Security Directory

S

Studiewereld Laudius

laudius.nl

0

Laudius is a well-established Dutch education provider specializing in affordable, recognized home study courses. With over 40 years of experience, it targets individuals seeking flexible learning options for career advancement and personal development. The website is built on TYPO3 CMS and hosted via Cloudflare, integrating Google Tag Manager for analytics and marketing. Despite good content quality and professional design, the absence of a valid SSL certificate significantly weakens the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact channels including phone and social media. Certifications and customer reviews enhance trustworthiness. Strategic improvements in SSL implementation and security best practices are recommended to elevate overall security and user trust.

E

Eppendorf SE

eppendorf.com

0

Eppendorf SE is a well-established, leading life sciences company specializing in the development and sale of laboratory instruments, consumables, and services globally. Their product portfolio spans liquid handling, bioprocessing, centrifugation, and more, targeting academic, commercial, pharmaceutical, and industrial laboratories. The website reflects a mature, professional digital presence with comprehensive content, clear navigation, and multi-regional support. Technically, the site employs modern JavaScript frameworks and integrates advanced marketing and analytics tools, although performance data is limited. Security posture is currently weak due to invalid or missing SSL/TLS certificates and lack of enabled TLS protocols, which is a critical risk. Privacy compliance is strong, with clear cookie and privacy policies and consent mechanisms in place. Overall, the site is trustworthy and credible but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

R

R-Biopharm AG

r-biopharm.com

0

R-Biopharm AG is a well-established German company specializing in clinical diagnostics, food and feed analysis, and nutrition care solutions. With over 35 years of experience and a presence in more than 120 countries, the company offers a broad portfolio of innovative products and services targeting healthcare professionals and the food industry. Their website reflects a professional and content-rich digital presence, supporting multiple languages and providing comprehensive information about their divisions and corporate responsibility initiatives. Technically, the site is built on WordPress with modern SEO and marketing tools, though performance could be improved. Security posture is currently weak due to the absence of a valid SSL certificate and HTTPS support, which is a critical risk that should be addressed immediately. Privacy compliance is strong, with clear policies and cookie consent mechanisms in place. Overall, the company demonstrates high business credibility and trustworthiness, but must prioritize securing their web infrastructure to protect users and maintain reputation.

L

lucesem® - Ihr Komplettanbieter für EDV!

lucesem.at

0

lucesem® is a well-established IT service provider based in Klagenfurt, Austria, offering a broad range of IT solutions including managed IT services, cloud services, VoIP telephony, repair services, and data recovery for both business and private customers. The company has a strong regional presence and serves local and international clients. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on WordPress with popular plugins and themes, leveraging modern web technologies and SEO best practices. However, the absence of a valid SSL certificate is a critical security shortfall, exposing users to potential risks and undermining trust. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the business demonstrates credibility and professionalism but must urgently address its SSL/TLS configuration to improve security posture and user trust.

S

Shan Foods | Taste of Authentic Food with a Bite of Happiness

shanfoods.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 27 security findings identified across all modules.

W

Wiener Arbeitnehmer*innen Förderungsfonds

waff.at

0

The Wiener Arbeitnehmer*innen Förderungsfonds (waff) is a government-affiliated organization dedicated to supporting the workforce in Vienna through information, consultation, and financial assistance for professional development and training. The website serves as a comprehensive portal offering access to job and course searches, funding programs, and online applications, targeting both individuals and companies in Vienna. The organization holds a significant regional position as a key instrument in active labor market policies and adult education. Technically, the site is built on WordPress with Elementor, uses Matomo for analytics, and Borlabs Cookie for privacy management, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professionally designed, content-rich, and trustworthy but requires urgent security improvements to protect user data and enhance trust.

