Security Directory

R

Retronic Vertriebs GmbH

retronic.de

0

Retronic Vertriebs GmbH is an established German distributor specializing in electronic components, serving various industries including technology and transportation. With over 25 years of experience and TÜV ISO 9001:2015 certification, the company emphasizes long-term partnerships with manufacturers and offers tailored solutions for its clients. The website reflects a professional business model focused on reliability and technical orientation. Technically, the website is built on a modern WordPress platform using PHP 8.4.8 and Elementor for design. It incorporates SEO best practices via Yoast SEO and employs performance optimization tools like WP Rocket. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a significant security shortfall. Mobile optimization and accessibility are adequate, and cookie consent mechanisms comply with GDPR requirements. From a security perspective, the absence of HTTPS and TLS protocols severely undermines the site's security posture, exposing users to potential data interception risks. While cookie consent and privacy policies are well implemented, the site should urgently address SSL/TLS configuration to protect user data and improve trustworthiness. No incident response or vulnerability disclosure policies are evident. Overall, the site is functional and professional but requires critical security improvements. Strategic recommendations include immediate SSL certificate deployment, enabling modern TLS protocols, and enhancing security headers. These steps will elevate the site's security, compliance, and user trust, aligning with its reputable business standing.

A

APILayer

apilayer.net

0

APILayer is a mature and reputable API marketplace founded in 2015, offering a wide range of APIs across multiple categories such as finance, geolocation, marketing, and developer tools. The platform targets developers and engineering teams seeking scalable, easy-to-integrate API solutions. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, the site uses modern web technologies including OAuth for authentication, Google Tag Manager for analytics, and Cloudflare for CDN and security headers. However, a critical security issue is the absence of a valid SSL certificate and proper HTTPS configuration, which severely impacts the security posture and trustworthiness of the site. Privacy and legal policies are comprehensive and hosted on the parent company domain, indicating corporate governance. Social media presence and client testimonials add to the trust signals. Overall, while the business and content aspects are strong, the security configuration requires urgent remediation to ensure safe user interactions and compliance.

M

moodley design group

moodley.at

0

Moodley design group is a medium-sized, Austria-based consultancy specializing in brand and business transformation through strategy, design, and technology services. The company targets businesses and organizations seeking to accelerate their brand transformation and growth, especially in challenging times. Their market position is that of an established design and strategy consultancy with an international presence, offering services including brand transformation, product design, and digital product and service design. The website content is professionally crafted, with clear navigation and strong branding consistency, targeting a professional audience. Technically, the website is built on a modern stack including nginx, JavaScript, Vimeo embeds, and uses Usercentrics for consent management and Google Tag Manager for analytics. The CMS appears to be Statamic. However, performance metrics are missing, and the site lacks HTTPS, which is a critical security shortfall. Mobile optimization and SEO are good, but accessibility is basic. From a security perspective, the absence of a valid SSL certificate and HTTPS is a major vulnerability, exposing users to risks. No advanced security headers or policies are implemented, and no incident response or vulnerability disclosure information is available. Cookie consent and privacy policies are present and GDPR compliant, indicating good privacy practices. Overall, the website is professional and trustworthy in business presentation but requires urgent security improvements, especially enabling HTTPS and enhancing security headers, to protect users and improve trustworthiness. Strategic recommendations include immediate SSL installation, security header implementation, and enhanced incident response transparency.

L

Light for the world INTERNATIONAL

light-for-the-world.org

0

Light for the World International is a well-established non-profit organization founded in 2004, focused on disability rights and eye health globally. The organization operates multiple country-specific websites, indicating a broad international presence and a strong commitment to inclusive education, economic empowerment, and humanitarian action. Their website content is rich, professionally designed, and regularly updated, targeting individuals and organizations interested in disability inclusion and health advocacy. Technically, the website is built on WordPress with modern SEO plugins and accessibility features, providing a good user experience and mobile optimization. However, the hosting environment lacks a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Other security headers and best practices are partially implemented but require improvement. The security posture is currently weak due to missing HTTPS and related configurations, posing risks to user data confidentiality and trust. Privacy compliance is well addressed with GDPR-compliant cookie consent mechanisms and a comprehensive privacy policy. Business credibility is high, supported by transparent WHOIS data, trust seals, and clear contact information. Overall, the website is functional and trustworthy from a business and content perspective but requires urgent security enhancements to protect users and improve trustworthiness. Strategic recommendations include immediate SSL certificate installation, enabling HTTPS, and strengthening security headers and protocols.

