, the website lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security deficiency. Security headers are implemented but cannot compensate for the absence of HTTPS. Privacy and cookie policies are not found, and no explicit contact information is provided on the homepage, which impacts privacy compliance and user trust. Overall, the site demonstrates moderate business credibility but requires urgent improvements in security and privacy compliance to meet modern standards.

O

OBLIN Rechtsanwälte GmbH

oblin.at

0

OBLIN Rechtsanwälte GmbH is a specialized international law firm focusing on arbitration, litigation, and dispute resolution based in Austria and Germany. The firm targets businesses engaged in cross-border disputes and white collar crime matters, positioning itself as a leading boutique legal service provider with a strong international network and multiple awards. The website reflects a professional and consistent brand image with comprehensive content about their expertise and team. Technically, the website is built on TYPO3 CMS and served via Apache, with good mobile optimization and SEO practices. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but modern TLS protocols and HSTS are missing. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility but requires urgent security improvements.

S

Schäfer Shop Deutschland

schaefer-shop.de

0

Schäfer Shop Deutschland is a well-established e-commerce retailer specializing in office furniture, office supplies, and warehouse equipment, serving primarily business customers across Europe. With over 50 years of experience, the company offers a comprehensive product range exceeding 85,000 items, emphasizing quality, service, and fast delivery. The website reflects a mature digital presence with professional design, clear navigation, and multi-language support for various European markets. Technically, the site employs modern marketing and analytics tools including Usercentrics for consent management, Google Tag Manager, and Adobe Experience Cloud, ensuring compliance with privacy regulations and effective user tracking. However, a critical security concern is the absence of a valid SSL certificate and lack of HTTPS support, which significantly undermines the site's security posture and user trust. Despite this, the site maintains strong trust indicators such as ISO certifications, Trusted Shops membership, and sustainability awards. Overall, while the business and technical maturity are high, immediate remediation of SSL/TLS issues is essential to secure the platform and protect customer data.

B

Belimed INC.

belimed.com

0

Belimed INC. is a large healthcare-focused company specializing in medical and surgical instrument sterilization, disinfection, and cleaning products and services. The company positions itself as a trusted partner in advancing medical care and protecting patient and staff safety, with a global presence and over 1,000 employees across nine countries. Their business model is primarily B2B, serving sterile processing departments and healthcare providers with a comprehensive portfolio including washer-disinfectors, sterilizers, digitalization solutions, and training services. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with Tailwind CSS for styling. It integrates multiple analytics and marketing tools including Google Analytics, Facebook Connect, LinkedIn Pixel, and Calendly. The site is well-optimized for mobile and accessibility, with clear navigation and professional design. However, the SSL certificate is invalid or missing, which significantly impacts the security posture. From a security perspective, the site implements several important HTTP security headers and a restrictive Content-Security-Policy, but the lack of a valid SSL certificate and incomplete HSTS implementation are critical weaknesses. No explicit security or incident response policies are found, and there is no vulnerability disclosure or security.txt file. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is professional and trustworthy from a business and content perspective but requires urgent remediation of SSL issues to improve security and user trust. Strategic improvements in security policy transparency and incident response readiness are also recommended.

H

HKR Architects

hkrarchitects.com

0

HKR Architects is an established international architecture and urban design firm founded in 1992, with offices in London, Dublin, Dubai, and Abu Dhabi. The company offers a range of architectural services including masterplanning and modular design, targeting clients seeking professional architectural solutions globally. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the site is built on the Squarespace platform, leveraging modern web fonts and Google Tag Manager for analytics, but lacks performance metrics for a full assessment. Security posture is weak due to the absence of a valid SSL certificate and disabled HTTPS, exposing users to potential risks. Privacy compliance is basic with a cookie banner and privacy policy present, but GDPR compliance is not clearly demonstrated. Overall, the site is credible and professional but requires urgent security improvements to protect visitors and enhance trust.