The website integrationsfonds.at currently serves only a minimal HTML page returning an HTTP 404 Not Found error, indicating the requested resource is unavailable. There is no accessible content, metadata, or business information on the site. The domain is registered and uses DNS infrastructure consistent with Austrian hosting providers and Microsoft Azure services, including Outlook mail protection for email. However, the lack of HTTPS and a valid SSL certificate severely impacts the security posture and trustworthiness of the site. No privacy, cookie, or terms of service policies are present, and no contact or business details are available on the website. Overall, the site appears inactive or improperly configured, limiting its utility and credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

Wienerberger

wienerberger.it

0

Wienerberger Italy operates a comprehensive website focused on manufacturing and distributing clay building materials, targeting construction professionals and architects. The site offers detailed product catalogs, technical resources, and support services, positioning Wienerberger as a key player in the Italian building materials market. The digital infrastructure is built on Adobe Experience Manager, leveraging modern web technologies and integrated marketing tools such as Google Tag Manager and Cookiebot for consent management. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. While the site includes privacy and cookie policies compliant with GDPR, it lacks explicit security and incident response disclosures. The domain registration is consistent with the business claims, reinforcing legitimacy. Strategic improvements in SSL deployment and security posture are essential to elevate the site's trustworthiness and compliance.

V

Venionaire DealMatrix

dealmatrix.com

0

DealMatrix is a specialized platform focused on facilitating startup valuations and connecting startups with investors through a fact-based approach and advanced matching technology. The platform offers multiple valuation methods and deal monitoring services, targeting startups and investors primarily in the finance and technology sectors. The website is built on WordPress with Elementor and integrates privacy compliance tools such as Borlabs Cookie. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, which undermines user trust and data security. The domain is mature and registered since 2011, consistent with the business's claimed history. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Social media presence and testimonials add to the platform's credibility.

Bunge Global SA operates a comprehensive global agribusiness and food ingredient supply chain, connecting farmers to consumers with a focus on sustainability and renewable energy. The website reflects a large enterprise with a professional digital presence, including regional sites and investor relations. Technically, the site uses modern JavaScript libraries, Google Tag Manager for analytics, and OneTrust for cookie consent, but suffers from a critical lack of valid SSL/TLS certificates, impacting security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is content-rich and professionally designed but requires urgent security improvements to protect user data and trust.

B

Business Angel Institute

businessangelinstitute.org

0

Business Angel Institute is a Vienna-based organization specializing in education and certification for early-stage investors, notably offering the world's first ISO-certified Business Angel Program. The website is professionally designed, targeting individual and group angel investors primarily in Europe, with a strong emphasis on bridging research and practical investment experience. Technically, the site runs on WordPress with a modern theme and integrates various third-party services for course delivery and analytics. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, exposing visitors to potential risks. Privacy compliance is basic with policies present but limited GDPR indicators. Overall, the business is credible and well-positioned in its niche, but the website requires urgent security improvements to protect users and enhance trust.

V

Venionaire Capital AG

worldventureforum.info

0

World Venture Forum 2025 is a well-established international event focused on fostering global relations in the venture capital, crypto, family office, corporate innovation, and impact investing sectors. The event is held in Kitzbühel, Austria, and features a comprehensive program with multiple unique mountain chalet venues, keynote speakers, workshops, and networking opportunities. The business model revolves around event organization, ticket sales, and sponsorship packages, targeting investors, entrepreneurs, and industry leaders. The website is professionally designed with rich content, clear navigation, and strong branding consistency. Technically, the website is built on WordPress using Elementor and several event-related plugins. It integrates Google Analytics for tracking and uses Borlabs Cookie for cookie consent management. However, the site lacks HTTPS, which is a critical security flaw, and does not implement important security headers or modern TLS protocols. Performance is moderate to slow, and while mobile optimization and accessibility are good, the absence of SSL significantly impacts the security posture. Security-wise, the site has no SSL/TLS encryption, no HSTS, no OCSP stapling, and no secure cipher suites, exposing users to potential risks. There is no visible security policy or incident response information. Privacy compliance is good with a comprehensive privacy policy and cookie consent mechanism. Business credibility is supported by detailed company information, multiple contact methods, and trust indicators such as testimonials and partner listings. Overall, the site presents a strong business and content profile but requires urgent security improvements to protect users and enhance trust. Strategic recommendations include immediate SSL implementation, adding security headers, and enhancing incident response transparency.

