Security Directory

S

Sphera Solutions, Inc.

thinkstep.com

0

Sphera Solutions, Inc. is a leading provider of enterprise sustainability management software, data, and consulting services, targeting large enterprises across multiple industries globally. The company offers a comprehensive platform, SpheraCloud, that integrates sustainability, operational risk, and EHS management to help organizations meet regulatory and strategic goals. The website demonstrates a high level of digital maturity with modern technologies, multilingual support, and rich content including case studies, events, and resources. However, a critical security issue is the invalid SSL certificate, which undermines secure communications and trust. The presence of strong privacy and cookie policies with consent mechanisms indicates good compliance posture. Overall, the company is well-positioned in the market with strong branding and trust indicators but should urgently address SSL and related security configurations.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 29 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 27 security findings identified across all modules.

B

BWF Offermann, Waldenfels & Co. KG

bwf-group.com

0

BWF Offermann, Waldenfels & Co. KG operates the BWF Group, a mature and internationally recognized family-owned manufacturing business specializing in industrial filters, wool felts, technical needle felts, and plastic profiles. With 1,800 employees and 16 production sites worldwide, the company holds a strong market position as a technology leader in its sectors. The website reflects a professional and comprehensive presentation of their business, subsidiaries, and product offerings, targeting industrial clients globally. Technically, the site is built on TYPO3 CMS with modern JavaScript and PHP backend, but lacks critical HTTPS security, which significantly impacts its security posture. The presence of SPF and DMARC records indicates attention to email security, while social media and sustainability statements enhance trust and transparency. Overall, the site is content-rich and well-structured but requires urgent security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

AASupplies e.U

aa-supplies.eu

0

AASupplies e.U is a Vienna-based company specializing in the sale and logistics of premium used warehousing equipment, forklifts, generators, and material handling machinery. The company targets businesses primarily in Europe and the Middle East, offering access to a large inventory and comprehensive transport services. Their multilingual team and European supplier network position them as a reliable B2B provider in the transportation sector. Technically, the website is built on WordPress with modern plugins such as WooCommerce, Elementor, and Gravity Forms, but lacks a valid SSL certificate, which is a critical security gap. The site includes GDPR-compliant cookie consent and privacy policies, reflecting good privacy practices. However, the absence of HTTPS and some security headers reduces the overall security posture. The business information is transparent and consistent with WHOIS data, enhancing credibility. Strategic improvements in SSL deployment and security policy publication are recommended to strengthen trust and compliance.

Walstead Leykam Druck GmbH is a prominent European printing company specializing in roll offset printing with a strong market presence in Austria and neighboring countries. The company offers a wide range of print products and services, supported by a large workforce and significant annual revenue. The website is built on TYPO3 CMS and uses several JavaScript libraries for UI enhancements. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. While security headers are properly configured, the lack of HTTPS and cookie consent mechanisms are notable compliance gaps. Business information is comprehensive and trustworthy, supported by multiple certifications and awards. Overall, the website provides good content and user experience but requires urgent security improvements.

D

Dialogschmiede

dialogschmiede.com

0

Dialogschmiede is an Austrian marketing agency specializing in marketing automation, data-driven campaigning, and dialog marketing services. The website positions the company as a leading dialog agency in Austria, targeting businesses seeking advanced marketing automation solutions. The technical infrastructure is based on WordPress with Elementor and several plugins, hosted on Microsoft Online infrastructure. However, the website suffers from significant security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. Additionally, the site lacks essential privacy and cookie policies, as well as contact information, which affects compliance and user trust. Performance is poor with a very slow load time and a large page size, indicating potential optimization needs.

