Security Directory

The website kainhofer.eu is currently inaccessible due to an HTTP 403 Forbidden error, indicating that access to the content is denied. The domain is registered with IONOS SE, a reputable registrar and hosting provider, and DNS records are properly configured. However, the lack of a valid SSL/TLS certificate and absence of HTTPS support significantly reduce the security posture of the site. No business or contact information, privacy policies, or terms of service are available on the site, limiting the ability to assess the company's operations or compliance status. The website performance is poor with a very slow load time despite minimal content, and no modern web technologies or analytics tools are detected.

Stellantis NV operates a comprehensive global website representing one of the world's largest automotive groups with a portfolio of 14 iconic brands and mobility services. The site targets industry stakeholders, investors, customers, and the general public, providing rich content including press releases, investor relations, sustainability initiatives, and innovation highlights. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries like jQuery, and performance monitoring tools such as Boomerang, hosted on Microsoft Azure with Akamai CDN integration. While the website demonstrates excellent design quality, mobile optimization, and SEO practices, it critically lacks a valid SSL certificate and HTTPS support, severely impacting its security posture. Security headers are partially implemented but insufficient without TLS encryption. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is strong with consistent branding and comprehensive content. Overall, the site scores moderately due to the critical absence of HTTPS, which should be prioritized to protect user data and maintain trust.

H

HAKOM Time Series GmbH

hakom.at

0

HAKOM Time Series GmbH is a medium-sized Austrian company specializing in time series management software and cloud services for the energy sector. The company positions itself as a technology leader with over 30 years of experience, offering both on-premises and cloud-based solutions under the PowerTSM® brand. Their website reflects a professional and comprehensive digital presence, targeting energy industry professionals and IT developers with detailed product information, news, webinars, and customer success stories. The company maintains active engagement through social media and newsletter subscriptions. Technically, the website is built on TYPO3 CMS and uses modern web technologies including jQuery and Swiper.js for interactive content. The hosting provider is identified as Web-Crossing. While the site is mobile-optimized and SEO-friendly with proper metadata and structured data, performance metrics are not explicitly available. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy in German. From a security perspective, the site lacks a valid SSL/TLS certificate and does not support modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Security headers such as HSTS and CSP are present but cannot compensate for the missing HTTPS encryption. No explicit security policy or incident response information is found, which could be improved to enhance transparency and trust. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS configuration to meet modern security standards and protect user data effectively. Strategic recommendations include obtaining a valid SSL certificate, enabling TLS 1.2/1.3, and enhancing security policies and incident response disclosures.

B

BFI Salzburg BildungsGmbH

bfi-sbg.at

0

BFI Salzburg BildungsGmbH is a prominent educational institution in Salzburg, Austria, offering a wide range of courses, certifications, and educational services targeting individuals and companies seeking professional development. The website demonstrates a comprehensive and well-structured presentation of their offerings, including course programs, school qualifications, health and nursing professions, and corporate services. The digital infrastructure is built on Pimcore CMS and served via nginx, with Matomo analytics implemented for privacy-conscious user tracking. However, the absence of a valid SSL/TLS certificate and HTTPS significantly undermines the site's security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements.

T

TEUFELBERGER Ges.m.b.H.

teufelberger.com

0

TEUFELBERGER Ges.m.b.H. is a family-owned, international manufacturing group specializing in fiber ropes, steel wire ropes, and strapping solutions. The company serves industrial sectors including construction, marine, mining, forestry, and safety equipment, positioning itself as a diversified leader in rope manufacturing. Their website reflects a comprehensive product catalog and detailed service offerings, targeting industrial clients globally. Technically, the website is built on Magento Commerce with modern JavaScript libraries and marketing tools such as Google Tag Manager and MailerLite, indicating a mature digital infrastructure. However, performance metrics are lacking, and the site currently lacks a valid SSL certificate, which is a critical security deficiency. Security headers are present but the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance indicators are evident. Contact information is transparent and includes physical address, phone numbers, and company emails, enhancing business credibility. Overall, while the business and content quality are strong, urgent improvements in SSL/TLS configuration and security practices are recommended to protect user data and improve trust.