E

European Super Angels Club

superangels.club

0

European Super Angels Club is a pan-European investment club targeting business angels, high-net-worth individuals, family offices, and corporate venture capital units. It facilitates investments in technology startups, particularly in smart mobility, by providing access to curated deals, due diligence support, and a strong network of partners and co-investors. The website presents a professional image with detailed information about membership benefits, partners, and events, positioning itself as a key player in the European startup investment ecosystem. Technically, the website is built on WordPress using the Enfold theme and integrates various plugins for SEO, analytics, and content presentation. However, the site suffers from slow load times and lacks a valid SSL certificate, which is a critical security flaw. The absence of modern TLS protocols and security headers further weakens its security posture. The site is mobile-optimized and SEO-friendly but lacks cookie consent mechanisms despite using tracking tools. From a security perspective, the lack of HTTPS and security headers exposes users to risks and undermines trust. The WHOIS data shows a mature domain with privacy protection justified by the business nature. No WAF or blocking mechanisms are detected, allowing full content access. Overall, the site demonstrates moderate business credibility but requires urgent security improvements to protect users and enhance trust. Strategically, the club should prioritize SSL implementation, enhance security headers, and introduce privacy compliance features such as cookie consent to align with GDPR. Improving site performance and accessibility will also benefit user experience and SEO rankings.

Silberball Brand Management GmbH is a specialized consulting and creative agency focused on brand management, strategy, and digital innovation primarily serving companies in the DACH region. Established in 2003, the company offers a comprehensive suite of services including strategic brand development, branding, cultural consulting, business model strategy, digital transformation, and brand experience. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience of businesses seeking to enhance their brand value. Technically, the site is built on WordPress with common plugins and frameworks such as Bootstrap and jQuery, integrating marketing and tracking tools like HubSpot and AutopilotHQ. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. While privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, the lack of security headers and modern TLS protocols presents vulnerabilities. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

EssenceMediacom is a global media agency specializing in creating breakthroughs for brands across diverse industries. With over 10,000 employees operating in 96 markets, the company offers integrated media solutions, analytics, creative futures, and specialist B2B marketing services. The website reflects a strong market position supported by a comprehensive service portfolio and global reach. Technically, the site is built on modern frameworks such as Next.js and React, hosted via Cloudflare, and uses DatoCMS for content management. While the site demonstrates good mobile optimization, accessibility, and SEO practices, performance metrics indicate slower load times that could be improved. Security posture is moderate; although security headers and content security policies are well implemented, the lack of a valid SSL certificate and disabled TLS protocols represent significant vulnerabilities. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the site is professional and trustworthy but requires urgent SSL and TLS improvements to enhance security and user trust.

T

Trusted Shops SE

trustedshops.at

0

Trusted Shops SE operates a leading European platform providing trust and buyer protection services for online shopping. The website targets consumers primarily in German-speaking European countries, offering services such as a trustmark certification, buyer protection insurance, and verified customer reviews. The business model focuses on B2B and B2C services, supporting over 30,000 certified shops and millions of users. The company is well-established with consistent branding and strong trust indicators. Technically, the website is built on WordPress with modern marketing and consent management tools, but suffers from slow performance and lacks a valid SSL certificate, which critically impacts security. Privacy policies and GDPR compliance are well implemented. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

XIMES GmbH is a specialized consulting and software company focused on workforce management, including labor time models, shift planning, personnel demand calculation, and payroll solutions. The company targets businesses and social partners seeking practical and scientifically grounded solutions in these areas. Their website reflects a professional and consistent brand presence with detailed service offerings and clear contact information. Technically, the site is built on the Odoo CMS platform with modern web technologies but suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and user trust. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Overall, the business appears legitimate and consistent with WHOIS data, but urgent improvements in SSL/TLS configuration are necessary to enhance security and trust.

