Security Directory

The website entec-biogas.at is currently inaccessible due to a Cloudflare security challenge page that blocks content unless JavaScript and cookies are enabled. This prevents access to any meaningful business or security content. The domain is registered and DNS records are consistent with an Austrian entity, but the lack of a valid SSL certificate and HTTPS support is a significant security concern. No privacy, cookie, or terms of service policies are detectable, nor is any contact information or business metadata available. The site appears to be protected by Cloudflare's WAF, which is currently blocking direct content access, limiting the ability to perform a full analysis. Security headers are present but basic, and no vulnerabilities are detected in the limited data available.

M

MH|Direkt

mhdirekt.com

0

MH|Direkt is a mature and established e-commerce fulfillment service provider based in Austria with over 28 years of experience. The company operates multiple fulfillment centers across Austria, Germany, and the UK, offering comprehensive services including warehousing, packaging, cross-border shipping, personalization, and API integration. Their business model focuses on supporting online shops to efficiently manage logistics and shipping across Europe, including direct market entry into Switzerland. The website reflects a professional and well-branded digital presence with extensive content and customer testimonials, positioning MH|Direkt as a reliable partner in the e-commerce logistics sector. Technically, the website is built on WordPress using popular plugins and frameworks such as Elementor, Gravity Forms, and WP Rocket. It integrates multiple marketing and analytics tools including Google Analytics, Google Ads, Facebook Pixel, and LinkedIn Insight Tag, indicating a mature digital marketing strategy. The site is mobile-optimized and SEO-friendly, though performance is moderate and accessibility features are basic. From a security perspective, the website lacks a valid SSL certificate, which is a critical issue impacting user trust and data security. Other security best practices such as HSTS, DNSSEC, and domain protection locks are not implemented, reducing the overall security posture. No explicit security or incident response policies are published on the site. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms in place. Overall, MH|Direkt presents a credible and professional business with strong market positioning in e-commerce fulfillment. However, the lack of HTTPS and some security best practices pose risks that should be addressed promptly to enhance trust and compliance. Strategic recommendations include immediate SSL certificate installation, enabling HSTS and DNSSEC, and publishing security policies to improve transparency and security culture.

A

AMAG Austria Metall AG

amag.at

0

AMAG Austria Metall AG is a well-established Austrian manufacturer specializing in environmentally friendly and future-oriented aluminium products and solutions. The company serves various industries including automotive, aerospace, industrial goods, and consumer goods, positioning itself as a leader in the aluminium manufacturing sector. Their website provides comprehensive information about their products, corporate values, investor relations, media, and career opportunities, targeting business customers and industry partners. The digital infrastructure is based on TYPO3 CMS with integration of modern frontend frameworks and analytics tools such as Matomo and Cookiebot for privacy compliance. However, the absence of a valid SSL certificate and HTTPS implementation significantly weakens the security posture. While security headers like Content Security Policy and X-Content-Type-Options are present, critical improvements are needed to secure data transmission and enhance trust. Overall, the website is professional and content-rich but requires urgent security upgrades to meet modern standards.

T

Teradata

teradata.com

0

Teradata is a leading enterprise technology company specializing in cloud-based data analytics and Trusted AI platforms. Their offerings focus on enabling organizations to unify data, activate analytics, and accelerate business value through AI and cloud-native technologies. The website targets a broad audience including business leaders, data professionals, and developers, emphasizing innovation and cost efficiency. Technically, the site uses modern web technologies, integrates with major cloud providers, and employs advanced analytics and marketing tools, reflecting a mature digital infrastructure. Security posture shows good header implementation but is weakened by an invalid SSL certificate and lack of advanced TLS protocols. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-branded, though improvements in SSL management and direct contact information would enhance credibility and security.

B

BELFOR

belfor.com

0

BELFOR is a global leader specializing in disaster recovery and property restoration services, serving a worldwide audience with a strong presence across multiple countries. The website is built on WordPress and leverages modern SEO tools like Yoast, with Cloudflare providing hosting and CDN services. Despite a professional design and good content relevance, the site lacks a valid SSL certificate, which significantly impacts its security posture. The cookie consent mechanism is implemented, indicating some level of privacy compliance, but explicit privacy policies and terms of service are not found in the provided content. Social media integration and global office listings enhance business credibility. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols is a critical weakness. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

