Security Directory

S

Swat.io GmbH

swat.io

0

Swat.io GmbH is a mature technology company based in Austria, specializing in SaaS social media management tools designed for professionals and teams. Their platform offers comprehensive services including publishing, community management, customer service, automation, analytics, and AI-powered assistance. The company has a strong market presence with over 30,000 users and is certified under ISO 27001, reflecting a commitment to information security. The website is professionally designed, content-rich, and well-structured, targeting social media managers, agencies, and marketing teams. Technically, the site is built on WordPress with Elementor and uses modern SEO and marketing tools, though performance metrics indicate room for improvement. Security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which is a critical issue for a SaaS provider. Privacy compliance is well addressed with clear policies and consent mechanisms. WHOIS data confirms the legitimacy and consistency of the business entity. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect user data and maintain trust.

The website avnet.com is currently inaccessible due to a security challenge page that blocks direct access to its content. Avnet is a well-known global technology solutions provider specializing in electronic components distribution and supply chain services. The domain registration data confirms the legitimacy and consistency of the domain with the business entity. However, the lack of a valid SSL certificate and the presence of a security challenge page severely limit the ability to analyze the website's content, security posture, and compliance. The technical infrastructure indicates use of Akamai CDN services, but no modern TLS protocols or strong cipher suites are enabled, resulting in a basic and insecure SSL configuration. Overall, the website's security posture is weak due to missing HTTPS and blocked content, and no privacy or cookie policies are detectable on the landing page.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

MAN Truck & Bus Vertrieb Österreich GmbH

mantruckandbus.at

0

MAN Truck & Bus Vertrieb Österreich GmbH operates a comprehensive commercial vehicle website targeting the Austrian market, offering trucks, buses, transporters, and related services. The website demonstrates a strong market position with extensive product information, digital services, and customer engagement tools such as configurators and contact forms. The technical infrastructure leverages modern web technologies including AWS CloudFront CDN, Bootstrap, and jQuery, ensuring a responsive and user-friendly experience. However, the absence of HTTPS and a valid SSL certificate significantly undermines the site's security posture, exposing users to potential risks. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

N

Nussbaumer

nussbaumer.be

0

Nussbaumer is a Belgian-based company specializing in electrical materials for low, medium, and high voltage applications. The company operates a B2B e-commerce platform powered by Sana Commerce, offering a wide range of products and training services targeted at electrical installers and industrial clients. The website is professionally designed with clear navigation and multilingual support, primarily in Dutch and French. Technically, the site runs on Microsoft IIS 10.0 and integrates Google Tag Manager for analytics and marketing purposes. However, the absence of a valid SSL certificate and HTTPS implementation significantly weakens the security posture. While security headers are partially implemented, critical SSL/TLS configurations are missing, exposing the site to potential risks. Privacy compliance is addressed with GDPR and cookie policies, including a consent mechanism. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

K

Kraftwerk Living Technologies GmbH

kraftwerk.at

0

Kraftwerk Living Technologies GmbH is a specialist provider of integrated media technology solutions, delivering innovative and customized concepts for sectors including entertainment, industry, science, museums, exhibitions, corporate, and architectural solutions. The company operates globally with offices in Austria, China, UAE, Saudi Arabia, and South Africa, targeting businesses seeking advanced AV systems integration and media-based attractions. Their website reflects a professional and content-rich digital presence, leveraging WordPress with SEO enhancements and Google Tag Manager for analytics. However, the security posture is currently weak due to the absence of a valid SSL certificate and lack of HTTPS, which poses significant risks to user trust and data protection. Privacy policies and GDPR compliance are well addressed, but incident response and security policy disclosures are missing. Overall, the business appears legitimate and well-positioned in its niche, but urgent improvements in security infrastructure are recommended.

P

POLOPLAST GmbH & Co KG

poloplast.com

0

POLOPLAST GmbH & Co KG is a well-established Austrian manufacturer specializing in plastic pipe systems with a strong presence across Europe. The company emphasizes sustainability, innovation, and quality, offering a broad range of products including multilayer pipe systems, building drainage, and wastewater disposal solutions. Their market position is that of a technology leader with a large operational scale and a parent company affiliation with Wietersdorfer. The website reflects a professional business with clear contact information and comprehensive privacy and cookie policies, supporting GDPR compliance. Technically, the website is built on TYPO3 CMS and uses modern web technologies including Bootstrap for responsive design. However, the site suffers from slow performance and lacks HTTPS support, which is a critical security concern. The absence of SSL/TLS encryption and security headers exposes the site to potential risks and undermines user trust. Analytics and tracking tools such as Google Analytics and LeadFeeder are used with appropriate cookie consent mechanisms. Security posture is weak due to the lack of HTTPS and security headers, though no active vulnerabilities or malware were detected. Privacy compliance is strong with clear policies and consent banners. Business credibility is high given the detailed company information and social media presence. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate implementation of a valid SSL certificate, addition of security headers, performance optimization, and enhancement of incident response information to strengthen security culture and compliance.

