Security Directory

CERATIZIT S.A. is a leading high-technology engineering group specializing in cutting tools and hard material solutions, serving industrial and manufacturing sectors globally. The company is part of the Plansee Group and maintains a strong market position supported by innovation, patents, and sustainability certifications such as the EcoVadis Gold Rating. The website reflects a professional and well-branded digital presence with comprehensive content and multilingual support. Technically, the site uses modern frameworks including Next.js and Adobe Experience Manager, supported by Akamai CDN for content delivery. However, the security posture is currently weak due to the absence of a valid SSL certificate and HTTPS support, exposing the site to potential risks. Privacy and legal compliance are well addressed with clear policies and consent mechanisms. Overall, CERATIZIT demonstrates strong business credibility and digital maturity but requires urgent improvements in SSL/TLS security to protect users and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

ISG - International Service Group

isg.com

0

ISG - International Service Group is a well-established HR consulting company founded in 1999, specializing in recruiting, executive search, training, and personnel management services. With over 800 employees and more than 60 offices worldwide, ISG holds a strong market position as a leading personnel consulting provider in Europe and beyond. Their business model focuses on delivering tailored HR solutions across multiple industries including automotive, finance, technology, and healthcare. The website content is professionally presented, targeting businesses seeking comprehensive HR services internationally. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and uses LiteSpeed Cache for performance optimization. However, the site currently lacks a valid SSL certificate and does not support modern TLS protocols, which significantly impacts its security posture. The site includes a cookie consent mechanism and privacy policy, indicating awareness of privacy compliance, but lacks explicit security or incident response policies. From a security perspective, the absence of HTTPS and modern encryption protocols is a critical vulnerability that exposes users to risks. While some security headers like HSTS are present, the overall SSL/TLS configuration is poor. There are no detected vulnerabilities related to common exploits, but the lack of encryption is a major concern. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, ISG's website demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate installation of a valid SSL certificate, enabling modern TLS protocols, and implementing additional security headers and policies to improve the security posture and compliance.

M

Melecs EWS GmbH

melecs.com

0

Melecs EWS GmbH is a well-established electronics manufacturing services (EMS) provider headquartered in Austria with over 25 years of industry experience. The company offers comprehensive services ranging from electronics development, validation, industrialization, production, to logistics, serving multiple sectors including automotive, home appliances, intralogistics, and industrial electronics. Their global production footprint and strong customer focus position them as a reliable partner in the EMS market. The website is professionally designed, content-rich, and targets industrial clients seeking end-to-end EMS solutions. Technically, the site is built on WordPress with Elementor and uses Cloudflare for hosting and CDN services. However, the site currently lacks a valid SSL certificate and does not serve content over HTTPS, which is a significant security concern. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Contact information is clearly presented, including email, phone, physical address, and a contact form. Overall, the business credibility and website professionalism are high, but the security posture requires urgent improvement to protect user data and enhance trust.

H

Hillrom

hill-rom.com

0

Hillrom is a leading medical technology provider specializing in healthcare equipment and connected care solutions for hospitals and healthcare providers globally. The company offers a wide range of products including smart beds, patient monitoring devices, care communication systems, and surgical equipment. With a strong enterprise presence and integration with Baxter International, Hillrom positions itself as a key player in advancing connected care. The website reflects a professional and comprehensive digital presence with multiple localized versions and extensive product and service information. Technically, the site is built on Adobe Experience Manager and leverages modern technologies such as Adobe Launch and Google Tag Manager, hosted behind Cloudflare for performance and security. However, the SSL/TLS configuration is currently deficient with an invalid certificate and no enabled TLS protocols, which poses a significant security risk. Privacy and compliance policies are well documented, indicating a mature approach to data protection and regulatory adherence. Overall, the site is trustworthy and professional but requires urgent remediation of SSL issues to improve security posture and user trust.

O

Octapharma Handelsges.m.b.H.

octapharma.at

0

Octapharma Handelsges.m.b.H. is a large, family-owned healthcare company based in Austria, specializing in plasma-derived medicines and therapies for rare diseases such as hemophilia, immunology, and intensive care. The company operates globally with a strong market position and offers patient support, career opportunities, and healthcare services. The website is built on modern technologies including Next.js and React, hosted on AWS infrastructure, and managed via the Storyblok CMS. It features comprehensive privacy and cookie policies with a consent mechanism powered by Usercentrics. However, the website currently lacks a valid SSL certificate and does not support HTTPS, which is a critical security concern. Security headers are partially implemented but the absence of TLS protocols and HSTS reduces the overall security posture. Contact information is primarily available via contact forms, with no explicit phone numbers or emails prominently displayed except for a support email related to internal server error reporting. Social media presence is active on LinkedIn, YouTube, and Kununu. Overall, the website is professional, content-rich, and user-friendly but requires urgent improvements in SSL/TLS configuration to ensure secure user interactions.