The website postserver.com currently serves only a minimal HTML page containing a JavaScript redirect to /lander, with no additional content, metadata, or business information. The domain is registered and resolves to two IP addresses hosted on Amazon AWS infrastructure, but lacks a valid SSL certificate and does not support HTTPS, exposing users to security risks. No privacy, cookie, or terms of service policies are present, and no contact or business details are available on the site. The DNS configuration is basic with no DNSSEC or CAA records, and the SPF record strictly disallows email sending from this domain. Overall, the site appears to be in an early or placeholder state with very limited digital maturity and poor security posture.

The website agentprovocateur.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page, which blocks direct content access. This prevents extraction of meaningful business, privacy, or contact information from the site itself. The domain is mature, registered since 1999, and shows strong domain protection with consistent WHOIS data, indicating a legitimate retail business presence. However, the lack of a valid SSL/TLS certificate and absence of HTTPS severely impacts the security posture and trustworthiness of the site. The technical infrastructure relies on Cloudflare for security and hosting, but the SSL configuration is incomplete or invalid, which is a critical security issue. No privacy policies, cookie consent mechanisms, or terms of service were found in the accessible content, limiting compliance assessment. Overall, the site’s security posture is weak due to missing HTTPS, and content quality cannot be evaluated due to blocking. Strategic improvements in SSL deployment and content accessibility are essential for better security and user trust.

Suomen Euromaster Oy operates a comprehensive automotive service website focused on tire sales, installation, and vehicle maintenance services across Finland. The company serves both individual consumers and business clients with a wide network of over 80 service points. The website is professionally designed, localized primarily in Finnish, and integrates modern web technologies and marketing tools. However, the site suffers from a critical security flaw due to an invalid SSL certificate and lack of TLS protocol support, which significantly impacts its security posture. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, supporting business credibility. The domain registration data aligns well with the business claims, indicating legitimacy.

P

Paris Lodron Universität Salzburg

uni-salzburg.at

0

Paris Lodron Universität Salzburg is a large, well-established public university in Austria, founded in 1622. It offers a broad range of academic programs across six faculties and serves approximately 18,000 students. The university maintains a strong regional and international research presence and provides extensive student services and community engagement. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding. Technically, the site is built on WordPress with common web technologies such as jQuery and CSS. However, the absence of a valid SSL certificate and HTTPS support is a significant security shortfall, exposing users to potential risks. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. The university demonstrates trustworthiness through certifications and active social media engagement.

I

Informa Connect Australia

informa.com.au

0

Informa Connect Australia is a leading event organiser specializing in conferences, exhibitions, and corporate training services primarily targeting business professionals in Australia. As part of the global Informa PLC group, it holds a strong market position with a large-scale operational footprint. The website reflects a professional business model focused on event management and corporate learning, supported by a consistent brand presence and trust indicators such as testimonials and social media engagement. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies and frameworks, although performance metrics are unavailable. Security posture is weak due to the absence of a valid SSL certificate and HTTPS support, despite the presence of some security headers and Cloudflare protection. Privacy compliance is moderate with clear privacy and cookie policies and consent mechanisms, but lacks explicit GDPR compliance indicators or security policies. Overall, the site is functional and credible but requires urgent improvements in security infrastructure to protect user data and enhance trust.

A

Anaplan Inc

anaplan.com

0

Anaplan Inc operates a mature, enterprise-grade AI-infused scenario planning and connected planning platform targeting large organizations across multiple industries including finance, supply chain, sales, marketing, and HR. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, the site uses Adobe Experience Manager CMS with modern marketing and analytics tools such as Marketo and OneTrust for privacy compliance. However, a critical security issue is the invalid or missing SSL certificate and lack of TLS protocol support, which significantly impacts the security posture score. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy. Business credibility is high, supported by analyst recognitions and a large customer base. Overall, the site is trustworthy but requires urgent remediation of SSL/TLS issues to ensure secure user interactions.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 28 security findings identified across all modules.