Jimmy Choo's official website serves as a high-end e-commerce platform offering luxury shoes, bags, accessories, and beauty products for men and women globally. The site demonstrates a strong brand presence with comprehensive content, clear navigation, and extensive marketing integrations. The technical infrastructure leverages Salesforce Commerce Cloud, Cloudflare CDN, and multiple marketing and analytics tools, indicating a mature digital ecosystem. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, exposing users to potential risks and undermining trust. Privacy and cookie policies are well implemented, reflecting compliance with GDPR and other regulations. Overall, the site is professional and trustworthy but requires urgent remediation of its SSL configuration to ensure secure user interactions.

M

Memorial Healthcare System

mhs.net

0

Memorial Healthcare System is a well-established nonprofit healthcare provider based in South Florida, offering a wide range of medical services including cancer care, heart and vascular treatment, maternity, mental health, and rehabilitation. The organization targets both patients and medical professionals, positioning itself as a leader in the regional healthcare market with multiple accreditations and a strong community presence. The website reflects a professional and comprehensive digital presence with clear navigation, rich content, and consistent branding. Technically, the site is hosted on Microsoft Azure using ASP.NET and integrates modern web technologies and analytics tools such as Google Tag Manager and Azure Application Insights. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate and HTTPS support, exposing users to potential risks. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. Overall, the site demonstrates high business credibility but requires urgent security improvements to protect user data and maintain trust.

W

Ward Howell International

ward-howell.com

0

Ward Howell International is a globally recognized executive search firm, established in 1951, offering a broad range of leadership and talent management services. The company positions itself as a premier strategic partner for organizations seeking transformative leaders, with a strong global presence and diverse industry coverage. Their website reflects a professional and content-rich platform targeting organizations in need of executive search and leadership advisory services. Technically, the site is built on WordPress with modern plugins and integrations, including interactive maps and advanced search capabilities. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the site's security posture. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of explicit contact emails and phone numbers limits direct communication channels. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

C

CAE Inc.

cae.com

0

CAE Inc. is a leading global provider of training and simulation solutions primarily serving the civil aviation, defense and security, and healthcare sectors. The company operates an enterprise-scale business model with a strong market position supported by a comprehensive portfolio of training services, simulation equipment, and software solutions. CAE targets aviation professionals, defense organizations, and business partners worldwide, leveraging a well-established brand and extensive global presence. The website reflects a mature digital infrastructure with modern JavaScript frameworks and Cloudflare hosting, although it lacks a valid SSL certificate, which is a critical security gap. Privacy compliance is robust, with clear cookie and privacy policies and consent mechanisms implemented via OneTrust. The security posture is moderate but impaired by the absence of HTTPS and incomplete SSL/TLS configurations. Overall, CAE presents a professional and trustworthy online presence with room for security improvements to align with best practices.

Steigenberger Hotels GmbH operates within the hospitality industry under the parent company H World International. The website focuses on career opportunities across various job levels including internships, entry-level, and experienced professionals. It highlights the company's brand portfolio and employee benefits, targeting job seekers interested in hospitality careers. The company maintains a consistent brand presence with multiple subsidiary hotel brands and a clear corporate structure. Technically, the website uses common web technologies such as jQuery and Parsley.js for form validation and AJAX submissions. Hosting is provided via Amazon AWS infrastructure. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance data is unavailable, but the site structure and content indicate a professional implementation. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to potential risks. While some security headers are present, critical TLS protocols and cipher suites are missing. Privacy compliance is partial; a privacy policy and terms of service exist, but no cookie consent mechanism or incident response information is found. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional in content and design but requires urgent security improvements to protect user data and comply with modern standards. Strategic enhancements in SSL deployment, privacy mechanisms, and security best practices are recommended to strengthen trust and compliance.

