Security Directory

The website staffburg.com currently presents no accessible content or metadata, rendering it effectively a blank site. There is no visible business information, contact details, or user-facing content. The domain is registered and hosted on fidoman.ru infrastructure but lacks a valid SSL certificate, resulting in no HTTPS support and a poor security posture. The absence of privacy policies, cookie banners, or terms of service further indicates a lack of compliance with common data protection regulations. Overall, the site is not professionally maintained and does not provide any meaningful information to visitors or customers. From a technical perspective, the site is minimal with only two resources loaded and a very small page size, but it suffers from slow load times and no modern web technologies or frameworks detected. The lack of security headers, DNSSEC, and other best practices exposes the site to potential risks. No analytics or advertising technologies are present, indicating minimal digital marketing or user tracking. Security-wise, the absence of HTTPS is a critical vulnerability, severely impacting trust and data protection. No incident response or security policies are found, and no certifications or vulnerability disclosures are available. The WHOIS data is consistent but provides limited insight due to lack of business information on the site. Given these findings, the overall risk level is high due to poor security posture, lack of content, and absence of compliance measures. Strategic recommendations include immediate implementation of HTTPS, development of meaningful website content, and establishment of privacy and security policies to improve trust and compliance.

S

Sanofi

sanofi.com

0

Sanofi is a globally recognized, research and development-driven biopharmaceutical company leveraging artificial intelligence to innovate in healthcare. The company focuses on developing medicines and vaccines across multiple therapeutic areas, positioning itself as a leader in the healthcare industry with a strong commitment to improving patient outcomes. The website reflects a mature enterprise with comprehensive content targeting healthcare professionals, patients, investors, and partners. Technically, the site employs modern frameworks and libraries such as Material UI and Font Awesome, with integrations for analytics and cookie consent management. However, the security posture is currently weak due to the absence of a valid SSL/TLS certificate and missing security headers, which poses significant risks for user trust and data protection. Privacy compliance is well addressed with clear policies and consent mechanisms, aligning with GDPR requirements. Overall, while the business credibility and content quality are high, urgent improvements in security infrastructure are recommended to enhance trust and protect users.

P

ProChema GmbH

prochema.com

0

ProChema GmbH is a Vienna-based company specializing in the representation and distribution of chemical raw materials and intermediate products across Europe and Asia. Established in 1981, it operates a pan-European sales and logistics network with multiple stock points and a liaison office in China. The company emphasizes close partnerships, quality assurance, financing, and reliable supply services. Technically, the website is built on WordPress with Elementor and related plugins, but suffers from slow load times and lacks HTTPS security. Security posture is weak due to absence of SSL, security headers, and cookie consent mechanisms, posing risks to user data and trust. Overall, the business is credible and mature, but the website requires urgent security improvements to meet modern standards and compliance requirements.

D

Doka GmbH

doka.com

0

Doka GmbH is a global leader in formwork and scaffolding solutions, serving the construction industry with a broad portfolio of products and digital services. The company operates worldwide with a strong presence in Finland and is part of the Umdasch Group. The website reflects a mature business with comprehensive content, multiple language support, and customer engagement portals. Technically, the site uses modern web technologies and frameworks but lacks a valid SSL certificate, which is a significant security concern. Privacy compliance is well addressed with clear policies and consent mechanisms. The overall security posture is weak due to missing HTTPS, which impacts trust and user safety. Strategic improvements in SSL deployment and security hardening are recommended to enhance the site's credibility and protect user data.

EC Red Bull Salzburg is a well-established professional ice hockey team with a strong brand presence linked to the global Red Bull brand. Their website offers comprehensive information about the team, schedules, tickets, merchandise, and multimedia content, targeting sports fans and enthusiasts. The technical infrastructure leverages modern web technologies such as React and integrates third-party services for analytics and cookie consent management. However, the site suffers from a critical security issue due to the absence of a valid SSL certificate, resulting in no HTTPS support and lack of modern TLS protocols, which significantly impacts the security posture. Privacy compliance is well addressed with clear policies and active consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