Heidelberger Druckmaschinen AG (HEIDELBERG) is a globally recognized leader in the manufacturing and supply of printing and packaging solutions, including offset and digital printing technologies, post-press packaging machines, and related software and services. The company targets commercial, packaging, and label printing companies worldwide, positioning itself as a market leader with a comprehensive product and service portfolio. The website reflects a mature digital presence with rich content, clear navigation, and strong branding, supporting its enterprise-level stature. Technically, the site uses modern web technologies and tracking tools but lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security gap. Security headers are present but ineffective without SSL, and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism despite tracking scripts. WHOIS data confirms domain legitimacy and consistency with the company’s identity. Overall, the site is professional and trustworthy but requires urgent security improvements to meet modern standards.

B

BBMRI-ERIC

bbmri-eric.eu

0

BBMRI-ERIC is a European research infrastructure focused on biobanking and biomolecular resources, supporting researchers in health and life sciences to find new treatments. Established in 2013 and headquartered in Graz, Austria, it provides a range of services including a directory of biobank metadata, federated platforms for privacy-preserving data queries, and quality management. The website reflects a mature organization with consistent branding and professional content aimed at the scientific community. Technically, the site is built on WordPress with a variety of plugins supporting SEO, newsletter management, and social media integration. However, the site lacks HTTPS and a valid SSL certificate, which is a critical security vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy but requires urgent security improvements to protect user data and maintain credibility.

M

Microlife AG

microlife.ch

0

Microlife AG is a well-established Swiss company specializing in the development and production of medical diagnostic devices such as blood pressure monitors, thermometers, and respiratory therapy equipment. The company holds a strong market position as a world leader in healthcare technology, targeting both home users and healthcare institutions. Their website reflects a professional and consistent brand image with multilingual support and a comprehensive product portfolio. Technically, the website uses modern JavaScript and tracking tools but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS undermines user trust and exposes data to interception risks. Privacy compliance is well addressed with a cookie consent mechanism and clear privacy policies. However, no explicit security or incident response policies are publicly available. Overall, the site is functional and informative but requires urgent security improvements to align with best practices and user expectations.

F

Fenster. Türen. KATZBECK.

katzbeck.at

0

KATZBECK FensterGmbH Austria is a well-established manufacturer specializing in high-quality, custom windows and doors produced exclusively in Austria since 1950. The company emphasizes sustainability, regional production, and premium craftsmanship, targeting both end consumers and professional partners within Austria. Their website reflects a mature digital presence built on WordPress with the Divi theme, incorporating modern web technologies and user-friendly design. However, a critical security gap exists due to the absence of an SSL/TLS certificate, exposing users to potential risks. The site implements GDPR-compliant privacy and cookie policies, with clear contact channels and a professional content structure. To enhance trust and security, immediate implementation of HTTPS and additional security headers is recommended.

The website raye7.com currently serves as a minimal placeholder with no substantive content beyond a client-side redirect to a /lander path. There is no visible business information, metadata, or user-facing content to analyze. The domain is registered and active but lacks a valid SSL certificate, resulting in no HTTPS support and a poor security posture. DNS records are basic with no DNSSEC or CAA records, and MX records point to smtp.google.com, which may be a misconfiguration. Overall, the site appears to be under development or inactive. From a technical perspective, the infrastructure is minimal with hosting likely on Amazon AWS based on IP addresses. No modern web technologies, frameworks, or CMS platforms are detected. Performance metrics are unavailable due to lack of content. Security best practices are not implemented, with no security headers, no HSTS, and no certificate transparency compliance. Security posture is weak, with critical issues including lack of HTTPS and absence of security policies or headers. No privacy or cookie policies are present, indicating non-compliance with GDPR or other privacy regulations. No contact or business information is available, limiting trust and credibility. Given these factors, the overall risk is elevated due to lack of security controls and transparency. Strategic recommendations include immediate implementation of HTTPS, deployment of security headers, addition of privacy and cookie policies, and publication of business and contact information to improve trust and compliance.