I

incadea GmbH

incadea.com

0

incadea GmbH is a well-established German company founded in 2000, specializing in innovative cloud-based software solutions for the automotive retail and wholesale sectors. The company supports over 4,000 dealerships globally, leveraging Microsoft Dynamics 365 Business Central and maintaining strong partnerships with leading OEMs and Microsoft. Their offerings include dealer management systems for passenger cars and commercial vehicles, importer management solutions, and professional services such as consultancy and training. Technically, the website is built on Umbraco CMS with modern JavaScript libraries like jQuery and Swiper.js, hosted on Azure DNS infrastructure. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy and cookie policies are present with consent mechanisms, reflecting GDPR compliance efforts. Overall, the website demonstrates good content quality and business credibility but requires urgent security improvements to protect user data and enhance trust.

IVM Technical Consultants is a well-established Austrian consulting firm specializing in engineering and HR services for IT, electronics, mechanical engineering, and automation sectors. Founded in 1979, the company operates multiple locations with over 200 consultants and holds a strong market position supported by industry awards and a professional online presence. The website is built on WordPress with modern SEO tools and social media integration, reflecting a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. While security headers are properly configured, the lack of TLS protocols and cipher suites is a significant risk. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the business credibility and website quality are high, but urgent remediation of SSL issues is recommended to improve security posture and compliance.

M

MedAustron

medaustron.at

0

MedAustron is a specialized healthcare and research center based in Austria, focusing on advanced ion therapy for cancer treatment using proton and carbon ion technologies. The organization serves patients, medical professionals, and students, positioning itself as one of the few global providers of this innovative therapy. The website is professionally designed, multilingual, and provides comprehensive information about services, patient care, and research activities. Technically, the site runs on WordPress with common plugins and demonstrates good SEO and user experience, though performance metrics are unavailable. Security posture is weak due to the absence of HTTPS, no valid SSL certificate, and missing advanced security headers, which poses a critical risk. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Contact information is transparent and complete, enhancing business credibility. Overall, the site is trustworthy but requires urgent security improvements to protect user data and improve trust.

C

Celerion

celerion.com

0

Celerion is a well-established clinical research organization specializing in translational medicine and early drug development services. The company offers a broad range of clinical research solutions, bioanalytical sciences, and regulatory affairs support, targeting pharmaceutical and biotech companies globally. Their website reflects a mature business with consistent branding, good content quality, and a clear focus on their specialized healthcare sector. Technically, the site is built on WordPress and hosted on Pantheon, utilizing modern marketing and analytics tools such as Google Tag Manager, Pardot, and LinkedIn Insight Tag. However, the website suffers from a critical security deficiency due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture and trustworthiness of the site. Privacy and cookie policies are present with consent mechanisms, but no explicit security or incident response policies are found. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, while the business and content quality are strong, the lack of proper SSL/TLS security is a major concern that should be addressed promptly.

The website geba.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block page, which prevents access to any actual site content. The page presented is a security challenge indicating the visitor has been blocked, likely due to triggering security rules. No business or contact information, privacy or cookie policies, or terms of service are available for review. The technical infrastructure relies on Cloudflare for security and hosting, with DNS records indicating integration with Microsoft Outlook for email services. However, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical security deficiency. The absence of HSTS and other advanced security headers further weakens the security posture. Overall, the site’s security configuration is basic and incomplete, and the user experience is poor due to the block. The domain registration appears consistent but lacks detailed registrant information for deeper trust analysis.

B

Borealis GmbH

borealisgroup.com

0

Borealis GmbH is a leading global provider of advanced and sustainable polyolefin and base chemical solutions, with a strong focus on innovation and circular economy principles. Operating in over 120 countries and headquartered in Vienna, Austria, the company employs approximately 6,000 people and reported a net profit of EUR 2.1 billion in 2022. Their business model centers on manufacturing and supplying high-quality polymer products and base chemicals to diverse industries including energy, consumer products, mobility, healthcare, and infrastructure. Technically, the website employs modern JavaScript libraries such as jQuery, Algolia Search, and Visual Website Optimizer, and is hosted on Amazon CloudFront CDN, indicating a mature digital infrastructure. The site is well-structured with comprehensive metadata and SEO optimizations, providing a good user experience and mobile responsiveness. However, performance metrics are not available. From a security perspective, the site has several security headers implemented, but critically lacks a valid SSL certificate and proper HTTPS configuration, exposing it to significant risks. TLS protocols are disabled, and advanced security features like OCSP stapling and session resumption are missing. Privacy and compliance policies are well documented, including GDPR-compliant privacy and cookie policies, terms of service, and a responsible disclosure policy. Overall, while the business credibility and content quality are high, the lack of HTTPS and SSL is a critical vulnerability that severely impacts the security posture and overall risk profile. Strategic remediation of SSL/TLS issues is urgently recommended to protect user data and maintain trust.