D

DONAU Versicherung AG Vienna Insurance Group

donauversicherung.at

0

DONAU Versicherung AG Vienna Insurance Group is a large Austrian insurance company offering a broad range of insurance products including health, pension, car, home, and legal protection insurance for private and business customers. The website is professionally designed with excellent content quality, clear navigation, and good mobile optimization. It uses TYPO3 CMS and integrates modern tools such as TagCommander for tag management and Empathy Portal for live chat support. Despite these strengths, the website suffers from a critical security issue: the SSL certificate is invalid or missing, which undermines user trust and security. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. The company demonstrates strong business credibility with certifications and high customer ratings. Overall, the site is functional and trustworthy but requires urgent SSL certificate remediation to improve security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

V

Visma e-conomic A/S

e-conomic.dk

0

Visma e-conomic A/S operates e-conomic.dk, a leading Danish online accounting software platform serving over 240,000 businesses. The company offers flexible subscription packages tailored to various business sizes and integrates with multiple business systems. The website is professionally designed with comprehensive content, clear navigation, and strong branding consistency. Technically, it uses Drupal 11 CMS, Cloudflare CDN, and modern JavaScript libraries, ensuring good performance and mobile optimization. However, a critical security gap exists as the main domain lacks HTTPS/SSL, exposing users to risks. Privacy and cookie policies are well implemented with GDPR compliance, and multiple contact channels including forms, email, and phone are available. The domain is mature and consistent with the business identity, owned by Visma Group. Overall, the site is trustworthy and business credible but urgently needs to enable HTTPS to improve security posture.

R

Rituals Cosmetics

rituals.com

0

Rituals Cosmetics operates a large-scale international e-commerce platform specializing in cosmetics and lifestyle products. The website offers a localized shopping experience with multiple country and language options, leveraging Salesforce Commerce Cloud technology. The technical infrastructure includes modern JavaScript libraries, tag management, and analytics tools, but suffers from a lack of a valid SSL certificate and security headers, which significantly impacts the security posture. Privacy compliance is addressed with cookie consent mechanisms and a comprehensive privacy policy, though explicit contact and security policy information is limited. Overall, the website is professional and trustworthy from a business perspective but requires urgent improvements in security configuration to protect user data and maintain trust.

klar. Strategie- und Kommunikationsberatung GmbH is a specialized Austrian consultancy focused on strategy and communications, offering services such as strategy development, positioning, reputation management, and public relations. The company targets organizations and public sector clients seeking credible and clear communication solutions. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security shortfall that undermines user trust and data protection. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms in place. Contact information is complete and transparent, supporting business credibility. Overall, the company demonstrates strong market positioning and trust indicators but must urgently address security infrastructure gaps to align with best practices.

The website zumtobel.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page, which blocks direct access to the actual content. This prevents a full analysis of the website's business, content, and security posture. The domain is registered and uses Cloudflare as a hosting and security provider. However, the SSL/TLS configuration is invalid, with no active certificate and no TLS protocols enabled, resulting in no secure HTTPS connection. No privacy, cookie, or terms of service policies are detectable in the accessible content. No contact information or business details are present in the HTML content. The DNS setup is standard but lacks DNSSEC, and the CAA records appear malformed or undefined. Overall, the website's security posture is weak due to missing SSL and incomplete DNS security features, and the content is inaccessible due to WAF protection.

The OPEC Fund for International Development (OFID) is a mature, established international development finance institution founded in 1976 and headquartered in Austria. It serves member and partner countries by providing public sector lending, private sector and trade finance, grants, and special initiatives aimed at sustainable development. The website reflects a professional and comprehensive digital presence, targeting governments, investors, and development stakeholders globally. The content is rich, well-structured, and accessible, supporting the organization's mission to drive development and empower communities. Technically, the website employs modern technologies including a CMS platform (Ibexa), CDN (Fastly), and analytics (Google Analytics). The site is mobile-optimized with good accessibility and SEO practices. However, the absence of a valid SSL certificate and lack of modern TLS protocol support significantly impact the security posture, exposing the site to potential risks. Security-wise, the site implements several security headers such as Content Security Policy, X-Frame-Options, and Referrer Policy, but critical gaps exist in SSL/TLS configuration. No incident response or vulnerability disclosure information is found, indicating areas for improvement in security transparency and readiness. Overall, the website is credible and trustworthy, supported by consistent WHOIS data and a long domain history. Strategic recommendations include immediate SSL/TLS remediation, enabling HSTS, and enhancing incident response capabilities to strengthen security and compliance posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