F

Firma

firma.es

0

Firma is a medium-sized innovation and branding agency based in Spain, serving visionary founders and business leaders with a comprehensive suite of branding services including insights, strategy, creative, and experience design. The company is positioned as a premium agency with notable clients such as Volkswagen and Typeform, and holds B Corp and Climate Neutral certifications, reinforcing its commitment to sustainability and social responsibility. Technically, the website is built on Webflow CMS, leveraging modern JavaScript libraries like GSAP and Lenis for smooth animations and user experience enhancements. Analytics are implemented via Google Tag Manager and Microsoft Clarity, indicating a moderate level of user tracking and data collection. However, the website currently lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security vulnerability that undermines user trust and data protection. DNS security features such as DNSSEC and CAA records are also absent, representing further areas for improvement. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, supporting GDPR adherence. Overall, the website is professionally designed and content-rich but requires urgent security upgrades to meet modern standards.

C

Comunica PR Assessoria de Imprensa

comunicapr.com

0

Comunica PR Assessoria de Imprensa is a small Brazilian public relations and digital marketing agency specializing in press advisory, social media management, influencer marketing, and media kit production. The company targets businesses in Brazil seeking personalized communication solutions to enhance their brand presence. The website is built on the Wix platform, utilizing modern technologies such as React 18 and Wix's proprietary components, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and serving the site over HTTP only is a significant security concern. While basic security headers like HSTS and X-Content-Type-Options are present, the lack of HTTPS reduces the overall security posture. The site includes Google Ads and Analytics for marketing and tracking, with a cookie consent mechanism in place, but lacks an explicit privacy policy and terms of service, which are important for compliance. Contact information is clearly provided, including company emails, phone numbers, and a physical address, supporting business credibility. Overall, the site is professionally designed with good content relevance and navigation but requires urgent security improvements to protect user data and enhance trust.

Analog Devices, Inc. is a global leader specializing in the design and manufacturing of analog, mixed signal, and digital signal processing integrated circuits. The company serves a broad range of industries including aerospace, automotive, communications, consumer electronics, energy, industrial automation, and healthcare. Their website reflects a mature enterprise with a comprehensive portfolio aimed at engineers and technical professionals. The site is well-structured, mobile-optimized, and rich in multimedia content, demonstrating a high level of digital maturity and professional branding consistency. Technically, the website leverages modern web technologies such as JavaScript frameworks, Adobe Dynamic Tag Manager, and is hosted on Akamai's CDN, ensuring good performance and scalability. The use of structured data (JSON-LD) enhances SEO and provides clear business information. However, the SSL/TLS configuration is critically flawed with an invalid or missing certificate and no support for modern TLS protocols, which significantly undermines the site's security posture. Security headers are properly implemented, including HSTS and Content Security Policy, but the lack of a valid SSL certificate and absence of OCSP stapling and session resumption mechanisms indicate areas needing urgent remediation. Privacy compliance is weak, with no visible privacy or cookie policies and no explicit GDPR compliance indicators. Contact information such as emails and phone numbers are not explicitly provided in the analyzed content, which may affect user trust and compliance. Overall, the website presents a professional and trustworthy business front but requires immediate attention to its SSL/TLS security configuration and privacy compliance to mitigate risks and enhance user trust. Strategic improvements in these areas will strengthen the company's digital security posture and regulatory adherence.

The website jumptomorrow.com is currently inaccessible, serving an HTTP 403 Forbidden error page that blocks access to any meaningful content. The site lacks a valid SSL certificate, resulting in no HTTPS support, which severely impacts its security posture. No metadata, structured data, or business-related content is available to assess the company's operations, market position, or services. The DNS records are standard and indicate a registered domain with mail exchange and name servers configured, but no DNSSEC or CAA records are present. Overall, the technical infrastructure appears minimal and outdated, with no modern security or privacy practices implemented. This results in a low trust and credibility score for the website.

S

Semantic Web Company

semantic-web.at

0

Semantic Web Company is a technology provider specializing in semantic AI solutions, headquartered in Austria with subsidiaries in the US and UK. They offer the PoolParty Semantic Suite, a leading graph-based platform for text mining, recommender systems, and data fabric solutions, targeting enterprises seeking advanced AI-driven knowledge management. The website is professionally designed with comprehensive content and clear navigation, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security shortfall that undermines trust and data protection. The technical stack is modern, leveraging WordPress with Elementor and various JavaScript libraries, but performance data is lacking, indicating potential optimization opportunities. Privacy compliance is addressed with visible cookie consent and a detailed privacy policy, though analytics tracking is minimally configured. Overall, the business credibility is strong, supported by consistent branding and active social media engagement, but security posture requires urgent improvement to meet industry standards.