C

Cumulo IT Solutions GmbH

cumulo.at

0

Cumulo IT Solutions GmbH is a specialized IT consulting firm based in Linz, Austria, founded in 2011. The company focuses on network infrastructure, identity and access management, WLAN solutions, and managed IT services targeting businesses, universities, and other institutions. Their market position is that of a trusted expert provider with a strong emphasis on quality and customer satisfaction, supported by certifications and client testimonials. Technically, the website is built on a modern WordPress platform with WooCommerce and Divi theme, integrating analytics and GDPR compliance tools. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security weakness that undermines the overall security posture. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR. Overall, the business demonstrates strong credibility and professionalism but must urgently address its SSL/TLS security to improve trust and security.

W

Walter Bösch GmbH & Co. KG

boesch.at

0

Walter Bösch GmbH & Co. KG operates a comprehensive website focused on heating, cooling, ventilation, and building automation solutions, primarily serving the Austrian market. The company positions itself as a leading provider with extensive 24/7 customer service and a broad portfolio of products and services. The website is well-structured, professionally designed, and provides rich content including customer references and detailed product information. Technically, the site uses modern technologies such as Pimcore CMS, Bootstrap framework, and service workers for enhanced user experience. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent security improvements to protect user data and enhance trust.

A

Atempo

atempo.com

0

Atempo is a mature technology company founded in 1997 specializing in data management solutions for mid-sized and corporate organizations globally. Their offerings include data protection, migration, archiving, and endpoint/server protection, targeting industries such as banking, life sciences, research, and media. The website is built on WordPress with modern plugins and technologies, hosted on OVHcloud, but lacks HTTPS which is a critical security gap. Privacy and cookie policies are comprehensive and GDPR compliant with active consent management. The security posture is weak due to missing SSL/TLS and security headers, exposing users to risks. Business credibility is supported by customer testimonials, case studies, and active social media presence. Overall, the site is professional and content-rich but requires urgent security improvements.

ReSound Brazil, operated under the global GN Hearing A/S brand, specializes in manufacturing and retailing advanced hearing aids and wireless accessories. The website targets Brazilian consumers and hearing professionals, offering product information, support, and professional services. The company is well-established with a history dating back to 1943 and maintains a strong market position in the healthcare sector. Technically, the website employs modern web technologies including Google Tag Manager and Cookiebot for analytics and consent management, hosted likely on Microsoft Azure infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Overall, the site is professional and user-friendly but requires urgent security improvements to protect user data and maintain credibility.

The website unify.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information on the site. The domain itself is mature, registered since 1990, and managed by a reputable registrar with basic domain protection. However, the lack of a valid SSL/TLS certificate and absence of HTTPS severely impacts the security posture of the site. The technical infrastructure shows Cloudflare as the hosting provider, but no modern TLS protocols or session resumption features are enabled. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available from the accessible content. Overall, the site’s security and privacy compliance are poor, and the user experience is blocked by the WAF challenge, limiting trust and usability.

A

Applied Chemicals International AG

acat.com

0

Applied Chemicals International AG operates as a medium-sized international chemical supplier specializing in innovative chemical products and technologies for wastewater treatment, paper production, and specialty industrial chemicals. The company maintains multiple offices across Europe and Africa, serving industrial clients with a B2B business model. Their website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS support significantly undermines their security posture. While security headers and content security policies are implemented, they are weakened by permissive settings and lack of modern TLS protocols. Privacy compliance is addressed with clear privacy and cookie policies, and contact information is readily available. Overall, the company presents a credible business front but must urgently address critical security gaps to protect user data and maintain trust.

S

SIWA Online GmbH

siwa.at

0

SIWA Online GmbH is a medium-sized Austrian digital agency specializing in web, app, and e-commerce solutions. The company emphasizes consulting, design, development, and ongoing support services, positioning itself as a trusted partner with ISO 27001 certification. Their market presence is supported by multiple client testimonials and a professional online presence. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and hosted on AWS CloudFront, indicating a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which undermines secure communications. The site implements strong security headers and content policies but lacks full TLS protocol support and HSTS enforcement. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business demonstrates strong credibility and professionalism but must urgently address SSL/TLS issues to improve security posture and trust.