O

Ovotherm International Handels GmbH

ovotherm.com

0

Ovotherm International Handels GmbH is a medium-sized Austrian manufacturing company established in 1969, specializing in eco-friendly clear egg packaging made from recycled PET waste. The company positions itself as the global market leader in the egg packaging industry, targeting businesses within the egg supply chain. Their website reflects a professional and consistent brand image, offering detailed product information, environmental benefits, and company insights. Technically, the site uses the ProcessWire CMS with modern frontend libraries such as GSAP and Tailwind CSS, providing a good user experience and mobile optimization. However, the website critically lacks a valid SSL/TLS certificate, resulting in no HTTPS support and weak security posture. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, enhancing business credibility. Social media presence on Facebook, Instagram, and LinkedIn supports trust and engagement.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

P

Patheon pharma services - Global CDMO

patheon.com

0

Patheon pharma services, a brand under Thermo Fisher Scientific, operates as a global contract development and manufacturing organization (CDMO) serving the pharmaceutical, biotech, and life sciences industries. The website presents a comprehensive portfolio of services including small and large molecule development, advanced therapies, clinical trial services, and commercial manufacturing. Positioned as a trusted partner with a global footprint, Patheon emphasizes integrated solutions and innovative drug development approaches to accelerate treatments to market. The business model focuses on end-to-end drug development and manufacturing partnerships, targeting pharmaceutical and biotech companies worldwide. The domain is mature and strongly protected, reflecting a stable and legitimate enterprise presence. Technically, the website is built on Adobe Experience Manager (AEM) and leverages modern JavaScript libraries such as jQuery, FontAwesome, and Slick Carousel, alongside marketing and analytics tools like Adobe Target and Genesys Messenger. Hosting and content delivery are managed via Akamai CDN, ensuring global reach and performance. The site is mobile optimized with good SEO practices and structured data for enhanced search visibility. However, performance metrics are not explicitly available. From a security perspective, the site lacks a valid SSL/TLS certificate and does not serve content over HTTPS, which is a critical vulnerability impacting user trust and data security. While some security headers are present, the misconfiguration of HSTS and absence of modern TLS protocols and cipher suites significantly weaken the security posture. Privacy compliance is well addressed through comprehensive privacy and cookie policies linked to the parent company’s domain, with GDPR compliance implied. Contact information is primarily via web forms, with no direct emails or phone numbers prominently displayed. Overall, the website demonstrates strong business credibility and professional digital presence but requires urgent remediation of its SSL/TLS and HTTPS implementation to meet modern security standards and protect user data. Strategic improvements in security configuration and explicit contact channels would enhance trust and compliance.

A

Akris CH

akris.ch

0

Akris CH operates a professional luxury fashion e-commerce website targeting women in Switzerland and Liechtenstein. The site offers high-end designer clothing and handbags, positioning itself as a premium brand with a consistent and elegant online presence. The business leverages Shopify as its platform, integrating advanced search (Algolia), marketing tools (Cookiebot, Mailchimp), and customer engagement features (Wishlist King, Globo Form Builder). The website content is rich, well-structured, and professionally designed, providing a seamless user experience with clear navigation and mobile optimization. Technically, the site is built on a modern e-commerce stack with Shopify hosting behind Cloudflare CDN. It uses multiple third-party scripts for analytics, marketing, and customer interaction. However, a critical security issue is the absence of a valid SSL certificate, resulting in no HTTPS encryption and no enabled TLS protocols. This severely impacts the security posture and user trust, despite the presence of strong security headers and content security policies. Privacy compliance is well addressed with explicit privacy and cookie policies, GDPR consent mechanisms, and transparent data collection practices. Contact information is available primarily via contact forms and multiple regional email addresses, supporting customer service and boutique inquiries. Overall, while the business and technical maturity are strong, the lack of proper SSL/TLS configuration is a major risk that must be remediated urgently to protect customer data and maintain brand reputation.

V

VOQUZ Group

voquz.com

0

VOQUZ Group is a well-established international IT service provider headquartered in Germany, with over 40 years of experience and more than 300 employees. The company serves both private and public sectors, offering a broad range of IT services including software development, SAP consulting, infrastructure planning, project management, and software testing. It operates through specialized subsidiaries such as VOQUZ Public and VOQUZ IT Solutions, targeting public administration and private enterprises respectively. The website reflects a professional and consistent brand presence with good content quality and clear navigation.

H

HDM Corp – Finding A Better Way

hdmcorp.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 24 security findings identified across all modules.