B

Bank Gutmann

gutmann.at

0

Bank Gutmann is a well-established private banking institution based in Austria, specializing in wealth management, investment advice, and tailored investment solutions since 1922. The website reflects a professional and content-rich digital presence targeting private and institutional banking clients. The technical infrastructure is built on the Liferay CMS platform with modern JavaScript frameworks such as React and Clay UI, indicating a mature digital environment. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture of the website, exposing users to potential risks. Privacy and cookie policies are present and GDPR compliant, with a moderate level of user tracking via Piwik PRO analytics. Overall, the website demonstrates good business credibility and user experience but requires urgent security improvements to protect client data and maintain trust.

A

Austria Center Vienna

acv.at

0

Austria Center Vienna (ACV) is Austria's largest congress center, offering extensive event spaces and modern technology in a central location in Vienna. It serves a wide range of event types including congresses, exhibitions, corporate events, product presentations, galas, and e-sports, targeting both national and international clients. The business is operated by the public company IAKW-AG and holds a strong market position with numerous awards and certifications, emphasizing sustainability and innovation. Technically, the website is built on modern frameworks like Next.js and React, hosted via Cloudflare, and integrates consent management tools such as Usercentrics. However, the security posture is currently weak due to the absence of a valid SSL certificate and lack of TLS protocol support, which is a critical issue. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website is professional, content-rich, and trustworthy but requires urgent security improvements to protect user data and enhance trust.

S

Suntory Global Spirits

beamsuntory.com

0

Suntory Global Spirits is a leading global manufacturer and marketer of premium spirits, including whiskey, tequila, vodka, and gin. The company emphasizes quality craftsmanship, sustainability, and cultural heritage, targeting a global audience of premium spirit consumers and industry professionals. The website is professionally designed, content-rich, and consistent with the brand's market position and values. Technically, the site uses Drupal 10 CMS with modern JavaScript libraries and Google Tag Manager for analytics and marketing. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting good privacy compliance. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

BE-terna

terna.com

0

BE-terna is a medium-sized technology solutions provider specializing in modern business software solutions including ERP, CRM, business intelligence, AI, and automation. The company partners with leading global technology providers such as Microsoft, Infor, Qlik, and UiPath, positioning itself as a trusted partner for digital transformation across multiple industries including manufacturing, retail, energy, and financial services. The website reflects a professional and comprehensive digital presence with strong branding and customer trust signals. Technically, the site uses modern JavaScript libraries and CMS technologies but suffers from an invalid SSL certificate which impacts its security posture. Security headers are well configured but the lack of a valid HTTPS setup and cookie consent mechanism are notable gaps. The site does not expose contact emails or phone numbers explicitly but provides contact forms and social media channels for engagement. Overall, the business appears legitimate and well-established with a consistent domain registration and partnership ecosystem.

The website atlas.net.tr is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page, which blocks direct access to the site's content. This prevents a full assessment of the business, its services, and compliance posture. The domain is registered in Turkey and uses Cloudflare for DNS and protection, but lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. No privacy, cookie, or terms of service policies are detectable, and no contact information is available on the landing page. The technical infrastructure relies on Cloudflare, but the absence of modern TLS protocols and security best practices reduces the security posture significantly. Overall, the site exhibits minimal content and poor user experience due to the blocking mechanism.

L

Linde Material Handling Austria

linde-mh.at

0

Linde Material Handling Austria is a leading provider of material handling equipment and solutions, including forklifts, automated vehicles, and digital fleet management products. The company targets businesses requiring efficient logistics and warehouse operations, offering new, used, and rental equipment alongside comprehensive service packages. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to its audience. Technically, the site uses JavaScript, jQuery, and tracking tools like etracker and SalesViewer, hosted likely on Microsoft Azure. However, the absence of a valid SSL certificate and lack of modern TLS protocols significantly weaken the security posture, exposing users to risks. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Business credibility is strong, supported by certifications and consistent domain registration data. Overall, the site is functional and professional but requires urgent security improvements to protect users and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

O

OVIVO Inc.

ovivowater.com

0

Ovivo Inc. is a well-established global leader in sustainable water treatment solutions with over 150 years of expertise. The company provides a comprehensive portfolio of equipment, technology, and services targeting industrial, municipal, and electronics sectors. The website reflects a mature digital presence with multilingual support and rich content tailored for B2B audiences. Technically, the site is built on WordPress with modern SEO and analytics tools, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and HTTPS support. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Overall, Ovivo demonstrates strong business credibility and professionalism but must urgently address its SSL/TLS configuration to improve security posture and user trust.