S

Swissport International AG

swissport.com

0

Swissport International AG operates as a global leader in airport ground services and air cargo handling, serving 286 airports worldwide. The company offers a broad portfolio of services including passenger services, ramp handling, air cargo services, airport hospitality, and executive aviation. Swissport targets airlines, airport operators, and cargo handlers, positioning itself as a market leader with a comprehensive service offering and a strong global network. The website reflects a professional and consistent brand image with extensive content and media releases supporting its market presence. Technically, the site leverages modern technologies such as Cloudflare CDN, Cookiebot for consent management, Google Tag Manager, and social media integrations, hosted on a CMS platform identified as Ibexa DXP. However, the website's SSL certificate is invalid or missing, which is a critical security concern that impacts the overall security posture. Security headers are well configured, but the lack of valid HTTPS and TLS protocols reduces the security score significantly. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Business credibility is high, supported by trust indicators such as ISO 27001 certification and official social media presence. Overall, the website is functional and professional but requires urgent remediation of SSL/TLS issues to improve security and trust.

A

Ascent

parkside-interactive.com

0

Ascent is a UK-based design-led technology company specializing in data, AI, software, and cloud solutions. With a large team of over 530 professionals, they serve a broad client base across multiple industries including insurance, healthcare, retail, and technology. Their service offerings include data strategy, software engineering, cloud migration, and AI-driven innovation. The website reflects a mature and professional digital presence with comprehensive content, client case studies, and certifications, positioning Ascent as a credible player in the technology consulting market. Technically, the website uses modern frameworks such as Vue.js and Bootstrap and is hosted on Microsoft Azure, but suffers from a critical lack of HTTPS and valid SSL certificates, which significantly impacts security posture. Security headers are partially implemented, but the absence of TLS protocols and SSL undermines trust and user safety. Privacy compliance is moderate with a privacy policy present but no cookie consent mechanism detected. Overall, the site is content-rich and professionally designed but requires urgent security improvements to meet modern standards.

B

Borouge

borouge.com

0

Borouge is a prominent petrochemical company specializing in the production and supply of innovative polyethylene and polypropylene solutions across multiple sectors including energy, infrastructure, healthcare, and agriculture. The company leverages advanced Borealis Borstar® technology to deliver tailored polymer products that meet specific customer needs, emphasizing sustainability and innovation. The website reflects a well-structured digital presence with comprehensive investor relations, media updates, and e-services, targeting industrial clients and stakeholders in the petrochemical industry. Technically, the site is built on Microsoft SharePoint, incorporating modern web technologies and basic mobile optimization. However, a critical security concern is the invalid or missing SSL certificate, which undermines the security posture despite the presence of multiple security headers and policies. Privacy compliance is well addressed with clear cookie and privacy policies, including GDPR adherence. Contact information is transparent and professional, enhancing business credibility. Overall, the website demonstrates a solid business and digital foundation but requires urgent remediation of SSL issues to improve security and trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

Sun Chemical

sunchemical.com

0

Sun Chemical is a globally recognized enterprise manufacturing inks, pigments, and advanced materials serving diverse industrial sectors including packaging, graphics, automotive, electronics, and healthcare. As a member of the DIC Group with over 22,000 employees and a legacy spanning over 200 years, the company holds a strong market position supported by extensive patents and sustainability initiatives. The website reflects a mature digital presence with comprehensive content, professional design, and good SEO practices. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the security posture, exposing users to risks and reducing trust. Security headers are partially implemented but insufficient without proper TLS. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit security or incident response policies are found. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect data and user trust.

P

Pörner Ingenieurgesellschaft mbH

poerner.at

0

Pörner Ingenieurgesellschaft mbH is a well-established independent engineering company specializing in process engineering plant construction, headquartered in Vienna, Austria. With approximately 550 engineers across 10 European locations, the company serves industrial sectors including refineries, petrochemical, chemical, energy, gas, and pharmaceuticals. Pörner is recognized globally for its Biturox® bitumen oxidation technology, having licensed and built over 60 plants worldwide. The website reflects a professional business presence with comprehensive service descriptions and active news updates. Technically, the site is built on TYPO3 CMS with common JavaScript libraries, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS, lack of security headers, and no advanced SSL features. Privacy compliance is strong with a clear cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

Wiener Messe und Congress GmbH

messe.at

0

Wiener Messe und Congress GmbH operates the VIECON – Vienna Congress & Convention Center, a leading event venue in Vienna offering flexible spaces for congresses, exhibitions, and corporate events. The website presents a professional image with comprehensive information about the venue, services, and sustainability initiatives. Technically, the site is built on WordPress with modern plugins and SEO optimizations, but lacks a valid SSL certificate, resulting in an insecure HTTP-only connection. Security headers are present but insufficient without HTTPS. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is credible and well-structured but requires urgent SSL implementation to improve security and trust.