C

CONFIDA Steiermark Steuerberatung GmbH

confida.at

0

CONFIDA Steiermark Steuerberatung GmbH is a professional tax advisory and auditing firm with a strong regional presence in Austria and Southeast Europe, including Croatia, Serbia, and Slovenia. The company offers a broad range of services such as tax consulting, auditing, corporate consulting, payroll accounting, and controlling. Their market position is that of an established medium-sized firm with multiple subsidiaries and offices, targeting businesses and individuals requiring financial and tax services. The website reflects a professional business model focused on client service and regional expertise. Technically, the website is hosted on an nginx server with DNS managed by net4you.net and uses Matomo analytics for privacy-conscious user tracking. The site employs modern web technologies including SVG graphics and JavaScript modules, and it is optimized for mobile devices with good accessibility and SEO practices. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability impacting user trust and data protection. While some security headers are present, the absence of TLS protocols and OCSP stapling reduces the overall security posture. Privacy policies and cookie consent mechanisms are implemented, indicating compliance with GDPR requirements, but no explicit security policy or incident response information is provided. Overall, the website is professionally designed and content-rich, supporting the company's credibility and trustworthiness. The main risk lies in the missing SSL/TLS configuration, which should be addressed urgently to protect users and improve the security score. Strategic recommendations include implementing HTTPS, enhancing SSL configuration, and adding security and incident response documentation to strengthen compliance and trust.

zeb.rolfes.schierenbeck.associates gmbh is a leading European strategy, management, and IT consulting firm specializing in the financial services industry. The company offers a broad range of consulting services including transformation, regulatory compliance, and corporate education, targeting banks, insurance companies, and financial technology specialists. Their market position is strong within Europe, supported by multiple subsidiary domains and partner sites across key financial markets. The website is professionally designed with excellent content quality and clear navigation, supporting a positive user experience and strong brand consistency. Technically, the website is built on Drupal 11 with modern frameworks such as Bootstrap and integrates analytics tools like Matomo and Google Tag Manager. Accessibility features and cookie consent mechanisms are implemented, reflecting good digital maturity. However, the website suffers from critical security issues due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts the security posture and overall trustworthiness. Security headers are well configured, but the lack of TLS protocols and OCSP stapling are notable vulnerabilities. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR adherence. The company maintains active social media channels and provides clear contact information, enhancing business credibility. Overall, while the business and content aspects are excellent, urgent improvements in SSL/TLS configuration are necessary to elevate the security posture and user trust.

D

Dr. Isabella Eberl

notarin-eberl.at

0

The website represents a small professional notary office led by Dr. Isabella Eberl located in Taxenbach, Salzburg-Land, Austria. It offers a broad range of notarial services including testament and inheritance law, real estate transactions, family law, and corporate legal services. The site is well-structured with clear service descriptions and contact information, targeting private individuals and businesses in the local region. Technically, the site uses a Mono CMS platform with various external scripts for fonts, tracking, and consent management. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. Privacy and cookie policies are present with a consent mechanism, but no terms of service or explicit security policies are found. The site uses Google Analytics and Herold Tracker for analytics and marketing purposes. Overall, the site is professional but requires urgent security improvements to protect user data and enhance trust.