F

Federico Solutions

federico.pro

0

Federico Solutions operates a professional website focused on design, prototyping, and manufacturing services, targeting businesses seeking custom solutions. The company presents a mature market presence with a domain registered since 2009 and consistent branding. Technically, the site is built on WordPress using the Divi theme and integrates SEO and analytics tools, but lacks HTTPS, which is a significant security gap. The security posture is weak due to the absence of SSL/TLS encryption and modern security headers, exposing users to potential risks. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact details are limited to a contact form. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

The Doppelmayr Group website for the Automated People Mover system presents a business focused on transportation solutions, specifically cable liner automated people movers designed to manage high visitor flows efficiently. The company appears to be a large, established entity in the transportation sector based in Austria, with a consistent brand presence and clear business focus. The website content is basic but includes well-structured SEO metadata and social sharing tags, indicating some digital marketing maturity. Technically, the site uses modern frameworks such as Nuxt.js and WordPress CMS, hosted behind Cloudflare CDN. However, the absence of a valid SSL certificate and lack of HTTPS severely undermine the security posture. Performance metrics are unavailable, but the presence of many prefetch and preload scripts suggests an attempt at optimization, though the lack of HTTPS is a critical flaw. Mobile optimization and accessibility are basic, with room for improvement. Security analysis reveals significant vulnerabilities: no SSL/TLS encryption, no HSTS, no DMARC, DNSSEC, or CAA records, and no security.txt or vulnerability disclosure policies. Tracking and advertising scripts are present without accompanying privacy or cookie policies, indicating poor privacy compliance. No contact or incident response information is provided, limiting transparency and trust. Overall, the website's risk profile is elevated due to missing HTTPS and privacy compliance gaps. Strategic improvements in security infrastructure, privacy policies, and contact transparency are recommended to enhance trust and compliance.

Wolford operates an international e-commerce retail website specializing in fashion products, targeting multiple countries with localized language versions. The site is built on Salesforce Commerce Cloud (Demandware) and uses modern web technologies including Google Fonts, Google reCAPTCHA, and Usercentrics for cookie consent management. Cloudflare is used as a hosting and CDN provider. However, the website lacks a valid SSL/TLS certificate, resulting in no proper HTTPS support, which is a critical security concern. The site implements some security headers but misses important configurations such as HSTS and OCSP stapling. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information and security policies are not found in the analyzed content, reducing transparency and trust. Overall, the website demonstrates a basic level of technical and business maturity but requires significant improvements in security and privacy compliance to meet modern standards.

S

SPIDI Friedl & Partner Unternehmensberatungs GmbH

spidi.at

0

SPIDI Friedl & Partner Unternehmensberatungs GmbH operates a professional language and intercultural learning institute based in Vienna, Austria. The company offers a broad portfolio of language courses, including group and individual training, online courses, and certification test centers such as ÖSD and Linguaskill. The business targets both private individuals and corporate clients, positioning itself as a quality provider in adult education with recognized certifications. The website reflects a mature digital presence built on WordPress with modern SEO and consent management tools, supporting GDPR compliance. However, the absence of a valid SSL certificate undermines the security posture and user trust. The company maintains clear contact channels and social media engagement, enhancing business credibility.

Post Office Limited operates a comprehensive UK-wide network providing postal, financial, travel, insurance, and identity services. The website reflects a mature digital presence with extensive service offerings and strong brand consistency. The company leverages multiple external partners for financial and travel services, integrating them seamlessly into their platform. Technically, the site uses Magnolia CMS, Akamai CDN, and common JavaScript libraries like jQuery, ensuring a robust infrastructure. However, the SSL/TLS configuration is critically flawed with an invalid certificate and no enabled TLS protocols, exposing users to security risks. Additionally, a subdomain takeover vulnerability exists on api.postoffice.co.uk, which could be exploited if not remediated. Privacy and cookie policies are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

G

Glory Global Solutions (International) Limited

glory-global.com

0

Glory Global Solutions (International) Limited is a global enterprise specializing in cash automation and management solutions across multiple industries including retail, financial institutions, hospitality, gaming, and CIT cash centers. The company positions itself as a market leader with a comprehensive portfolio of products and services designed to enhance customer experience and operational efficiency. The website is professionally designed, content-rich, and targets B2B customers seeking advanced cash handling technologies. Technically, the site leverages modern frameworks such as Next.js and Sitecore CMS, hosted on Vercel, ensuring a good digital maturity level. However, the security posture is weakened by the absence of a valid SSL certificate and incomplete HTTPS implementation, which poses risks to user trust and data security. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high business credibility but requires urgent security improvements to align with best practices.