G

Greater Europe Mission

gemission.org

0

Greater Europe Mission is a well-established Christian missions non-profit organization focused on disciple-making and evangelism throughout Europe. The organization has a mature online presence with a professionally designed WordPress website that clearly communicates its mission, values, and ministry areas. The website targets Christian communities, churches, missionaries, and donors interested in European missions. It offers resources, contact options, and donation capabilities to support its mission. Technically, the site uses modern web technologies including WordPress, Beaver Builder, and integrates Google Analytics and Tag Manager for tracking. However, the site lacks a valid SSL certificate and HTTPS support, which is a significant security concern. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site is credible and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

SoftwareOne Österreich GmbH

comparex.at

0

SoftwareOne Österreich GmbH is a leading enterprise software and cloud solutions provider with a strong global presence and local expertise in Austria. The company offers a broad range of services including cloud migration, application modernization, IT asset management, software sourcing, and customer training. Their business model focuses on B2B services, supporting digital transformation initiatives for enterprises across multiple industries. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Vercel, and integrates advanced cookie consent and analytics tools. However, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which poses a significant risk. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates high professionalism and business credibility but requires urgent improvements in SSL/TLS configuration to enhance security.

D

dwarfs and Giants eG

dwarfsandgiants.org

0

dwarfs and Giants eG is a small Austrian cooperative consultancy specializing in organizational development and new work methodologies. Their website, built on Drupal 10, offers comprehensive content including workshops, client stories, and toolboxes aimed at helping organizations improve work culture and self-organization. The site is well-designed, mobile-optimized, and provides clear navigation and professional content. However, the technical infrastructure lacks a valid SSL certificate and does not support modern TLS protocols, significantly weakening the security posture. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Overall, the business presents itself as credible and trustworthy, but the lack of HTTPS is a critical security gap that must be addressed.

F

Fresh Trading Limited

innocentdrinks.co.uk

0

Innocent Drinks, operated by Fresh Trading Limited and owned by The Coca-Cola Company, is a well-established UK-based beverage company specializing in natural and sustainable drinks such as smoothies, juices, and shots. The company positions itself strongly in the retail sector with a focus on sustainability, social responsibility, and B Corp certification, appealing to environmentally and socially conscious consumers. The website reflects this ethos with comprehensive content, clear navigation, and consistent branding. Technically, the site is built on Adobe Experience Manager and hosted on AWS CloudFront, leveraging modern cloud infrastructure and Adobe's marketing and consent management tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, which significantly impacts the site's security posture. Privacy and legal policies are well documented and accessible, indicating good compliance practices. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

H

HEROLD Business Data GmbH

ichbinderherold.at

0

HEROLD Business Data GmbH operates a professional career portal focused on online media and marketing services for Austrian businesses. The company is well positioned as a leading website producer and Google Premium Partner with a strong employer brand. The website content is rich, professionally designed, and targets job seekers and SMEs in Austria. Technically, the site uses Mono CMS and integrates modern tracking and consent management tools but lacks HTTPS, which is a critical security gap. The security posture is weak due to the absence of SSL/TLS encryption and missing security headers. Privacy compliance is good with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Seven Refractories operates as a niche industrial supplier specializing in refractory materials for high temperature and aggressive industrial environments such as steel, iron, and cement production. The website currently serves as a placeholder indicating a forthcoming revised site, with minimal content and no direct contact or policy information. The technical infrastructure is based on WordPress with common plugins and hosted behind Cloudflare, but lacks a valid SSL certificate, which severely impacts security posture. Security headers and best practices are largely absent, exposing the site to potential risks. The absence of privacy and cookie policies, as well as contact details, further reduces trust and compliance standing. Overall, the site is in an early or transitional stage of digital maturity and requires significant improvements in security, content, and compliance to meet industry standards.