C

Cyberhouse GmbH

cyberhouse.at

0

Cyberhouse GmbH is a well-established digital agency based in Austria, specializing in web design, development, consulting, and SEO services primarily using TYPO3 and Storyblok CMS platforms. The company holds reputable certifications such as TYPO3 Gold Member and is a certified Storyblok partner, positioning itself strongly in the regional technology market. Their business model focuses on delivering full-service digital experiences to businesses seeking professional online presence solutions. Technically, the website employs modern JavaScript modules, lazy loading, and integrates bot protection for forms, indicating a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. The site includes standard privacy and terms of service pages, but lacks a cookie consent mechanism. Overall, the website is professionally designed with clear navigation and strong branding, but requires urgent security improvements to protect user data and enhance trust.

S

Südtiroler Sanitätsbetrieb

sabes.it

0

Südtiroler Sanitätsbetrieb operates as a regional healthcare provider in South Tyrol, Italy, serving the local population with healthcare services. The website is primarily a digital presence for the organization but currently offers minimal direct content or user interaction features. The technical infrastructure is hosted on Microsoft Azure and uses JavaScript-based analytics and cookie consent tools. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security deficiency. Security headers are implemented, but the absence of TLS protocols and HSTS reduces the overall security posture. Privacy compliance is limited, with no visible privacy or terms of service policies, though a cookie consent mechanism is present. WHOIS data confirms the domain is mature and legitimately registered, consistent with the organization's profile. Overall, the website requires significant improvements in security, privacy transparency, and content richness to better serve its audience and meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

fiskaly GmbH is a technology company specializing in cloud-based fiscalization solutions tailored for European markets including Germany, Austria, Spain, Italy, and France. Their services focus on enabling retailers and POS providers to comply with complex fiscal regulations through APIs and cloud services. fiskaly holds a strong market position as a leading provider of cloud TSS solutions in Germany and is expanding its footprint across Europe. The website demonstrates a professional, well-branded presence with comprehensive content, customer testimonials, and partner endorsements. Technically, the website is built on a modern Next.js framework hosted on Netlify, leveraging React and various marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer. The site is mobile-optimized and accessible, with good SEO practices. However, a critical security issue is present due to an invalid or missing SSL certificate and disabled TLS protocols, which significantly impacts the security posture. Security-wise, fiskaly implements several best practices including HSTS and security headers, and holds ISO 27001 certification, indicating a mature security framework. Despite this, the lack of a valid SSL certificate and TLS support is a major vulnerability that must be addressed urgently to protect user data and maintain trust. Overall, fiskaly presents a credible and professional business with strong compliance and technical capabilities but must remediate critical SSL/TLS issues to ensure secure and trustworthy operations online.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

Schiebel

schiebel.net

0

Schiebel is a mature, internationally recognized company specializing in the development and production of unmanned air systems and mine detection equipment, founded in 1951 and headquartered in Austria. Their product portfolio includes the CAMCOPTER® S-100 UAS and advanced mine detection systems, supported by a composite technology division. The company maintains multiple global offices and emphasizes quality certifications such as ISO 9001 and AS/EN 9100. Technically, the website is built on WordPress with common plugins and scripts, offering good content quality and SEO optimization. However, the absence of HTTPS and SSL/TLS encryption is a critical security vulnerability, severely impacting the site's security posture. While security headers are implemented, the lack of encryption exposes users and data to risks. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in security infrastructure are urgently recommended to protect the company's digital presence and customer trust.

