Security Directory

C

Ceramiche Atlas Concorde S.p.A.

atlasconcorde.com

0

Atlas Concorde is a well-established Italian manufacturer specializing in ceramic and porcelain tiles for floors, walls, outdoor spaces, furniture, and related products. The company has a mature market presence with 25 years of experience and offers a comprehensive product system including various collections and innovative technologies. The website demonstrates a high level of digital maturity with a modern tech stack based on Next.js and Vercel hosting, providing a professional and user-friendly experience across multiple languages. Security measures are in place with several HTTP security headers configured; however, the absence of a valid SSL certificate and lack of advanced SSL features like OCSP stapling reduce the overall security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website reflects a credible and professional business with a solid online presence.

D

Data Technology Limited

datatechnology.co.uk

0

Data Technology Limited is a UK-based technology consultancy specializing in data strategy, data platforms, analytics, prediction as a service, and cloud modernisation. The company targets organizations seeking to leverage data for business insights and outcomes, positioning itself as a trusted partner with recognized certifications such as Cyber Essentials and ISO QAR. Their website reflects a professional and consistent brand with clear service offerings and client endorsements. Technically, the website is built on the HubSpot CMS platform, hosted via Cloudflare, and employs modern web technologies including Google Analytics 4 and Splide.js for interactive content. The site is mobile-optimized and SEO-friendly, though performance is moderate. Accessibility features are basic but present. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a significant vulnerability. While some security headers are implemented, critical improvements are needed to secure communications and protect user data. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website demonstrates a credible business presence with good content and marketing practices but requires urgent remediation of SSL/TLS issues to enhance security posture and trustworthiness.

Coca-Cola Europacific Partners is a leading enterprise in the manufacturing and distribution of beverages across 31 markets, offering globally recognized brands such as Coca-Cola, Sprite, Fanta, and Monster. The company emphasizes sustainability and value creation for customers and consumers. The website reflects a mature digital presence with comprehensive content, investor relations, and sustainability initiatives. Technically, the site uses modern tools like Google Tag Manager and Cloudflare but lacks a valid SSL certificate and HTTPS, which is a critical security flaw. Security headers are well configured, but the absence of TLS protocols and HSTS reduces the security posture significantly. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to address SSL/TLS issues to improve security and user trust.

C

Capgemini

capgemini-consulting.com

0

Capgemini Invent is a prominent management consultancy brand under the Capgemini group, specializing in innovative consulting services that combine strategy, technology, data science, and design to help businesses transform and grow. The website reflects a mature, enterprise-level digital presence with comprehensive content, strong branding, and a wide range of services targeting C-level executives and large enterprises. Technically, the site is built on WordPress with modern frameworks like React and Bootstrap, indicating a contemporary and scalable infrastructure. However, a critical security issue is the lack of a valid SSL certificate, which undermines the site's security posture despite the presence of several security headers. Privacy and cookie policies are well implemented, showing good compliance with GDPR and related regulations. Overall, the site is professional and trustworthy but requires immediate attention to SSL configuration to enhance security and user trust.

P

Pure Storage

purestorage.com

0

Pure Storage is a leading enterprise data platform provider founded in 2009, offering unified storage solutions across public, on-premises, and hybrid cloud environments. The company is positioned as a market leader with a strong focus on AI, cloud, and storage-as-a-service models. Their website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding. Technically, the site uses modern web technologies and is hosted on AWS CloudFront, ensuring fast performance and good mobile optimization. Security headers are well implemented, but the lack of a valid SSL certificate and TLS support is a critical weakness. Additionally, a subdomain takeover vulnerability was detected, which poses a security risk. Privacy and compliance policies are present and comprehensive, supporting GDPR and other regulations. Overall, the site demonstrates high business credibility but requires immediate security improvements to enhance trust and protect users.

The website pcrbio.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information on the site. The domain is mature, registered since 2011, and shows consistent WHOIS registration data without privacy protection. However, the lack of a valid SSL certificate and absence of TLS protocols severely impact the security posture of the site. Security headers are present and well configured, but the missing HTTPS is a critical issue. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available on the accessible page. Overall, the site’s digital maturity and trustworthiness cannot be fully assessed due to the blocking mechanism.

H

HABAU

habau.at

0

HABAU is a well-established Austrian construction company with over 110 years of experience, offering a broad range of construction services including high-rise construction, civil engineering, pipeline construction, and precast concrete solutions. It operates as part of the larger HABAU GROUP, which has a significant international presence and a large workforce. The website reflects a professional and content-rich digital presence targeting construction clients, partners, and job seekers. Technically, the site is built on WordPress with common performance and cookie management plugins, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is weak due to missing HTTPS and security headers, exposing the site to risks. Overall, the site is trustworthy and professional but urgently needs to address its SSL and security configuration to protect users and improve trust.