E

Energie AG

energieag.at

0

Energie AG is a well-established regional energy provider in Upper Austria, offering a broad range of services including electricity, gas, internet, photovoltaic solutions, and electromobility products. The company positions itself as a modern and reliable energy supplier with a strong focus on customer service and sustainability. Their website reflects a mature digital presence with comprehensive content and professional design, targeting both private and business customers. Technically, the site uses a modern technology stack with various JavaScript libraries and integrates multiple analytics and marketing tools. However, a critical security issue is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Despite this, the site implements several security headers and privacy policies that comply with GDPR requirements. Overall, the business appears legitimate and trustworthy, but urgent improvements in SSL/TLS configuration are necessary to enhance security and user trust.

E

ELK GmbH

elk.at

0

ELK GmbH is a well-established Austrian company specializing in prefabricated houses, boasting over 60 years of market leadership. Their website reflects a mature business with a strong brand presence, offering a variety of housing solutions including single-family homes, bungalows, multi-family houses, and apartments. The company emphasizes sustainability and customer service, supported by multiple industry awards and partnerships such as with RB Leipzig. Technically, the website uses modern web technologies including Cloudflare CDN, Bootstrap, jQuery, and Vimeo for video content, ensuring a rich user experience and mobile responsiveness. However, the site lacks a valid SSL certificate, which is a critical security flaw that undermines user trust and data protection. Security headers are properly configured, but the absence of HTTPS and modern TLS protocols significantly lowers the security posture. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Contact information is primarily via contact forms and social media channels, with no explicit emails or phone numbers displayed. Overall, ELK GmbH's digital presence is professional and content-rich but requires urgent improvements in security and privacy compliance to align with best practices and regulatory requirements.

C

Choctaw Casinos & Resort

choctawcasinos.com

0

Choctaw Casinos & Resort operates a network of casino and resort properties primarily in Oklahoma, offering gaming, hospitality, live entertainment, dining, and rewards programs. The business is positioned as a regional leader with a strong brand presence and a focus on customer experience. Technically, the website is built on WordPress, hosted on WP Engine, and uses modern web technologies and third-party integrations such as Google Tag Manager and Vimeo. However, the absence of a valid SSL certificate and HTTPS support is a critical security vulnerability that undermines user trust and data protection. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance practices. Overall, the website is professionally designed and content-rich but requires urgent security improvements to meet modern standards.

I

ICSL GmbH

icsl.at

0

ICSL GmbH is a specialized provider of secure communication systems, focusing on high-quality, NATO-approved solutions such as Silentel and SecuSUITE. With over 20 years of experience and 13 years dedicated to secure communication, ICSL positions itself as a trusted partner for government and enterprise clients requiring robust security. The website reflects a professional and consistent brand image, targeting a niche market with a clear business model centered on consulting and secure communication services. Technically, the site is built on WordPress with a modern plugin ecosystem, but suffers from critical security shortcomings due to an invalid SSL certificate and lack of HTTPS, which significantly impacts its security posture. Privacy and legal compliance are well addressed with accessible policies and cookie consent mechanisms. Overall, ICSL demonstrates strong business credibility but must urgently address its SSL/TLS configuration to enhance trust and security.

A

ACI Worldwide

aciworldwide.com

0

ACI Worldwide is a mature, enterprise-level financial technology company specializing in global payments software and solutions. The company offers a broad portfolio of services including payments orchestration, fraud management, bill pay, and real-time payments, targeting banks, merchants, and billers worldwide. The website reflects a strong market position with extensive customer testimonials, partner logos, and a global reach across 95 countries. Technically, the site is built on WordPress hosted on WP Engine with Cloudflare CDN, leveraging modern marketing and analytics tools such as Google Tag Manager, Hotjar, and HubSpot. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture score. Security headers and content security policies are well implemented, but the lack of HTTPS is a major vulnerability. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, content-rich, and trustworthy but requires urgent remediation of SSL/TLS issues to ensure secure user interactions.

Hagleitner Hygiene International GmbH is a well-established Austrian family-owned company specializing in innovative hygiene solutions, including cleaning and disinfectant products, cosmetics, dispensers, dosing devices, and digital hygiene applications. Founded in 1971 and headquartered in Zell am See, Austria, the company operates internationally with 27 locations across 12 countries and a broad distribution network. Their market position is strong, particularly in dispenser systems and hygiene technology, supported by numerous certifications and a commitment to sustainability. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience. Hosting is managed via Cloudflare CDN with Apache on Rocky Linux. However, the website suffers from a critical security flaw: the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture and user trust. Security-wise, while the company demonstrates compliance with multiple ISO standards and environmental certifications, the website's SSL/TLS misconfiguration is a significant vulnerability. Security headers are minimal, and no advanced protections like OCSP stapling or session resumption are implemented. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the business is credible and professionally presented online, but the lack of HTTPS is a critical risk that must be addressed immediately to protect user data and maintain trust. Strategic improvements in SSL configuration and enhanced security headers are recommended to elevate the security posture and align with best practices.