BMO Global Asset Management (BMO GAM) is a leading Canadian asset manager offering a broad range of investment products including mutual funds, ETFs, and alternative products. The website clearly targets investors, advisors, and institutional clients, reflecting a mature and well-established financial services business. The company operates under the larger Bank of Montreal (BMO) umbrella, reinforcing its market position and credibility. Technically, the website leverages modern web technologies such as Next.js and integrates with Adobe Launch and OneTrust for marketing and compliance. Hosting is provided via Akamai CDN, ensuring global content delivery. However, the absence of a valid SSL certificate and disabled TLS protocols represent significant technical and security shortcomings that undermine user trust and data protection. From a security perspective, while some security headers like HSTS and X-Frame-Options are present, the lack of HTTPS and modern TLS support is a critical vulnerability. No published security policies, incident response contacts, or vulnerability disclosure mechanisms were found, indicating gaps in security transparency and readiness. Overall, the website is professionally designed and content-rich, but the lack of proper SSL/TLS configuration and security disclosures lowers its security posture and trustworthiness. Strategic improvements in SSL deployment, security policy publication, and DNS security would significantly enhance the site's security and compliance standing.

N

Nestec Scharf IT-Solutions OG

nestec.at

0

Nestec Scharf IT-Solutions OG operates as an Austrian IT security and messaging distributor with a strong emphasis on sustainability, fair partnerships, and regional focus. The company offers a broad portfolio of cybersecurity and IT solutions targeting MSPs and IT resellers primarily in Austria and Europe. Their business model centers on value-added distribution, partner support, and personalized service. Technically, the website runs on legacy Microsoft IIS 7.5 with ASP.NET 4.0 and uses common JavaScript libraries such as jQuery and Bootstrap. However, the site lacks HTTPS, modern TLS support, and critical security headers, exposing it to security risks. The absence of cookie consent mechanisms and limited privacy compliance indicators suggest room for improvement in regulatory adherence. Overall, the website is functional and content-rich but requires urgent security upgrades to protect users and improve trust.

O

OMV Petrom

petrom.com

0

OMV Petrom is a large, mature energy company primarily operating in Romania, with a focus on oil and gas exploration, production, refining, and retail services. The website serves as a corporate portal providing news, financial results, and information about strategic initiatives such as sustainability and electric mobility. The company is part of the OMV Group, a well-established parent organization. Technically, the website uses modern web technologies including jQuery and a CDN service (ZENEDGE), with Azure DNS hosting. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security deficiency. Security headers are present but cannot compensate for the missing SSL/TLS encryption. Privacy compliance is minimal, with no explicit privacy or terms of service pages found, though a cookie consent mechanism is implemented. Contact information is limited to a contact page and search form, with no direct emails or phone numbers publicly listed. Overall, the website is professionally designed and provides relevant business content but requires urgent improvements in security and privacy compliance to meet modern standards.

M

Meester Schabergschool

schabergschool.nl

0

Meester Schabergschool is a small Christian primary school located in The Hague, Netherlands, operating under the Stichting Christelijk Onderwijs Haaglanden foundation. The website provides relevant information about the school, its educational offerings including newcomer education, and contact details for parents and guardians. The site is built on a legacy Microsoft IIS and ASP.NET technology stack with the Ziber CMS platform. While the content is well structured and professionally presented, the technical infrastructure shows signs of aging with no valid SSL certificate and outdated TLS configurations, impacting security and user trust. The absence of privacy and cookie policies indicates non-compliance with GDPR requirements, which is critical for an EU-based educational institution. Contact information is clearly provided, including email, phone, physical address, and a contact form with Google reCAPTCHA v3 integration to prevent spam. Overall, the website serves its informational purpose but requires urgent security and privacy improvements to meet modern standards.

S

Stanton Chase

stantonchase.com

0

Stanton Chase is a globally recognized executive search and leadership consultancy firm founded in 1990. It operates with a large international footprint, boasting 70 offices and 350 consultants across 45 countries. The company specializes in retained executive search, leadership assessment, succession planning, and onboarding services, targeting corporate clients seeking top leadership talent. The website is professionally designed, content-rich, and well-branded, reflecting a high level of business maturity and market positioning. Technically, the website uses modern frameworks such as Nuxt.js and is hosted behind Cloudflare, leveraging CDN and security features. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support. This significantly undermines the security posture despite the presence of some security headers. The site lacks a cookie consent mechanism despite using tracking and marketing automation scripts, indicating partial privacy compliance. Security-wise, the site has implemented some best practices like HSTS and X-Frame-Options headers but fails to provide a secure encrypted connection, which is a major vulnerability. No incident response or security policy information is publicly available. The WHOIS data confirms the domain's legitimacy and maturity, consistent with the company's claimed history. Overall, Stanton Chase's website demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust. Privacy compliance should also be improved by implementing explicit cookie consent mechanisms.