C

Clariant Ltd.

clariant.com

0

Clariant Ltd. is a leading global specialty chemicals company focused on delivering innovative and sustainable chemical solutions across multiple industries including energy, manufacturing, and plastics. The website reflects a mature enterprise with comprehensive content, strong branding, and a clear business model targeting industrial customers, investors, and job seekers. Technically, the site is built on a modern CMS platform (Sitecore) and integrates multiple marketing and analytics tools, demonstrating a high level of digital maturity. However, the absence of a valid SSL/TLS certificate and disabled TLS protocols represent a critical security weakness that undermines user trust and data protection. While security headers and privacy policies are well implemented, the lack of HTTPS significantly lowers the overall security posture. Strategic improvements in SSL deployment and enhanced incident response documentation would strengthen the site’s security and compliance standing.

The website cognosec.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, presenting a security challenge page instead of the actual site content. This prevents any meaningful analysis of the business or its services. The domain is mature, registered since 2009 with GoDaddy, and shows strong domain protection measures. However, the lack of a valid SSL certificate and HTTPS support is a critical security deficiency. The technical infrastructure relies on Cloudflare for DNS and security services, but the absence of TLS protocols and security best practices reduces the site's security posture significantly. Overall, the site is not accessible to users, resulting in a very low AI score and limited insights into business operations or compliance.

L

Le Domaine Forget de Charlevoix

domaineforget.com

0

Le Domaine Forget de Charlevoix is a well-established international academy and festival specializing in music and dance, located in Quebec, Canada. The organization offers a variety of cultural and educational services including intensive training stages, a renowned summer festival, concerts, and accommodation facilities. Their target audience includes musicians, dancers, cultural tourists, and donors. The website reflects a professional and consistent brand with good content quality and clear navigation, primarily in French with English options. Technically, the site uses ASP.NET MVC framework hosted likely on Microsoft Azure, with integrated analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. However, the site lacks a valid SSL certificate, which is a critical security flaw, and does not implement advanced security headers or DNS security features. Privacy compliance is basic with cookie consent mechanisms but lacks explicit GDPR compliance indicators or a data protection officer contact. Overall, the website is functional and credible but requires urgent security improvements to protect user data and enhance trust.

A

Active Solution

activesolution.at

0

Active Solution GmbH is a medium-sized Austrian technology and engineering company specializing in IT and engineering consulting, project execution, and recruitment services. With 17 years of experience and a portfolio of reputable clients, the company positions itself as a dedicated and passionate service provider for IT professionals and engineers. The website reflects a professional and consistent brand image targeting IT and engineering talent and clients. Technically, the site is built on TYPO3 CMS and uses modern JavaScript and CSS, but lacks HTTPS, which is a critical security gap. The presence of cookie consent and Google Analytics indicates some privacy awareness, though no explicit security or incident response policies are published. Overall, the company demonstrates moderate digital maturity but requires urgent improvements in security infrastructure to protect user data and enhance trust.

Mindbreeze GmbH is a medium-sized technology company specializing in AI-based enterprise search and knowledge management solutions. Their flagship product, Mindbreeze InSpire, empowers organizations to transform data into actionable insights for critical business decisions. The company is recognized as a leader in the IDC MarketScape and serves a global clientele including major enterprises such as Lufthansa and Daimler AG. The website is professionally designed, mobile-optimized, and rich in relevant content targeting enterprise customers seeking AI-driven knowledge management solutions. Technically, the site runs on Drupal 10 with a modern tech stack but lacks a valid SSL certificate, which critically impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms and business email validation on forms. Social media presence is strong across major platforms. Overall, the domain registration and website content are consistent and trustworthy, though the absence of HTTPS is a significant security concern.

Albert Berner Deutschland GmbH operates a comprehensive B2B e-commerce platform specializing in professional tools, chemicals, and related products primarily serving the automotive and industrial sectors in Germany. The company is well-established with a strong market position and a broad product catalog supported by detailed categorization and user-friendly navigation. Technically, the website employs modern JavaScript libraries, consent management tools, and extensive marketing and analytics integrations, indicating a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. Despite this, the site maintains good privacy compliance with clear policies and consent mechanisms. Overall, the business is credible and professional, but urgent remediation of the SSL/TLS issue is recommended to enhance security and trust.