Takeda Pharma A/S, a subsidiary of Japan's largest pharmaceutical company, operates a comprehensive and professionally designed Danish website that reflects its global presence and commitment to healthcare innovation. The company focuses on developing and providing innovative pharmaceutical solutions, emphasizing patient access and collaboration with healthcare partners. The website demonstrates strong digital maturity with modern technologies like Next.js and React, hosted on Cloudflare and Vercel, and integrates privacy and cookie compliance mechanisms effectively. However, a critical security gap exists due to the absence of a valid SSL certificate, which undermines the site's security posture. While security headers and best practices are partially implemented, the lack of HTTPS significantly impacts the overall security score. The site provides clear contact information, social media links, and extensive business information, reinforcing its credibility. Strategic recommendations include immediate SSL certificate renewal, full HSTS implementation, and enhanced security policy disclosures to improve trust and compliance.

The Würth Group is a globally established enterprise specializing in the development, manufacturing, and distribution of assembly and fastening materials. With over 400 companies in 80 countries and more than 2,800 branches, it holds a world market leader position in its core business. The website reflects a mature digital presence with consistent branding and comprehensive corporate information primarily targeting industrial and business clients. Technically, the site employs modern web technologies including Bootstrap, jQuery, and the FirstSpirit CMS, ensuring good mobile optimization and user experience. However, a critical security deficiency is the absence of a valid SSL certificate and enabled TLS protocols, severely impacting the site's security posture. Privacy and cookie policies are present and GDPR compliant, indicating attention to data protection regulations. Overall, the site is professional and credible but requires urgent remediation of its SSL/TLS configuration to ensure secure communications and maintain trust.

M

MASSIVE ART WebServices GmbH

massiveart.at

0

MASSIVE ART WebServices GmbH is a full-service digital agency based in Austria, specializing in digital strategy, website and portal development, e-commerce solutions, performance marketing, data analytics, mobile apps, and UI/UX design. The company targets B2B clients, particularly industry leaders and established businesses seeking sustainable digital transformation. With a strong market position supported by long-term partnerships and recognized certifications such as Google Partner and HubSpot Gold Partner, MASSIVE ART demonstrates a reputable presence in the technology sector. The website employs modern web technologies including nginx, Google Tag Manager, Matomo Analytics, and HubSpot forms, with advanced SVG animations enhancing user experience. The site is mobile-optimized and exhibits excellent design quality and navigation clarity. However, performance is currently slow, and the SSL/TLS configuration is inadequate, lacking a valid certificate and modern protocol support. Security posture is basic, with essential security headers present but critical issues such as an invalid SSL certificate and absence of TLS protocols significantly lowering the security score. Privacy compliance is good, with a comprehensive privacy policy and GDPR adherence, though no explicit cookie consent mechanism was detected. Contact information is clearly provided across multiple office locations, enhancing business credibility. Overall, MASSIVE ART's digital presence is professional and trustworthy, but immediate improvements in SSL/TLS security are recommended to enhance user trust and comply with best security practices.

Marriott Hotels is a globally recognized hospitality brand offering a wide range of hotel and resort accommodations, loyalty rewards, and premium guest experiences. The website reflects a mature digital presence with professional design, rich content, and integration of modern technologies such as React, Brightcove video, and Adobe DTM for analytics and marketing. However, the site currently lacks a valid SSL certificate, which is a critical security flaw that undermines user trust and data protection. Privacy and terms of use policies are present and comprehensive, supporting GDPR compliance. Overall, the business is well-established with consistent branding and a strong market position, but the technical security posture requires urgent improvement to meet industry standards.