K

Kellner & Kunz AG

reca.co.at

0

Kellner & Kunz AG, part of the RECA Group, is a leading specialist in C-parts management with a strong presence across Europe. The company offers a comprehensive range of over 140,000 quality products and services tailored to industry and trade sectors, supporting customers in optimizing their work processes and gaining competitive advantages. Their business model focuses on B2B supply and service, leveraging an extensive network of subsidiaries and partners across multiple countries. Technically, the website is built on WordPress with modern technologies such as Vue.js for search, Algolia, and Factfinder integrations, providing a good user experience with responsive design and SEO optimization. However, the site suffers from a critical security issue due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts its security posture. Security headers are well implemented, and privacy policies are comprehensive and GDPR compliant, but the lack of proper SSL/TLS encryption is a major vulnerability. The site uses standard tracking tools like Google Analytics and Facebook Pixel with moderate user tracking levels and appropriate consent mechanisms. Overall, the website is professional and trustworthy in content and business representation but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate SSL/TLS certificate installation, enabling HSTS, and improving security configurations.

E

ENGEL

engelglobal.com

0

ENGEL is a large, established manufacturing company specializing in injection moulding solutions, including machines, automation, and digital process optimization. The website reflects a professional B2B business model targeting manufacturing industries globally, with multi-language support and a comprehensive content offering. Technically, the site uses modern technologies such as Vue.js and Storyblok CMS, hosted on AWS CloudFront, with good SEO and mobile optimization. However, the lack of a valid SSL certificate and disabled TLS protocols represent significant security weaknesses. The site implements strong security headers and a content security policy but lacks incident response and security policy disclosures. Privacy compliance is addressed with GDPR-consent mechanisms and a detailed data protection page. Overall, the site is functional and professional but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

W

Webster University

webster.edu

0

Webster University is a well-established nonprofit higher education institution founded in 1915, serving over 13,000 students globally through multiple campuses and online programs. The website reflects a mature digital presence with comprehensive academic offerings, international reach, and strong branding consistency. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a consent management platform, indicating a commitment to privacy and analytics. However, the security posture is critically weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to potential risks. Privacy policies and cookie consent mechanisms are implemented effectively, supporting GDPR compliance. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain credibility.

The website alu.hr represents the Akademija likovnih umjetnosti, an established fine arts academy affiliated with the University of Zagreb in Croatia. It serves students, faculty, and visitors by providing academic information, event announcements, and cultural project details. The institution is mature with a domain age of 22 years and a consistent registration profile. Technically, the site runs on Apache with Ubuntu, uses CMS Contenido 4.8, and includes older JavaScript libraries such as jQuery 1.9.0. However, the website suffers from outdated technology and lacks modern performance and accessibility optimizations. Security posture is weak due to the absence of a valid SSL certificate and proper HTTPS configuration, exposing users to risks. Privacy compliance is minimal, with no visible privacy or cookie policies, and no contact information is explicitly provided on the homepage. Overall, the site is functional but requires significant improvements in security, privacy, and technical modernization to meet current standards.

A

AOP Orphan Pharmaceuticals GmbH

aoporphan.com

0

AOP Orphan Pharmaceuticals GmbH operates as a European pioneer in integrated therapies for rare diseases and critical care, serving patients, healthcare professionals, and partners. The company is positioned as a medium-sized entity within the healthcare sector, with a strong focus on niche markets and sole supplier status for key therapeutic agents. Their website reflects a professional and consistent brand image, with comprehensive content and clear navigation tailored to their target audience. Technically, the site is built on TYPO3 CMS with Vue.js components and employs Matomo and LinkedIn for analytics and marketing. However, the absence of a valid SSL certificate significantly undermines the security posture, exposing the site to risks and reducing trust. Privacy compliance is well addressed with detailed policies and consent mechanisms. Overall, the business demonstrates credibility and transparency, but must urgently address its SSL/TLS configuration to enhance security and user trust.

Raiffeisenverband Salzburg eGen operates as a large regional banking cooperative in Austria, providing a comprehensive range of financial services including retail banking, corporate banking, investment products, insurance, and real estate services. The website targets private and corporate customers primarily in the Salzburg region, emphasizing local presence and digital innovation. The business is well-positioned as the largest banking group in Austria by branch count and employees, with a strong community and regional focus. Technically, the website is built on Adobe Experience Manager CMS with modern web technologies and responsive design, offering good user experience and accessibility. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Contact information and trust indicators are prominently presented, supporting business credibility. Overall, the site is professional and content-rich but urgently requires SSL implementation to secure user data and maintain trust.