S

SRG IT & Marketing GmbH

leadchamps.co

0

LeadChamps is a small Austrian technology company specializing in sales automation and lead generation services for B2B clients, primarily in the DACH region. Their offerings include intent data lead research, multi-channel campaigns leveraging LinkedIn and email, and a proprietary sales automation platform. The website is built on WordPress with the Divi theme and integrates HubSpot forms for lead capture. While the content is professionally presented and relevant to their target audience, the technical infrastructure lacks a valid SSL certificate and modern TLS protocols, exposing the site to security risks. The absence of cookie consent mechanisms and limited security headers further weaken their privacy and security posture. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

RUBICON IT GmbH is a medium-sized Austrian technology company specializing in digitalization solutions and IT services. Their product portfolio includes leading software such as Nova Find, a prominent lost and found software in Europe, alongside other enterprise solutions like Acta Nova and Document Partner. The company also offers professional services, managed services, and training, targeting business and public sector clients seeking digital transformation. The website is professionally designed, multilingual, and well-structured, reflecting a mature digital presence. Technically, the site is built on WordPress with various plugins and frameworks, including ASP.NET components, but suffers from critical SSL/TLS misconfigurations, lacking a valid certificate and modern protocol support. Security headers are partially implemented but incomplete, and no advanced security mechanisms like OCSP stapling or session resumption are enabled. Privacy compliance is strong, with clear cookie consent and a comprehensive privacy policy. Social media integration and certifications like Kubernetes demonstrate trust and industry alignment. Overall, the site is functional and business-credible but requires urgent security improvements to protect user data and enhance trust.

K

K&K Provitrum GmbH

kkprovitrum.at

0

K&K Provitrum GmbH is a specialized machinery and material dealer serving the glass industry in Central, Eastern, and Southeastern Europe. The company offers a comprehensive portfolio of glass processing machines, tools, and consumables, targeting a range of customers from small workshops to large industrial enterprises. Their website reflects a professional and consistent brand presence with clear business and contact information. Technically, the website is built on an Apache server with custom CMS elements and uses modern web technologies, but suffers from slow performance and lacks a valid SSL certificate, which is a significant security concern. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols exposes the site to risks. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the website scores moderately on content quality and business credibility but is penalized heavily for security shortcomings.

S

Statistik Austria

statistik.at

0

Statistik Austria is the official national statistical agency of Austria, providing independent and comprehensive statistical data to support fact-based decision making. The organization serves a broad audience including government entities, researchers, businesses, and the general public. Their services include data provision, publications, surveys, and various analytical tools. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with privacy-conscious analytics via Matomo, and includes modern web technologies such as FontAwesome and jQuery. However, a critical security weakness is the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts the site's security posture. Despite this, the site implements multiple security headers and cookie consent mechanisms, demonstrating good privacy compliance. Overall, the site is trustworthy and authoritative but urgently requires SSL implementation to protect user data and communications.

S

SIGAL UNIQA

sigal.com.al

0

SIGAL UNIQA is a leading regional insurance group operating primarily in Albania, Kosovo, and North Macedonia, offering a comprehensive portfolio of insurance products including life, health, property, automobile, and marine insurance. The company is well-established since 1999 and is part of the larger UNIQA Insurance Group, which enhances its market credibility and operational scale. The website reflects a professional and well-branded digital presence with clear navigation and extensive content tailored to its target audience of individuals and businesses seeking insurance solutions. Technically, the site is built on WordPress with modern plugins and integrations, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and lack of HTTPS support, which poses risks to user data confidentiality and trust. The company demonstrates commitment to security governance through ISO 27001:2022 certification and implements privacy and cookie policies compliant with GDPR standards. Marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp are actively used, indicating a mature digital marketing strategy. Overall, while the business and content aspects are strong, urgent improvements in SSL/TLS configuration are necessary to enhance security posture and user trust.