E

Endress+Hauser AG

endress.com

0

Endress+Hauser AG is a global leader in industrial measurement instrumentation and automation solutions, serving diverse sectors including energy, chemical, life sciences, water treatment, and oil & gas. The company offers a comprehensive portfolio of products and services, including flow, level, liquid analysis, optical analysis, pressure, and temperature measurement devices, alongside software and system products. Their website reflects a mature digital presence with extensive product information, customer support, and training resources, targeting industrial process engineers and related professionals worldwide. Technically, the website employs modern web technologies such as JavaScript, CSS, JSON-LD structured data, and utilizes Tealium for analytics and tag management. The site is hosted on reliable infrastructure, likely Amazon AWS, and demonstrates good mobile optimization, accessibility, and SEO practices. However, performance metrics indicate slow loading times, which may impact user experience. From a security perspective, the site has critical deficiencies: it lacks a valid SSL certificate and does not enable HTTPS or modern TLS protocols, severely impacting its security posture. While some security headers are present, the absence of proper SSL/TLS configuration is a major risk. Privacy and cookie policies are well implemented with consent mechanisms, and contact information is clearly provided, enhancing trust. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and maintain trust. Strategic recommendations include immediate SSL certificate installation, enabling HTTPS and modern TLS versions, and enhancing security headers and session management. These steps will significantly improve the site's security score and user confidence.

W

Westcam - The Know-WOW Company

westcam.at

0

Westcam - The Know-WOW Company is a well-established Austrian technology and manufacturing solutions provider founded in 1990. The company offers a comprehensive portfolio of services and products including CAD design, CAM programming, 3D printing, 3D metrology, PDM/MES systems, mechatronics, robotics, and industrial image processing. Their market position is strong in the regional industrial sector, supported by their Autodesk Gold Partner status and ISO 9001:2015 certification. The website demonstrates a high level of digital maturity with a modern WordPress-based infrastructure, multilingual support, and integrated marketing and analytics tools. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, which significantly impacts their security posture. Privacy compliance is well addressed with explicit cookie consent mechanisms and a comprehensive privacy policy. Overall, the business presents itself professionally with clear contact information and strong trust indicators.

Urban Outfitters is a large retail company specializing in lifestyle apparel and home decor targeting young adults. The website is protected by a PerimeterX Web Application Firewall (WAF) which presents a CAPTCHA challenge, blocking direct access to content and preventing detailed content and policy analysis. The technical infrastructure includes nginx server hosting and DNS managed via Google Cloud DNS. However, the SSL/TLS configuration is currently invalid or missing, resulting in no HTTPS availability and exposing the site to security risks. DNS and MX records indicate legitimate email infrastructure consistent with the retail business. Overall, the security posture is weak due to lack of HTTPS and missing security headers, and privacy compliance information is not accessible due to the WAF block. The domain registration data is consistent and legitimate, supporting the business credibility. Strategic improvements in SSL deployment and security header implementation are critical.

ChargePoint, Inc. operates the be.ENERGISED platform, a modular SaaS solution designed to support businesses in building and expanding electric vehicle (EV) charging services. The website targets enterprises, fleet operators, partners, and EV drivers primarily in Germany and Europe, offering comprehensive services including charge point operation, software integration, billing, roaming, and white-label solutions. The company holds a strong market position with significant penetration among Fortune 50 companies and a large active charging network. Technically, the site is built on Drupal 10 and hosted on Pantheon, with integrations such as Google Tag Manager and Google Maps API enhancing functionality. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, despite the presence of some security headers and GDPR-compliant privacy and cookie policies. Overall, the site demonstrates high content quality and business credibility but requires urgent improvements in security infrastructure to protect user data and maintain trust.

W

Wellspect HealthCare

wellspect.com

0

Wellspect HealthCare is a global MedTech company specializing in continence care solutions, supporting individuals with urinary and bowel dysfunction through innovative products and educational resources. The company holds a strong market position with over 40 years of industry experience and operates under the parent company Dentsply Sirona. Their website reflects a professional and consistent brand image targeting carers, specialists, and new users in continence care. Technically, the website employs modern analytics and marketing tools such as Microsoft Application Insights, Google Tag Manager, and Salesforce Lightning, hosted behind Cloudflare. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security flaw, severely impacting the site's security posture. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism despite active tracking scripts. Overall, the website offers excellent content quality and user experience but requires urgent security improvements to protect user data and enhance trust.