A

alk.net

alk.net

0

Security assessment incomplete. Successfully analyzed: gdpr, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders. 19 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

free-com solutions GmbH

free-com.at

0

free-com solutions GmbH is an established Austrian technology company specializing in intuitive digitalization and automation solutions for document-driven business processes. With over 20 years of experience, they offer a range of products including invoice processing, expense management, and integration with SAP and Microsoft 365 platforms. Their solutions target both small and medium-sized enterprises as well as large corporations, emphasizing user-friendly interfaces and mobile accessibility. Technically, the website is built on WordPress with the Avada theme, leveraging modern tools like WP Rocket for performance and Borlabs Cookie for privacy compliance. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, which significantly impacts the site's security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms in place. The company maintains a strong online presence with multiple social media channels and detailed business information, enhancing trust and credibility. Overall, while the business and content quality are excellent, addressing the SSL/TLS deficiency is paramount to improve security and user trust.

P

Plato's Closet

platosclosetdurham.com

0

Plato's Closet operates a large franchise retail business specializing in buying and selling gently used name brand clothes, shoes, and accessories targeting teens and young adults. The company is positioned as the largest chain in its niche with over 500 locations across North America, emphasizing sustainability and affordability. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and marketing tools such as Google Analytics 4 and TikTok Pixel. While the site demonstrates good content quality, accessibility, and privacy compliance, it lacks a valid SSL certificate, severely impacting its security posture. Security headers are partially implemented, but the absence of HTTPS is a critical vulnerability. The domain is mature and registered consistently with the business claims, supporting legitimacy. Strategic improvements in SSL deployment and enhanced security practices are recommended to strengthen trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

Ankerbrot Holding GmbH

linauer.at

0

Linauer.at is a transitional website for the Linauer bakery brand, which is being integrated into the Ankerbrot Holding GmbH group, a well-established bakery company in Austria. The site primarily serves as a redirect landing page to the main Ankerbrot website, indicating a brand consolidation. The business operates in the retail bakery sector targeting consumers in Austria. The website content is minimal, focusing on brand transition with a video and countdown redirect. Technical infrastructure includes JavaScript libraries such as jQuery and RequireJS, hosted on ip.co.at nameservers. However, the site lacks HTTPS, which is a critical security deficiency. No security headers or cookie consent mechanisms are implemented, and performance is slow with a large page size and long load time. The WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the site demonstrates basic digital maturity but requires significant security and privacy improvements.

G

Gentics Software GmbH

gentics.com

0

Gentics Software GmbH is a medium-sized technology company based in Austria specializing in enterprise content management solutions, e-government digital services, and customized software applications. Their website presents a professional and consistent brand image targeting enterprises and government agencies seeking digital transformation and content management platforms. The company offers a range of products including the Gentics Content Management Platform and related extensions. Technically, the website uses modern frameworks such as Bootstrap 5 and implements a GDPR-compliant cookie consent mechanism with opt-in functionality. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortfall. Performance is moderate with acceptable load times and resource counts, and the site is mobile optimized with basic accessibility features. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture. No incident response or security policy information is publicly available, and no contact information is provided on the site, which may impact user trust and compliance. DNS records show standard email protection via SPF but lack DNSSEC and CAA records. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, while the business and content quality are good, the lack of HTTPS and security best practices present a significant risk. Strategic improvements in SSL deployment, security headers, and contact transparency are recommended to enhance trust and compliance.

C

Cosma

cosma.com

0

Cosma, a division of Magna International Inc., is a global provider of body, chassis, and engineering solutions primarily serving the automotive industry. The company leverages robust product engineering, tooling capabilities, and process expertise to deliver lightweight and innovative products to its customers worldwide. Positioned as a key group within a large multinational, Cosma targets automotive manufacturers and industry partners with a B2B business model focused on manufacturing and engineering services. Technically, the website is built on the Sitefinity CMS platform and utilizes modern JavaScript libraries such as jQuery, Google Tag Manager, and CookiePro for analytics and consent management. The site demonstrates good SEO, accessibility, and mobile optimization practices, with comprehensive privacy and cookie policies in place. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the site's security posture. From a security perspective, while the site implements strong content security policies and several security headers, the lack of HTTPS and TLS protocols is a critical vulnerability. This exposes users to potential data interception and undermines trust. No incident response or security policy information is publicly available, and no vulnerability disclosure or security.txt files were found. Overall, the website presents a professional and trustworthy business front with strong content and compliance practices but requires urgent remediation of its SSL/TLS configuration to meet modern security standards and protect user data effectively.