R

Ricoh USA, Inc.

ricoh-usa.com

0

Ricoh USA, Inc. is a leading enterprise providing digital business services and printing solutions primarily targeting businesses, government agencies, and educational institutions in the United States. The company offers a comprehensive portfolio including managed print services, cloud and IT infrastructure, cybersecurity, and business process automation. Their market position is reinforced by industry recognitions such as being named a leader in cloud print services by Quocirca and IDC MarketScape. Technically, the website is built on modern frameworks like React and Next.js, managed via Contentful CMS, and hosted with Cloudflare DNS services. However, the site suffers from a critical security weakness due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy and cookie policies are well implemented with consent mechanisms, and contact information is readily available through multiple channels. Overall, the website demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

E

esarom gmbh

esarom.com

0

esarom gmbh is a medium-sized manufacturing company based in Austria specializing in the development of compounds, flavours, extracts, and ingredients for the beverage and food industries. The company positions itself as a global partner in taste, serving a broad international market with a strong export rate exceeding 80%. Their business model focuses on B2B partnerships, providing tailored flavour solutions and full-service support to manufacturers worldwide. The website reflects a professional and well-branded presence with multilingual support and detailed partner network information. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO, multilingual support, and user experience enhancements. However, the site suffers from a critical security misconfiguration: it lacks a valid SSL certificate and does not properly support HTTPS, which significantly undermines its security posture. Despite this, the site implements several security headers and content policies that indicate an awareness of security best practices. From a security perspective, the absence of HTTPS and TLS protocols is a major vulnerability, exposing users to potential interception and undermining trust. The site lacks explicit incident response or vulnerability disclosure policies, and no cookie consent mechanism was detected, which may impact privacy compliance. The presence of certifications such as halal, kosher, and organic, along with transparent contact information and a global partner network, enhance business credibility. Overall, while the business and content quality are strong, the technical and security shortcomings, especially the missing SSL certificate, pose significant risks. Strategic improvements in SSL deployment, privacy mechanisms, and incident response transparency are recommended to elevate the site's trustworthiness and compliance.

T

TicketLens GmbH

ulmon.com

0

TicketLens GmbH operates a travel-focused media and ticket comparison platform primarily targeting travelers seeking tickets, tours, and activities worldwide. The website provides travel app reviews and curated travel content to support its audience. The business model centers on affiliate marketing and price comparison, positioning TicketLens as a niche player in the travel media sector. Technically, the site is built on WordPress with common SEO and performance plugins, hosted on WP Engine, and uses privacy-conscious analytics via Plausible. However, the absence of a valid SSL certificate and HTTPS support represents a critical security gap, exposing users to potential risks. Privacy compliance is basic, with privacy and terms pages present but lacking explicit GDPR compliance indicators or cookie consent mechanisms. Contact information is limited to email and social media, with no phone or physical address provided. Overall, the website is functional and content-rich but requires urgent security improvements to protect user data and enhance trust.

The website jjwhotels.com is currently inaccessible, returning a 403 Forbidden error page with no accessible content. This prevents any meaningful analysis of the business, its services, or its digital presence. The domain is registered and has DNS records configured with multiple A and MX records, indicating some level of operational setup. However, the absence of a valid SSL certificate and the lack of HTTPS severely impact the security posture and trustworthiness of the site. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available from the site content. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user experience and low trust.

W

WFL Millturn Technologies GmbH & Co.KG

wfl.at

0

WFL Millturn Technologies GmbH & Co.KG is a specialized manufacturer focused exclusively on multifunctional turning, drilling, and milling centers, positioning itself as a global leader in this niche. The company offers a comprehensive portfolio including advanced machinery, software solutions like CrashGuard and iControl, and extensive customer services such as repair, maintenance, and training. Their market position is reinforced by a consistent brand presence and a professional, multilingual website targeting manufacturing industry professionals worldwide. Technically, the website is built on TYPO3 CMS with a modern tech stack including Apache and PHP, and employs professional design standards with good mobile optimization and accessibility. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall that undermines the site's security posture. The site uses several marketing and analytics tools transparently, including Google Analytics and Pardot, with appropriate privacy and cookie policies in place. From a security perspective, while some security headers are present, the lack of HTTPS and modern TLS protocols significantly lowers the security score. No WAF or blocking mechanisms are detected, and WHOIS data aligns well with the business identity, indicating legitimacy. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements. Strategic recommendations include immediate deployment of a valid SSL certificate, enabling HTTPS and modern TLS protocols, and enhancing security headers and session management. These steps will improve user trust, compliance, and overall security posture.