The website peterbrett.com currently hosts only a minimal HTML page that immediately redirects visitors to a /lander path, with no visible content, metadata, or business information. The domain is registered and has DNS records pointing to AWS IP addresses, but no SSL/TLS certificate is installed, resulting in no HTTPS support. The absence of privacy policies, contact information, or any business-related content severely limits the ability to assess the company's market position or services. Technically, the site lacks modern web standards, security headers, and performance optimizations, indicating a very low digital maturity level. Security posture is weak due to missing HTTPS and security best practices, though no active vulnerabilities or WAF protections are detected. Overall, the site presents a high risk from a trust and security perspective and requires significant improvements to meet basic web and compliance standards.

S

Siemens

siemens.co.in

0

Siemens India operates as a key regional branch of the global Siemens AG conglomerate, focusing on electrification, automation, and digitalization solutions tailored for industrial and infrastructure sectors. The website reflects a mature digital presence with extensive content, professional design, and clear corporate messaging aimed at industrial clients, investors, and job seekers. Technically, the site leverages modern frameworks such as Vue.js and Apollo GraphQL, hosted on AWS CloudFront, and integrates multiple analytics and marketing tools, indicating a high level of digital maturity. However, a critical security gap exists due to the invalid or missing SSL certificate, which undermines HTTPS security and exposes the site to potential risks. Security headers and policies are well implemented, but the lack of proper SSL/TLS configuration significantly impacts the security posture. Overall, the site is trustworthy and professionally maintained but requires urgent remediation of SSL issues to ensure secure communications and compliance.

I

ICW Group

icwgroup.com

0

ICW Group is a national commercial insurance provider specializing in workers' compensation, catastrophe insurance, and assumed reinsurance coverage. The company targets businesses seeking comprehensive insurance solutions and risk management services. Their website reflects a mature digital presence built on WordPress with Elementor, featuring well-structured content, clear navigation, and integration with multiple marketing and analytics tools such as Hotjar, Pardot, and Google Tag Manager. However, the site lacks a valid SSL certificate, which significantly impacts its security posture. While cookie consent mechanisms and privacy policies are in place, explicit security policies and incident response information are absent. Overall, the website demonstrates good business credibility and user experience but requires urgent improvements in security to protect user data and enhance trust.

N

NNZ United States

nnzusa.com

0

NNZ United States is a well-established multinational packaging company with a history dating back to 1922. The company specializes in providing customized packaging solutions primarily for the fresh produce and industrial sectors. It operates through a broad network of subsidiaries across Europe, North America, and Africa, positioning itself as a market leader with a strong emphasis on sustainability and innovation. The website reflects a professional and comprehensive digital presence, offering detailed product portfolios, sustainability initiatives, and corporate information. Technically, the website is built on WordPress with modern tools such as Gravity Forms and Google Tag Manager integrated for analytics and marketing. While the site is well-structured, mobile-optimized, and SEO-friendly, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security headers are properly configured, but the lack of encryption undermines user trust and data protection. The company demonstrates good privacy compliance with clear privacy and cookie policies, including consent mechanisms. Contact information is readily available, including phone numbers, physical address, and contact forms, enhancing business credibility. However, no explicit security policy or incident response information is found on the site. Overall, NNZ USA presents a strong business and digital profile but must urgently address its SSL/TLS configuration to improve security and trustworthiness. Strategic improvements in this area will enhance user confidence and align the website with modern security standards.

Josef Thurner Holz GmbH operates as a medium-sized wood trading company based in Austria, specializing in both international and retail wood commerce, including wood mediation services. The company is positioned as the largest wood market in the Carinthia and East Tyrol regions, offering a broad range of wood products such as construction timber, laminated wood, biofuels, and wood protection products. Their business model combines wholesale, retail, and online sales channels, targeting both business clients and consumers interested in wood products. Technically, the website employs legacy technologies like jQuery and custom PHP-based CMS, hosted likely by A1.net, but suffers from slow performance and basic mobile optimization. Critically, the site lacks a valid SSL certificate and HTTPS support, which severely impacts its security posture. While privacy compliance is addressed with a cookie consent banner and a privacy policy, the absence of a security policy or incident response information indicates gaps in security maturity. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