Teaching 2 Inspire is a small UK-based educational resource website focused on providing teaching tips, parenting advice, assemblies, and free materials to educators and parents. The website content is basic and somewhat dated, with a clear focus on inspirational teaching and learning practices. The technical infrastructure relies on nginx and ASP.NET, with Google Tag Manager used for analytics. However, the website lacks modern security measures, notably missing HTTPS and a valid SSL certificate, which poses significant risks to user data and trust. Privacy compliance is minimal, with no visible privacy or cookie policies, and no consent mechanisms for tracking. Overall, the website's security posture is weak, and the technical implementation is basic, limiting its professionalism and trustworthiness.

K

Knorr-Bremse AG

knorr-bremse.com

0

Knorr-Bremse AG is a global leader in manufacturing braking systems and safety-critical sub-systems for rail and commercial vehicles. With a history spanning over 28 years, the company holds a strong market position as an innovator in mobility and transport technologies. Their business model focuses on delivering advanced braking and safety solutions, complemented by comprehensive investor relations and career development programs. Technically, the website is built on a modern Angular framework, hosted on Nginx and Amazon CloudFront, with good SEO and accessibility features. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the security posture. The site implements strong security headers and content policies but lacks advanced SSL configurations and session management. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent SSL deployment to enhance security and user trust.

The website gtechlottery.com currently serves as a simple redirect page directing visitors to a domain purchase platform at v2.sav.com. There is no active business content, no privacy or cookie policies, and no contact information available. The domain is registered and not vulnerable to subdomain takeover, but the lack of SSL/TLS certificate and HTTPS support significantly reduces its security posture and trustworthiness. Technically, the site is minimal, served by nginx, with no modern security or performance optimizations. Overall, the site appears to be parked or held for sale rather than representing an active business or service.

G

granITIC

granitic.eu

0

granITIC is a small IT consulting and software development company specializing in software architecture, Oracle and Java development, and medical office software solutions. The company targets sectors such as healthcare, production, industry, trade, aeronautical, and lottery. The website presents basic information about the business and its services but lacks detailed contact information and advanced content features. Technically, the website is hosted on an Apache server running Ubuntu, with Google Analytics integrated for visitor tracking. However, the site lacks HTTPS support, has no valid SSL certificate, and does not implement modern security headers or privacy compliance mechanisms. Performance data is unavailable, but the site appears minimal and slow, with poor mobile optimization and accessibility. From a security perspective, the absence of HTTPS and security headers represents a critical vulnerability, exposing users to potential data interception and undermining trust. The lack of privacy and cookie policies further indicates non-compliance with GDPR and related regulations. DNS and SPF records are properly configured, reducing email spoofing risks. Overall, the website's risk profile is elevated due to missing fundamental security controls and privacy compliance. Strategic improvements in SSL implementation, security headers, and privacy policies are essential to enhance trustworthiness and regulatory adherence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

R

Raiffeisen Bank International

cashpresso.com

0

Cashpresso is a financial service platform provided by Raiffeisen Bank International AG, offering flexible credit and payment solutions such as installment payments and purchase on account. The website targets private and business customers primarily in Austria, providing a digital-first experience with quick online registration and management via mobile apps. The platform is well integrated with multiple partner shops and maintains a strong brand presence supported by awards and customer ratings. Technically, the site uses modern frameworks and Adobe Experience Manager CMS but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business appears legitimate and trustworthy, but the security posture requires urgent improvement to protect user data and maintain trust.