H

HANRO

hanro.com

0

HANRO is a well-established luxury brand specializing in premium underwear, nightwear, and loungewear for both women and men, with a history dating back to 1884. The company operates a global retail and e-commerce presence, offering high-quality products certified by OEKO-TEX standards and emphasizing sustainable European production. Technically, the website is built on Magento 2 and uses modern marketing and consent management tools, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security flaw. Privacy compliance is strong with clear policies and consent mechanisms. Security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Overall, the site is professional and trustworthy but urgently needs to address its SSL and security header deficiencies to improve user trust and security.

E

Englisch Dekor

englisch.at

0

Englisch Dekor is a well-established Austrian company specializing in the manufacturing and supply of flame-retardant furniture fabrics, curtains, and decorative textiles primarily for the hospitality, gastronomy, and healthcare sectors. With a history dating back to 1866, the company holds a leading position in the European market, offering a wide range of functional and sustainable textile solutions. Their business model focuses on B2B sales supported by a comprehensive global network of sales representatives and an online webshop. Technically, the website is built on TYPO3 CMS and hosted on Apache servers managed by internex.at. The site features modern interactive elements such as global contact maps and language selection, with good mobile optimization and accessibility. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. While several security headers are present, the absence of HTTPS significantly impacts the overall security posture. The site implements a cookie consent mechanism with detailed cookie information, indicating good privacy compliance. Contact information is comprehensive and includes multiple regional sales contacts. Overall, the website is professionally designed and content-rich, reflecting a mature business with strong market presence. However, the lack of proper SSL/TLS configuration poses a significant risk that should be addressed promptly to ensure secure communications and maintain trust.

M

Melitta

melitta.com

0

Melitta is a well-established company specializing in coffee products and related services, operating a professional website that serves both consumers and B2B partners. The site provides comprehensive information about the company, its sustainability initiatives, and customer service options, supported by a consistent brand presence and active social media engagement. The technical infrastructure leverages modern JavaScript libraries, Google Analytics, and Cloudflare CDN services, with good mobile optimization and accessibility features implemented via a third-party widget. However, the website's security posture is weakened by an invalid SSL certificate and lack of enabled TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is functional and professional but requires urgent remediation of SSL and TLS issues to improve security and trustworthiness.

R

Research Industrial Systems Engineering (RISE)

rise-world.com

0

Research Industrial Systems Engineering (RISE) is a well-established independent IT service provider and system integrator based in Austria, with a strong European presence and multiple offices across Europe. The company specializes in planning and implementing large-scale IT systems, offering a broad range of engineering, operational, and research services. Their key markets include energy, transportation, banking, healthcare, telecommunications, and government sectors. RISE emphasizes 100% European value creation and maintains a large team of highly qualified technical experts. Technically, the website uses modern frameworks and libraries such as Bootstrap, jQuery, GSAP, Swiper, and Lottie Player, and employs Matomo for analytics, indicating a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines the overall security posture. Security headers are present but cannot compensate for the lack of encryption. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent improvements in security to protect users and data.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Julius Meinl is a well-established premium coffee and tea company with a rich heritage dating back to 1862. The company operates globally, targeting both business customers such as coffee houses, hotels, and restaurants, as well as home consumers. Their offerings include high-quality coffee and tea products, professional equipment, and tailored services including training. The website reflects a strong brand identity consistent with their market position as a premium hospitality supplier. Technically, the site is built on Microsoft IIS with ASP.NET and Kentico CMS, hosted on Azure, and integrates modern analytics and marketing tools. However, the site suffers from a critical security issue due to an invalid SSL certificate, resulting in no HTTPS availability, which significantly impacts user trust and security posture. Privacy compliance is partial, with no visible cookie consent mechanism despite tracking scripts. Contact information is primarily via forms and social media, with no explicit emails or phone numbers published. Overall, the site is professional and content-rich but requires urgent security improvements.

V

Virtual Identity AG

virtual-identity.com

0

Virtual Identity AG is a well-established digital agency founded in 1999, specializing in AI integration, UX design, software engineering, and digital marketing services. The company targets businesses aiming for digital transformation and human-centered business growth. Their market position is strong, supported by a reputable client portfolio and consistent branding. Technically, the website is built on WordPress, hosted on AWS CloudFront, and uses modern JavaScript libraries and SEO tools, though performance is moderate. Security posture is currently weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent security improvements to meet modern standards.