The website noack-vision.com is currently a placeholder page hosted by united-domains AG, indicating that the domain has been newly registered but not yet configured with any business content or services. The page serves solely to confirm domain registration and availability, providing links to the registrar's main site for domain management and related services. There is no direct business presence or operational content on this domain at this time. From a technical perspective, the site is minimalistic, using basic HTML and CSS without any advanced frameworks or CMS. It is hosted on united-domains' webspace platform but lacks HTTPS support, security headers, and performance optimizations. No analytics, tracking, or advertising technologies are present, reflecting the placeholder nature of the site. Security posture is weak due to the absence of SSL/TLS encryption and security headers, exposing visitors to potential risks if sensitive data were to be transmitted. However, since the site contains no forms or user inputs, the immediate risk is low. Privacy compliance is minimal, with no cookie consent or privacy policy hosted on the domain itself, only links to the registrar's policies. Overall, the domain is legitimate and consistent with a newly registered domain awaiting configuration. The lack of content and security features results in a low AI score and indicates no active business operations or risk factors beyond the absence of HTTPS. Strategic recommendations include securing the domain with SSL, deploying actual business content, and implementing privacy and security best practices before going live.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Egon Zehnder International Ltd.

egonzehnder.com

0

Egon Zehnder International Ltd. operates a global organizational consulting and leadership advisory website offering a wide range of executive search and leadership development services. The company is positioned as a global leader with extensive geographic reach and a comprehensive service portfolio targeting large enterprises and organizations seeking leadership solutions. Technically, the website uses modern web technologies including Vue.js and integrates multiple analytics and marketing tools, but suffers from a critical security flaw due to the absence of a valid SSL certificate and HTTPS support. Security headers and content security policies are well implemented, but the lack of HTTPS severely impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professionally designed and trustworthy, but the critical SSL issue poses a significant risk that should be remediated immediately.

E

EPSIMEC GmbH & Co KG

epsimec.com

0

EPSIMEC GmbH & Co KG is a small Austrian digital agency specializing in social media marketing, newsletter marketing, content management, and web development services. Established in 2012, the company has a mature online presence with a professional website built on WordPress, leveraging modern plugins such as Yoast SEO and WP Rocket for optimization. The website presents a consistent brand image, clear contact information, and client references, positioning EPSIMEC as a credible service provider in the technology sector. Technically, the site uses PHP 8.0.3 on an Apache server hosted by Host Europe, but lacks HTTPS support, which is a significant security concern. The cookie consent mechanism is well implemented, indicating good privacy compliance. However, the absence of SSL/TLS encryption and security headers lowers the overall security posture. No explicit security policies or incident response contacts are published, and no vulnerability disclosure or security.txt files are found. Overall, EPSIMEC demonstrates a solid business and technical foundation but should prioritize securing its website with HTTPS and enhancing security best practices to improve trust and compliance.

W

wunderweiss

wunderweiss.com

0

Wunderweiss is a specialized agency based in Austria focusing on software and design development, with a strong emphasis on AI applications integrated into CMS systems, UI/UX consulting, and corporate branding. The company targets businesses seeking innovative technology and design solutions, positioning itself as an expert in user-oriented design and AI-driven application development. The website presents a professional and consistent brand image with detailed project showcases and clear service offerings. Technically, the website employs modern web technologies including jQuery, Django Framework, and Wagtail CMS, hosted behind Cloudflare. However, the site suffers from a critical security issue: the SSL certificate is invalid or missing, resulting in no proper HTTPS support. This significantly impacts the security posture and user trust. Performance metrics are not available, but the site shows good mobile optimization and basic accessibility features. Security-wise, the site implements several important HTTP security headers such as X-Frame-Options and Referrer-Policy, but lacks a valid SSL certificate, OCSP stapling, and session resumption. There is no visible incident response or vulnerability disclosure information. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the website is professionally designed and credible from a business perspective but requires urgent remediation of its SSL configuration to improve security and trust. Strategic recommendations include fixing HTTPS, implementing cookie consent, and adding security and incident response policies.

D

decide Clinical Software GmbH

decide-clinical.com

0

decide Clinical Software GmbH operates the GlucoTab platform, a specialized clinical decision support system designed to assist healthcare professionals in managing diabetes patients in hospital settings. The company holds important certifications such as ISO 13485 and MDR Class IIa, underscoring its commitment to quality and regulatory compliance. Their product integrates evidence-based insulin dosing algorithms and workflow digitalization, targeting hospitals and clinical staff. The website is professionally designed, multilingual, and content-rich, reflecting a mature digital presence. However, the lack of a valid SSL certificate and HTTPS support significantly undermines the security posture, especially critical in healthcare. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Contact information and trust indicators are clearly presented, enhancing business credibility.

The website bg-thinktank.com is currently inactive and displays a placeholder message indicating the domain is pending renewal or has expired. There is no accessible business content, metadata, or contact information available. The domain is registered but lacks DNS records and does not have a valid SSL certificate, resulting in no HTTPS support. The technical infrastructure is minimal, with only an nginx server header detected and an external script from sedoparking.com indicating domain parking. Security posture is weak due to the absence of SSL, security headers, and DNS configuration. Privacy and compliance policies are missing, and no contact or business information is provided. Overall, the website does not present an active or trustworthy business presence.