S

Strelle Records

strelle.at

0

Strelle Records is a small Austrian media and event technology service provider specializing in audio, video, lighting, installations, and event planning since 2011. The company targets event organizers, artists, and media producers primarily in the Kärnten region. The website is built on WordPress with a modern theme and integrates Google Analytics and Jetpack for analytics and performance tracking. However, the site lacks HTTPS, which is a critical security deficiency. The cookie consent mechanism is implemented, but no privacy policy or terms of service pages are present, indicating partial GDPR compliance. Contact information is clearly provided, and social media presence is strong, enhancing business credibility. Overall, the technical infrastructure is moderate but requires urgent security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

L

Leica Microsystems

leica-microsystems.com

0

Leica Microsystems is a well-established global leader in microscopy and imaging solutions, serving diverse sectors including life sciences, industrial manufacturing, medical specialties, and education. The company offers a broad portfolio of products ranging from light and confocal microscopes to software and consumables, supported by comprehensive service and application support. The website reflects a mature digital presence with rich, professional content and consistent branding, targeting scientific and industrial professionals worldwide. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent. However, the current lack of a valid SSL certificate and absence of HTTPS significantly undermines the security posture, despite the presence of several security headers and policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. WHOIS data confirms the domain's maturity and legitimacy, registered under Network Solutions without privacy protection, consistent with the company's profile. Strategic improvements in SSL/TLS configuration and enhanced security practices are recommended to elevate trust and protect user data.

Europapier International AG is a large, well-established paper merchant headquartered in Vienna, Austria, with a strong presence across Central and Eastern Europe. The company offers a broad portfolio of paper and paper-related products, supported by extensive warehousing and distribution infrastructure. As part of the Heinzel Group since 2010, Europapier serves a diverse B2B customer base including commercial printers and specialty market businesses. The website reflects a mature digital presence with comprehensive business and product information, professional design, and good user experience. However, the absence of HTTPS and SSL/TLS encryption represents a significant security risk, undermining user trust and data protection. The site employs modern technologies such as Pimcore CMS and Google Tag Manager for analytics, but performance data suggests potential loading delays. Legal and privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, Europapier demonstrates strong business credibility but requires urgent security improvements to align with best practices.

S

SZCO Supplies, Inc.

szco.com

0

SZCO Supplies, Inc. operates a wholesale e-commerce platform specializing in knives, swords, self-defense products, and historical replicas. The company targets wholesale buyers, collectors, and enthusiasts in the United States, offering a broad catalog of niche products. The website is built on a classic ASP.NET Web Forms platform hosted on Microsoft IIS, with Ephost as the hosting provider. The technical infrastructure includes jQuery and Bootstrap for frontend interactivity and layout. However, the site lacks modern performance optimizations and accessibility features. From a security perspective, the website does not have a valid SSL certificate, resulting in no HTTPS support, which is a critical vulnerability. Security headers are minimal, and no advanced security practices like HSTS or OCSP stapling are implemented. Privacy compliance is poor, with no visible privacy or cookie policies, and user tracking is done via Google Analytics without clear consent mechanisms. Contact information is clearly presented, enhancing business credibility, but the lack of security and privacy controls poses risks. Overall, the site is functional and professionally designed but requires urgent improvements in security and privacy compliance to protect user data and build trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, implementing comprehensive privacy policies, and enhancing security headers and protocols.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

BWT Holding GmbH

bwt.fr

0

BWT Holding GmbH operates a comprehensive website focused on water treatment solutions, targeting private consumers and professional sectors in France. The site offers detailed product and service information, supported by a consistent brand presence and multiple customer contact channels. Technically, the website uses modern JavaScript libraries, Google Tag Manager, and performance optimization tools, hosted behind Cloudflare. However, a critical security weakness is the invalid SSL certificate and lack of TLS protocol support, which significantly undermines the site's security posture. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms implemented. Overall, the site is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

B

Bacher Systems EDV GmbH

bacher.at

0

Bacher Systems EDV GmbH is a medium-sized Austrian IT services company specializing in managed services, cybersecurity, data analytics, and digital identity solutions. The company targets large enterprises, including numerous Top 100 companies in Austria, positioning itself as a trusted partner for IT infrastructure and security needs. The website reflects a professional and comprehensive digital presence with clear service offerings and client references. Technically, the site is built on Silverstripe CMS and integrates modern marketing and analytics tools, but suffers from critical SSL/TLS configuration issues that undermine its security posture. Security headers and privacy compliance are well implemented, including GDPR-aligned privacy and cookie policies with consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the company's Austrian base. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS to ensure secure communications.

