Security Directory

L

Lovely Systems GmbH

lovelysystems.com

0

Lovely Systems GmbH is a small technology company specializing in building and operating digital platforms, focusing on multi-platform applications and large-scale web services. Their website presents a modern chat interface and highlights their expertise in scalable digital solutions. The company maintains a presence on GitHub and LinkedIn, supporting their credibility and outreach to developers and businesses seeking digital platform services. Technically, the website uses modern JavaScript and CSS features but suffers from slow load times and lacks a content management system. Security posture is weak due to the absence of a valid SSL certificate, no HTTPS support, and missing security headers, which exposes users to potential risks. Privacy compliance is minimal, with no visible privacy or cookie policies, and limited user tracking via GoatCounter analytics. Overall, the site is functional but requires significant improvements in security and privacy to meet industry standards.

Q

Quality Austria

qualityaustria.com

0

Quality Austria is a leading Austrian institution specializing in integrated management systems, quality certification, and training services. The company offers a broad range of certifications including ISO standards, Austria Gütezeichen, and EOQ certificates, positioning itself as a trusted partner for organizations seeking quality assurance and compliance. The website reflects a mature digital presence with comprehensive content, multi-language support, and a professional design tailored to its target audience of businesses and public organizations. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, enhanced by performance optimizations such as WP Rocket and advanced search via FacetWP. The use of Borlabs Cookie ensures compliance with privacy regulations through effective consent management. However, the absence of a valid SSL certificate is a critical security flaw that undermines user trust and data protection. Security measures include several HTTP security headers and a content security policy restricting frame ancestors, but the invalid SSL certificate and lack of explicit security or incident response policies indicate areas for improvement. Overall, the site demonstrates strong business credibility and privacy compliance but requires urgent attention to its SSL configuration to ensure secure user interactions.

The website akkadia.eu currently serves a standard 404 'Site not found' error page hosted on Netlify, indicating that the site content is inaccessible or not deployed. There is no visible business information, metadata, or structured data to describe the company, its services, or market position. The technical infrastructure is minimal, with DNS records properly configured but lacking a valid SSL certificate and HTTPS support, which significantly impacts security posture. No privacy, cookie, or terms of service policies are present, and no contact or social media information is available. Overall, the site lacks essential elements for trust, security, and user engagement, resulting in a low digital maturity level and poor user experience.

S

Sclable Business Solutions GmbH

sclable.com

0

Sclable Business Solutions GmbH is a Vienna-based digital innovation studio founded in 2012, specializing in custom software development, AI-driven digital solutions, and human-centered design. The company serves a diverse B2B clientele across industries such as manufacturing, IoT, healthcare, construction, mobility, financial services, and energy. With over 50 professionals and 120+ live projects, Sclable positions itself as a medium-sized, reputable player in the technology consulting and software development market. The website reflects a professional and consistent brand image with strong client endorsements and comprehensive service descriptions. Technically, the website runs on an Apache server with modern frontend libraries like Swiper and QR code generation scripts. While the site is mobile-optimized and accessible with good SEO practices, it lacks a valid SSL certificate and proper HTTPS configuration, which is a significant security shortfall. Performance metrics are missing, but inferred to be slow. No CMS or major frameworks are detected, indicating a custom-built site. From a security perspective, the site has minimal security headers and no active TLS protocols, exposing it to potential risks. The absence of DMARC, DNSSEC, and CAA records further weakens email and domain security. No incident response or vulnerability disclosure policies are present, limiting transparency in security management. However, privacy and cookie policies with consent mechanisms are well implemented, indicating good GDPR compliance. Overall, while the business and website demonstrate professionalism and trustworthiness, the lack of HTTPS and modern security configurations poses a critical risk. Strategic improvements in SSL deployment, email security, and incident response transparency are recommended to enhance the security posture and maintain client trust.