I

Interlingua Language Services ILS GmbH

interlingua.at

0

Interlingua Language Services ILS GmbH is a professional translation service provider based in Vienna, Austria, offering certified language services in over 90 languages. The company holds ISO certifications (EN ISO 17100 and EN ISO 9001:2015), positioning itself as a reliable and quality-focused player in the language services market. Their website is content-rich, professionally designed, and targets both business and private customers seeking translation, localization, and related services. Technically, the website is built on WordPress with modern plugins and multilingual support, but suffers from a critical lack of a valid SSL certificate, which undermines its security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Overall, the business demonstrates strong credibility through certifications, testimonials, and clear contact information.

L

Lürzer's Archive

luerzersarchive.com

0

Lürzer's Archive is a well-established media company specializing in providing a comprehensive archive and magazine platform for advertising professionals worldwide. With over 30 years of curated creative content, it serves as a leading resource for creatives, agencies, and industry stakeholders. The website offers subscription services, a searchable archive of print campaigns, TV commercials, and digital designs, as well as a profiles platform connecting creatives and agencies. Technically, the site is built on WordPress with WooCommerce and leverages Cloudflare CDN for performance and security. However, the absence of a valid SSL certificate and HTTPS significantly undermines its security posture. While the site includes privacy and terms policies, cookie consent mechanisms and explicit security policies are lacking, indicating room for compliance improvements. Overall, the site is professionally designed with rich content but requires urgent security enhancements to protect user data and maintain trust.

F

FLOCERT GmbH

flocert.net

0

FLOCERT GmbH is a globally recognized certification and social auditing body, primarily serving as the sole certifier for Fairtrade products. Established in 2003 and based in Germany, FLOCERT offers a comprehensive suite of services including Fairtrade and EDGE certification, social audits, and customized sustainability programs. Their mission centers on promoting fairness in global trade, ensuring ethical business practices, and supporting sustainable development across diverse sectors. The website reflects a mature digital presence with rich content, multi-language support, and strong branding aligned with their non-profit sector focus. Technically, the site is built on WordPress with modern SEO and marketing tools, but currently lacks a valid SSL certificate, which significantly impacts its security posture. Despite this, the site maintains good privacy compliance with clear policies and consent mechanisms. The absence of HTTPS and modern TLS protocols is a critical security gap that should be addressed promptly to protect user data and enhance trust. Overall, FLOCERT demonstrates a strong market position and credible business model, but must improve its technical security to align with best practices.

T

TROTEC LASER INC.

troteclaser.com

0

Trotec Laser GmbH is a well-established manufacturer of professional laser machines and materials, serving a global market including manufacturers, engravers, schools, and print shops. With over 25 years of experience, the company offers a comprehensive product portfolio including laser cutters, engravers, markers, software, and consumables, supported by a worldwide network and strong customer base. The website is professionally designed, content-rich, and supports multiple languages and regions, reflecting a mature digital presence. Technically, the site uses TYPO3 CMS and Nuxt.js, hosted behind Cloudflare CDN, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but modern TLS protocols and HSTS are missing, reducing the overall security posture. Privacy compliance is moderate with a clear privacy policy and terms of service, but no cookie consent mechanism is detected. Contact information is comprehensive and clearly presented. Overall, the site demonstrates strong business credibility and user experience but requires urgent security improvements to protect users and maintain trust.

E

Erne Fittings GmbH

ernefittings.com

0

Erne Fittings GmbH is a well-established manufacturer of premium quality pipe fittings with over 100 years of experience, serving a global industrial clientele primarily in the manufacturing and energy sectors. The company offers a comprehensive range of products including stock and production programs as well as special-purpose solutions, supported by quality certifications and a dedicated test laboratory. Their website reflects a professional and consistent brand image with clear navigation and multilingual support, targeting industrial distributors and project businesses worldwide. Technically, the site is built on WordPress with modern plugins and hosted behind Cloudflare CDN, but suffers from critical SSL/TLS misconfigurations that undermine secure communications. Security headers are partially implemented, but the lack of a valid SSL certificate and modern TLS protocols significantly lowers the security posture. Privacy compliance is generally good with a comprehensive privacy policy and terms of service, though no cookie consent mechanism is evident. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and maintain trust.