A

Autohaus Birngruber

birngruber.at

0

Autohaus Birngruber is a medium-sized automotive dealership based in Austria, representing major brands such as Volkswagen, Audi, Seat, Skoda, and Cupra. The company offers new and used car sales, vehicle servicing, financing, and insurance services, targeting car buyers and service customers in the Austrian market. The website reflects a professional and consistent brand presence with good content quality and user experience. Technically, the site is built on the Plone CMS platform using Python and Zope, with Cloudflare as CDN and security proxy. However, the security posture is weak due to an invalid or missing SSL certificate and lack of enabled TLS protocols, which significantly impacts the overall security score. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. The business credibility is supported by extensive customer reviews and social media presence. Overall, the site is functional and trustworthy but requires urgent improvements in SSL/TLS configuration to enhance security and user trust.

The website ricoh.at represents a corporate entity associated with Ricoh, a recognized technology company specializing in imaging and printing solutions. However, the website content is currently inaccessible, returning a 403 Forbidden error page, which blocks access to any meaningful content or user interaction. The visible page contains minimal information, including a corporate logo and a contact email address for communication. From a technical perspective, the site lacks a valid SSL/TLS certificate and does not support HTTPS, despite having a strict-transport-security header present. No modern web technologies, analytics, or advertising tools are detected, and the site performance metrics are unavailable due to the blocked content. DNS records are properly configured with valid MX and NS entries and multiple TXT records for domain verification and SPF, indicating legitimate domain management. Security posture is weak due to the absence of HTTPS and the invalid SSL configuration, which is a critical issue. No privacy, cookie, or terms of service policies are found, indicating poor privacy compliance. The domain registration data is consistent with a legitimate corporate entity, but the lack of accessible content and security controls significantly reduces trustworthiness and usability. Overall, the site is currently non-functional for end users and presents critical security and compliance gaps. Immediate remediation is required to install a valid SSL certificate, enable HTTPS, and provide accessible content with appropriate privacy and security policies to improve trust and compliance.

S

softwareXperts GmbH

sw-xperts.com

0

softwareXperts GmbH is a medium-sized IT recruitment company operating primarily in Austria and Germany, with over 20 years of experience connecting IT professionals with companies. Their website targets both IT candidates and companies seeking talent, offering job and project placement services. The company positions itself as a trusted partner with local expertise and a strong market presence in the technology recruitment sector. Technically, the website is built on TYPO3 CMS with modern frontend libraries like Bootstrap and GSAP, providing a good user experience and mobile optimization. However, the website lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security flaw. Security headers are well implemented but undermined by the absence of HTTPS. Privacy and cookie policies are present and GDPR compliant, with HubSpot used for marketing and analytics. Overall, the site is professional and credible but requires urgent security improvements to protect user data and enhance trust.

L

Laakirchen Papier AG

heinzelpaper.com

0

Heinzelpaper, operated by Laakirchen Papier AG, is a well-established paper manufacturing company with a history dating back to the late 19th century. As a subsidiary of the Heinzel Group, it focuses on sustainable paper production, renewable energy integration, and wood processing. The company targets business customers in the packaging and paper sectors, emphasizing sustainability and circular economy principles. The website reflects a professional business presence with clear navigation and relevant content, though it lacks advanced SEO and accessibility features. Technically, the website uses common web technologies such as nginx, jQuery, Bootstrap, and FontAwesome. However, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. The site lacks modern TLS protocols, HSTS, and other security headers, exposing it to potential risks. Performance is rated slow, and while mobile optimization is good, accessibility and SEO are basic. From a security perspective, the lack of HTTPS is a critical vulnerability that undermines user trust and data protection. No incident response or security policy information is provided, and no vulnerability disclosure or security.txt files are found. Cookie consent and privacy policies are implemented, indicating some compliance with GDPR requirements. Overall, the website presents a moderate risk profile due to its security deficiencies, despite good business credibility and content quality. Strategic improvements in SSL deployment, security headers, and incident response transparency are recommended to enhance trust and compliance.

SCAG Power Equipment is a well-established manufacturer specializing in commercial and residential lawn care machinery, including zero-turn riding mowers, electric mowers, stand-on mowers, and various attachments. The company operates a comprehensive dealer network and offers financing options and warranty programs, positioning itself as a trusted brand in the lawn equipment manufacturing sector. The website reflects a mature digital presence built on WordPress with WooCommerce and Elementor, providing rich product information and user-friendly navigation. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Marketing and tracking tools such as Google Tag Manager, Meta Pixel, and LinkedIn Insight Tag are actively used, with appropriate cookie consent mechanisms in place, indicating good privacy compliance. Overall, while the business and content quality are strong, immediate attention to security infrastructure is necessary to enhance the website's trustworthiness and compliance.