Y

Yokogawa Electric Corporation

yokogawa.com

0

Yokogawa Electric Corporation is a century-old global enterprise specializing in measurement, control, and information technologies for industrial sectors such as energy and manufacturing. The company maintains a comprehensive and professionally designed website that serves a global audience with extensive product, solution, and corporate information. Technically, the site employs modern web technologies including AngularJS and integrates analytics and monitoring tools like Google Tag Manager and New Relic. However, the absence of a valid SSL certificate and HTTPS support significantly weakens its security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR standards. Overall, the website demonstrates high business credibility and content quality but requires urgent security improvements to align with best practices.

E

EVVA Sicherheitstechnologie GmbH

evva.com

0

EVVA Sicherheitstechnologie GmbH is a well-established Austrian company specializing in the development and manufacturing of mechanical, electronic, and mechatronic locking and access control systems. Positioned as a leading provider in Europe, EVVA serves a diverse range of sectors including residential, commercial, healthcare, education, and infrastructure. Their website reflects a mature business with comprehensive product offerings, detailed project references, and strong branding consistency. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates privacy tools such as TRUENDO and Google reCAPTCHA. However, a critical security shortfall is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and cookie policies are well implemented, indicating good GDPR compliance. Contact information is clearly presented with multiple channels including forms, phone, and email. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent security improvements to protect user data and maintain trust.

S

sincosinco.com

sincosinco.com

0

The website sincosinco.com is currently a parked domain primarily serving advertising content through Google Adsense and Bodis. There is no active business presence or descriptive content about services or products. The domain is mature, registered since 2011, and managed by Porkbun LLC, indicating stable ownership but no active commercial use. Technically, the site lacks HTTPS support and security best practices, resulting in a low security posture. Performance is poor with a high page load time, and there is minimal mobile or accessibility optimization. Privacy compliance is lacking, with no cookie consent or GDPR indicators. Overall, the site appears to be a placeholder rather than a functional business website.

L

Log Consulting Services

log-cs.com

0

Log Consulting Services is a specialized business consulting firm focusing on AI-powered process optimization, advanced logistics (5PL), and fiscal strategies for market expansion, particularly in Europe. The company leverages over a decade of Lean and Six Sigma expertise combined with AI analytics to deliver tailored solutions that enhance operational efficiency and support sustainable growth. The website is built on the Wix platform, utilizing various Wix apps and technologies to provide a professional and content-rich user experience. However, the site currently suffers from an invalid SSL certificate, which poses a significant security risk and undermines user trust. Additionally, while a cookie policy is present, there is no explicit consent mechanism, which may affect privacy compliance. Overall, the business presents itself as credible and professional, with clear contact information and structured data enhancing its online presence.

I

I.Q. Bürotechnik Verkauf - Service GesmbH.

iqbuerotechnik.at

0

I.Q. Bürotechnik Verkauf - Service GesmbH. is a medium-sized Austrian company specializing in printing solutions, IT services, and office technology products. The company offers a broad range of services including copiers, printers, scanners, telephony, cash register systems, and consumables, targeting business customers primarily in Austria. The website is professionally designed and provides comprehensive information about their products and services, with multiple regional locations listed. The business is positioned as an established regional provider with over 30 years of experience and verified by the Austrian Chamber of Commerce.

HypoVereinsbank by UniCredit Bank GmbH operates a professional and comprehensive banking website targeting private and corporate customers in Germany. The site offers a wide range of financial services including online banking, investment products, loans, and wealth management. It is well-positioned in the market, recognized by industry awards such as 'Bank of The Year 2024' and 'Fairste Filialbank 2024'. The website demonstrates strong branding consistency and trust indicators, with clear contact information and GDPR compliance. Technically, the site uses modern JavaScript libraries and is hosted via Akamai with Adobe Experience Manager as the CMS platform. However, performance is currently slow and SSL/TLS configuration is invalid, which poses security risks. Security headers are mostly present but the Content-Security-Policy is overly permissive. No WAF or blocking mechanisms are detected, allowing full content access. Privacy and cookie policies are implemented with consent mechanisms. Overall, the site is professional and trustworthy but requires urgent SSL fixes to improve security posture.