Ookla, LLC is a well-established enterprise in the telecommunications and technology sector, known for its network intelligence and performance measurement solutions. The website indicates that Mosaik was acquired by Ookla in 2018, integrating its wireless network intelligence and mapping products into Ookla's portfolio. The company targets enterprise customers including network operators, regulators, and hardware manufacturers, offering a broad suite of products such as Speedtest, Downdetector, and Ekahau. The market position is strong, supported by a large enterprise size and backing by parent company Ziff Davis. Technically, the website is built using the Eleventy static site generator and leverages modern JavaScript and CSS technologies. Hosting is on AWS infrastructure, and the site integrates multiple marketing and analytics tools including Google Tag Manager, HubSpot, and LinkedIn Insight Tag. The site is mobile optimized with good SEO practices, though accessibility features are basic. From a security perspective, the site implements several important HTTP security headers such as X-Frame-Options and Content Security Policy. However, the absence of a valid SSL certificate and lack of HTTPS enforcement are critical vulnerabilities that significantly reduce the security posture. No cookie consent mechanism was detected despite the use of tracking scripts, indicating partial privacy compliance. Overall, the website is professional and trustworthy in content and business credibility but requires urgent improvements in SSL/TLS configuration and privacy compliance to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

U

Università degli Studi Internazionali di Roma - UNINT

unint.eu

0

Università degli Studi Internazionali di Roma - UNINT is a large, established higher education institution based in Italy, offering a wide range of undergraduate and graduate programs with a strong international focus. The website is professionally designed, content-rich, and targets students, faculty, and academic partners. The technical infrastructure is based on WordPress with modern plugins and frameworks, though performance is somewhat slow. Security posture is basic with critical issues such as an invalid SSL certificate and lack of security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy but requires immediate attention to SSL and security configurations to enhance user trust and data protection.

The website shi.com is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks direct access to content. This prevents a full assessment of the business and website content. The domain uses Microsoft Azure DNS and Mimecast mail servers, indicating a legitimate infrastructure setup. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. No privacy, cookie, or terms of service policies are visible, and no contact or business information is accessible on the landing page. Performance is very poor with an extremely high load time, likely due to the blocking mechanism. Overall, the site appears to be protected by Cloudflare's security mechanisms but lacks fundamental security configurations and visible business transparency.

The website remax-impuls.at appears to represent a small Austrian business, likely in the real estate sector given the domain name, but no explicit business information or content is accessible due to a security challenge page blocking direct access. The site employs a bot detection script and redirects users after a delay, indicating a Web Application Firewall or similar security mechanism is in place. Technically, the site is served by nginx and hosted under the citc.at domain infrastructure, but critically lacks a valid SSL certificate and HTTPS support, exposing it to security risks and reducing user trust. Security headers such as X-XSS-Protection, X-Frame-Options, and X-Content-Type-Options are present, but without HTTPS, these provide limited protection. No privacy, cookie, or terms of service policies are found, and no contact or business details are visible on the landing page. Overall, the site’s security posture is weak, and the lack of accessible content prevents a full business or technical assessment.

ABF Pharmaceutical Services GmbH, part of the GBA Group, specializes in providing comprehensive logistical support for clinical trials, including GMP-certified pharmaceutical services such as kit production, labeling, packaging, storage, and distribution. The company operates internationally with a strong presence in Europe, the USA, and Asia, serving pharmaceutical and biotechnology companies. Their technical infrastructure is modern, leveraging React and Gatsby frameworks hosted on Netlify, with content managed via Storyblok CMS. However, the website lacks a valid SSL/TLS certificate, which significantly impacts its security posture. While security headers are present, the absence of HTTPS and modern TLS protocols exposes the site to risks. Privacy compliance is partially addressed with a cookie consent mechanism but lacks comprehensive GDPR indicators. Overall, the business credibility is strong, supported by clear contact information, certifications, and consistent WHOIS data. Strategic improvements in SSL configuration and security policies are recommended to enhance trust and compliance.