H

Hackabu Growth Consulting

hackabu.com

0

Hackabu Growth Consulting is a specialized digital marketing and growth consulting firm based in Austria, serving both B2C and B2B clients. The company offers a broad range of services including online marketing, marketing automation, performance marketing, programmatic advertising, social recruiting, AI consulting, and workshops. Their market position is that of a leading online marketing and growth consultancy with a strong focus on data-driven strategies and innovative technologies. The website is professionally designed, content-rich, and targets businesses seeking growth through digital channels. Technically, the site is built on WordPress with Elementor and uses various modern web technologies and optimization tools. However, a critical security issue is the absence of a valid SSL certificate and lack of enabled TLS protocols, which significantly impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the business credibility is high, supported by clear contact information, social media presence, and client logos. Strategic recommendations include immediate SSL implementation and enhancement of security configurations to protect user data and improve trust.

D

durchblicker GmbH

durchblicker.at

0

durchblicker GmbH operates Austria's largest tariff comparison portal, specializing in consumer savings on household fixed costs such as insurance, energy, finance, and telecommunications. The platform offers a broad range of comparison calculators and personalized expert consultations, positioning itself as a trusted advisor for Austrian consumers. The website is professionally designed, mobile-optimized, and rich in relevant content, supporting a strong market presence. Technically, the site leverages modern frameworks like Next.js and React, hosted on Google Cloud infrastructure with Cloudflare DNS services. However, the security posture is notably weak due to the absence of a valid SSL certificate and lack of support for modern TLS protocols, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms, and business credibility is reinforced by strong trust signals including eKomi ratings and industry awards. Strategic improvements in SSL/TLS implementation and DNS security would significantly enhance the overall security and trustworthiness of the platform.

D

Dr. Schär AG / SPA

drschaer.com

0

Dr. Schär is a well-established company specializing in products for people with special nutritional needs, particularly in gluten-free and related dietary areas. The company has a strong market position with over 100 years of experience and multiple specialized brands. Their website reflects a professional and consistent brand image, targeting consumers and healthcare professionals. Technically, the site is built on Drupal 9 with the Thunder distribution and incorporates modern web technologies and marketing tools such as Google Tag Manager. However, the absence of a valid SSL certificate and HTTPS support is a critical security weakness that significantly impacts the site's security posture. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

M

MeltPrep GmbH

meltprep.com

0

MeltPrep GmbH is a specialized company focused on providing hot-melt extrusion (HME) screening technology, primarily targeting pharmaceutical and material science professionals. Their core offering is the MeltPrep VCM Technology, which enables rapid and lossless sample preparation of thermoplastic materials. The company operates as a small-sized B2B technology provider based in Austria, with a clear market niche in HME screening. The website is built on the Wix platform, leveraging modern web technologies such as React and various Wix apps to deliver content and services. While the site demonstrates good design quality and user experience, it lacks a valid SSL certificate, which is a critical security concern. Basic privacy and cookie policies are present, but no explicit security or incident response policies were found. Overall, the website is professional and trustworthy but requires urgent improvements in security posture to protect user data and enhance trust.

A

ABAX Informationstechnik GmbH

abax.at

0

ABAX Informationstechnik GmbH is a well-established Austrian IT service provider with over 25 years of experience, offering a broad portfolio of IT infrastructure, support, security, and data analytics services. The company is part of the Roxcel Group, enhancing its enterprise readiness and market credibility. The website is professionally designed, content-rich, and targets businesses of various sizes seeking comprehensive IT solutions. Technically, the site uses WordPress with Elementor and integrates modern marketing and consent tools, but suffers from a critical lack of valid SSL/TLS configuration, impacting security posture significantly. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business presents a trustworthy and professional image, though security improvements are urgently needed.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

Berufsfoerderungsinstitut Wien

bfi.wien

0

BFI Wien is a well-established educational institution based in Austria, specializing in vocational training, continuing education, and certification courses across various sectors including IT, business, languages, and social services. The website reflects a mature digital presence with a comprehensive catalog of courses, detailed descriptions, and clear pricing structures. The target audience includes private individuals, businesses, and job seekers, supported by extensive service and advisory offerings. Technically, the site is built on TYPO3 CMS and leverages Cloudflare for hosting and CDN services, with modern web technologies ensuring good mobile responsiveness and accessibility. However, the absence of a valid SSL certificate is a critical security gap, exposing users to risks and undermining trust. The site employs GDPR-compliant cookie consent mechanisms and provides clear privacy policies, demonstrating good privacy practices. Overall, while the business and content quality are excellent, the security posture requires urgent improvement to align with best practices and user expectations.

iSi GmbH is a well-established global manufacturer specializing in pressurized gas chargers and related solutions across automotive, components, and culinary sectors. Founded in 1867 in Vienna, the company has a strong market presence with operations in over 90 countries. The website reflects a professional digital presence using modern web technologies such as Next.js and React, supported by a Shopware 6 CMS backend. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and disabled TLS protocols, which severely impact the security posture and user trust. Privacy compliance is well addressed with comprehensive policies and a consent management platform. The company maintains transparency through corporate policies and whistleblower mechanisms, and engages users via social media and career portals.