H

Helvetia Versicherungen AG

helvetia.at

0

Helvetia Versicherungen AG is a well-established insurance provider in Austria with over 165 years of experience and a large customer base exceeding 650,000. The company offers a wide range of insurance and pension products tailored to private customers, including accident, vehicle, household, and life insurance. The website is professionally designed, content-rich, and provides comprehensive navigation and contact options, reflecting a mature digital presence. Technically, the site uses Adobe Experience Manager CMS and integrates Adobe DTM for analytics and marketing. However, a critical security gap exists as no valid SSL certificate is detected, resulting in no HTTPS support, which significantly impacts the security posture. Security headers are properly configured, but the lack of HTTPS is a major vulnerability. Privacy and cookie policies are present and comprehensive, indicating good compliance with GDPR. Overall, the website is trustworthy and credible but requires urgent security improvements to protect user data and maintain trust.

W

Wirtschaftsagentur Wien

wirtschaftsagentur.at

0

Wirtschaftsagentur Wien is a well-established government agency founded in 1982, dedicated to supporting economic development in Vienna. The agency offers a comprehensive range of services including free consulting, funding opportunities, event organization, and networking for startups, established businesses, and international companies. Their market position as the official economic development fund of the City of Vienna is strong, supported by consistent branding and a professional online presence. The website is content-rich, multilingual, and targets a broad audience of entrepreneurs and businesses in Vienna. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes interactive features such as animated content and a service compass tool.

Shotview is a well-established artist management agency founded in 2002, specializing in representing photographers, stylists, casting professionals, and other creatives in the media and fashion industries. With offices in Berlin, Paris, and Vienna, the company offers strategic guidance, production expertise, and a platform for artists to showcase their work internationally. The website reflects a professional and visually rich portfolio showcasing featured projects and artists. Technically, the site uses modern frameworks such as Vue.js and Nuxt.js, hosted on Heroku and served via Cloudflare CDN. However, the absence of a valid SSL certificate is a critical security flaw, exposing users to risks and undermining trust. Additionally, the lack of privacy, cookie, and security policies indicates compliance gaps that should be addressed to meet GDPR and general best practices. Contact information is clearly provided, including multiple office addresses, emails, and phone numbers, supporting business credibility.

G

Gantner Instruments

gantner-instruments.com

0

Gantner Instruments is a medium-sized technology company specializing in modular and scalable data acquisition solutions for industrial testing and monitoring applications across sectors such as energy, aerospace, and mobility. The company offers a comprehensive portfolio of hardware, software, and technical support services, positioning itself as a market leader with a global presence. Technically, the website is built on a modern WordPress CMS with Elementor and optimized for performance and SEO, though it lacks a valid SSL certificate, which is a significant security concern. Security headers are well implemented, but the absence of HTTPS and TLS protocols reduces the overall security posture. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Business credibility is strong, supported by clear contact information, partner logos, and customer testimonials. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

A

Ashoka

ashoka.org

0

Ashoka is a globally recognized non-profit organization dedicated to supporting social entrepreneurs and changemakers. The website reflects a mature digital presence with comprehensive content, clear calls to action, and a strong community focus. The technical infrastructure leverages Drupal 10 CMS and Cloudflare for hosting and delivery, ensuring good performance and accessibility. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy and cookie policies are well implemented with consent mechanisms, aligning with GDPR requirements. Overall, the site demonstrates high professionalism and business credibility but requires urgent security improvements to meet modern standards.

S

Salzburg Global Seminar, Inc.

salzburgglobal.org

0

Salzburg Global Seminar, Inc. is a well-established non-profit organization founded in 1947, dedicated to convening global leaders for breakthrough conversations on pressing global issues. The organization operates internationally with offices in Austria and the USA, providing leadership programs, fellowships, and global convenings. The website is built on TYPO3 CMS and uses standard web technologies including jQuery and Google reCAPTCHA for form security. While the site offers comprehensive content and clear navigation, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Privacy and cookie policies are present and include consent mechanisms, reflecting good privacy compliance. Contact information and social media presence are robust, enhancing business credibility. Overall, the site demonstrates a solid business and content foundation but requires urgent improvements in security infrastructure.