E

Erste Digital GmbH

s-itsolutions.com

0

Erste Digital GmbH is the digital and IT services arm of Erste Group, the largest banking group in Central and Eastern Europe. The company focuses on delivering best-in-class IT solutions and digital transformation services to banking entities across the region, supporting both operational and innovation activities. The website reflects a professional and modern digital presence with rich content describing the business and its mission to enhance financial health for millions of customers. Technically, the site uses modern web technologies including JavaScript modules, service workers, and ElasticSearch for search functionality, hosted behind Amazon CloudFront CDN for performance and reliability. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate and does not serve content over HTTPS, which significantly impacts the security posture and trustworthiness. Privacy and cookie policies are present and appear comprehensive, indicating good compliance with GDPR requirements. Contact information such as emails and phone numbers are not explicitly provided on the homepage, which may affect user engagement. Overall, the site demonstrates strong business credibility and technical maturity but requires urgent security improvements to enable HTTPS and strengthen its security framework.

W

weXelerate GmbH

wexelerate.com

0

weXelerate GmbH operates Austria's leading innovation ecosystem, founded in 2017 by Austrian corporates to foster innovation through a combination of physical hub space, ecosystem collaboration, and accelerator programs. The company targets innovative startups and corporates seeking to accelerate their innovation capabilities. The website is professionally designed using WordPress and Elementor, with strong SEO practices including structured data and Open Graph metadata. However, the site lacks HTTPS, which is a critical security vulnerability. Contact information and social media presence are clearly provided, supporting business credibility. The absence of a cookie consent mechanism and security headers indicates gaps in privacy compliance and security posture. Overall, the business is legitimate and well-positioned in its market, but technical and security improvements are needed to enhance trust and compliance.

Caverion Corporation is a leading northern European technical services and installation company specializing in building performance, infrastructure, and industrial site solutions. The company offers a broad range of services including automation, project management, energy solutions, and critical infrastructure support. It operates as part of the Assemblin Caverion Group, reflecting a strong market position in the energy and technical services sector. The website targets businesses and organizations seeking smart and sustainable built environment solutions. Technically, the site uses modern web technologies such as ASP.NET, Bootstrap, and Azure hosting with Cloudflare CDN. It employs multiple analytics and marketing tools, indicating a mature digital presence. However, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which is a critical vulnerability. Privacy and cookie policies are present and GDPR compliant, but no explicit security policy or incident response information is found. Overall, the website is professional and trustworthy but requires urgent SSL/TLS remediation to ensure secure communications.

C

CHONGQING JIANGJI DISTILLERY CO., LTD.

jiangjidistillery.com

0

Jiangji Distillery is a Chinese company specializing in the production and promotion of traditional Chinese baijiu and plum liqueur. The website presents a well-structured brand presence with detailed product categories, educational content about baijiu, and a focus on cultural heritage. The business targets consumers interested in authentic Chinese spirits and related cultural experiences. Technically, the website is built on WordPress with common plugins and uses Cloudflare as a CDN, but lacks a valid SSL certificate, which is a significant security concern. The site includes standard contact forms and social media integration, enhancing user engagement and brand reach. Security posture is weak due to missing HTTPS and incomplete security headers, while privacy compliance is minimal with only a basic privacy policy mention and no cookie consent mechanism. Overall, the website is functional and professional but requires urgent improvements in security and privacy compliance to build trust and protect users.

B

Brenntag

brenntag.com

0

Brenntag is a global enterprise specializing in chemical distribution, logistics, and value-added services tailored to customer needs. The website serves as a multilingual portal with a splash page for country and language selection, indicating a broad international presence. The technical infrastructure leverages modern JavaScript frameworks such as Nuxt.js and integrates with Google Tag Manager and OneTrust for analytics and cookie consent management. However, the site lacks a valid SSL certificate, which significantly impacts its security posture. No explicit privacy policy, terms of service, or contact information are readily available on the splash page, which may affect user trust and compliance. Overall, Brenntag's website reflects a professional business with good design and user experience but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

O

Otto Austria Group GmbH

unito.at

0

Otto Austria Group GmbH is a major Austrian e-commerce retailer operating multiple online shops across Austria and Switzerland. The company is part of the larger Otto Group and offers a broad range of products including living, lifestyle, fashion, and technology. The website presents professional content with strong branding and clear navigation targeting online shoppers and potential employees. Technically, the site is built on WordPress with Elementor and uses modern web technologies but lacks a valid SSL certificate, resulting in no HTTPS support. This is a critical security gap. The site complies well with GDPR and cookie consent requirements, showing a mature privacy posture. However, the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Overall, the business is credible and trustworthy, but the technical security implementation requires urgent improvement to protect user data and enhance trust.