K

Konica Minolta Business Solutions Austria GmbH

konicaminolta.at

0

Konica Minolta Business Solutions Austria GmbH operates as a leading technology and managed service provider specializing in intelligent workplace solutions, printing systems, cloud services, and IT infrastructure management. The company holds a strong market position in Austria and the DACH region, supported by a broad portfolio including multifunctional printers, professional printing, enterprise software, cybersecurity, and healthcare solutions. Their business model leverages direct sales and a partner network to serve a diverse business clientele. Technically, the website is built on modern frameworks such as Next.js and hosted on Vercel, with a CMS likely powered by Contentstack. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is currently slow. Analytics and consent management tools like Google Tag Manager and Usercentrics are integrated, indicating a mature digital infrastructure. From a security perspective, the absence of a valid SSL certificate and HTTPS support is a critical vulnerability, severely impacting the site's security posture. While some security headers are present, the lack of TLS protocols and session management features exposes the site to risks. Privacy compliance is strong, with comprehensive policies and consent mechanisms in place. Overall, the site is professionally designed and content-rich, reflecting a reputable business. However, the critical lack of HTTPS undermines trust and security, necessitating urgent remediation to protect users and maintain compliance.

S

seso media group gmbh

seso.at

0

SESO media group gmbh is a well-established Austrian digital agency specializing in consulting, creative services, and digital development. The company targets businesses seeking to enhance their digital presence and user experience, positioning itself as a partner for digital transformation in the Economy of Experiences. Their client portfolio includes notable brands such as A1 Telekom Austria, Jägermeister, Red Bull, and AbbVie, indicating a strong market presence in Austria and Switzerland. The website content is professionally crafted, with clear messaging and consistent branding that supports their market positioning. Technically, the website is built on WordPress with a modern frontend stack including Bootstrap, jQuery, GSAP, and AOS for animations. The site is mobile-optimized and SEO-friendly, leveraging Yoast SEO plugin and structured data for enhanced search visibility. Hosting appears to be managed via GlobeDom DNS services, and email protection is handled through Microsoft Outlook's mail protection services. However, performance metrics are unavailable, and accessibility is basic but functional. From a security perspective, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical vulnerability. Although several security headers are implemented, the absence of HTTPS severely undermines the overall security posture. No vulnerability disclosure or incident response policies are publicly available. Privacy and cookie policies are present and appear GDPR compliant, with a consent mechanism implemented. Contact information is comprehensive, including email, phone, physical address, and a detailed contact form. Overall, while SESO demonstrates strong business credibility and digital maturity, the lack of HTTPS is a significant risk that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and enhancing security configurations. The website otherwise reflects a professional and trustworthy digital agency with a solid market position.

Berlitz Austria GmbH is a well-established language learning and corporate training provider, offering a wide range of language courses and intercultural training programs for adults, children, and businesses. The website demonstrates a strong market position with a comprehensive service portfolio including online and on-site learning options. The technical infrastructure leverages modern technologies such as React, Gatsby, and AWS hosting, ensuring a robust digital presence. However, the site currently lacks a valid SSL certificate, which impacts its security posture. While security headers are properly configured, the absence of a cookie consent mechanism may affect GDPR compliance. Overall, the website is professionally designed, user-friendly, and content-rich, supporting a positive user experience and strong business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 17 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

INFINA

infina.at

0

INFINA is a leading independent credit brokerage firm in Austria specializing in residential construction financing. The company offers comprehensive credit comparison services from over 120 banks, personal consultation, and a wide range of financial tools to assist customers in securing optimal mortgage financing. Their extensive network of over 100 local partners ensures personalized service throughout Austria. The website reflects a mature and professional business with excellent content quality and user experience, targeting individuals and families seeking home financing solutions. Technically, the site is built on TYPO3 CMS with modern web technologies and includes interactive calculators and consent management tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business demonstrates strong credibility and market position but must urgently address its SSL/TLS configuration to improve security and trust.