D

Die Wiener Volkshochschulen GmbH

vhs.at

0

Die Wiener Volkshochschulen GmbH operates the largest adult education platform in Vienna, offering a wide range of courses including languages, health, arts, and professional development. The website is well-designed, content-rich, and targets adult learners, families, and seniors in Vienna. It maintains a strong market position as a non-profit educational institution with official certifications and a comprehensive course catalog. Technically, the site uses Apache server technology, JavaScript modules, and integrates Cookiebot for consent management and Matomo for analytics. Accessibility and SEO are well addressed, with responsive design and clear navigation. However, the security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which is a critical issue for user trust and data protection. Privacy compliance is strong with GDPR-aligned policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS security to enhance protection and user confidence.

Desmet is a well-established global engineering company specializing in custom plants and equipment for the food, feed, and biofuel industries. With a large workforce and multiple brands, it holds a strong market position supported by extensive experience and a professional digital presence. The website is content-rich, well-structured, and uses modern technologies, but critically lacks HTTPS/SSL, which severely impacts its security posture. While security headers are implemented, the absence of valid SSL/TLS and related configurations exposes the site to risks. Privacy compliance is partially addressed with visible privacy and cookie policies, but no explicit consent mechanism is detected. Business credibility is high due to clear branding, contact information, and WHOIS consistency. Strategic improvements in security infrastructure and incident response readiness are recommended.

S

Specialists in Green Roofs, Grass Roofs and Eco Roofs | Sky Garden

sky-garden.co.uk

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 20 security findings identified across all modules.

S

Swimsol GmbH

swimsol.com

0

Swimsol GmbH is a specialized energy company focused on providing floating and rooftop solar photovoltaic (PV) systems primarily for island environments such as the Maldives. The company positions itself as a leader in solar-at-sea technology with over 35 islands operating their systems and a significant installed capacity. Their business model includes system design, installation, operation, maintenance, and financing options, targeting luxury resorts and small businesses in tropical regions. Technically, the website is built on WordPress with a modern tech stack including Fusion Builder and WP Rocket, but lacks a valid SSL certificate, which impacts security and user trust. The site is well-designed, mobile-optimized, and SEO-friendly, with comprehensive content and strong branding. However, the absence of HTTPS and security headers represents a critical security gap. Privacy compliance is addressed with visible policies and consent mechanisms. Overall, Swimsol demonstrates a strong market presence and professional online representation but should prioritize securing their website with HTTPS and enhanced security practices.

S

SigmaNEST

sigmanest.com

0

SigmaNEST is a well-established software provider specializing in CAD/CAM nesting and manufacturing automation solutions. The company offers a comprehensive suite of products designed to optimize fabrication processes across various machine types including laser, plasma, punch, router, waterjet, tube, and pressbrake. With over 40,000 installations worldwide and a strong market presence, SigmaNEST targets fabricators and manufacturers seeking to improve efficiency, reduce costs, and automate workflows. The website reflects a professional and consistent brand image, supported by multilingual content and customer testimonials, reinforcing its credibility in the manufacturing software sector. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. However, the absence of a valid SSL certificate and lack of TLS protocol support represent significant security shortcomings that undermine user trust and data protection. Despite strong content security policies and secure cookie settings, the lack of HTTPS is a critical vulnerability that must be addressed promptly. From a security perspective, the site demonstrates good use of security headers and GDPR-compliant privacy and cookie policies, including explicit consent mechanisms in its contact forms. No incident response or vulnerability disclosure information is present, which could be improved to enhance transparency and trust. The domain registration data aligns well with the website content and business claims, indicating legitimacy and consistency. Overall, while the business and content quality are excellent, the critical absence of HTTPS significantly lowers the security posture and overall AI score. Strategic improvements in SSL/TLS deployment and enhanced security practices are recommended to elevate the website's trustworthiness and compliance standing.

H

HTL Braunau

htl-braunau.at

0

HTL Braunau is a well-established higher technical vocational school located in Braunau am Inn, Austria, offering specialized education in electronics, electrical engineering, mechatronics, and information technology. The institution serves approximately 1000 students and emphasizes project-based learning with national and international recognition. The website reflects a professional educational institution with clear communication channels and a focus on student engagement through events and partnerships. Technically, the site is built on TYPO3 CMS with modern frontend frameworks and integrates Google Analytics and Tag Manager for visitor insights. However, the absence of a valid SSL certificate and HTTPS severely undermines the security posture, exposing users to risks and reducing trust. Privacy and cookie policies are present and GDPR compliant, indicating awareness of data protection requirements. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

M

Mediaplanet Group

mediaplanet.com

0

Mediaplanet Group is a mature, established content marketing company founded in 1993, delivering over 1,000 campaigns annually to a global client base exceeding 15,000. The company operates primarily in the media sector, providing content marketing services worldwide. The website is built on WordPress and leverages modern JavaScript libraries such as jQuery and amCharts, with Cloudflare providing CDN and security services. Despite a professional design and good SEO practices, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. No privacy or cookie policies are present, and no explicit contact information is found on the main page, which affects privacy compliance and business credibility scores. Advertising and tracking tools like Facebook Pixel and Google Tag Manager are integrated, indicating moderate user tracking.