O

oe24.at

oe24.at

0

Oe24.at is a prominent Austrian online news portal delivering comprehensive news coverage, multimedia content, and subscription services targeting German-speaking audiences interested in Austrian and global events. The website integrates advanced advertising and analytics technologies, including Google Tag Manager, Relevant Digital, and Piano subscription management, reflecting a mature digital infrastructure. However, a critical security deficiency is the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. The site demonstrates strong privacy compliance with detailed GDPR-aligned policies and consent mechanisms. Overall, while content and business credibility are solid, urgent improvements in security posture are necessary to protect user data and maintain trust.

The atkearney.com website is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) blocking the visitor, presenting a security challenge page instead of the actual site content. This prevents any direct analysis of the business content, services, or user interface. The domain is registered and DNS records indicate Cloudflare hosting with multiple TXT records for domain verification and email protection. However, the SSL/TLS configuration is invalid or missing, with no HTTPS support detected, which is a critical security concern. The site lacks visible privacy, cookie, or terms of service policies, and no contact information or business details are exposed on the landing page. Overall, the site’s digital maturity and security posture are poor due to the lack of accessible content and missing security best practices.

M

Muséum national d'Histoire naturelle

mnhn.fr

0

The Muséum national d'Histoire naturelle is a prominent French national institution dedicated to natural history research, education, and public exhibitions. It operates multiple sites across Paris and regions, serving a broad audience including families, scientists, educators, and professionals. The website reflects a well-structured, content-rich platform with excellent design and navigation, supporting its mission to disseminate knowledge and engage the public. Technically, the site is built on Drupal 10 with modern web technologies and uses caching and analytics tools such as Varnish, Matomo, and ContentSquare. Mobile optimization and SEO are well addressed, though performance is moderate. However, the critical security weakness is the absence of a valid SSL certificate and disabled TLS protocols, severely impacting secure communications and user trust. Security headers and policies are implemented, but the lack of HTTPS and modern TLS support is a major vulnerability. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact and legal information. Social media presence is official and consistent, enhancing credibility. Overall, the site is professionally managed with strong business credibility but requires urgent remediation of SSL/TLS issues to improve security posture and user trust. Strategic recommendations include installing valid certificates, enabling modern TLS, and enhancing security policies.

P

Party and Be Married

partyandbemarried.com

0

Party and Be Married is a small, specialized event planning and coordination company focused on weddings, lifestyle, and business events primarily serving California and beyond. The company emphasizes a personalized, artistic approach to creating unique client experiences. The website is hosted on Squarespace and uses standard web technologies including JavaScript, FontAwesome, and Google Fonts. While the site design is professional and content is relevant, the technical infrastructure shows weaknesses such as lack of a valid SSL certificate and disabled HTTPS, which severely impacts security posture. No privacy or cookie policies are present, indicating poor privacy compliance. Contact information is limited to an email and contact form, with no phone or physical address listed. Social media presence is active, supporting marketing efforts. Overall, the website is functional but requires significant improvements in security and compliance to meet modern standards.

POLYTEC Holding AG is a well-established Austrian manufacturing company specializing in the development and production of high-quality plastic solutions, primarily serving the automotive and non-automotive sectors. Founded in 1986, the company has grown to a large enterprise with approximately 3,900 employees worldwide. Their business model focuses on providing comprehensive plastic solutions from conception to logistics, leveraging strong technological and material expertise. The website reflects a professional and consistent brand image with clear navigation and rich content, targeting industrial clients and partners. Technically, the site is built on TYPO3 CMS with modern frameworks like Bootstrap and includes advanced UI components such as sliders and accordions. However, the absence of HTTPS and modern SSL/TLS configurations represents a significant security risk. The company maintains a moderate level of privacy compliance with a clear privacy and cookie policy, and uses analytics and marketing tools responsibly. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