T

Tractive

tractive.com

0

Tractive is a leading global provider of GPS and health monitoring trackers for pets, specializing in real-time location tracking and wellness insights for dogs and cats. The company operates a robust e-commerce platform offering subscription-based services that enable worldwide cellular connectivity for their devices. Their market position is strong, supported by extensive customer testimonials, high Trustpilot ratings, and a broad international presence with multi-language support. Technically, the website leverages modern web technologies including nginx, Amazon AWS infrastructure, CloudFront CDN, and advanced JavaScript frameworks. They utilize performance monitoring and A/B testing tools such as New Relic and Visual Website Optimizer, indicating a mature digital infrastructure. The site is well-optimized for mobile devices and accessibility, with good SEO practices. From a security perspective, while the site implements several important security headers and policies, it suffers from a critical issue: the SSL certificate is invalid or missing, and no TLS protocols are enabled. This severely impacts the security posture and user trust. Other security best practices like HSTS and CSP are in place, but the lack of proper HTTPS is a major vulnerability. Overall, the risk assessment highlights the need for immediate remediation of SSL/TLS issues to protect user data and maintain trust. Strategic recommendations include fixing the SSL certificate, enabling modern TLS versions, and improving session security. The business credibility is high, but security gaps could undermine customer confidence if not addressed promptly.

W

WIFI Österreich

wifi.at

0

WIFI Österreich is a prominent educational institution in Austria, offering a vast range of courses, seminars, and professional training programs across multiple sectors including academic education, business, health, IT, and management. It serves a broad audience including individuals seeking career advancement, apprentices, and corporate clients. The website reflects a well-structured, content-rich platform with excellent design and navigation, supporting both in-person and online learning modalities. Technically, the site uses standard web technologies like jQuery and lazy loading but lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Security headers and advanced SSL features are missing, indicating room for improvement in security posture. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the domain and business information are consistent and trustworthy, aligned with the parent organization Wirtschaftskammer Österreich. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and security.

C

connex.cc IT-Consulting GmbH

connex.cc

0

connex.cc IT-Consulting GmbH is a well-established Austrian IT consulting firm specializing in the public sector, with over two decades of experience. The company operates as a subsidiary of xrxes.cc Holding GmbH and offers a range of services including IT consulting, business analysis, test management, project management, and project assistance. The website is professionally designed, content-rich, and targets public sector organizations in Austria. Technically, the site is built on WordPress using Elementor and Astra theme, with modern plugins enhancing user experience. However, a critical security weakness is the lack of a valid SSL certificate and proper HTTPS configuration, which significantly impacts the security posture. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and a consent mechanism. Contact information is clearly provided, enhancing business credibility.

iteratec GmbH is a medium-sized, established software development company founded in 1996, with multiple offices across Germany, Austria, and Poland. The company specializes in digital transformation, AI and data analytics, IT security, and sustainable technology solutions, targeting enterprises in automotive, energy, and logistics sectors. Their website reflects a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern web technologies. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts their security posture. Privacy and cookie policies are well implemented with consent mechanisms, indicating good compliance with GDPR. Overall, the company demonstrates strong business credibility and digital maturity but must urgently address its SSL/TLS configuration to improve security and trust.

H

HK/Danmark

hk.dk

0

HK/Danmark is a well-established Danish trade union and unemployment insurance provider, founded in 1900, serving a large membership base with comprehensive services including career guidance, legal advice, and member benefits. The website is professionally designed, content-rich, and targets employees, students, and job seekers in Denmark. Technically, the site uses modern web technologies such as ASP.NET, jQuery, and integrates analytics and chat services, but suffers from a critical security issue due to the absence of a valid SSL certificate, which undermines its HTTPS security posture despite having HSTS headers configured. Privacy and cookie policies are present and indicate GDPR compliance, with clear contact information and trust signals like Trustpilot integration enhancing business credibility. Overall, the site is highly professional but requires urgent security improvements to ensure user trust and data protection.