A

Amaris Consulting

amaris.com

0

Amaris Consulting is a well-established global technology consulting firm founded in 2007, operating across multiple sectors including technology, healthcare, finance, transportation, and energy. With a workforce of approximately 7,600 employees spread over 60 countries, it serves over 1,000 clients worldwide. The company is part of the Mantu group, which is confirmed by website footer references and structured data. The website presents a professional and consistent brand image, with comprehensive content describing its services, centers of excellence, and industry focus. Technically, the site is built on WordPress using Elementor and optimized with WP Rocket, but suffers from a critical security issue due to the lack of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is partially addressed with a clear privacy policy and GDPR-compliant contact form, but lacks a cookie consent mechanism. Overall, the site demonstrates good business credibility and user experience but requires urgent security improvements.

B

Berlitz Corporation

berlitz.com

0

Berlitz Corporation is a well-established language education provider offering a wide range of language and cultural training services for adults, children, businesses, and government entities. The company holds a strong market position, recognized for its customer service excellence and comprehensive language training solutions. The website reflects a mature digital infrastructure leveraging modern technologies such as React, Gatsby, and AWS hosting, providing a responsive and accessible user experience. Security measures include appropriate HTTP headers and HSTS, although the SSL certificate is currently invalid, which is a critical issue to address. Privacy compliance is good with clear privacy and terms of service policies, but lacks a cookie consent mechanism. Overall, the site demonstrates professionalism and trustworthiness, supported by social media presence and industry certifications.

BMW Thailand operates an official, comprehensive website offering premium automotive products and services tailored to the Thai market. The site showcases new and certified pre-owned BMW vehicles, financial services, digital offerings, and after-sales support, positioning BMW as a leading premium automotive brand in Thailand. The website is built on Adobe Experience Manager and delivered via Akamai CDN, reflecting a mature digital infrastructure. However, the current SSL/TLS configuration is critically flawed, with no valid certificate and disabled TLS protocols, exposing users to security risks. Security headers are partially implemented but require improvements, especially enabling X-XSS-Protection and modern TLS versions. Privacy and cookie policies are present and comprehensive, supporting GDPR compliance. Contact information is primarily via forms and chat, with no explicit emails or phone numbers found. Overall, the site is professional and trustworthy but must urgently address SSL issues to ensure secure user interactions.

V

VF Corporation

vfc.com

0

VF Corporation is a large multinational retail company specializing in outdoor, lifestyle, and workwear apparel and footwear. The website presents a comprehensive portfolio of well-known brands such as Vans, The North Face, Timberland, and others, targeting consumers, investors, and job seekers. The business model focuses on brand management and retail operations with a strong emphasis on corporate responsibility and investor relations. Technically, the website uses Apache server technology, integrates Google Analytics, and leverages CDN services like Amazon Cloudfront for content delivery. The site is well-designed, mobile-optimized, and provides rich content with clear navigation and professional branding. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, which is a critical vulnerability. Privacy compliance is good with a comprehensive privacy policy and terms of use, but no cookie consent mechanism was detected. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS security to protect user data and maintain trust.

H

HiPP

hipp.de

0

HiPP is a well-established German brand specializing in organic baby food and related care products. Their website serves as both an informational resource and an e-commerce platform, targeting parents and families with young children. The site is rich in content, well-structured, and offers multiple engagement channels including a BabyClub and social media presence. Technically, the site is built on TYPO3 CMS and uses modern web technologies and consent management tools, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business appears credible and trustworthy, but the security weaknesses pose a risk to user trust and data protection.

C

Caesars Entertainment

caesarsjobs.com

0

Caesars Entertainment operates a comprehensive career website showcasing its extensive hospitality and gaming operations across the United States. The company is a large enterprise with a long history and a broad portfolio of casino resorts and digital sportsbook services. The website is professionally designed, mobile-optimized, and rich in content relevant to job seekers and corporate social responsibility. Technically, the site uses Microsoft IIS, ASP.NET, Adobe Experience Manager, and integrates advanced analytics and marketing tools such as Dynatrace and Google Tag Manager. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy and cookie policies are well implemented with OneTrust, reflecting good privacy compliance. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and maintain trust.