SUNPOR Kunststoff GmbH

sunpor.at

0

SUNPOR Kunststoff GmbH is a medium-sized Austrian manufacturing company specializing in EPS granulate products used for insulation, packaging, and other applications. The company positions itself as a technological leader in EPS manufacturing with a strong focus on sustainability and circular economy initiatives. The website provides comprehensive product and company information primarily in German, targeting construction and packaging industry professionals. Technically, the website runs on nginx with PHP 7.2 and uses embedded YouTube videos and Google Analytics for tracking. However, the site lacks a valid SSL certificate and does not enforce HTTPS, which is a significant security shortfall. Security headers are missing, and the PHP version is outdated, increasing risk exposure. Privacy compliance is addressed with a cookie consent banner and a detailed privacy policy, but no explicit security or incident response policies are found. Overall, the website is functional and professional but requires urgent improvements in security posture to protect user data and enhance trust.

École polytechnique is a prestigious French engineering school offering a wide range of educational programs including Bachelor, Master, Doctorate, and Executive Education. It is a founding member of the Institut polytechnique de Paris and focuses on research, innovation, and entrepreneurship. The website targets students, researchers, entrepreneurs, alumni, and corporate partners, providing comprehensive information about academic programs, research labs, innovation centers, and community engagement. Technically, the site is built on Drupal CMS with modern frontend technologies but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Privacy and cookie policies are well implemented with GDPR compliance and consent mechanisms. Social media presence is strong with official accounts on Facebook, YouTube, LinkedIn, and Instagram. Overall, the site is professional and trustworthy but requires urgent security improvements to enable HTTPS and modern TLS protocols.

A

ARCOTEL Hotels

arcotelhotels.com

0

ARCOTEL Hotels is a medium-sized hospitality group operating multiple hotels across Austria and Germany, focusing on urban locations and sustainable hospitality practices. The website presents a professional and consistent brand image with comprehensive content about their services, sustainability certifications, and direct booking advantages. Technically, the site uses a mix of legacy and modern technologies, including PHP 5.6.40, Bootstrap 4, and various JavaScript libraries, hosted on Amazon CloudFront CDN. However, the absence of a valid SSL certificate and use of outdated PHP versions represent significant security risks. Privacy and cookie policies are well implemented with consent mechanisms, and analytics usage is moderate with Google services. Overall, the site is functional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

Smaply GmbH

morethanmetrics.com

0

Smaply GmbH operates a professional SaaS platform focused on customer journey mapping and experience management. The company targets enterprise and professional users such as UX designers, product managers, and service designers. Their market position is supported by strong trust indicators including ISO 27001 and SOC-2 certifications, GDPR compliance, and customer testimonials. The website content is rich, well-structured, and professionally designed, reflecting a mature digital presence. Technically, the site is built on Webflow with integrations for analytics and marketing automation, hosted on Cloudflare and AWS infrastructure. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate and serves content over HTTP only, severely impacting security posture and trust. Privacy compliance is well addressed with cookie consent mechanisms and comprehensive policies. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS is a major risk that should be remediated immediately.

O

Open Knowledge Maps

openknowledgemaps.org

0

Open Knowledge Maps is a well-established non-profit organization founded in 2014, focused on revolutionizing scientific knowledge discovery through AI-based search and visualization tools. Their platform serves researchers and the scientific community by providing an accessible and open infrastructure for literature search and concept identification. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and D3.js, and is hosted on Contabo servers. However, the absence of HTTPS is a critical security gap that undermines user trust and data protection. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms, alongside the use of privacy-respecting analytics (Matomo). Business credibility is supported by testimonials, awards, and open source transparency. Overall, the site is content-rich and professionally designed but requires urgent security improvements.