E

EDITORIAL. LOGÍSTICA .LA

logistica.la

0

EDITORIAL. LOGÍSTICA .LA is a specialized editorial platform focused on logistics and supply chain management in Latin America, providing professional content, industry insights, and resources primarily in Spanish. The website is hosted on WordPress.com, leveraging WordPress CMS and related technologies such as Jetpack and Gutenberg. The site targets professionals, academics, and students interested in logistics and SCM, with a small but engaged subscriber base. Technically, the site uses modern web technologies but suffers from a critical lack of valid SSL/TLS configuration, exposing users to potential security risks. Privacy compliance is basic, with cookie consent implemented but no explicit privacy policy or terms of service found. The domain is mature and well-protected, registered with GoDaddy, supporting the site's legitimacy. Overall, the site offers valuable content but requires urgent security improvements to protect visitors and enhance trust.

G

Georg Fritzmeier GmbH & Co. KG

fritzmeier.com

0

The Fritzmeier Group is a large German manufacturing company specializing in driver cabs, composite parts, tooling, and environmental technology solutions primarily serving the Off-Highway and On-Highway industries. Their diversified business model includes multiple subsidiaries focused on specialized product areas such as cabs, composites, technology, and environmental solutions. The company maintains a strong market position with approximately 2,200 employees and a presence at major industry events. Technically, the website is built on TYPO3 CMS and served via Apache, with a moderate performance profile and good mobile optimization. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, despite the presence of security headers and a content security policy. Privacy compliance is good with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration to enhance security and user trust.

The website anixter.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, presenting a security challenge page that prevents content access. As a result, no direct business information, contact details, or policy documents are available for analysis. The site is protected by Cloudflare, but lacks a valid SSL certificate and HTTPS configuration, which is a critical security deficiency. The technical infrastructure is minimal with no visible CMS or frameworks, and performance metrics cannot be assessed due to the block. Security headers are partially implemented but insufficient without proper SSL. Overall, the site exhibits a low security posture and poor content availability, limiting the ability to evaluate business credibility or compliance.

H

H.B. Fuller

hbfuller.com

0

H.B. Fuller is a well-established global manufacturer specializing in adhesives, sealants, and specialty chemical products with a 130-year history. The company serves diverse industrial sectors including electronics, medical, transportation, packaging, and construction. Their business model focuses on B2B manufacturing with strong technical support and sustainability initiatives. The website reflects a mature digital presence with comprehensive content, multi-language support, and clear navigation tailored to industrial customers and partners. Technically, the website leverages modern frameworks such as Bootstrap 5 and integrates advanced search capabilities via Coveo. It uses Cloudflare for hosting and CDN services, and employs multiple analytics and tracking tools including Google Analytics, Microsoft Clarity, Hotjar, and Application Insights. The site is mobile-optimized and SEO-friendly, though performance metrics were not available. From a security perspective, the site implements a robust Content Security Policy and uses multiple security headers. However, a critical weakness is the absence of a valid SSL certificate and lack of TLS protocol support, which severely impacts the security posture and user trust. Privacy compliance is strong, with comprehensive policies and consent management via Iubenda. Contact information and social media presence further enhance business credibility. Overall, the site is professional and trustworthy but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve its security score. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and implementing HSTS and OCSP stapling to enhance security and user confidence.

D

DSC Doralt Seist Csoklich Rechtsanwälte GmbH

dsc.at

0

DSC Doralt Seist Csoklich Rechtsanwälte GmbH is a well-established Austrian law firm with over 30 years of experience, offering comprehensive legal consulting services across a broad spectrum of legal fields. The firm positions itself as a top 20 law firm in Austria, emphasizing efficiency and holistic solutions for its clients. The website reflects a professional and consistent brand image, targeting clients seeking expert legal advice primarily in Austria. The business model is focused on providing high-quality legal services with a client-centric approach. Technically, the website is built on a PHP backend with nginx server infrastructure and uses several JavaScript libraries including jQuery, Slick Carousel, Flexslider, and AOS for animations. The site employs Matomo for analytics, indicating a preference for privacy-conscious tracking. However, the website lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security shortfall. Performance metrics are not available, but the presence of multiple large images and older JavaScript libraries suggests moderate to slow loading times. From a security perspective, the absence of HTTPS and security headers such as Content-Security-Policy and HSTS reduces the overall security posture. No critical vulnerabilities or exposed sensitive data were detected, but the lack of modern security best practices is notable. Privacy compliance is well addressed with clear privacy and cookie policies, cookie consent mechanisms, and GDPR compliance indicators. Contact information is complete and clearly presented, enhancing trustworthiness. Overall, the website is professional and credible but requires urgent improvements in SSL/TLS configuration and security headers to enhance user trust and data protection. Strategic recommendations include implementing a valid SSL certificate, enabling HSTS, adding security headers, and continuing to maintain privacy compliance and transparent contact information.