P

Pointy Hills Media Ltd

fall-line.co.uk

0

Fall Line Skiing is a specialized UK-based media company operating a ski magazine and website focused on ski gear reviews, resort guides, and skiing stories. The company targets ski enthusiasts and offers subscriptions, single issue sales, advertising, and an e-commerce shop. The website is built on WordPress with WooCommerce and uses modern marketing and analytics tools, including Google Analytics, Tag Manager, and Microsoft Clarity. The content quality and branding are excellent, with clear navigation and professional design. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. Security headers are present but insufficient without HTTPS. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms implemented. Contact information is clearly provided, including a UK physical address and phone number. Overall, the website is trustworthy but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

U

Under The Milky Way

underthemilkyway.com

0

Under The Milky Way is a well-established global digital film distribution company with a strong market presence and partnerships with major VoD platforms. Their website reflects a professional business focused on digital distribution and marketing services, supported by a proprietary software solution for revenue optimization. Technically, the site is built on Squarespace with modern web technologies and includes basic SEO and mobile optimization. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user trust and data protection. Privacy compliance is partially addressed with a cookie banner and privacy policy, but lacks comprehensive GDPR indicators and terms of service. Overall, the business appears legitimate and credible, but security posture requires urgent improvement.

N

Novotech

novotech-cro.com

0

Novotech is a globally recognized full-service clinical research organization (CRO) specializing in supporting biotech and small to mid-sized pharmaceutical companies with clinical trial services and scientific advisory. The company has a strong market position in the Asia-Pacific region and globally, supported by multiple industry awards and a comprehensive portfolio of services including medical consulting, patient recruitment, clinical operations, biometrics, virtual trials, and laboratory services. The website reflects a mature digital presence with multilingual support, professional design, and clear navigation tailored to its target audience of biopharmaceutical sponsors. Technically, the website is built on Drupal 10 and hosted on Pantheon, utilizing modern web technologies and third-party integrations such as OneTrust for cookie consent and Google Tag Manager for analytics. The site is mobile-optimized and accessible, with good SEO practices and structured data for enhanced search visibility. From a security perspective, while the site implements several important HTTP security headers and content security policies, it critically lacks a valid SSL certificate and does not support any TLS protocols, severely impacting the security posture and user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Business credibility is high, supported by consistent branding, professional content, and trust indicators. Overall, the site presents a professional and trustworthy front for Novotech but urgently requires remediation of its SSL/TLS configuration to ensure secure communications and compliance with modern security standards.

Sensus, a brand under Xylem Inc., specializes in smart solutions for water, energy, and communication infrastructure, targeting utilities and municipalities. The website presents a mature, well-branded digital presence with comprehensive product and service information, supporting a B2B business model focused on smart utility networks and managed services. Technically, the site uses modern web technologies including EPiServer CMS and Cloudflare for hosting, but suffers from critical SSL/TLS misconfigurations, lacking a valid HTTPS certificate which severely impacts security posture. Security headers are well implemented, but the absence of HTTPS and modern TLS protocols is a major vulnerability. Privacy compliance is partially met with a clear privacy policy and terms of service, but no cookie consent mechanism is observed despite cookie usage. Overall, the site is professional and trustworthy from a business perspective but requires urgent security improvements to protect user data and maintain trust.

B

Baumit.com

baumit.com

0

Baumit.com is an established international company specializing in building materials, facade insulation, and innovative construction technologies such as 3D concrete printing. The company emphasizes sustainability and healthy living environments, supported by research initiatives like the VIVA Research Park. The website presents a professional and consistent brand image with good content quality and navigation. Technically, the site uses a variety of modern JavaScript libraries and custom CMS solutions, but the main domain lacks HTTPS, which is a significant security concern. The subdomain int.baumit.com uses HTTPS properly. Security posture is weak due to missing SSL on the main domain and lack of security headers. Privacy compliance is well addressed with clear cookie consent and privacy policies. Business credibility is supported by consistent WHOIS data and structured organization information. Overall, the site is functional and professional but requires urgent security improvements to protect users and enhance trust.