A

applied international informatics GmbH

aiinformatics.com

0

Applied international informatics GmbH is a German IT service provider specializing in SAP consulting, digital transformation, and managed cloud services targeted primarily at the Mittelstand (small and medium-sized enterprises) in Germany. The company positions itself as a trusted partner offering comprehensive IT solutions including licensing, maintenance, and cloud hosting. Their website reflects a professional and consistent brand presence with clear contact information and social media engagement. Technically, the site is built on WordPress with modern frameworks like React and includes SEO optimizations and cookie consent mechanisms compliant with GDPR. However, the website suffers from a critical security deficiency due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Performance is also suboptimal with a slow page load time. Security best practices such as HTTP security headers and modern TLS protocols are missing, which lowers the overall security posture. Despite these issues, the business credibility remains high given the clear certifications and trust signals. Strategic improvements in security infrastructure and performance optimization are recommended to enhance trust and compliance.

P

ProSiebenSat.1 PULS 4

puls4.com

0

PULS 4 is a prominent Austrian media company offering a comprehensive TV broadcasting and streaming platform, integrated with the JOYN service. The website targets German-speaking audiences in Austria with a rich variety of content including live TV, series, news, and entertainment. The business operates under the umbrella of ProSiebenSat.1 Media SE, reflecting a strong market position in the Austrian media landscape. Technically, the site leverages modern web technologies such as Next.js and is hosted on Amazon CloudFront, ensuring scalability and performance. However, the absence of a valid SSL certificate is a significant security concern that undermines user trust and data protection. Privacy and legal compliance are well addressed with comprehensive policies and consent mechanisms. Overall, the site demonstrates a mature digital presence but requires urgent remediation of its SSL/TLS configuration to meet security best practices.

O

Omya International AG

omya.com

0

Omya International AG is a leading global producer and distributor of industrial minerals and specialty materials, primarily focusing on calcium carbonate and dolomite-based products. With a strong presence in over 50 countries and 160 plants, Omya serves diverse industries including adhesives, agriculture, building and construction, polymers, and water treatment. The company emphasizes sustainability and innovation, operating 17 dedicated laboratories and holding over 325 patent families. The website is professionally designed, content-rich, and well-structured, targeting industrial customers and partners worldwide. Technically, the site is built on Adobe Experience Manager with modern web technologies and includes consent management for privacy compliance. However, a critical security issue is the absence of a valid SSL certificate and enabled TLS protocols, which significantly impacts the site's security posture. Privacy policies and terms of service are present and comprehensive, supporting GDPR compliance. Overall, Omya's digital presence reflects a mature, credible industrial business but requires urgent security improvements to protect user data and enhance trust.

S

Storyclash GmbH

storyclash.com

0

Storyclash GmbH operates a sophisticated AI-powered influencer marketing platform targeting marketers, brands, and agencies. The platform offers comprehensive services including influencer discovery, market insights, campaign management, and performance tracking across major social media platforms like Instagram, TikTok, and YouTube. The company is positioned as a leading solution in the influencer marketing space with strong brand partnerships and positive customer testimonials. Technically, the website employs modern frameworks such as Bootstrap and integrates multiple analytics and marketing tools including Amplitude, Google Tag Manager, HubSpot, and Intercom, reflecting a mature digital infrastructure. However, the absence of a valid SSL certificate and lack of essential security headers represent significant security vulnerabilities that could impact user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism and business credibility but requires urgent security improvements to enhance its security posture and user trust.

E

EFKON – Transforming mobility for a greener and safer planet

efkon.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 26 security findings identified across all modules.

The website brucha.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain is registered and uses Cloudflare for DNS and hosting, with mail services routed through Microsoft Outlook. However, there is no valid SSL certificate installed, and the site does not serve content over HTTPS, which is a critical security deficiency. No privacy, cookie, or terms of service policies are detectable, and no contact information or social media links are present on the landing page. Overall, the site appears to be in a blocked or protected state, limiting the ability to assess its business or technical maturity.