B

Breitenfeld Edelstahl AG

breitenfeld.at

0

Breitenfeld Edelstahl AG is a well-established Austrian manufacturer specializing in high-quality stainless steel and forged products, serving metal processing companies primarily in the manufacturing, energy, and transportation sectors. The company emphasizes environmentally friendly steel production using electric steelmaking processes and holds recognized certifications such as EN 9100, ISO 9001, and ISO 14001. Their digital presence is built on the HubSpot CMS platform, leveraging Cloudflare for hosting and content delivery. While the website is professionally designed with good content quality and navigation, there is a critical security gap due to the absence of a valid SSL certificate and HTTPS enforcement, which poses risks to user data confidentiality and trust. Privacy compliance is basic, with no visible cookie consent mechanisms or detailed privacy policies on the main site. Overall, the business credibility is high, supported by certifications and a consistent brand presence, but technical and security improvements are necessary to enhance trust and compliance.

A

AirPlus

airplus.com

0

AirPlus operates as a global enterprise specializing in corporate travel payment and expense management solutions. The company targets business travelers and corporate clients worldwide, offering localized website versions for multiple countries and languages. The business model focuses on B2B services within the transportation sector, positioning AirPlus as an established player in the corporate travel payment industry. Technically, the website is hosted on an Apache server with Akamai CDN support, utilizing JavaScript and Bootstrap frameworks for frontend presentation. While the site offers multilingual support and country-specific content, performance metrics are not provided, and the site shows basic mobile optimization and accessibility features. The technical stack is modern but lacks advanced CMS or platform indicators. From a security perspective, the website lacks a valid SSL certificate and does not enable any TLS protocols, which is a critical vulnerability. Although several security headers are present, some important protections like X-XSS-Protection are disabled, and HSTS is not fully configured. The site uses multiple external tracking and advertising services, leading to extensive user tracking without visible privacy or cookie policies, indicating poor privacy compliance. Overall, the website demonstrates moderate business credibility but suffers from significant security and privacy shortcomings. Strategic improvements in SSL/TLS configuration, privacy policy implementation, and security header enhancements are essential to reduce risk and improve trustworthiness.

Watts LLC is a well-established enterprise manufacturing and supplying plumbing, heating, water quality, drainage, and HVAC solutions globally. Founded in 1874 and headquartered in North Andover, Massachusetts, the company operates a broad portfolio of subsidiary brands and targets professionals and businesses in water technology sectors. The website reflects a mature digital presence with comprehensive content, strong branding consistency, and clear navigation tailored for a professional audience. Technically, the site leverages Sitecore CMS, Cloudflare hosting, and modern JavaScript libraries to deliver a good user experience with mobile optimization and accessibility features. However, the security posture is notably weak due to the absence of a valid SSL certificate and HTTPS support, which poses significant risks to user trust and data protection. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and credible but requires urgent security improvements to align with best practices.

The website daqri.com is currently inaccessible beyond a minimal HTML page that immediately redirects to /lander, with no further content available for analysis. The domain is registered and resolves to IP addresses likely hosted on Amazon AWS, but the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. No metadata, business information, contact details, or privacy and cookie policies are present, indicating a very low digital maturity level. The absence of security headers and DNS security features further weakens the security posture. Overall, the site appears to be either under maintenance, improperly configured, or protected by a security mechanism that blocks content access. This results in a low trust and credibility score and significant risk from a security and compliance perspective.

elektrabregenz.com is the official website of a large Austrian household appliance brand, part of the Beko corporate group. The site offers a comprehensive product catalog including cooling, cooking, dishwashing, and laundry appliances, targeting both consumers and retailers in Austria and German-speaking regions. The business is positioned as a major player in the European white goods market with a strong parent company backing and a wide product range. Technically, the website is built on Adobe Experience Manager and delivered via Akamai CDN, with modern marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent. However, the absence of a valid SSL/TLS certificate is a critical security gap, exposing users to potential risks and undermining trust. Privacy policies and cookie consent mechanisms are present and well-implemented, supporting GDPR compliance. Overall, the site demonstrates good content quality and business credibility but requires urgent security improvements to enable HTTPS and modern TLS protocols.