L

Lamb Weston

lambweston.eu

0

Lamb Weston is a globally recognized leader in the frozen potato products industry, offering a wide range of products including fries, specialties, and appetizers. The company targets foodservice professionals and retail customers primarily in the EMEA region, providing innovative and high-quality potato solutions. Their website reflects a strong market position with comprehensive content, multiple language support, and a focus on sustainability. Technically, the site is built on modern frameworks like Nuxt.js and Vue.js, hosted on AWS infrastructure, and demonstrates good mobile optimization and SEO practices. However, the absence of a valid SSL certificate significantly impacts the security posture, exposing the site to potential risks. Privacy and legal policies are well documented, but the lack of a cookie consent mechanism is a compliance gap. Overall, the website is professional and trustworthy but requires urgent security improvements to ensure safe user interactions.

C

Certified Service Vehicle Maintenance & Repair | Experience GM

saturn.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 24 security findings identified across all modules.

N

Northern Virginia Community College

nvcc.edu

0

Northern Virginia Community College (NOVA) is a large public educational institution serving Northern Virginia with multiple campuses and a broad range of academic and workforce programs. The website reflects a professional and comprehensive digital presence targeting students, faculty, and community stakeholders. The technical infrastructure includes modern marketing and analytics tools but lacks a valid SSL certificate, resulting in insecure HTTP access. Security headers are minimal, and no advanced security mechanisms like HSTS or OCSP stapling are implemented. Privacy and terms policies are present and comprehensive, though cookie consent mechanisms are not evident. Overall, the site is trustworthy and well-branded but requires urgent improvements in SSL/TLS deployment to enhance security and user trust.

W

Web Page Under Construction

rshlimited.com

0

The website rshlimited.com currently serves only as a placeholder page indicating that the site is under construction. It is registered through NetworkSolutions.com and does not present any active business content, products, or services. The only contact information available is a phone number for assistance, presumably for domain or hosting support. The lack of active content and business information limits the ability to assess the company's market position or services. Technically, the site is served over HTTP without SSL/TLS encryption, which is a significant security concern. The server technology is Sun-ONE-Web-Server/6.1, and the hosting provider is NetworkSolutions.com. There are no modern web technologies, analytics, or tracking scripts detected. Security posture is weak due to the absence of HTTPS, security headers, and privacy policies. Overall, the site is not yet operational and presents minimal risk but also minimal trust or credibility.

B

BMI Productivity Solutions

bmisw.com

0

BMI Productivity Solutions is a small technology company specializing in productivity enhancement software and services, including document management, loan management, and workflow automation. Established since 1992, the company targets organizations seeking to improve business processes and compliance. Their offerings include both on-premise and cloud-hosted solutions, with cloud hosting on Microsoft Azure and a SOC 2 TYPE II certification indicating some level of security assurance. The website is built on WordPress using the Divi theme and includes plugins for performance and download management. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Other security best practices such as security headers and incident response policies are absent or not publicly disclosed. Privacy compliance is minimal, with a basic privacy policy present but no cookie policy or consent mechanism. Contact information is limited to an email address and a contact form, with no phone number or physical address provided. Overall, the website is professionally designed and content is relevant, but the lack of HTTPS and security controls significantly lowers the security posture and trustworthiness.

H

Huppenkothen GmbH

huppenkothen.at

0

Huppenkothen GmbH operates a professional website focused on the sale and rental of mini and compact construction machinery, serving primarily the Austrian construction sector. The company maintains a strong market position with 42 locations and a large inventory of machines and spare parts. The website is well-designed, content-rich, and optimized for SEO and accessibility, targeting construction professionals and businesses. Technically, the site is built on WordPress with modern plugins and frameworks, but lacks HTTPS, which is a critical security vulnerability. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site demonstrates a mature digital presence but requires urgent security improvements to protect user data and trust.

M

Makino Inc.

makino.com

0

Makino Inc. is a global leader in manufacturing technology, specializing in CNC machine tools including horizontal and vertical machining centers, EDM, and graphite machining centers. The company targets industrial sectors such as aerospace, automotive, medical, semiconductor, and job shops, offering comprehensive solutions including automation, software, engineering services, and support. Their market position is strong, supported by extensive product information and a global presence with regional subsidiaries. Technically, the website employs a modern tech stack with ASP.NET backend and various JavaScript libraries for enhanced user experience. It is hosted behind Cloudflare, ensuring performance and availability. The site is mobile-optimized and includes accessibility features, although performance metrics are not provided. From a security perspective, the site has several important security headers configured, but critically lacks a valid SSL certificate, resulting in no HTTPS protection. This significantly lowers the security posture and exposes users to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the website is professional and trustworthy in content and business representation, but the lack of HTTPS is a critical issue that should be addressed immediately to protect user data and enhance trust.