N

NTT DATA Business Solutions

itelligencegroup.com

0

NTT DATA Business Solutions is a global SAP consulting and full-service software solutions provider operating in over 30 countries, with a strong presence in Finland. The company offers a broad range of services including advisory, implementation, managed cloud services, and innovation technology services, targeting midsize and large enterprises. Their business model focuses on transforming SAP solutions into value for their clients, leveraging extensive industry expertise and technology innovation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their target audience. Technically, the site is built on WordPress with modern SEO and analytics tools, but suffers from a critical security flaw due to an invalid SSL certificate and lack of HTTPS, which significantly impacts the security posture. Security headers are partially implemented, but key best practices like HSTS and OCSP stapling are missing. Privacy compliance is reasonably addressed with clear privacy and cookie policies, though no explicit consent mechanism is observed. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. Overall, the domain registration data aligns well with the business claims, indicating legitimacy. Strategic improvements in SSL deployment and security policy transparency are recommended to enhance trust and compliance.

D

Deutsche Vermögensberatung Bank Aktiengesellschaft

dvag.at

0

Deutsche Vermögensberatung Bank Aktiengesellschaft (DVAG) is a well-established family-owned financial advisory company operating primarily in Austria, offering financial coaching, private customer financial services, and career opportunities as financial advisors. The website is professionally designed with comprehensive content, clear navigation, and strong branding consistency. It targets private customers and prospective financial advisors, positioning itself as a trusted leader in the Austrian financial advisory market. Technically, the site uses modern web components and multimedia integrations but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is strong, with detailed GDPR-compliant policies and cookie consent mechanisms. The business information is transparent and consistent with WHOIS data, reinforcing legitimacy. However, the lack of HTTPS and security headers significantly lowers the security posture and overall trustworthiness score.

Raiffeisen-Landesbank Tirol AG is a regional financial institution serving private and corporate clients primarily in Tirol, Austria. The website presents a comprehensive portfolio of banking services including private banking, corporate banking, online banking, loans, savings, insurance, and real estate services. The company positions itself as a trusted regional partner with a strong emphasis on sustainability and customer service. Technically, the website is built on Adobe Experience Manager with modern JavaScript frameworks such as Angular and includes advanced tracking and consent management tools. However, the security posture is weak due to the absence of a valid SSL certificate and lack of TLS protocol support, which is a critical issue for a financial institution. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

M

MedMedia Group

medmedia.ie

0

MedMedia Group is a specialist healthcare communications and marketing agency based in Ireland, focusing on delivering publishing expertise combined with design, digital innovation, and marketing services tailored to the healthcare sector. Their market position is that of a niche provider serving healthcare clients with a broad spectrum of services including publications, web and mobile development, brand identity, and event management. The website content is professional and well-structured, targeting healthcare organizations in Ireland. Technically, the website runs on an Apache server with a Foundation CSS framework and uses several JavaScript libraries including jQuery 1.11.0, Font Awesome, and Animate.css. Google Analytics is integrated for user tracking. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security and trust issue. Performance data is missing but inferred to be slow, and mobile optimization is basic. SEO and accessibility features are present but minimal. From a security perspective, the site has some security headers configured but fails to provide a valid SSL/TLS configuration, exposing users to risks. There are no visible privacy or cookie policies, and no incident response or vulnerability disclosure information is provided. The absence of GDPR compliance indicators and cookie consent mechanisms further weakens the privacy posture. Overall, the website demonstrates moderate business credibility and good content quality but suffers from critical security shortcomings due to lack of HTTPS and privacy compliance. Strategic improvements in SSL configuration, privacy policies, and updated technology stacks are recommended to enhance trust and security.

The Lucille Werner Foundation is a small Dutch non-profit organization dedicated to improving the visibility and inclusion of people with disabilities through media, events, and labor market initiatives. The website reflects this mission with clear content and navigation but lacks critical compliance elements such as privacy and cookie policies. Technically, the site is built on the JouwWeb CMS platform and hosted on Google Cloud infrastructure, but it suffers from an invalid SSL certificate, resulting in no proper HTTPS security. Security headers are partially implemented, and minimal user tracking is done via Plausible Analytics, indicating some privacy awareness. Overall, the security posture is weak due to missing HTTPS and lack of advanced security configurations. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in SSL configuration, privacy compliance, and contact transparency are recommended to enhance trust and security.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

R

RIWOG Real Estate Management GmbH

riwog.at

0

RIWOG Real Estate Management GmbH operates as a medium-sized real estate group based in Austria, offering comprehensive property brokerage, management, and related services. The website targets property buyers, sellers, and investors primarily in Austria with some international presence in Greece and Spain. The business model focuses on real estate marketing, development, and client services including financing and valuation. The company maintains a professional online presence with clear branding and detailed legal disclosures, supporting its market position as a reputable real estate service provider. Technically, the website is built on SilverStripe CMS with modern JavaScript frameworks and integrates common marketing and analytics tools such as Google Analytics and Facebook Pixel. However, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms implemented. Security best practices are partially implemented but critical improvements are needed in SSL/TLS configuration and security headers. Overall, the website is functional and professional but requires urgent security enhancements to protect user data and improve trust.