K

Kontron AG

escat.at

0

ESCAT, now part of Kontron AG, provides advanced document management, digitalization, and managed print services primarily targeting Austrian businesses. The website presents a professional and well-structured digital presence built on Drupal 10, with clear navigation and relevant content tailored to its B2B audience. However, the absence of a valid SSL/TLS certificate critically undermines the security posture, exposing users to risks associated with unencrypted communications. While cookie consent and privacy policies are implemented, the site lacks explicit security and incident response disclosures. The technical infrastructure is modern but requires urgent security upgrades to meet industry standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Bahlsen GmbH & CO. KG is a well-established German company specializing in the production and sale of high-quality pastries, cookies, and wafers with a history spanning over 130 years. The website targets consumers interested in premium bakery products and maintains a strong brand presence with localized content for multiple countries. Technically, the site is built using modern frameworks such as Next.js and React, hosted on Vercel, and integrates a headless CMS (Storyblok) for content management. However, the website currently lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. While security headers like Content-Security-Policy and Strict-Transport-Security are present, the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy compliance is partially met with a comprehensive privacy policy and terms of use, but no cookie consent mechanism is detected. Overall, the site demonstrates good business credibility and professional content but requires urgent security improvements.

HEWI Heinrich Wilke GmbH is a well-established German manufacturer specializing in sanitary and hardware solutions with a strong emphasis on universal design and accessibility. The company offers a wide range of products and services targeting professional care, public, hotel, education, and home sectors. Their website reflects a mature digital presence with comprehensive content, multi-language support, and integration of modern web technologies such as Pimcore CMS and Google Tag Manager. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. While privacy policies and consent mechanisms are implemented, the lack of advanced security configurations like DMARC, DNSSEC, and CAA records suggests room for improvement in domain and email security. Overall, the business demonstrates high credibility and professionalism, but urgent remediation of SSL and TLS issues is recommended to protect user data and enhance trust.

S

Starlinger & Co GmbH

starlinger.com

0

Starlinger & Co GmbH operates as a world-leading supplier of machinery for woven plastic packaging production and plastics recycling. The company offers comprehensive turnkey solutions covering the entire packaging lifecycle, including engineering, financing, after-sales service, and training. Their website reflects a mature B2B business model targeting manufacturers and recyclers globally, with a strong emphasis on sustainability and closed-loop packaging solutions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes tracking and consent management tools such as Google Tag Manager and Cookiebot. However, the website suffers from a critical security weakness due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

W

Wordbee

wordbee.com

0

Wordbee is a technology company specializing in AI-powered localization software designed for language service providers, enterprises, and regulated industries. The platform offers comprehensive localization solutions including translation management, automated business processes, and compliance features. Positioned as a scalable and future-ready solution, Wordbee targets businesses seeking intelligent automation and precise localization workflows. Technically, the website is built on the Wix platform utilizing modern frameworks like React 18 and integrates multiple Wix apps for forms, bookings, e-commerce, and content management. While the site demonstrates good content quality and professional design, it lacks a valid SSL certificate, which is a critical security concern. The absence of a cookie consent mechanism also indicates partial privacy compliance. Overall, the security posture requires immediate improvement to protect user data and enhance trust. Strategic recommendations include implementing HTTPS with modern TLS protocols, enhancing privacy compliance, and optimizing technical performance to maintain competitive advantage.

T

T-Mobile Austria GmbH

t-mobile.at

0

T-Mobile Austria GmbH operates the website t-mobile.at, branded as Magenta, providing telecommunications services including mobile telephony, internet, and TV packages primarily targeting Austrian consumers and businesses. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates Google Tag Manager and Usercentrics for analytics and consent management. However, a critical security gap exists as the website lacks a valid SSL certificate and does not serve content over HTTPS, exposing users to potential risks. Security headers are partially implemented, but transport security is insufficient. Privacy and legal policies are comprehensive and GDPR compliant, with clear contact information and social media presence enhancing trust. Overall, the site is credible and well-positioned in the Austrian telecommunications market but urgently requires HTTPS implementation to improve security posture.