G

Goodpack IBC (Singapore) Pte. Ltd.

goodpack.com

0

Goodpack IBC (Singapore) Pte. Ltd. is a leading global provider of reusable intermediate bulk containers (IBCs) designed to optimize supply chains through a flexible pay-per-use leasing model. The company serves diverse industries including rubber, automotive, food and beverage, and chemicals, emphasizing sustainability and cost efficiency. Their extensive global network includes subsidiaries and offices across Asia, Europe, the Americas, and Africa, supporting a large-scale logistics operation. The website reflects a professional and consistent brand image with comprehensive content and clear navigation, targeting businesses seeking eco-friendly and efficient packaging solutions. Technically, the website is built on the Webflow CMS platform, leveraging modern JavaScript libraries such as jQuery, Luxy.js, and Splide.js for enhanced user experience. Hosting and CDN services are provided by Cloudflare, ensuring good content delivery performance. The site includes Google Analytics for user tracking and Google reCAPTCHA for bot protection. Mobile optimization and SEO practices are well implemented, though performance metrics are not explicitly provided. From a security perspective, the site has implemented some security headers including HSTS and CSP frame-ancestors, but critically lacks a valid SSL/TLS certificate and does not support modern TLS protocols, exposing users to potential risks. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are found. Privacy compliance is strong with a clear privacy policy, cookie consent mechanism, and GDPR considerations. Overall, Goodpack’s website demonstrates strong business credibility and digital maturity but requires urgent remediation of SSL/TLS issues to ensure secure communications and maintain trust. Strategic improvements in security policy transparency and incident response readiness would further enhance their security posture.

VML is a globally recognized marketing and communications agency operating under the parent company WPP. The company offers a broad range of services including brand experience, commerce, customer experience, and enterprise solutions, targeting enterprise-level clients. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content showcasing their work and insights. Technically, the site uses modern JavaScript frameworks and integrates analytics and marketing tools effectively, though performance is moderate. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, which is a critical risk. Privacy compliance is strong with clear policies and consent mechanisms. Overall, VML presents a credible and professional business but must urgently address its SSL/TLS configuration to ensure secure user interactions.

The website greatwallmotors.com.au is currently inaccessible due to a Cloudflare security challenge page that blocks content unless JavaScript and cookies are enabled. This prevents access to any meaningful business or content data. The domain is registered in Australia with consistent WHOIS data, but the lack of a valid SSL certificate and disabled HTTPS severely impacts the security posture. No privacy, cookie, or terms of service policies are present, and no contact information or business details are visible. The technical infrastructure relies on Cloudflare for hosting and security, but the current configuration disables HTTPS and modern TLS protocols, which is a critical security concern. Overall, the website's digital maturity is low, with poor content quality and minimal technical implementation. The security posture is weak, and privacy compliance is absent. Strategic improvements are necessary to enable secure access, provide transparency, and improve trustworthiness.

P

PV - Pensionsversicherung Österreich

pensionsversicherung.at

0

The website pensionsversicherung.at represents the official online presence of the Austrian Pensionsversicherung (PV), the largest pension insurance carrier in Austria, serving approximately 5.6 million insured persons. It provides comprehensive information and services related to pensions, care allowances, rehabilitation, and health prevention. The site is well-structured, professionally designed, and targets insured workers, pensioners, and caregivers in Austria. The business model is that of a government social insurance provider, with a strong market position as a key public institution in Austria's social security system. Technically, the website uses a mature technology stack including Apache server, jQuery 3.6, Jakarta Faces framework, and Piwik PRO for analytics. The content is rich and well-optimized for SEO and accessibility, with good mobile responsiveness. However, performance data is missing, and the site is currently served without a valid SSL certificate, resulting in no HTTPS availability, which is a critical security flaw. From a security perspective, the site implements several security headers including a detailed Content Security Policy and uses secure cookie flags. Despite this, the lack of a valid SSL certificate and absence of modern TLS protocols severely degrade the security posture. No DMARC record is found, and session resumption and OCSP stapling are not enabled. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the site is trustworthy and authoritative in its domain but must urgently address SSL/TLS issues to ensure secure communications and maintain user trust. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and enhancing email security with DMARC. The site demonstrates a high level of professionalism and business credibility but is currently limited by its security shortcomings.