S

Salinen Austria Aktiengesellschaft

salinen.com

0

Salinen Austria Aktiengesellschaft is a leading Austrian salt manufacturer specializing in high purity salt products including pharmaceutical salt, cooking salt, industrial salt, and agricultural fertilizers. The company serves both private consumers and business clients, offering a broad product portfolio and an online webshop. Their market position is strong within Austria and the surrounding region, supported by multiple country-specific sister sites. Technically, the website is built on TYPO3 CMS with modern frontend features such as lazy loading images and Google Analytics integration. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture. Security headers are partially implemented but without encryption, the site is vulnerable to interception. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

A

Amadeus International School Vienna

amadeus-vienna.com

0

Amadeus International School Vienna is a well-established private international school offering IB education and boarding services with a unique integrated Music and Arts Academy. The school targets international students and families seeking high-quality education in Vienna. The website is professionally designed with rich content and multimedia, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are implemented with consent mechanisms, supporting GDPR compliance. Contact information is clearly presented, enhancing business credibility. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

N

NovaTaste Austria GmbH

wiberg.eu

0

WIBERG, operated by NovaTaste Austria GmbH, is a well-established international spice and culinary product supplier targeting professional chefs, gastronomy, and catering sectors. The company offers a comprehensive range of high-quality products, supported by a professional and content-rich website that includes detailed product information, recipes, and sustainability commitments. Technically, the website is built on modern frameworks such as Next.js and React, hosted likely on Microsoft Azure, and demonstrates good design and user experience. However, a critical security issue is the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. While several security headers are implemented, the lack of HTTPS undermines these protections. Privacy compliance is good with a comprehensive privacy policy, but no explicit cookie consent mechanism was detected. Overall, the website is credible and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

WTW

willistowerswatson.com

0

WTW is a global enterprise specializing in risk management, employee benefits, and capital solutions. The company offers comprehensive consulting services aimed at helping organizations optimize their human capital, manage risks, and leverage capital effectively. The website reflects a mature digital presence with multi-language support and a clear focus on professional service delivery. Technically, the site uses modern frameworks such as Bootstrap and Sitecore CMS, integrated with advanced search and video technologies. However, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which undermines HTTPS security benefits. Privacy compliance is strong with clear cookie and privacy policies, and the site employs extensive analytics and marketing tools. Overall, the site is professional and trustworthy but requires urgent remediation of SSL and TLS issues to improve security and user trust.

Accenture Austria operates as a leading management consulting, technology services, and outsourcing company, serving clients primarily in Germany and Austria. The website reflects a mature digital presence with comprehensive content, strong branding, and extensive service offerings across multiple sectors including technology, energy, finance, and manufacturing. The technical infrastructure leverages Adobe Experience Manager CMS and a suite of Adobe marketing and analytics tools, hosted on Amazon CloudFront CDN, ensuring a robust platform for content delivery and user engagement. However, the site suffers from a critical security shortfall due to an invalid SSL certificate and lack of modern TLS protocol support, which undermines user trust and data security. Security headers are implemented but the Content-Security-Policy is weak, allowing unsafe script execution. Privacy compliance is well addressed with clear privacy and cookie policies managed via OneTrust. Overall, the site is professional and credible but requires urgent remediation of SSL and CSP issues to enhance security posture.

F

Fercam S.p.A.

fercam.com

0

FERCAM S.p.A. is a well-established logistics and transport company with over 75 years of experience, offering a broad range of services including road, air, and ocean freight, integrated logistics, customs consulting, and specialized transport services. The company operates primarily in Europe with presence in Asia and Africa, targeting businesses requiring comprehensive supply chain solutions. The website demonstrates a good level of digital maturity with multi-language support, structured navigation, and integration of modern analytics and marketing tools. However, the absence of HTTPS and a valid SSL certificate significantly weakens the security posture, exposing users to potential risks. Privacy and cookie policies are present and supported by consent mechanisms, indicating compliance with GDPR standards. Overall, the site is professional and trustworthy but requires urgent security improvements.