D

diego5 studios

diego5studios.com

0

diego5 studios is a medium-sized influencer marketing agency and video content production company based in Austria, founded in 2015. It operates the largest influencer community in Austria and offers comprehensive services including influencer marketing, branded entertainment, workshops, and live events. The company targets brands seeking to engage audiences through digital video content and influencer collaborations. The website reflects a professional and consistent brand presence with good content quality and clear navigation, optimized for mobile users. Technically, the site is built on WordPress using common plugins and jQuery libraries, hosted on servers managed by world4you.at. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. The business demonstrates legitimacy through client logos and active social media channels.

The United Nations Office for Outer Space Affairs (UNOOSA) operates as a key UN entity facilitating international cooperation in peaceful space activities, space law, and capacity building. It serves a global audience including member states, space agencies, academia, and industry. The website reflects a mature and consistent brand aligned with UN standards, offering comprehensive information on space policy, events, and programs. Technically, the site uses a legacy tech stack with Apache, jQuery, and Bootstrap, but suffers from slow performance and basic mobile optimization. Security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, exposing users to risks. Privacy compliance is minimal, lacking cookie consent mechanisms and GDPR indicators. Contact information and social media presence are well established, enhancing business credibility. Overall, the site is authoritative but requires urgent security and privacy improvements.

U

Ulrike Lahrs Steuerberatungskanzlei

kanzleilahrs.de

0

Ulrike Lahrs Steuerberatungskanzlei is a small, local tax consultancy firm based in Twistringen, Germany, specializing in tax advisory, accounting, payroll, and tax declaration services. The website presents a professional and clear business description targeting individuals and businesses seeking tax-related services in the region. The technical infrastructure is based on the IONOS MyWebsite platform, utilizing Apache server and common JavaScript libraries such as jQuery and Cookiebot for cookie consent management. However, the website lacks HTTPS support, which significantly undermines its security posture. Security headers are partially implemented, but the Content Security Policy is in report-only mode and permits unsafe script execution, increasing risk. Privacy compliance is addressed with a GDPR-compliant privacy and cookie policy, but no terms of service or explicit security policies are found. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

C

Ceramiche Atlas Concorde S.p.A.

atlasconcorde.com

0

Atlas Concorde is a well-established Italian manufacturer specializing in ceramic and porcelain tiles for floors, walls, outdoor spaces, furniture, and related products. The company has a mature market presence with 25 years of experience and offers a comprehensive product system including various collections and innovative technologies. The website demonstrates a high level of digital maturity with a modern tech stack based on Next.js and Vercel hosting, providing a professional and user-friendly experience across multiple languages. Security measures are in place with several HTTP security headers configured; however, the absence of a valid SSL certificate and lack of advanced SSL features like OCSP stapling reduce the overall security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website reflects a credible and professional business with a solid online presence.

D

Data Technology Limited

datatechnology.co.uk

0

Data Technology Limited is a UK-based technology consultancy specializing in data strategy, data platforms, analytics, prediction as a service, and cloud modernisation. The company targets organizations seeking to leverage data for business insights and outcomes, positioning itself as a trusted partner with recognized certifications such as Cyber Essentials and ISO QAR. Their website reflects a professional and consistent brand with clear service offerings and client endorsements. Technically, the website is built on the HubSpot CMS platform, hosted via Cloudflare, and employs modern web technologies including Google Analytics 4 and Splide.js for interactive content. The site is mobile-optimized and SEO-friendly, though performance is moderate. Accessibility features are basic but present. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a significant vulnerability. While some security headers are implemented, critical improvements are needed to secure communications and protect user data. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website demonstrates a credible business presence with good content and marketing practices but requires urgent remediation of SSL/TLS issues to enhance security posture and trustworthiness.

Coca-Cola Europacific Partners is a leading enterprise in the manufacturing and distribution of beverages across 31 markets, offering globally recognized brands such as Coca-Cola, Sprite, Fanta, and Monster. The company emphasizes sustainability and value creation for customers and consumers. The website reflects a mature digital presence with comprehensive content, investor relations, and sustainability initiatives. Technically, the site uses modern tools like Google Tag Manager and Cloudflare but lacks a valid SSL certificate and HTTPS, which is a critical security flaw. Security headers are well configured, but the absence of TLS protocols and HSTS reduces the security posture significantly. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to address SSL/TLS issues to improve security and user trust.