The website the-gem.com is registered but lacks proper DNS configuration and does not have a valid SSL certificate, resulting in no HTTPS support. The website content is minimal and primarily consists of an embedded iframe and a hidden tracking pixel from external domains, which raises suspicion about its legitimacy. There are no privacy, cookie, or terms of service policies present, nor any contact or business information, which further diminishes trustworthiness. The site performs poorly with a slow load time despite minimal content, and no SEO or accessibility features are implemented. Overall, the digital maturity of the site is very low, and the security posture is weak due to missing fundamental protections and best practices.

WU Executive Academy is a prominent provider of executive education based in Vienna, Austria, affiliated with the WU Wirtschaftsuniversität Wien. The academy offers a wide range of programs including Executive MBAs, LL.M. degrees, Masters, Bachelors, university courses, and custom corporate training programs. It targets professionals, managers, and future students seeking advanced leadership education. The website reflects a strong market position in Central and Eastern Europe with recognized accreditations and rankings. Technically, the site is built on TYPO3 CMS with PHP backend and uses standard web technologies including jQuery and Usercentrics for consent management. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortcoming. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and enhance trust.

ATP architekten ingenieure is a well-established European architecture and engineering firm specializing in integrative planning and sustainable building solutions using Building Information Modeling (BIM). With over 1,500 employees and 14 locations across Europe, the company holds a strong market position as a BIM pioneer and leader in sustainable architecture. The website reflects a high level of professionalism, comprehensive project portfolios, and active engagement with clients through social media and contact forms. Technically, the site uses modern frameworks like Astro and is hosted on Netlify, but suffers from a critical security issue due to an invalid or missing SSL certificate, which undermines the security posture. Privacy and cookie policies are present and GDPR compliant, supporting good privacy practices. Overall, the site is content-rich and user-friendly but requires urgent security improvements to protect user data and enhance trust.

F

FELIX Austria GmbH

felix.at

0

FELIX Austria GmbH operates a well-established website focused on food products, particularly sauces such as ketchup, mayonnaise, and pestos. The company targets consumers primarily in Austria and German-speaking regions, offering product information, recipes, and partnerships. The website is built on TYPO3 CMS and integrates Google Tag Manager for analytics. While the site presents a professional design with good content quality and navigation, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Security headers are properly configured, but the absence of HTTPS significantly impacts the overall security posture. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Contact information is available via a contact page, though no direct emails or phone numbers are explicitly listed. The domain registration data aligns well with the website content, indicating legitimacy. Strategic recommendations include obtaining a valid SSL certificate, implementing cookie consent, and publishing security policies to enhance trust and compliance.

A

ace Neue Informationstechnologien GmbH

ace.at

0

ace Neue Informationstechnologien GmbH is an established Austrian IT company with over 25 years of experience specializing in digital transformation solutions, including foundation management software, CRM based on Microsoft Dynamics 365, and business applications leveraging Microsoft Azure. Their market position is that of a trusted regional provider targeting foundations, public sector entities, and businesses seeking efficient CRM and digital solutions. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site uses a modern frontend stack with SilverStripe CMS and popular JavaScript libraries, but lacks HTTPS, which is a critical security shortfall. The cookie consent mechanism and privacy policy indicate good GDPR compliance. Security posture is basic with no advanced headers or incident response information published. Overall, the site is functional and professional but requires urgent SSL implementation to improve security and trust.