Schullin Wien is a well-established luxury jewelry and watch retailer based in Vienna, Austria, with a rich family tradition dating back to 1802 and formal business founding in 1974. The company specializes in fine jewelry design and manufacturing, luxury watch sales including Rolex, and certified pre-owned Rolex watches. Their market position is strong within the luxury retail sector, targeting affluent customers seeking unique and high-quality pieces. The website reflects a mature digital presence with multilingual support, rich content, and integration of modern web technologies such as WordPress, WooCommerce, Alpine.js, and Swiper.js. Marketing and analytics tools like Google Analytics, Facebook Pixel, and Adobe Analytics are actively used with GDPR-compliant cookie consent mechanisms in place. However, the security posture is significantly weakened by the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical vulnerability that undermines user trust and data protection. The site employs standard security headers but lacks advanced protections such as HSTS and OCSP stapling. Overall, the business credibility and content quality are high, but urgent remediation of SSL/TLS issues is necessary to ensure secure user interactions and compliance with best practices.

The website atronic.com currently serves as a minimal placeholder with a frameset redirecting visitors to an external domain (www.igt.com). There is no substantive content, metadata, or business information presented on the site. The technical infrastructure is basic, running an outdated nginx server without HTTPS support or modern security configurations. This results in a poor security posture and low trustworthiness. No privacy, cookie, or terms of service policies are present, and no contact or company information is available, indicating the site is not actively maintained or used for business purposes. Overall, the site lacks digital maturity and does not meet basic security or compliance standards.

The website spalinger.com is registered since 2000 and is a mature domain managed by GoDaddy.com, LLC. However, the website content is minimal, consisting only of a redirect script to /lander, with no metadata, contact information, or business details present. The technical infrastructure shows hosting on AWS IP addresses but lacks a valid SSL/TLS certificate and HTTPS support, resulting in a poor security posture. No security headers or privacy policies are implemented, and no analytics or advertising tools are detected. The domain registration is consistent and transparent, but the website itself appears underdeveloped or placeholder, limiting its business credibility and user trust. Overall, the site is not currently suitable for professional or commercial use without significant development and security improvements.

A

Allnex GMBH

allnex.com

0

Allnex GmbH is a global leader in the manufacturing of industrial coating resins, adhesives, sealants, and specialty coatings. The company targets industrial manufacturers and formulators in the chemical and coatings industries, offering a broad portfolio of products and technical support. The website reflects a mature enterprise-grade digital presence with comprehensive content, clear navigation, and multi-language support, indicating a global market reach. Technically, the site is built on ASP.NET with Kentico CMS, hosted likely on Microsoft Azure, and employs modern web technologies including lazy loading and SVG icons. However, the security posture is weak due to an invalid SSL certificate and lack of TLS protocol support, which critically impacts trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to ensure safe user interactions and data protection.

I

illwerke vkw AG

illwerkevkw.at

0

illwerke vkw AG is a well-established energy company based in Austria, specializing in renewable energy production including hydropower, wind, and photovoltaic sources, as well as energy trading and supply. The company has a strong regional presence in Vorarlberg and operates several subsidiaries in related sectors such as energy networks and tourism. The website reflects a professional and consistent brand image with comprehensive business information and active social media engagement. Technically, the site uses modern JavaScript libraries and frameworks, including Bootstrap and jQuery, and integrates Google Tag Manager and Usercentrics for analytics and consent management. However, the lack of a valid SSL certificate and HTTPS support is a significant security shortfall, impacting the overall security posture and user trust. Privacy policies and cookie consent mechanisms are well implemented, indicating good compliance with GDPR requirements. Overall, the website is informative and user-friendly but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

B

Bridgestone Americas, Inc.

bridgestoneamericas.com

0

Bridgestone Americas, Inc. is a leading enterprise in the transportation sector specializing in tire manufacturing and sustainable mobility solutions. Founded in 1931 and operating as a subsidiary of Bridgestone Corporation, the company maintains a strong market position with a comprehensive digital presence. The website reflects a professional and consistent brand image, targeting both consumers and business clients with detailed corporate information and resources. Technically, the site leverages modern frameworks such as Adobe Experience Manager and Vuetify, supported by a robust hosting infrastructure on AWS. However, a critical security gap exists due to an invalid or missing SSL certificate, severely impacting the site's security posture. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained but requires urgent remediation of its SSL configuration to ensure secure user interactions.