C

Capgemini

capgemini-consulting.com

0

Capgemini Invent is a prominent management consultancy brand under the Capgemini group, specializing in innovative consulting services that combine strategy, technology, data science, and design to help businesses transform and grow. The website reflects a mature, enterprise-level digital presence with comprehensive content, strong branding, and a wide range of services targeting C-level executives and large enterprises. Technically, the site is built on WordPress with modern frameworks like React and Bootstrap, indicating a contemporary and scalable infrastructure. However, a critical security issue is the lack of a valid SSL certificate, which undermines the site's security posture despite the presence of several security headers. Privacy and cookie policies are well implemented, showing good compliance with GDPR and related regulations. Overall, the site is professional and trustworthy but requires immediate attention to SSL configuration to enhance security and user trust.

P

Pure Storage

purestorage.com

0

Pure Storage is a leading enterprise data platform provider founded in 2009, offering unified storage solutions across public, on-premises, and hybrid cloud environments. The company is positioned as a market leader with a strong focus on AI, cloud, and storage-as-a-service models. Their website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site uses modern web technologies and is hosted on AWS CloudFront, ensuring fast performance and good mobile optimization. Security headers are well implemented, but the lack of a valid SSL certificate and TLS support is a critical weakness. Additionally, a subdomain takeover vulnerability was detected, which poses a security risk. Privacy and compliance policies are present and comprehensive, supporting GDPR and other regulations. Overall, the site demonstrates high business credibility but requires immediate security improvements to enhance trust and protect users.

The website pcrbio.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information on the site. The domain is mature, registered since 2011, and shows consistent WHOIS registration data without privacy protection. However, the lack of a valid SSL certificate and absence of TLS protocols severely impact the security posture of the site. Security headers are present and well configured, but the missing HTTPS is a critical issue. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available on the accessible page. Overall, the site’s digital maturity and trustworthiness cannot be fully assessed due to the blocking mechanism.

H

HABAU

habau.at

0

HABAU is a well-established Austrian construction company with over 110 years of experience, offering a broad range of construction services including high-rise construction, civil engineering, pipeline construction, and precast concrete solutions. It operates as part of the larger HABAU GROUP, which has a significant international presence and a large workforce. The website reflects a professional and content-rich digital presence targeting construction clients, partners, and job seekers. Technically, the site is built on WordPress with common performance and cookie management plugins, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is weak due to missing HTTPS and security headers, exposing the site to risks. Overall, the site is trustworthy and professional but urgently needs to address its SSL and security configuration to protect users and improve trust.

S

SRG IT & Marketing GmbH

leadchamps.co

0

LeadChamps is a small Austrian technology company specializing in sales automation and lead generation services for B2B clients, primarily in the DACH region. Their offerings include intent data lead research, multi-channel campaigns leveraging LinkedIn and email, and a proprietary sales automation platform. The website is built on WordPress with the Divi theme and integrates HubSpot forms for lead capture. While the content is professionally presented and relevant to their target audience, the technical infrastructure lacks a valid SSL certificate and modern TLS protocols, exposing the site to security risks. The absence of cookie consent mechanisms and limited security headers further weaken their privacy and security posture. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

RUBICON IT GmbH is a medium-sized Austrian technology company specializing in digitalization solutions and IT services. Their product portfolio includes leading software such as Nova Find, a prominent lost and found software in Europe, alongside other enterprise solutions like Acta Nova and Document Partner. The company also offers professional services, managed services, and training, targeting business and public sector clients seeking digital transformation. The website is professionally designed, multilingual, and well-structured, reflecting a mature digital presence. Technically, the site is built on WordPress with various plugins and frameworks, including ASP.NET components, but suffers from critical SSL/TLS misconfigurations, lacking a valid certificate and modern protocol support. Security headers are partially implemented but incomplete, and no advanced security mechanisms like OCSP stapling or session resumption are enabled. Privacy compliance is strong, with clear cookie consent and a comprehensive privacy policy. Social media integration and certifications like Kubernetes demonstrate trust and industry alignment. Overall, the site is functional and business-credible but requires urgent security improvements to protect user data and enhance trust.