E

Eversheds Sutherland

eversheds.at

0

Eversheds Sutherland is a global law firm with a strong presence in Austria, offering a wide range of legal services across multiple sectors including banking, energy, technology, and real estate. The firm positions itself as a responsible business focused on helping clients, people, and communities to thrive. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to business clients seeking legal expertise. Technically, the site is built on a modern stack including React and Sitecore CMS, hosted on Microsoft Azure, and integrates various analytics and marketing tools. However, performance is currently slow, and there is room for improvement in SSL/TLS configuration and security hardening. Security posture is a concern due to the invalid SSL certificate and lack of enabled TLS protocols, which exposes users to risks and undermines trust. Despite strong security headers and content security policies, the absence of proper HTTPS implementation is a critical vulnerability. Overall, the site is professional and trustworthy from a business perspective but requires urgent security improvements to protect user data and maintain compliance. Strategic recommendations include fixing SSL issues, enabling modern TLS, and enhancing session security to align with best practices.

F

Florida Association of Insurance Agents

faia.com

0

The Florida Association of Insurance Agents (FAIA) operates as a non-profit membership organization dedicated to supporting Florida insurance agents through education, advocacy, and industry services. The website reflects a mature association with a broad offering of educational programs, advocacy resources, membership benefits, and preferred provider partnerships. The target audience is primarily insurance agents and agencies within Florida, with a focus on professional development and market access. The business model centers on membership dues, educational offerings, and partnerships with service providers. Technically, the website is built on Microsoft IIS with ASP.NET and Kentico CMS, utilizing common JavaScript libraries such as jQuery and Bootstrap. While the site is content-rich and professionally designed with clear navigation, it lacks a valid SSL certificate, which is a critical security deficiency. The absence of HTTPS undermines user trust and exposes visitors to potential risks. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism. Analytics tools like Google Analytics and Microsoft Clarity are used, indicating moderate user tracking. Overall, the website is functional and credible but requires urgent security improvements to align with best practices.

S

Sigma Phi Epsilon Fraternity

sigep.org

0

Sigma Phi Epsilon is a well-established national fraternity organization focused on building balanced men through leadership, brotherhood, and educational programs. The website serves a large audience including undergraduate members, alumni, and volunteers, providing resources such as scholarships, leadership development, and community engagement. The organization maintains a consistent brand and professional online presence with clear navigation and relevant content. Technically, the site is built on WordPress with modern plugins and hosted on WP Engine via Google Cloud infrastructure. However, the site currently lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. Tracking technologies such as Google Analytics and Facebook Pixel are used extensively, but no cookie consent mechanism is implemented, indicating partial privacy compliance. Contact information and physical address are clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and comply with best practices.

Canon Austria operates as a leading provider of digital imaging and printing products in Austria, offering a wide range of cameras, lenses, printers, and professional video solutions for both consumer and business markets. The website reflects a strong market position with comprehensive product offerings and professional services, supported by a consistent and well-branded digital presence. Technically, the site leverages modern web technologies and integrates multiple third-party platforms for marketing, analytics, and customer engagement, indicating a mature digital infrastructure. However, a critical security weakness is the absence of a valid SSL certificate and lack of HTTPS support, which significantly undermines the security posture despite the presence of robust security headers and policies. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the site is professional and trustworthy but requires urgent remediation of SSL/TLS issues to ensure secure user interactions and maintain trust.