Romeo Mori operates a professional photography portfolio website showcasing a curated selection of fashion, portrait, editorial, and campaign photography. The site targets fashion brands, advertising agencies, editorial magazines, and individuals seeking high-quality photography services. The business model is service-oriented, focusing on creative photography presentations tailored to client needs. The website is built using Adobe Muse with jQuery and RequireJS, hosted on one.com, but suffers from slow load times and lacks modern performance optimizations. Security posture is weak due to the absence of a valid SSL certificate, no HTTPS support, and missing security headers, exposing the site to potential risks and undermining user trust. Privacy compliance is minimal with no privacy or cookie policies present. Overall, the site is professional in content and design but requires significant improvements in security and compliance to enhance trust and protect visitors.

IFS is a global enterprise software solution provider specializing in ERP, EAM, FSM, and ESM solutions with a strong emphasis on Industrial AI (IFS.ai). The company targets industrial and enterprise customers requiring advanced asset and service management solutions. Their market position is strong, supported by industry accolades and a large enterprise presence. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries, hosted on Akamai CDN, with Sitecore CMS inferred. Security headers are well implemented, but the SSL certificate is currently invalid or missing, which is a critical issue. Privacy and cookie policies are present with consent mechanisms, indicating good compliance posture. Overall, the website is professional, content-rich, and trustworthy, though SSL issues need urgent resolution.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

A&N GesbR

shelfie.at

0

The website shelfie.at is currently a coming soon placeholder page for the company A&N GesbR, represented by Philipp Asanger and Manuel Nobis, located in Linz, Austria. The site provides minimal business information, primarily a logo and contact address, with no detailed description of services or products. The business appears to be small and in early stages of web presence development. Technically, the site is built on WordPress using the SeedProd coming soon plugin, with Tailwind CSS and FontAwesome for styling, and jQuery for scripting. It is hosted behind Cloudflare with valid SSL, but the SSL certificate dates appear inconsistent, possibly due to data error. The site performance is slow with a high load time, and lacks modern security headers and HSTS enforcement. Mobile optimization and accessibility are basic. From a security perspective, HTTPS is enabled with a valid certificate, but no additional security headers or policies are implemented. There are no forms or data collection points, reducing attack surface but also limiting user engagement. No privacy, cookie, or terms of service policies are present, indicating low privacy compliance. DNSSEC and CAA are not enabled, and no vulnerability disclosure or incident response information is provided. Overall, the site is low risk but also low maturity in security and privacy posture. Strategic recommendations include implementing security headers and HSTS, adding privacy and cookie policies to comply with GDPR, improving site performance, and expanding business content to enhance credibility and user trust.

H

HOLZWURM Werkzeuge

holzwurm-werkzeuge.de

0

HOLZWURM Werkzeuge is a small Austrian e-commerce business specializing in selling creative tools for hobbyists and crafters, primarily via online marketplaces such as Amazon and Etsy, as well as their own WooCommerce-based shop. Founded in 2017, the company emphasizes quality and customer satisfaction, targeting a broad audience of creative individuals. The website is built on WordPress with WooCommerce and uses modern web technologies and marketing tools including Cookiebot for consent management and Facebook Pixel for tracking. However, the site lacks a valid SSL certificate, exposing visitors to security risks and undermining trust. Privacy policies and terms of service are present and GDPR compliance is partially addressed through cookie consent mechanisms. Contact information is complete and transparent, supporting business credibility.

A

AXIS Flight Training Systems GmbH

axis-simulation.com

0

AXIS Flight Training Systems GmbH is a medium-sized Austrian company specializing in the design and manufacture of advanced flight simulation solutions, including full flight simulators and training devices that comply with international aviation standards such as EASA, FAA, and ICAO. Founded in 2004, AXIS positions itself as an innovator in the flight simulation industry, emphasizing quality, efficiency, and responsiveness to customer needs. The company maintains ISO 9001-2015 certification and has committed to CO2 neutrality since 2021, reflecting corporate responsibility values. Technically, the website is built on WordPress with Elementor and integrates various plugins for event management, galleries, and cookie consent. The site uses Google Analytics and Google Ads for analytics and marketing, with a compliant cookie consent mechanism in place. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. The DNS configuration shows some malformed CAA records, and no modern TLS protocols are enabled, exposing the site to potential security risks. Security posture is weak due to the absence of HTTPS and related security headers, although no active vulnerabilities or malware were detected. Privacy compliance is strong, with clear privacy and cookie policies and user consent mechanisms. Business credibility is high, supported by detailed company information, social media presence, and trust indicators such as certifications and CO2 neutrality. Overall, the website is professional and content-rich but requires urgent security improvements, particularly SSL/TLS implementation, to protect user data and enhance trustworthiness.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