F

Foggia Città Aperta

foggiacittaaperta.it

0

Foggia Città Aperta is a local news media website providing news, videos, blogs, and event information focused on the Foggia province in Italy. Established in 2012, it serves a regional audience with content spanning politics, sports, culture, and society. The website demonstrates a consistent brand presence and active social media engagement. Technically, the site uses a variety of JavaScript libraries and frameworks such as jQuery and Bootstrap, hosted on Aruba infrastructure. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Cookie consent is implemented, but privacy policies are basic and lack comprehensive GDPR compliance indicators. No explicit security or incident response policies are found. Overall, the site is functional and content-rich but requires urgent security improvements to protect user data and enhance trust.

A

automate-it

a-it.cc

0

automate-it is an Austrian software and services company specializing in datacenter automation and hybrid cloud management through its LEON platform. The company has established a solid market presence with active customers in EMEA and partnerships with notable firms such as BMC Software. The website reflects a professional business focus with comprehensive content describing their automation and SecOps solutions. Technically, the website is built on WordPress with modern plugins and SEO optimizations but lacks HTTPS support, which is a critical security deficiency. Security headers are well configured, but the absence of SSL/TLS and HSTS significantly lowers the security posture. Privacy and cookie policies are present and GDPR compliant, though no explicit security or incident response policies are published. Overall, the website is functional and professional but requires urgent security improvements to enhance trust and compliance.

T

Trenkwalder Group AG

trenkwalder.com

0

Trenkwalder Group AG is a large, established HR services provider operating across multiple European countries. The company offers a range of services including HR service, outsourcing, and technology solutions, targeting both job seekers and corporate clients. Their digital presence is supported by modern web technologies such as Next.js and Storyblok CMS, hosted likely on Microsoft Azure infrastructure. The website is professionally designed with good content quality and clear navigation, supporting multiple languages and country-specific domains. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Security headers are well implemented but cannot compensate for the lack of encryption. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service detected. The company maintains a strong social media presence and provides clear contact information, enhancing business credibility. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to meet modern standards.

P

Phoenix

theater-phoenix.at

0

Theater Phönix is a cultural non-profit theater organization based in Linz, Austria, offering a diverse range of stage performances with a focus on contemporary and socially relevant works. The website presents a professional and well-structured digital presence with clear navigation, social media integration, and community engagement features such as newsletters and surveys. However, the technical infrastructure shows critical security gaps, notably the absence of HTTPS and a valid SSL certificate, which significantly impacts the site's security posture. The lack of published security policies and incident response information further highlights areas for improvement. Overall, the business appears legitimate and consistent with its domain registration, but urgent security enhancements are recommended to protect user data and improve trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

D

DS AUTOMOTION GmbH

ds-automotion.com

0

DS AUTOMOTION GmbH is a medium-sized Austrian company specializing in the development and manufacture of driverless transport systems and autonomous mobile robotics, with nearly 40 years of experience. The company operates internationally and is part of the SSI Schaefer Group, enhancing its market position. Their key offerings include automated guided vehicles (AGVs), autonomous mobile robots (AMRs), fleet management software (NAVIOS), and custom vehicle solutions tailored to various industries such as manufacturing and intralogistics. The website reflects a professional and modern digital presence built on TYPO3 CMS, featuring responsive design and good SEO practices. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the site's security posture.