I

ivii GmbH

ivii.eu

0

ivii GmbH is a small Austrian technology company specializing in AI-powered visual intelligence systems designed to optimize quality assurance and logistics processes in industrial manufacturing environments. Their flagship product, ivii iriis, combines artificial intelligence, machine learning, and camera technology to enable error-free production and logistics workflows. The company positions itself as an innovative provider with a strong focus on practical, plug-and-play solutions that empower employees and improve operational efficiency. The website content is professionally crafted, targeting industrial and logistics sectors, and supported by customer testimonials and ISO 27001 certification, enhancing trust and credibility. Technically, the website is built on WordPress with modern SEO and performance plugins such as Yoast SEO Premium and WP Rocket. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Performance is also suboptimal with a high page load time. Privacy compliance is well addressed with comprehensive GDPR-compliant privacy and cookie policies, including a consent mechanism. The company maintains active social media profiles and provides clear contact information. Security-wise, the lack of HTTPS and modern TLS protocols, absence of security headers, and missing DNSSEC and CAA records expose the site to potential risks. While no active vulnerabilities or WAF blocks are detected, these gaps should be addressed promptly to protect user data and maintain trust. Overall, ivii GmbH demonstrates a strong business and content presence but must urgently improve its security infrastructure to align with best practices and industry standards. Strategic recommendations include implementing SSL/TLS, enabling security headers, and optimizing performance to enhance user experience and trust.

C

CADS GmbH

cads-solution.com

0

CADS GmbH is a specialized software development company focused on innovative medical technology solutions, operating primarily in Austria with a strong partnership with the established KLS Martin Group. Their offerings include advanced software platforms such as IPS Gate® for medical case management, LOG Gate for inventory management, and 3D visualization services, targeting healthcare professionals and institutions worldwide. The website reflects a professional and well-branded digital presence with comprehensive content and multimedia resources. Technically, the site is built on TYPO3 CMS and integrates modern marketing and analytics tools, but suffers from a critical security weakness due to an invalid SSL certificate, undermining HTTPS security. Privacy compliance is well addressed with clear cookie management and GDPR-aligned privacy policies. Overall, the business credibility is high, supported by certifications and partnerships, though the lack of a terms of service page and explicit security policies is noted.

B

Byte Media GmbH

vbwienbaden.at

0

Byte Media GmbH operates a WordPress-based website providing SEO, domain trading, and digital marketing services, with a focus on banking and insurance information for Baden bei Wien. The site targets private and business customers seeking financial services in the region. The technical infrastructure relies on nginx, WordPress, jQuery, and Bootstrap, hosted on a Plesk Linux environment. While the content is well-structured and SEO-optimized, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Additionally, no cookie consent mechanism or explicit privacy compliance features are implemented, despite the use of Google Analytics and Tag Manager for tracking. Contact information is clearly presented, and social media presence is strong, enhancing business credibility. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect users and comply with privacy regulations.

BOA Technology is a mature and established company specializing in innovative fit system solutions for performance and sports industries. Their website presents a professional image with comprehensive product information, brand partnerships, and customer support resources. The company targets consumers and businesses in sectors such as cycling, workwear, and outdoor activities, positioning itself as a leader in fit system technology. Technically, the website is built on Drupal 10 and leverages modern web technologies and Cloudflare for hosting and security. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the site's security posture. While privacy and cookie policies are well implemented, the lack of explicit security policies and incident response information indicates room for improvement in transparency and compliance. Overall, the site is professional and trustworthy but requires urgent security enhancements to protect user data and improve trust.

R

Rexel

rexel.com

0

Rexel is a global leader in multichannel distribution for the energy sector, providing sustainable and innovative solutions to professional customers worldwide. The company operates in 17 countries with nearly 2,000 branches and a workforce of approximately 27,000 employees. Their business model focuses on supporting electricians, installers, commercial and industrial companies, and suppliers with a broad portfolio of energy-related products and services. The website reflects a mature digital presence with comprehensive content, investor relations, and sustainability commitments. Technically, the site is built on WordPress with modern SEO plugins and integrates multiple analytics and marketing tools. However, the absence of a valid SSL certificate and HTTPS support is a critical security deficiency that undermines user trust and data protection. The site implements strong cookie consent mechanisms and complies with GDPR requirements, but lacks explicit security policies or incident response information. Overall, Rexel's website demonstrates high professionalism and business credibility but requires urgent security improvements to align with best practices.