W

Winterhalter Gastronom GmbH

winterhalter.biz

0

Winterhalter Gastronom GmbH is a well-established family-owned company specializing in professional warewashing technology, including commercial dishwashers, water treatment, chemicals, and accessories tailored for the hospitality industry. With a 75-year history, the company holds a strong market position as a quality and reliability leader serving diverse sectors such as restaurants, hotels, mass catering, and retail. The website is professionally designed, content-rich, and targets a global audience with multiple language versions and regional adaptations. Technically, the site is built on TYPO3 CMS and hosted behind Cloudflare, leveraging modern web technologies and cookie consent management via Usercentrics. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility and digital maturity are strong, but urgent remediation of SSL/TLS issues is recommended to enhance security and trust.

E

EC2U

ec2u.eu

0

EC2U is a European educational alliance focused on collaboration among city universities, providing joint academic programs, mobility opportunities, and research initiatives. The website targets students, staff, researchers, and citizens, offering multilingual content and resources. Technically, the site is built on WordPress with a modern tech stack including jQuery and various plugins, hosted via Gandi. While the site has good design, accessibility, and SEO practices, it critically lacks a valid SSL certificate, exposing users to security risks. Security headers are present but their effectiveness is diminished without HTTPS. Privacy and cookie policies are implemented with consent mechanisms, supporting GDPR compliance. Overall, the domain registration is consistent and trustworthy, with active social media presence enhancing credibility.

C

Comsysto Reply GmbH

comsysto.com

0

Comsysto Reply GmbH is a well-established German software engineering and IT consulting company founded in 2005, specializing in fullstack software development, cloud architecture, and DevOps. The company positions itself as a partner for digital transformation, leveraging agile methodologies and open source technologies to deliver tailored software solutions. It is part of the larger Reply network, which enhances its market credibility and resource availability. The website content is rich, professionally designed, and targets enterprise and medium-sized businesses seeking innovative IT solutions. Technically, the site is hosted on AWS and built with Webflow, using modern agile and cloud-native technologies. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which severely impacts the security posture. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy, though no cookie consent mechanism is detected. Contact information and social media presence are clearly provided, supporting business credibility. Overall, the site demonstrates a mature business with good digital maturity but requires urgent security improvements to protect user data and trust.

K

KLAFS GmbH

thermarium.com

0

KLAFS GmbH operates a comprehensive website focused on sauna manufacturing and wellness products, positioning itself as a market leader in Germany. The site offers detailed product information, showroom locations, and customer service options, targeting both private and professional customers. The business model integrates manufacturing, retail, and service with a strong emphasis on customer consultation and product innovation. Technically, the website is built on TYPO3 CMS and hosted on infrastructure linked to schalk-it.de, with modern marketing and consent management tools integrated. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocol support, which poses significant risks for user data protection and trust. Privacy compliance is well addressed with clear policies and a consent management platform. Overall, the site is professional and trustworthy but requires urgent security improvements to meet modern standards.

A

ATMOsphere

naturalrefrigerants.com

0

NaturalRefrigerants.com is a well-established industry portal published by ATMOsphere, focusing on natural refrigerant-based cooling and heating technologies. It serves as a global marketplace and news source, connecting buyers and providers worldwide. The website demonstrates a strong market position as a leading source of information since 2006, with a professional design and comprehensive content. Technically, the site is built on WordPress with Elementor and WooCommerce, leveraging modern web technologies but suffers from slow performance and lacks a valid SSL certificate, which impacts its security posture. The absence of HTTPS and security headers are critical vulnerabilities that need immediate attention. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism detected. Overall, the site is credible and trustworthy but requires significant security improvements to protect user data and enhance trust.