R

rmDATA GmbH

rmdatagroup.com

0

rmDATA GmbH is a well-established technology company specializing in intelligent software and customized services for geomatics, surveying, information systems, data management, and reality capturing. With a history spanning over 40 years, rmDATA serves clients primarily in Austria, Germany, and Switzerland, offering comprehensive solutions for infrastructure and land management. The company operates a professional website powered by TYPO3 CMS, featuring rich content, clear navigation, and strong branding consistency. Their digital presence includes active social media channels and detailed business information, supporting a medium-sized enterprise profile. Technically, the website employs modern web technologies such as jQuery, Slick Carousel, and FontAwesome, integrated with marketing and analytics tools including Microsoft Dynamics 365 and Google Analytics Tag Manager. Despite these strengths, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts its security posture. Security headers are well configured, but the absence of encryption and TLS protocols is a critical vulnerability. From a security and compliance perspective, rmDATA demonstrates good privacy practices with comprehensive privacy and cookie policies, including a consent mechanism aligned with GDPR requirements. However, there is no visible security policy, incident response information, or vulnerability disclosure page. The WHOIS data confirms domain legitimacy and consistency with the company's business claims, enhancing trustworthiness. Overall, rmDATA's website is professional and content-rich but requires urgent security improvements, particularly implementing HTTPS to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and enhancing security transparency to align with best practices and regulatory expectations.

S

Studio Snap

studiosnap.ca

0

Studio Snap is a small photography service business with a website built on the GoDaddy Website Builder platform. The site presents a simple business description emphasizing timeless photography and friendly service, targeting local photography clients. The technical infrastructure relies on GoDaddy hosting and includes Google reCAPTCHA for form protection. However, the website lacks a valid SSL certificate and does not support HTTPS, which is a critical security shortfall. No privacy policy or terms of service pages are present, and contact information is limited to a contact form without direct emails or phone numbers. The site performance is slow, and security headers are absent, indicating a basic security posture. Overall, the business appears legitimate but is in an early stage with room for significant improvements in security and compliance.

RAG Austria AG is Austria's largest energy storage company and a leading technical storage operator in Europe, specializing in the storage, conversion, and conditioning of gaseous energy carriers with a strong focus on renewable gases such as hydrogen. The company has a well-established market position with a history spanning over 90 years and operates multiple subsidiaries and partnerships in the energy sector. Technically, the website is built on TYPO3 CMS and uses modern tools like Usercentrics for cookie consent and Matomo for analytics, reflecting a moderate digital maturity. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS, which significantly impacts the security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the company presents a professional and trustworthy online presence but must urgently address its SSL/TLS configuration to improve security and trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website domcollection.ch currently hosts a default Apache HTTP server test page running on Rocky Linux, indicating that the server is operational but no actual business content or services are published. The site lacks any commercial or organizational information, contact details, or user engagement features. Technically, the infrastructure is basic, with Apache on Linux, but critically lacks HTTPS support and modern security configurations. The security posture is weak due to the absence of SSL/TLS, minimal security headers, and no privacy or cookie policies. Overall, the site appears to be either under construction or abandoned, presenting a low trust profile and minimal business credibility.

OBI is a leading German home improvement and garden retailer with a strong online and physical presence. The website offers a comprehensive range of products and services including project planning, rental services, and loyalty programs. Technically, the site uses modern frameworks like Vue.js and Nuxt.js, hosted on AWS CloudFront, with extensive use of third-party analytics and marketing tools. However, the absence of a valid SSL certificate and HTTPS support is a critical security flaw that undermines user data protection. The site is well-structured, mobile-optimized, and provides clear contact and business information, supporting a high level of trustworthiness. Strategic improvements in security and privacy compliance are recommended to enhance overall risk posture.

R

Roswel

roswel.nl

0

Roswel is a small international wholesale company specializing in fittings, piping systems, and sustainable heating technologies, including pellet stoves. Established in 2009, it serves various sectors such as water technology, agriculture, and installation technology, primarily targeting businesses in the Netherlands and Germany. The company also acts as a distributor for SALUS CONTROLS in the Netherlands, offering products and support for heating and cooling control systems. The website reflects a professional business with clear product offerings and contact channels but lacks advanced security measures.