P

Phoron Group GmbH

phoron.com

0

Phoron Group GmbH is an established international SAP consulting firm founded in 2004, specializing in SAP Cloud ERP, technology consulting, and sustainability solutions. The company targets medium and large enterprises, offering a comprehensive portfolio of SAP-related services. The website is professionally designed, content-rich, and consistent with the company's business model and market positioning. Technically, the site runs on Drupal 10 with Apache server and integrates Google Tag Manager and Sendinblue for marketing and analytics. However, a critical security weakness is the lack of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Business credibility is supported by trust indicators such as certifications and social media presence, though direct contact emails and phone numbers are not publicly visible. Overall, the site demonstrates strong business and content quality but requires urgent security improvements.

Moncler Group is a prominent luxury fashion company headquartered in Milan, Italy, operating key brands such as Moncler and Stone Island. The website serves as a corporate portal providing investor relations, sustainability information, and brand insights. The company targets investors, luxury consumers, and stakeholders interested in corporate governance and sustainability. Technically, the site is built on WordPress with multilingual support and uses modern JavaScript libraries and tracking tools. However, the absence of a valid SSL certificate and HTTPS support significantly weakens its security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting GDPR compliance. Overall, the site is professionally designed and content-rich but requires urgent security improvements to protect user data and enhance trust.

K

Krajete GmbH

krajete.com

0

Krajete GmbH is a specialized Austrian company focused on developing nature-inspired solutions for industrial gas emissions management. Their expertise includes adsorber-based purification and bioprocesses that transform emissions into valuable resources, helping clients comply with environmental regulations and improve sustainability. The company targets industries with emission challenges and offers services such as regenerative NOx removal, emissions valorisation, gas sampling, and biomethanation. Technically, the website is built on WordPress using Oxygen builder and Yoast SEO, with Cloudflare as a hosting proxy. However, the site lacks a valid SSL certificate, exposing it to security risks. The cookie consent mechanism is implemented, and contact information is clearly provided. Security posture is basic with room for improvement in SSL, headers, and incident response policies. Overall, the website presents a professional business presence but requires urgent security enhancements to protect user data and improve trust.

Schoellerbank AG is a well-established Austrian private bank specializing in sustainable wealth management and investment solutions. The website reflects a professional and comprehensive presentation of their services, targeting private clients seeking long-term financial security and personalized advisory. The affiliation with UniCredit S.p.A. further strengthens their market position and credibility. Technically, the website employs modern JavaScript libraries and cookie consent management tools, but suffers from poor SSL/TLS configuration, lacking a valid certificate and HTTPS support, which poses significant security risks. Privacy policies and cookie consent mechanisms are well implemented and GDPR compliant. Overall, the site offers a good user experience but requires urgent security improvements to protect user data and maintain trust.

E

EasyAds

easyads.eu

0

EasyAds is a Dutch online marketing bureau specializing in e-commerce growth through automation, marketing optimization, and integration with marketplaces and advertising channels. The company has a solid market position supported by recognized partnerships with Channable, Google, Microsoft, and Cookiebot, and has been operating since 2006. Their services include datafeed management, marketplace integrations, advertising channel management, and managed campaign services, targeting retailers and brands seeking scalable online growth. Technically, the website is built on WordPress with Elementor and several plugins, hosted on WordPress.com's Atomic infrastructure. The site is multilingual and uses modern marketing and analytics tools, including Google Analytics and LinkedIn Insight, with a cookie consent mechanism via Cookiebot. However, the SSL certificate is invalid or missing, resulting in no HTTPS support, which is a critical security issue. Security headers are partially implemented, but TLS protocols are disabled, and no DNSSEC or CAA records are configured. Contact information is available via email, phone, and contact forms, but no explicit privacy policy or terms of service pages were found. Overall, the website is professional and content-rich but requires urgent security improvements to ensure trust and compliance.

R

Research Center Pharmaceutical Engineering GmbH

rcpe.at

0

The Research Center Pharmaceutical Engineering GmbH (RCPE) is a non-profit organization specializing in pharmaceutical process engineering, combining academic expertise from Graz University of Technology, University of Graz, and Joanneum Research GmbH. The company is positioned as a global leader in pharmaceutical innovation, providing advanced scientific solutions including simulation, AI, and quality control to pharmaceutical partners worldwide. The website reflects a professional and consistent brand image targeting pharmaceutical industry stakeholders and researchers. Technically, the site is built on WordPress with modern plugins and themes but lacks a valid SSL certificate, impacting security posture. Borlabs Cookie is used for cookie consent, indicating GDPR compliance efforts. Security best practices are partially implemented but require improvements, especially in SSL configuration and security headers. Overall, the site is trustworthy and credible but should address critical security gaps to enhance user trust and compliance.