The British Council is a globally recognized UK-based non-profit organization specializing in cultural relations and educational opportunities. With a presence in over 100 countries and a history spanning 90 years, it offers a broad range of services including English language learning, exams such as IELTS, study and work abroad programs, and arts and cultural initiatives. The website reflects a mature, professional digital presence with excellent content quality and clear navigation tailored to a diverse international audience.

A

AIM Group International

aimgroupinternational.com

0

AIM Group International is a medium-sized service provider specializing in event management, digital communication, and consultancy services primarily targeting companies and associations. The company offers a broad portfolio including conference management, virtual and hybrid events, healthcare meetings, digital marketing, and consultancy services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with modern libraries and plugins, hosted on Amazon AWS infrastructure. However, the website lacks a valid SSL certificate and does not support HTTPS, which significantly impacts its security posture. While cookie consent and privacy policies are implemented and GDPR compliant, the absence of HTTPS and security headers exposes the site to risks. Overall, the business appears legitimate and well-established with active social media presence and trust indicators such as an annual report and newsletter. Strategic improvements in security configuration are recommended to enhance trust and compliance.

H

Hilfswerk Österreich

hilfswerk.at

0

Hilfswerk Österreich is a large, well-established non-profit organization providing extensive health, social, and family services across Austria. The website reflects a professional and comprehensive digital presence, targeting a broad audience including elderly people, children, families, and caregivers. The organization maintains a strong market position as one of Austria's leading providers in its sector, supported by government funding and a wide range of services. Technically, the website is built on TYPO3 CMS with modern frontend libraries and includes accessibility and SEO best practices. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly undermines the site's security posture. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Overall, the site demonstrates high professionalism and trustworthiness but urgently requires SSL implementation to mitigate security risks.

H&Z Unternehmensberatung AG is a well-established management consulting firm based in Munich, Germany, with a strong focus on strategy, procurement, transformation, sustainability, innovation, and technology. Founded in 1997, the company operates globally with over 600 consultants across 14 offices and is part of the larger H&Z Group and The Transformation Alliance. The website is professionally designed, content-rich, and targets leading organizations seeking strategic consulting services. Technically, the site uses modern frameworks such as Next.js and is hosted on Vercel, with cookie consent managed by Usercentrics and analytics via Google Tag Manager. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocol support, which poses risks to user trust and data security. Privacy compliance is partial, with cookie consent present but no visible privacy or terms of service policies. Overall, the site demonstrates high business credibility but requires urgent security improvements to align with best practices.

Acer Inc is a global technology company specializing in the manufacturing and retail of computing devices including laptops, desktops, Chromebooks, monitors, and projectors. The website targets both consumer and business audiences primarily in Finland but also globally, offering a comprehensive product catalog and support services. The company maintains a strong market position with consistent branding and a professional online presence. Technically, the site uses ASP.NET MVC framework, jQuery, and integrates multiple third-party analytics and marketing tools such as Google Tag Manager and Visual Website Optimizer. Hosting is via Amazon AWS with Akamai CDN for content delivery. Security posture shows presence of key security headers and secure cookies; however, the SSL certificate is invalid or missing and no TLS protocols are enabled, which is a critical vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the site is professional and trustworthy but requires urgent SSL remediation to improve security and trust.

The website at fsm-alliance.com is minimally developed with no meaningful content or business information presented. The site primarily serves tracking pixels and advertising scripts without any visible privacy, cookie, or terms of service policies. The domain is registered but lacks DNS records and does not have a valid SSL/TLS certificate, resulting in an insecure HTTP-only connection. These factors indicate a low level of digital maturity and poor security posture. The absence of contact information and business details further reduces trust and credibility. Overall, the site appears inactive or underdeveloped, posing significant risks for users and visitors.