K

K&K Provitrum GmbH

kkprovitrum.at

0

K&K Provitrum GmbH is a specialized machinery and material dealer serving the glass industry in Central, Eastern, and Southeastern Europe. The company offers a comprehensive portfolio of glass processing machines, tools, and consumables, targeting a range of customers from small workshops to large industrial enterprises. Their website reflects a professional and consistent brand presence with clear business and contact information. Technically, the website is built on an Apache server with custom CMS elements and uses modern web technologies, but suffers from slow performance and lacks a valid SSL certificate, which is a significant security concern. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols exposes the site to risks. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the website scores moderately on content quality and business credibility but is penalized heavily for security shortcomings.

S

Statistik Austria

statistik.at

0

Statistik Austria is the official national statistical agency of Austria, providing independent and comprehensive statistical data to support fact-based decision making. The organization serves a broad audience including government entities, researchers, businesses, and the general public. Their services include data provision, publications, surveys, and various analytical tools. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with privacy-conscious analytics via Matomo, and includes modern web technologies such as FontAwesome and jQuery. However, a critical security weakness is the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts the site's security posture. Despite this, the site implements multiple security headers and cookie consent mechanisms, demonstrating good privacy compliance. Overall, the site is trustworthy and authoritative but urgently requires SSL implementation to protect user data and communications.

S

SIGAL UNIQA

sigal.com.al

0

SIGAL UNIQA is a leading regional insurance group operating primarily in Albania, Kosovo, and North Macedonia, offering a comprehensive portfolio of insurance products including life, health, property, automobile, and marine insurance. The company is well-established since 1999 and is part of the larger UNIQA Insurance Group, which enhances its market credibility and operational scale. The website reflects a professional and well-branded digital presence with clear navigation and extensive content tailored to its target audience of individuals and businesses seeking insurance solutions. Technically, the site is built on WordPress with modern plugins and integrations, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and lack of HTTPS support, which poses risks to user data confidentiality and trust. The company demonstrates commitment to security governance through ISO 27001:2022 certification and implements privacy and cookie policies compliant with GDPR standards. Marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp are actively used, indicating a mature digital marketing strategy. Overall, while the business and content aspects are strong, urgent improvements in SSL/TLS configuration are necessary to enhance security posture and user trust.

The website noack-vision.com is currently a placeholder page hosted by united-domains AG, indicating that the domain has been newly registered but not yet configured with any business content or services. The page serves solely to confirm domain registration and availability, providing links to the registrar's main site for domain management and related services. There is no direct business presence or operational content on this domain at this time. From a technical perspective, the site is minimalistic, using basic HTML and CSS without any advanced frameworks or CMS. It is hosted on united-domains' webspace platform but lacks HTTPS support, security headers, and performance optimizations. No analytics, tracking, or advertising technologies are present, reflecting the placeholder nature of the site. Security posture is weak due to the absence of SSL/TLS encryption and security headers, exposing visitors to potential risks if sensitive data were to be transmitted. However, since the site contains no forms or user inputs, the immediate risk is low. Privacy compliance is minimal, with no cookie consent or privacy policy hosted on the domain itself, only links to the registrar's policies. Overall, the domain is legitimate and consistent with a newly registered domain awaiting configuration. The lack of content and security features results in a low AI score and indicates no active business operations or risk factors beyond the absence of HTTPS. Strategic recommendations include securing the domain with SSL, deploying actual business content, and implementing privacy and security best practices before going live.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Egon Zehnder International Ltd.

egonzehnder.com

0

Egon Zehnder International Ltd. operates a global organizational consulting and leadership advisory website offering a wide range of executive search and leadership development services. The company is positioned as a global leader with extensive geographic reach and a comprehensive service portfolio targeting large enterprises and organizations seeking leadership solutions. Technically, the website uses modern web technologies including Vue.js and integrates multiple analytics and marketing tools, but suffers from a critical security flaw due to the absence of a valid SSL certificate and HTTPS support. Security headers and content security policies are well implemented, but the lack of HTTPS severely impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professionally designed and trustworthy, but the critical SSL issue poses a significant risk that should be remediated immediately.