GeoVille Information Systems and Data Processing GmbH is a medium-sized Austrian technology company specializing in satellite-based Earth Observation services. With over 25 years of experience and a global footprint spanning 140 countries and 510 implementations, GeoVille offers a range of services including satellite imagery, data access, land monitoring analytics, platform interfaces, and advisory capacity building. Their target audience includes government agencies, environmental organizations, and sectors such as energy, security, and urban planning. The website is built on TYPO3 CMS with modern frontend technologies and demonstrates good design and navigation, though performance data is limited. From a technical perspective, the website uses Apache server technology and integrates libraries such as Bootstrap, jQuery, FontAwesome, and Google Tag Manager. However, the site lacks HTTPS encryption, which is a critical security deficiency. Security headers are minimal, and no advanced security mechanisms like HSTS or OCSP stapling are enabled. Privacy compliance is basic, with a privacy policy page present but no cookie consent mechanism detected. Contact information is limited to a contact form, with no direct emails or phone numbers published. The security posture is weak due to the absence of SSL/TLS, exposing users to potential interception risks. No incident response or vulnerability disclosure policies are published, which could impact trust. The domain registration data is consistent with the company's claims, showing a long-established presence since 1998. Social media presence is strong, supporting business credibility. Overall, the website is professionally designed and content-rich but requires urgent security improvements, especially enabling HTTPS and enhancing privacy compliance. Strategic recommendations include installing a valid SSL certificate, implementing cookie consent mechanisms, publishing security policies, and improving contact transparency to enhance trust and compliance.

S

SVCI

svci.net

0

SVCI is a specialized angel investor syndicate composed of leading Chief Information Security Officers (CISOs) focused on early-stage cybersecurity startups. The group leverages its deep industry expertise and network to identify promising companies and provide both capital and mentorship. Powered by Notable Capital, a significant early-to-growth VC firm, SVCI operates independently with a strong emphasis on ethics and transparency. The website presents a professional image with clear messaging about its mission and operations, targeting cybersecurity entrepreneurs and investors.

C

CrateDB

crate.io

0

CrateDB operates as a technology company specializing in a real-time unified data layer that supports analytics, search, and AI workloads. Their platform enables rapid ad-hoc querying, hybrid search capabilities, and seamless AI model integration, targeting developers and enterprises requiring scalable, high-performance data solutions. The website demonstrates a strong market position with customer testimonials, industry use cases, and active engagement through webinars and events. Technically, the site is built on HubSpot CMS with integrations for analytics and marketing tools, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the business credibility is high, supported by consistent branding and trust signals.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

G

Grupo La República Publicaciones

larepublica.pe

0

La República.pe is a prominent Peruvian news media company providing comprehensive news coverage across multiple domains including politics, economy, sports, entertainment, and international affairs. The website offers rich multimedia content such as videos, podcasts, and live updates, targeting Spanish-speaking audiences primarily in Peru. The company is well-established since 1981 and operates several subsidiary and partner sites, reinforcing its market presence. Technically, the site is built on modern web technologies including React and Next.js, hosted on Amazon CloudFront, and integrates advertising and analytics tools like Google Tag Manager, Teads, and Taboola. The site is mobile-optimized and SEO-friendly, providing a good user experience with clear navigation and professional design. From a security perspective, the site currently suffers from an invalid SSL certificate, which is a critical issue that undermines user trust and secure communications. Other security best practices such as HSTS, OCSP stapling, and DNSSEC are not implemented, indicating room for improvement. Privacy compliance is partial, with a comprehensive privacy policy but no detected cookie consent mechanism. Overall, the site is a high-quality, trusted news source with strong business credibility but needs urgent attention to its SSL configuration and privacy compliance to enhance security and user trust.

M

Mississippi University for Women

muw.edu

0

Mississippi University for Women (The W) is a public co-educational university founded in 1884, offering a broad range of undergraduate and graduate programs with a strong emphasis on academic excellence and leadership development. The university holds a solid market position in the southern United States, recognized for low student debt and transfer student friendliness. The website reflects a professional and comprehensive digital presence, targeting prospective and current students, faculty, staff, and alumni. The content is rich, well-structured, and supported by active social media channels and event management tools.