H

Hochschule Neubrandenburg

hs-nb.de

0

Hochschule Neubrandenburg is a German public university of applied sciences offering a range of academic programs, research initiatives, and continuing education services primarily focused on agriculture, health, social work, and landscape sciences. The website serves students, prospective students, researchers, and regional partners with comprehensive information and resources. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. However, the absence of HTTPS/SSL is a critical security gap that undermines user trust and data protection. Security headers are well configured but cannot compensate for the lack of encryption. The site lacks cookie consent mechanisms and explicit security or incident response policies. Overall, the website is professional and content-rich but requires urgent security improvements to meet modern standards.

G

Gofore Oyj

e-mundo.de

0

Gofore Oyj is a Finnish digital consulting company that has integrated eMundo GmbH to strengthen its presence in the DACH region, operating under the Gofore brand with a new Munich headquarters. The website content is professional, well-structured, and targets businesses seeking digital transformation services. The technical infrastructure is based on WordPress CMS hosted on AWS with modern analytics and marketing tools, but performance is currently slow and the site lacks HTTPS, which is a critical security gap. Security posture is weak due to missing SSL/TLS certificates and lack of modern protocol support, though other security best practices like SPF and vulnerability mitigations are in place. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site is credible and trustworthy but urgently needs to address HTTPS and SSL issues to improve security and user trust.

A

Arduino

arduino.cc

0

Arduino is a globally recognized open-source electronics platform that empowers makers, professionals, and educators to innovate with accessible hardware and software solutions. The company maintains a strong market position with a comprehensive product portfolio including hardware boards, cloud services, and educational resources. Their digital infrastructure leverages modern web technologies such as Next.js and DatoCMS, hosted on AWS and delivered via Cloudflare CDN, ensuring a robust and scalable online presence. Despite a rich content offering and professional design, the website currently suffers from critical SSL/TLS misconfigurations that undermine its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to user data protection. Overall, Arduino demonstrates high business credibility and technical maturity but should urgently address SSL certificate validity and TLS protocol support to enhance security and trust.

N

Nuance Communications

nuance.com

0

Nuance Communications is a mature enterprise technology company specializing in AI-powered healthcare and productivity solutions. Recently acquired by Microsoft, it leverages industry-leading AI, security, and infrastructure to transform workflows and boost productivity for healthcare professionals and enterprises. The website reflects a professional and consistent brand presence with clear business messaging and a strong market position in the technology and healthcare sectors. Technically, the site uses a modern tech stack including Apache, Adobe Experience Manager CMS, and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and Adobe Helix RUM. However, a critical security gap exists due to the absence of SSL/TLS encryption, exposing the site to significant risks. Security headers are well implemented, but without HTTPS, their effectiveness is limited. Privacy and legal policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the site demonstrates good digital maturity but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions and maintain trust.

U

Universität Klagenfurt

aau.at

0

Universität Klagenfurt is a large, well-established public university in Austria, serving as the largest academic institution in Carinthia. The website provides comprehensive information about academic programs, research initiatives, student services, and international collaborations. It targets a broad audience including prospective students, current students, researchers, staff, and alumni. The digital infrastructure is based on WordPress with a modern theme and multiple plugins supporting SEO, events, and accessibility. However, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical security vulnerability. Privacy and cookie policies are well implemented with user consent mechanisms, and the university demonstrates strong business credibility through multiple certifications and accreditations. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and ensure trust.

R

Rendity GmbH

rendity.com

0

Rendity GmbH operates a leading European online platform for real estate investments, enabling users to invest in rental properties and development projects starting from 100 €. The company emphasizes investor protection through regulatory compliance with electronic securities law, PCI DSS, and PSD2 standards, and offers deposit protection up to 100,000 €. The platform is technologically modern, built on Next.js and served via Cloudflare CDN, with a strong focus on user experience and mobile optimization. However, the website suffers from a critical security issue: the SSL certificate is invalid and no TLS protocols are enabled, severely impacting the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, and contact information is clearly provided. The domain registration data aligns well with the company's business claims, supporting legitimacy and trustworthiness.

The domain mastercardadvisors.com is registered and associated with Mastercard Advisors, a business likely involved in financial consulting or advisory services. However, the website is currently inaccessible, returning a 404 Not Found error page with no visible content, metadata, or business information. This severely limits the ability to assess the company's digital presence or service offerings. Technically, the site lacks a valid SSL certificate and does not support any TLS protocols, resulting in a poor security posture despite some security headers being present. DNS security features such as DNSSEC and CAA records are not enabled, further reducing the domain's security robustness. Overall, the website's lack of accessible content and invalid SSL configuration present significant risks and reduce trustworthiness.