E

EPSIMEC GmbH & Co KG

epsimec.com

0

EPSIMEC GmbH & Co KG is a small Austrian digital agency specializing in social media marketing, newsletter marketing, content management, and web development services. Established in 2012, the company has a mature online presence with a professional website built on WordPress, leveraging modern plugins such as Yoast SEO and WP Rocket for optimization. The website presents a consistent brand image, clear contact information, and client references, positioning EPSIMEC as a credible service provider in the technology sector. Technically, the site uses PHP 8.0.3 on an Apache server hosted by Host Europe, but lacks HTTPS support, which is a significant security concern. The cookie consent mechanism is well implemented, indicating good privacy compliance. However, the absence of SSL/TLS encryption and security headers lowers the overall security posture. No explicit security policies or incident response contacts are published, and no vulnerability disclosure or security.txt files are found. Overall, EPSIMEC demonstrates a solid business and technical foundation but should prioritize securing its website with HTTPS and enhancing security best practices to improve trust and compliance.

W

wunderweiss

wunderweiss.com

0

Wunderweiss is a specialized agency based in Austria focusing on software and design development, with a strong emphasis on AI applications integrated into CMS systems, UI/UX consulting, and corporate branding. The company targets businesses seeking innovative technology and design solutions, positioning itself as an expert in user-oriented design and AI-driven application development. The website presents a professional and consistent brand image with detailed project showcases and clear service offerings. Technically, the website employs modern web technologies including jQuery, Django Framework, and Wagtail CMS, hosted behind Cloudflare. However, the site suffers from a critical security issue: the SSL certificate is invalid or missing, resulting in no proper HTTPS support. This significantly impacts the security posture and user trust. Performance metrics are not available, but the site shows good mobile optimization and basic accessibility features. Security-wise, the site implements several important HTTP security headers such as X-Frame-Options and Referrer-Policy, but lacks a valid SSL certificate, OCSP stapling, and session resumption. There is no visible incident response or vulnerability disclosure information. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the website is professionally designed and credible from a business perspective but requires urgent remediation of its SSL configuration to improve security and trust. Strategic recommendations include fixing HTTPS, implementing cookie consent, and adding security and incident response policies.

D

decide Clinical Software GmbH

decide-clinical.com

0

decide Clinical Software GmbH operates the GlucoTab platform, a specialized clinical decision support system designed to assist healthcare professionals in managing diabetes patients in hospital settings. The company holds important certifications such as ISO 13485 and MDR Class IIa, underscoring its commitment to quality and regulatory compliance. Their product integrates evidence-based insulin dosing algorithms and workflow digitalization, targeting hospitals and clinical staff. The website is professionally designed, multilingual, and content-rich, reflecting a mature digital presence. However, the lack of a valid SSL certificate and HTTPS support significantly undermines the security posture, especially critical in healthcare. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Contact information and trust indicators are clearly presented, enhancing business credibility.

The website bg-thinktank.com is currently inactive and displays a placeholder message indicating the domain is pending renewal or has expired. There is no accessible business content, metadata, or contact information available. The domain is registered but lacks DNS records and does not have a valid SSL certificate, resulting in no HTTPS support. The technical infrastructure is minimal, with only an nginx server header detected and an external script from sedoparking.com indicating domain parking. Security posture is weak due to the absence of SSL, security headers, and DNS configuration. Privacy and compliance policies are missing, and no contact or business information is provided. Overall, the website does not present an active or trustworthy business presence.

Ookla, LLC is a well-established enterprise in the telecommunications and technology sector, known for its network intelligence and performance measurement solutions. The website indicates that Mosaik was acquired by Ookla in 2018, integrating its wireless network intelligence and mapping products into Ookla's portfolio. The company targets enterprise customers including network operators, regulators, and hardware manufacturers, offering a broad suite of products such as Speedtest, Downdetector, and Ekahau. The market position is strong, supported by a large enterprise size and backing by parent company Ziff Davis. Technically, the website is built using the Eleventy static site generator and leverages modern JavaScript and CSS technologies. Hosting is on AWS infrastructure, and the site integrates multiple marketing and analytics tools including Google Tag Manager, HubSpot, and LinkedIn Insight Tag. The site is mobile optimized with good SEO practices, though accessibility features are basic. From a security perspective, the site implements several important HTTP security headers such as X-Frame-Options and Content Security Policy. However, the absence of a valid SSL certificate and lack of HTTPS enforcement are critical vulnerabilities that significantly reduce the security posture. No cookie consent mechanism was detected despite the use of tracking scripts, indicating partial privacy compliance. Overall, the website is professional and trustworthy in content and business credibility but requires urgent improvements in SSL/TLS configuration and privacy compliance to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.