N

Nameshift.com

racon.co.uk

0

The website racon.co.uk is a domain sales landing page operated by Nameshift.com, a small technology business based in the Netherlands specializing in domain name transfers and escrow services. The business model focuses on providing a safe, fast, and fee-free domain transfer experience for buyers, with the seller paying commissions. The site content is minimal and primarily serves as a transactional interface for domain purchase via Nameshift.com. Technically, the site uses modern frameworks such as SvelteKit and is hosted by Hosting Concepts B.V., but suffers from poor performance and incomplete content presentation. Security posture is weak due to the absence of a valid SSL certificate and HTTPS support, alongside malformed DNS CAA records and lack of domain protection locks. Privacy compliance is minimal, with no visible privacy or cookie policies, and no contact emails or phone numbers provided. Overall, the site presents moderate trustworthiness but requires significant improvements in security and privacy to meet professional standards.

U

USP Indicator Solutions GmbH

usp.at

0

USP Indicator Solutions GmbH is a specialized service provider that helps R&D and marketing teams in the consumer goods industry translate complex scientific claims into compelling demo assets. The company has a strong market presence with over 400 brands served, including major global names such as L'Oréal, Johnson & Johnson, and Bayer. Their key services include demo creation, real demo videos, product and claim demos, and digital experiences embedding AI and custom algorithms. The website reflects a mature digital infrastructure built on WordPress with Elementor and WooCommerce, supported by LiteSpeed hosting and modern web technologies. Privacy and cookie policies are well implemented with GDPR compliance and consent mechanisms. However, the security posture is weakened by the absence of a valid SSL certificate and incomplete HTTPS configuration, which poses a critical risk to user trust and data security. Strategic improvements in SSL deployment and security headers are recommended to enhance the overall security and compliance stance.

H

Harouge Oil Operations

harouge.com

0

Harouge Oil Operations is a Libyan energy company specializing in the development and exploitation of oil fields. The company operates under international agreements and OPEC directives, focusing on safe and efficient oil extraction and export. Their website provides corporate information, news, tenders, and operational details primarily targeting industry stakeholders and partners. Technically, the site is built on Joomla CMS with K2 content management and uses common web technologies like jQuery and Bootstrap. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which critically impacts security posture. Security headers are partially implemented but insufficient without proper TLS. Privacy compliance is weak, with no cookie consent or detailed privacy policy. Contact information is limited to a contact form and webmail link, with no explicit emails or phone numbers. Overall, the website is functional but requires significant improvements in security and privacy to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

AdWords Agentur GmbH

adwordsagentur.at

0

AdWords Agentur GmbH is a specialized Google AdWords agency based in Vienna, Austria, focusing on delivering measurable and cost-efficient search engine advertising services. The company offers comprehensive campaign analysis, management, and optimization services, emphasizing conversion tracking and ROI maximization. Their market position is supported by over 100 partners and detailed case studies showcasing significant client success. Technically, the website is built on WordPress with modern plugins and technologies, though it suffers from critical SSL/TLS misconfiguration, impacting security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business demonstrates professionalism and trustworthiness but must urgently address its HTTPS implementation to improve security and user trust.

Schachermayer GmbH is a well-established Austrian wholesale company specializing in technical products and design solutions, serving primarily B2B customers in trade, industry, and commerce. With a history dating back to 1838, the company offers a broad product range exceeding 100,000 items, supported by professional consulting and logistics services. Their digital presence includes a comprehensive web catalog and partner portal, facilitating efficient ordering and customer engagement. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and integrates a cookie consent mechanism via Klaro, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security improvements to safeguard data and user trust.

R

realme

realme.com

0

realme is a large technology company focused on the European market, offering smartphones, IoT devices, and accessories through a direct-to-consumer e-commerce model. The website is professionally designed with consistent branding and supports multiple regional versions and languages. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js, and integrates payment solutions from Adyen and PayPal, indicating a mature digital presence. However, the security posture is weak due to the absence of a valid SSL certificate and HTTPS support, which is a critical issue for user trust and data protection. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Contact information is primarily via email, with no phone numbers or physical addresses found on the site.

Aon plc operates a comprehensive global professional services website focused on risk and human capital advisory services. The site presents a strong market position with extensive content, clear navigation, and professional design targeting enterprise clients worldwide. The technical infrastructure leverages modern JavaScript frameworks, Cloudflare CDN, and advanced analytics tools such as New Relic and Eloqua, indicating a mature digital presence. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, significantly impacting the site's security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the site reflects a reputable enterprise with strong business credibility but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.