K

KISSA Tea

kissatea.com

0

KISSA Tea operates a premium e-commerce platform specializing in organic matcha tea and related accessories, targeting health-conscious and lifestyle consumers primarily in Europe. The website is built on Shopify and leverages multiple marketing and analytics tools to enhance customer engagement and sales. While the site demonstrates excellent content quality, branding consistency, and user experience, a critical security gap exists due to the absence of a valid SSL certificate, undermining HTTPS security. The presence of comprehensive privacy and cookie policies with consent mechanisms reflects good compliance posture. Overall, the business appears legitimate and well-positioned in its niche, but immediate remediation of SSL/TLS issues is essential to protect customer data and maintain trust.

D

Die Grünen

gruene.at

0

Die Grünen Austria is a well-established political party focused on environmental protection, social justice, and green policies. The website serves as a comprehensive platform for information dissemination, event promotion, and member engagement, targeting Austrian citizens interested in green politics. The site is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, it is built on WordPress with modern frameworks and uses Cloudflare for hosting and CDN services. However, the absence of a valid SSL certificate and HTTPS significantly weakens its security posture. Privacy compliance is well addressed through GDPR-compliant consent management and detailed privacy policies. Overall, the site is trustworthy and credible but requires urgent security improvements.

A

Arzneiwerk AG

teles.com

0

Arzneiwerk AG is a healthcare company specializing in securing the supply of newly developed or rare specialty pharmaceuticals across Europe. The company maintains a professional online presence focused on investor relations and business transparency. The website is built on WordPress using Elementor and includes SEO and cookie consent tools, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support represents a significant security gap, exposing users to potential risks. Privacy policies are present and GDPR compliant, but no explicit security or incident response policies are found. Overall, the business appears legitimate and consistent with its domain registration and content, but security improvements are critical to enhance trust and compliance.

The website amiraair.at is currently a parked domain landing page with no active business content or services. It primarily serves as a domain for sale advertisement, targeting potential domain buyers or investors. The site lacks any company branding, contact information, or business descriptions, indicating it is not currently used for commercial operations. Technically, the site is hosted on Hetzner Online with nginx and Caddy components, and uses several advertising and tracking scripts from parkingcrew.net and Google Adsense Domains CAF. However, the site lacks HTTPS support and has no valid SSL certificate, exposing it to security risks and reducing user trust. Security headers and best practices are minimal or absent, and no privacy or cookie consent mechanisms are implemented beyond a basic privacy policy link. Overall, the site’s security posture is weak, and its technical and content quality is poor, reflecting its status as a parked domain rather than an active business website.

G

Gruppo Codognotto

codognotto.eu

0

Gruppo Codognotto is a well-established logistics and freight transport company based in Italy, offering integrated logistics services including sea, air, and road transport, customs handling, and warehousing. The company operates a large fleet across multiple countries and holds recognized ISO certifications, positioning itself as a reliable third-party logistics provider in the European and international markets. The website reflects a professional business presence with clear service offerings and relevant content for its target audience. Technically, the site runs on Drupal 7 with common web technologies like jQuery and Bootstrap, but suffers from outdated CMS usage and lacks a valid SSL certificate, which significantly impacts its security posture. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols exposes users to risks. Privacy and cookie policies exist but are basic, with limited GDPR compliance indicators. Contact information is available via email and forms, but no phone numbers or physical addresses are explicitly provided. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

K

KOHLBACH

kohlbach.at

0

KOHLBACH is a company specializing in biomass energy solutions, targeting businesses and organizations interested in sustainable energy production. The website presents a basic digital presence with minimal content and limited business information. The technical infrastructure uses modern JavaScript frameworks such as React and integrates third-party services like CookiePro for cookie consent and Google Tag Manager for analytics. However, the website lacks HTTPS, which is a critical security deficiency, and does not provide privacy policies or contact information, limiting trust and compliance. Security posture is weak due to missing SSL, lack of security headers beyond Content-Security-Policy, and absence of domain security features like DMARC and DNSSEC. Overall, the site is functional but requires significant improvements in security and compliance to meet industry standards.