G

GrECo International AG

vmg.at

0

GrECo International AG is a leading Austrian risk and insurance management company specializing in industry, trade, commerce, and the public sector. Recently, it merged with VMG Versicherungsmakler GmbH, consolidating their services under the GrECo Group brand. The company offers comprehensive risk analysis, insurance brokerage, claims management, and risk engineering services, targeting clients primarily in Austria and the CEE region. The website is professionally designed, content-rich, and optimized for SEO with structured data and multilingual support. Technically, the site runs on WordPress with Elementor and uses Matomo for analytics, but suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security headers are partially implemented, but modern TLS protocols and HSTS are not properly enabled. Privacy policies and cookie policies are present and GDPR compliant, with minimal user tracking. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent improvements in SSL/TLS configuration to ensure secure user interactions.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

G

G8Way GmbH

prime-crowd.com

0

Gateway Ventures, formerly known as primeCROWD, operates as a startup investment platform focused on democratizing access to quality startup investments. The company targets experienced business angels, first-time investors, and founders, providing investment opportunities, educational bootcamps, and community events. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. However, the prime-crowd.com domain lacks HTTPS, which is a critical security concern. The main content is hosted on gateway.ventures, which uses modern technologies and CDN services. Security posture is weak due to missing SSL/TLS and security headers, though email authentication mechanisms like DKIM and SPF are in place. Privacy compliance is addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and consistent with WHOIS data, but security improvements are urgently needed.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

L

Lee Enterprises

oanow.com

0

Opelika Auburn News (oanow.com) is a regional news media website operated by Lee Enterprises, providing comprehensive local news, sports, weather, opinion, and lifestyle content for Opelika, Auburn, Lee County, and East Alabama. The site targets local residents and community members, offering both free content and subscription-based digital and print editions. The business model relies heavily on advertising revenue supplemented by subscription services. The website is professionally designed with consistent branding and good content quality, supported by a modern CMS platform (BLOX) and a robust advertising ecosystem integrating multiple ad networks and tracking technologies. Privacy compliance is addressed through the use of Osano consent management, indicating GDPR adherence.

Henry Schein, Inc. is a well-established global distributor of medical and dental supplies, serving healthcare professionals with a broad portfolio of products and services. The company holds a strong market position as a Fortune 500 enterprise with a history dating back to 1932. Their website reflects a professional and consistent brand image targeting dental and medical professionals, offering solutions ranging from supplies to practice management software and educational resources. Technically, the site is built on a Microsoft IIS and ASP.NET stack, leveraging multiple third-party marketing and analytics tools, with moderate performance and good mobile optimization. However, the SSL certificate is invalid or missing, which significantly impacts the security posture. While security headers and content security policies are implemented, the lack of valid HTTPS and modern TLS protocols is a critical vulnerability. Privacy compliance is basic, with no visible cookie consent mechanism or GDPR indicators, and no public security or incident response policies. Overall, the website is functional and credible but requires urgent improvements in SSL configuration and privacy compliance to enhance trust and security.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 25 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

American International School Vienna

ais.at

0

The American International School Vienna (AIS Vienna) is a well-established international educational institution located in Vienna, Austria. The website presents a comprehensive overview of the school's offerings, including early childhood through high school education, student life, admissions, and community engagement. The school holds multiple international accreditations, reinforcing its credibility and commitment to quality education. The website is professionally designed using the Squarespace platform, featuring clear navigation, active social media integration, and basic privacy compliance mechanisms such as a cookie consent banner. Technically, the site leverages modern web technologies including jQuery, Google Fonts, and Google Analytics for tracking. However, a critical security shortfall is the absence of a valid SSL certificate, resulting in no HTTPS encryption and disabled modern TLS protocols. This significantly impacts the site's security posture and user trust. Security headers are partially implemented but could be enhanced. Privacy compliance is basic, with a privacy policy present but lacking explicit GDPR compliance indicators. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include installing a valid SSL certificate, enabling HSTS, and improving security policies and incident response readiness.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

aceconsulting.fi

aceconsulting.fi

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.