The website zumtobelgroup.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page that requires JavaScript and cookies to be enabled. This prevents access to any substantive content, metadata, or business information on the site. The domain is hosted behind Cloudflare and uses Microsoft Outlook for email services, indicating a professional infrastructure. However, the SSL certificate is invalid or missing, resulting in no HTTPS support, which is a critical security issue. Due to the blocked content, no privacy policies, cookie consent mechanisms, or contact information are available for review. The WHOIS data indicates a legitimate registration consistent with the Zumtobel Group business identity, with no suspicious patterns detected. Overall, the site’s security posture is weak due to lack of HTTPS and incomplete security configurations, and the content quality cannot be assessed. The AI overall score is low due to these critical issues and lack of accessible content.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

MM Group

mm-karton.com

0

MM Group is a global leader in consumer packaging, specializing in cartonboard, folding cartons, kraft papers, uncoated fine papers, leaflets, and labels. The company targets businesses in the packaging and manufacturing sectors, emphasizing sustainability and innovation. Their website reflects a mature digital presence with multilingual support, comprehensive business information, and investor relations transparency. Technically, the site is built on WordPress with modern JavaScript libraries and integrates analytics and consent management tools. However, the security posture is weak due to the absence of a valid SSL certificate and lack of TLS support, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration to enhance security.

P

Precision Valve & Automation, Inc.

pva.net

0

Precision Valve & Automation, Inc. (PVA) is a medium-sized manufacturing company specializing in precision fluid dispensing, selective conformal coating, and custom automation equipment. The company positions itself as a leader in its niche, serving global manufacturers with a comprehensive product and service offering. Their website reflects a professional and well-structured digital presence, leveraging WordPress CMS with advanced plugins and integrations for marketing, analytics, and user engagement. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, exposing users to potential risks and undermining trust. While privacy compliance is well addressed through cookie consent mechanisms and a comprehensive privacy policy, the lack of HTTPS significantly impacts the overall security posture. Strategic improvements in SSL implementation and security policy transparency are recommended to enhance trust and compliance.

E

EXIAS Medical GmbH

exias-medical.com

0

EXIAS Medical GmbH is a specialized healthcare company founded in 2014, focusing on the development and distribution of analyzers for point-of-care and laboratory applications. The company maintains a professional online presence with detailed product information and a clear business model targeting healthcare professionals and laboratories. Technically, the website is built on WordPress with modern plugins and SEO optimizations, though it suffers from a critical lack of HTTPS, which undermines security. Privacy compliance is strong, with GDPR-aligned cookie consent and a comprehensive privacy policy. The security posture is weak due to missing SSL/TLS and modern security headers, posing risks to user data and trust. Overall, the website is credible and well-structured but requires urgent security improvements to protect visitors and enhance trust.

V

Van Wagner

vanwagner.com

0

Van Wagner is a prominent full-service sports advertising and entertainment agency specializing in creating, connecting, and selling on behalf of world-class sports leagues, teams, colleges, and brands. The company offers a broad range of services including TV-visible signage, event production, college marketing, aerial advertising, and broadcast control center solutions. Their market position is strong, supported by partnerships with major sports leagues and Fortune 500 companies. The website reflects a mature digital presence with professional design, rich content, and effective SEO practices. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Privacy and cookie policies are well implemented, indicating good compliance with GDPR and related regulations. The site leverages modern web technologies and is hosted on a reputable platform, but performance could be improved. Overall, the business demonstrates credibility and professionalism but must address fundamental security issues to enhance trust and protect visitors.

U

Universalmuseum Joanneum GmbH

museum-joanneum.at

0

The Universalmuseum Joanneum is Austria's oldest and second largest museum institution, operating 20 museums and one zoo across 14 locations in the Steiermark region. Founded in 1811, it offers a rich cultural, historical, and natural heritage experience to a broad audience including families, schools, and art enthusiasts. The website reflects a professional and comprehensive digital presence with excellent content quality and user experience, supported by a mature TYPO3 CMS platform. However, the technical infrastructure shows significant security weaknesses, notably the absence of a valid SSL certificate and lack of HTTPS support, which critically impacts the site's security posture. Privacy and cookie policies are well implemented and GDPR compliant, but incident response and security policy information are absent. Overall, the site is trustworthy and credible but requires urgent security improvements to protect user data and enhance trust.

O

One Collective

iteams.us

0

One Collective is a US-based non-profit organization dedicated to creating sustainable and lasting change in marginalized communities worldwide through a faith-inspired, collaborative model. Their approach centers on empowering local leaders and fostering holistic community development. The website is hosted on Squarespace and integrates modern web technologies including PostHog for analytics and Termly for cookie consent management. While the site presents well-structured content and clear navigation, it suffers from a critical security issue due to an invalid SSL certificate, which undermines user trust and security. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found, though cookie consent mechanisms are in place. The organization maintains active social media channels and uses a donation platform to support its mission. Overall, the website demonstrates moderate digital maturity but requires urgent improvements in security and privacy transparency to enhance trustworthiness and compliance.