C

Communi5

communi5.com

0

Communi5 is a medium-sized Austrian software manufacturer specializing in communications solutions for service providers, focusing on UCaaS and Cloud PBX offerings. The company demonstrates a mature market position with a future-oriented approach, integrating modern collaboration tools such as MS Teams. The website reflects a professional and consistent brand image with comprehensive content targeting service providers and business customers. Technically, the site is built on WordPress with Elementor and uses modern UI components like Smart Slider 3, but lacks a valid SSL certificate and modern TLS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. However, the absence of explicit security policies and incident response information is noted. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

SPGPrints is a well-established global company specializing in textile and industrial printing solutions, with a strong focus on rotary screen and digital textile printing technologies. The company offers a comprehensive range of products including printing machines, consumables, and services, targeting businesses in textile, label, healthcare, and printed electronics sectors. Their market position is supported by decades of experience, numerous patents, and a global presence. Technically, the website is built on HubSpot CMS and leverages modern web technologies and marketing tools, but lacks a valid SSL certificate, which is a significant security concern. The security posture is basic with some security headers present but critical gaps in SSL/TLS configuration and privacy compliance. Overall, the website is professional and content-rich but requires urgent improvements in security and privacy compliance to enhance trust and protect user data.

K

Kolibri

kolibri.is

0

Kolibri is a small Icelandic digital design and development agency offering comprehensive services including web and app solutions, product development, and optimization. The company presents a professional portfolio showcasing notable projects, targeting businesses and organizations seeking digital transformation. The website is built on modern web technologies such as Webflow and uses Cloudflare for hosting and CDN services, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate is a critical security flaw that undermines user trust and data protection. Additionally, the lack of privacy and cookie policies suggests compliance gaps with GDPR and related regulations. Overall, while the business demonstrates professionalism and a clear market position, urgent improvements in security and privacy compliance are necessary to enhance trust and protect users.

The website dondusang.net represents the official French public blood service, Etablissement français du sang (EFS). It provides comprehensive information and services related to blood, plasma, and platelet donations across France. The site is well-branded, content-rich, and targets donors, associations, and the general public with clear calls to action and partner engagement. Technically, the site is built on Drupal CMS, uses modern tracking and analytics tools, and integrates multiple partner domains. However, it lacks HTTPS support, which is a critical security flaw exposing users to risks. Security headers are well configured but cannot compensate for the absence of SSL/TLS. Privacy policies and cookie consent mechanisms are present and GDPR compliant. Overall, the site demonstrates a high level of professionalism and trustworthiness but requires urgent security improvements.

The website for kerstin-schleicher.de currently serves as a placeholder or customer menu page for Lind & Quittek GmbH, a small company based in Mannheim, Germany. The site content is minimal and displays a message indicating the requested domain could not be found on the server, suggesting the domain is not actively hosting business content or services. The technical infrastructure includes common JavaScript libraries and the Bulma CSS framework, but lacks a valid SSL/TLS certificate and modern HTTPS configuration, which significantly impacts security and trustworthiness. Security headers are present but insufficient without proper SSL. No privacy, cookie, or terms of service policies are found, indicating poor compliance with privacy regulations. Overall, the website's digital maturity is low, with poor content quality and minimal user engagement features.

S

Smartly.io Solutions Oy

smartly.io

0

Smartly.io Solutions Oy operates a mature, enterprise-grade AI advertising platform focused on creative, media, and intelligence suites to optimize cross-channel advertising performance. The company is well-positioned in the technology sector with a strong market presence, supported by industry certifications and a comprehensive digital marketing infrastructure. The website is professionally designed, content-rich, and targets advertising professionals and teams seeking AI-powered campaign automation and insights. Technically, the site leverages modern web technologies including Webflow CMS, Marketo forms, and multiple analytics and tracking tools, hosted via Cloudflare CDN. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, significantly impacting the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business credibility is high, but urgent remediation of SSL/TLS issues is recommended to ensure secure user interactions and trust.