G

Gottschligg

gottschligg.com

0

Gottschligg is a medium-sized manufacturing company based in Austria specializing in the development and delivery of customized and standard load carriers for industrial clients, particularly in the automotive and manufacturing sectors. The company offers a range of products including special load carriers, universal load carriers, plastic and textile carriers, wooden carriers, and repair services. Their website reflects a professional and consistent brand presence with clear contact information and compliance with GDPR and cookie consent regulations. Technically, the site is built on WordPress with Yoast SEO and jQuery, hosted on Google Cloud infrastructure. However, the absence of a valid SSL certificate and HTTPS support significantly weakens their security posture. Security headers are properly configured but cannot compensate for the lack of encryption. Overall, the site is accessible and well-structured but requires urgent security improvements to protect user data and enhance trust.

A

Austria Institut für Europa- und Sicherheitspolitik (AIES)

aies.at

0

The Austria Institut für Europa- und Sicherheitspolitik (AIES) is a well-established independent research institute based in Vienna, Austria, focused on European integration, security, defense, and foreign policy. Founded in 1996, it serves public stakeholders by providing expert analysis, organizing events, and publishing research. The website reflects a professional and content-rich platform targeting policymakers, academics, and the public interested in European and security policy. Technically, the site uses modern frontend technologies such as jQuery, Swiper.js, and Usercentrics for consent management, but suffers from a critical lack of valid SSL/TLS configuration, impacting its security posture. The site is mobile-optimized, accessible, and SEO-friendly, with strong social media integration and clear contact information. Security-wise, the absence of HTTPS and security headers is a significant vulnerability, though no active WAF or blocking mechanisms are detected. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Strategic improvements in SSL deployment and security headers are recommended to enhance trust and compliance.

N

Ninefeb

ninefeb.com

0

Ninefeb is a European service provider specializing in technical documentation, eLearning, consulting, and personnel services. The company operates primarily in Austria with a subsidiary in the UK, targeting businesses requiring comprehensive technical communication support. The website presents a professional image with clear service offerings and client testimonials, positioning Ninefeb as a trusted partner in its niche. Technically, the site is built on WordPress using the Avada theme and Yoast SEO plugin, indicating a modern CMS approach but lacks HTTPS support, which is a significant security concern. The absence of a valid SSL certificate exposes users to potential data interception risks and undermines trust. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy. Overall, the site is functional and professional but requires urgent security improvements to meet modern standards.

TMF Group is a leading global provider of administrative, compliance, and governance services, supporting companies across more than 80 countries. Their extensive service portfolio includes accounting, tax, payroll, capital markets, fund services, and ESG administration, targeting corporates, financial institutions, asset managers, private equity, and family offices. The company operates through a large global network of over 11,000 professionals in 125+ offices, serving major multinational clients including Fortune Global 500 and FTSE 100 companies. The website reflects a mature business model with a strong market position and comprehensive service offerings. Technically, the website employs modern technologies such as Microsoft Application Insights, Google Tag Manager, OneTrust for cookie consent, and Cloudflare for CDN services. The site is well-structured, mobile-optimized, and SEO-friendly, with good accessibility features. However, performance metrics were not available, limiting full assessment of speed. From a security perspective, the site implements multiple security headers including a strict Content Security Policy and HSTS. Cookies are set with secure and HttpOnly flags, and privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. The critical weakness is the absence of a valid SSL certificate and disabled TLS protocols, which severely undermines the security posture and user trust. This issue requires immediate remediation to enable HTTPS and secure communications. Overall, the website is professionally designed and content-rich, demonstrating high business credibility and privacy compliance. The main risk lies in the invalid SSL configuration, which impacts security scores and could expose users to risks. Strategic improvements in SSL/TLS deployment and continued transparency in security policies will enhance trust and compliance.

P

pixelart GmbH

pixelart.at

0

pixelart GmbH is a well-established full-service digital agency based in Austria with offices in Salzburg and Vienna. The company specializes in delivering innovative digital solutions including web experiences, digital commerce platforms, digital products, business solutions, and online marketing services. Their market position is strong, supported by a comprehensive portfolio of case studies and a diverse client base across various industries. The website demonstrates a high level of digital maturity with the use of TYPO3 CMS, responsive design, and multimedia content. However, the security posture is weakened by the absence of a valid SSL certificate, which is critical for protecting user data and ensuring trust. Privacy compliance is well addressed with a comprehensive GDPR-compliant privacy policy, though cookie consent mechanisms are missing. Overall, pixelart GmbH presents as a credible and professional digital agency with room for improvement in security infrastructure.