The website for viennaconservatory.at currently serves only a minimal maintenance placeholder page with no substantive content or metadata. The domain is registered and hosted behind Cloudflare, using PHP 8.3.22, but lacks a valid SSL certificate, resulting in HTTP-only access. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided on the site. This severely limits the site's usability and trustworthiness for visitors. From a technical perspective, the site uses a basic PHP backend and Cloudflare for hosting and DNS, but performance data is unavailable and the site shows poor SEO, accessibility, and mobile optimization. Security headers are minimal and no advanced security practices are implemented. The absence of HTTPS is a critical security issue. The security posture is weak due to the lack of SSL/TLS encryption and missing security headers. No vulnerabilities such as Heartbleed or POODLE were detected, but the site is exposed to risks from unencrypted traffic. The lack of privacy and cookie policies also indicates non-compliance with GDPR and related regulations. Overall, the site is not currently functional for end users and presents significant security and compliance gaps. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies with consent mechanisms, adding contact and business information, and improving content quality and SEO to enhance trust and usability.

B

Bartenbach GmbH

bartenbach.com

0

Bartenbach GmbH is an established lighting innovation company based in Austria, specializing in holistic lighting planning, lighting technology development, and scientific research on the effects of light on humans and the environment. The company targets businesses and organizations seeking advanced lighting solutions to improve wellbeing, energy efficiency, and social interaction in spaces. Their website reflects a mature and professional presence with clear business information and a focus on innovation and sustainability. Technically, the site is built on WordPress with Elementor and uses modern SEO and marketing plugins, indicating a good level of digital maturity. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing visitors to potential risks. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

I

Ivoclar Vivadent

ivoclarvivadent.com

0

Ivoclar Vivadent operates a comprehensive and professionally designed website targeting dental professionals including dentists and technicians. The company offers innovative dental materials and digital equipment solutions, positioning itself as a leading enterprise in the healthcare sector. The website demonstrates strong digital maturity with modern JavaScript frameworks, extensive use of marketing and analytics tools, and a consistent brand presence. However, a critical security gap exists due to the absence of a valid SSL certificate and enabled TLS protocols, which significantly impacts the security posture and user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is content-rich and user-friendly but requires urgent security improvements to meet industry standards.

I

Invitario GmbH

invitario.com

0

Invitario GmbH offers a professional software solution for smart participant and invitation management tailored for various types of events including live, virtual, and hybrid formats. The company positions itself as a trusted provider with ISO 27001 certification and a strong focus on GDPR compliance, serving a broad range of industries and company sizes. Their platform supports comprehensive event marketing and management processes, integrating data analytics and personalized communication to enhance event success. Technically, the website is built on WordPress using the Divi theme and incorporates modern tools such as Lottie animations and Borlabs Cookie for consent management. However, the security posture is weakened by an invalid SSL certificate and lack of proper TLS configuration, which is a critical issue that must be addressed to ensure secure data transmission and user trust. Overall, the website demonstrates high content quality, good business credibility, and solid privacy compliance, but requires immediate improvements in SSL/TLS security to enhance its security score and user confidence.

R

Robert Bosch GmbH

bosch.us

0

Robert Bosch GmbH operates the bosch.us website as a mature, enterprise-level digital presence focused on delivering comprehensive product and service information across multiple sectors including mobility, consumer goods, and energy solutions. The website targets both consumers and business clients in the USA, providing detailed navigation, corporate information, and career opportunities. Technically, the site uses a custom Bosch CMS with integrations for privacy management and analytics, hosted on Azure infrastructure. While the site is well-designed, mobile-optimized, and SEO-friendly, it suffers from a critical security issue: the SSL certificate is invalid and no TLS protocols are enabled, severely impacting the security posture. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site reflects a professional and trustworthy corporate brand but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

The website jiricisar.cz currently serves as a minimal placeholder with extremely limited content, consisting solely of the domain name text. There is no metadata, no structured data, no contact information, and no visible business or security policies. The domain is registered and DNS records indicate hosting with svethostingu.cz, but the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. Performance is poor despite minimal content, and no modern web technologies or analytics are detected. Overall, the site appears to be either under construction or abandoned, with very low digital maturity and security posture. This presents a risk for visitors and undermines trust and credibility.