LEDVANCE GmbH operates a comprehensive corporate website focused on professional lighting, home lighting, and renewable energy solutions. The company positions itself as a leading global provider in the lighting industry, targeting both professional lighting experts and consumers. The website offers extensive product catalogs, services, and sustainability information, reflecting a mature and well-established business model. Technically, the site uses modern technologies including nginx and Pimcore CMS, with integrations such as Google Tag Manager and Usercentrics for consent management. However, the SSL/TLS configuration is currently invalid or missing, which is a critical security concern. Security headers are well implemented, but the lack of valid HTTPS reduces the overall security posture. Privacy policies and cookie consent mechanisms are present and comprehensive, indicating good compliance with GDPR. Contact information is primarily available via contact forms, with no explicit emails or phone numbers found. Overall, the website is professional and content-rich but requires urgent improvements in SSL configuration to enhance security and trust.

F

Felder Group

felder-group.com

0

Felder Group is a well-established manufacturer and distributor of woodworking machines with a global presence and multiple premium brands. The company offers a wide range of products including bandsaws, CNC machines, edgebanders, and automation solutions, targeting professional woodworking trade and industry sectors. The website is professionally designed, multilingual, and rich in content, supporting a strong brand image and customer engagement through testimonials and social media. Technically, the site uses Pimcore CMS, Cloudflare CDN, and integrates Usercentrics for consent management, but lacks a valid SSL certificate, which is a critical security gap. Security headers are minimal, and no advanced security policies or incident response information is published. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is credible and trustworthy but requires urgent security improvements to enable HTTPS and strengthen its security posture.

H

HARTL HAUS

hartlhaus.at

0

HARTL HAUS is a well-established Austrian manufacturer specializing in prefabricated wooden houses, with over 125 years of market presence. The company offers a range of modern bungalow and two-story homes, including individually planned dream houses, all produced in Austria with an integrated carpentry workshop. Their market position is strong, being a quality leader with high customer satisfaction. Technically, the website runs on TYPO3 CMS hosted on an Apache Ubuntu server, with modern marketing and consent tools integrated. However, the lack of a valid SSL certificate and HTTPS support is a significant security gap. The site includes comprehensive privacy and cookie policies with consent mechanisms, but lacks explicit terms of service and incident response information. Overall, the business is credible and trustworthy, but the security posture requires urgent improvement to protect user data and enhance trust.

The website elsner.at is a parked domain sale page operated by CORNUCOPIAS.COM OÜ, an Estonian company specializing in domain resale. The site offers the domain for sale via well-known domain marketplaces Sedo and DAN.com, highlighting experience and buyer protection programs. The technical infrastructure relies on Amazon S3 and CloudFront CDN, with minimal content and basic design elements such as Google Fonts. However, the site lacks HTTPS support due to an invalid or missing SSL certificate, which significantly impacts security and trust. No privacy, cookie, or terms of service policies are present, and no contact information is provided, limiting user trust and compliance with privacy regulations.

B

Big Brothers Big Sisters of America

bbbs.org

0

Big Brothers Big Sisters of America is a large, well-established non-profit organization dedicated to youth mentoring across the United States. The website provides comprehensive information about their programs, impact, and notable individuals associated with the organization. The technical infrastructure is based on WordPress with modern web technologies and analytics tools, hosted on Pantheon. While the site is professionally designed and content-rich, it suffers from a critical security issue due to the lack of a valid SSL/TLS certificate and proper HTTPS configuration, which significantly impacts its security posture. Privacy compliance is basic, with no clear cookie consent mechanism detected. Overall, the site is trustworthy and authoritative in its domain but requires urgent security improvements.

T

The Ritz London

theritzlondon.com

0

The Ritz London is a prestigious luxury 5-star hotel located in Mayfair, London, offering premium accommodation, Michelin starred dining, and exclusive services such as chauffeur and butler service. The website reflects a high level of professionalism with rich multimedia content and clear navigation, targeting affluent travelers seeking an iconic hospitality experience. Technically, the site is built on WordPress with WooCommerce and uses common libraries like jQuery and Owl Carousel, hosted behind Cloudflare. However, a critical security issue is the absence of a valid SSL certificate and HTTPS, which significantly impacts the security posture. Privacy and terms policies are present, but no cookie consent mechanism is detected. The business information is consistent and trustworthy, supported by WHOIS data and trust indicators such as the Royal Warrant and affiliation with The Leading Hotels of the World.