Security Directory

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

SONNENTOR Kräuterhandels GMBH operates a professional e-commerce and retail platform specializing in organic teas and spices with a strong commitment to sustainability, direct trade, and eco-friendly packaging. The company has a well-established market presence since 1988, targeting consumers interested in organic and sustainable products. The website is well-designed, mobile-optimized, and provides comprehensive content and navigation. Technically, the site uses modern technologies including Pimcore CMS, Bootstrap framework, and integrates multiple marketing and analytics tools such as Google Tag Manager, Matomo, Emarsys, and Kameleoon. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS support, which is a critical issue that must be addressed promptly to protect user data and maintain trust. Privacy compliance is strong with clear cookie consent mechanisms and GDPR-aligned privacy policies. Overall, the business credibility is high, supported by clear contact information, certifications, and consistent WHOIS data.

M

MBIT Solutions GmbH

mbit.at

0

MBIT Solutions GmbH is an established Austrian IT service provider specializing in tailored web and software solutions for medium to large enterprises and public organizations. Their offerings include enterprise-grade websites, web development, industry-specific solutions, and B2B e-commerce platforms. The company has a strong market position supported by over two decades of experience and a portfolio of reputable clients. Technically, the website is built on TYPO3 CMS, hosted on Apache servers, and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. However, the security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which undermines HTTPS security despite the presence of security headers and content security policies. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Overall, the website demonstrates high professionalism and trustworthiness but requires urgent improvements in SSL/TLS configuration to enhance security and user trust.

L

LEITNER

leitner-ropeways.com

0

LEITNER is a well-established company specializing in the manufacturing and supply of ropeway systems and components, serving sectors such as winter sports, urban transportation, tourism, and material transport. Founded in 1888 and part of the HTI Group, LEITNER holds a strong market position with a global footprint and a comprehensive portfolio of products and services including after-sales support and training. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates marketing and analytics tools such as Google Analytics and Microsoft Clarity. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS support, which is a critical vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Contact information is comprehensive and includes multiple phone numbers, emails, and forms. Overall, LEITNER's website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect user data and maintain trust.

L

Ludwig Boltzmann Gesellschaft

rare-diseases.at

0

The Ludwig Boltzmann Institute for Rare and Undiagnosed Diseases (LBI-RUD) is a specialized Austrian research institute focused on investigating rare diseases, particularly those affecting the immune system, blood formation, and nervous system. The institute operated for seven years until March 2023, contributing valuable scientific insights and supporting patients through its research. The website serves as an informational platform targeting researchers, medical professionals, and affected patients, providing news, research areas, and organizational information. The business model is non-profit, funded by grants and public sources, and it operates under the Ludwig Boltzmann Gesellschaft umbrella. Technically, the website is built on WordPress and hosted on servers associated with domaindiscount24.net. While the site has a professional design with good navigation and mobile optimization, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support. This exposes visitors to potential risks and undermines trust. The site uses Matomo analytics for user tracking and includes a cookie consent banner, indicating some level of privacy compliance, though GDPR compliance is not fully evident. Security posture is weak due to missing HTTPS, lack of security headers, and outdated SSL/TLS configurations. No incident response or security policies are publicly disclosed. Contact information is clearly provided, including phone, address, and an obfuscated email address. Social media presence is active across major platforms, enhancing outreach and trust. Overall, the website is functional and informative but requires urgent security improvements to protect users and enhance credibility. Strategic recommendations include implementing HTTPS, improving security headers, and enhancing privacy compliance documentation.

N

Norske Skog ASA

norskeskog.com

0

Norske Skog ASA is a well-established Norwegian manufacturing company specializing in publication and packaging paper products, with a strong emphasis on sustainability and innovation. The company holds a significant market position as one of the largest suppliers of newsprint and recycled containerboard in Europe. Their website reflects a professional business with clear investor relations, product information, and sustainability commitments. Technically, the site uses a traditional tech stack including jQuery, Bootstrap, and Dynamicweb CMS, with Google Tag Manager for analytics. However, the absence of HTTPS and modern security protocols is a critical vulnerability that undermines user trust and data security. Privacy compliance is minimal, with a basic privacy policy but no cookie consent mechanism. Overall, the website is content-rich and professionally presented but requires urgent security improvements.

V

VAMED WWH

vamed.com

0

VAMED WWH is a globally recognized provider of modern hospital solutions, specializing in turnkey projects that encompass design, construction, medical equipment supply, and operational support for healthcare facilities. The company has a strong international presence with a portfolio of approximately 1,000 projects across more than 98 countries, serving government health ministries and healthcare providers. The website reflects a professional and comprehensive presentation of their services and project achievements, targeting healthcare infrastructure stakeholders worldwide. Technically, the site is built on WordPress with Elementor and related plugins, offering good mobile optimization and accessibility but suffers from the critical absence of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the site's security posture and user trust. Privacy and cookie policies are well implemented with consent mechanisms, aligning with GDPR requirements. Overall, the business credibility and content quality are high, but the lack of HTTPS is a major security concern that needs immediate remediation.

The website realityconsult.com currently hosts minimal content, consisting solely of a redirect script to a /lander page. There is no visible business information, metadata, or structured data to describe the company or its services. The domain is registered and uses Amazon AWS IP addresses but lacks a valid SSL certificate, resulting in no HTTPS support. This severely impacts the security posture and trustworthiness of the site. No privacy, cookie, or terms of service policies are present, and no contact or social media information is available. Overall, the website appears inactive or under construction, providing no meaningful user experience or business insight. The lack of security best practices such as DNSSEC, CAA records, and security headers further weakens the site's security stance.

Raiffeisen Zertifikate is a leading Austrian financial services provider specializing in certificate investment products, with a strong market position evidenced by multiple awards. The website is professionally designed, content-rich, and targets investors interested in sustainable and flexible investment options. Technically, the site uses TYPO3 CMS, integrates modern analytics and marketing tools, and is hosted behind Cloudflare. However, the security posture is weakened by the absence of a valid SSL certificate and disabled modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the site is trustworthy but requires urgent SSL/TLS remediation to improve security and user confidence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

L

LOOP New Media GmbH

agentur-loop.com

0

LOOP New Media GmbH is a global digital agency specializing in digital brand building, technology, and content production for leading consumer brands. With over 400 talents across 7 offices worldwide, the company serves a diverse portfolio of high-profile clients such as Puma, Red Bull, Audi, and Breitling. The website reflects a professional and consistent brand image targeting enterprises seeking comprehensive digital marketing and content services. Technically, the site is built on Craft CMS, uses Cloudflare for hosting and CDN, and integrates Google Tag Manager for analytics. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap. Security headers are partially implemented, but modern TLS protocols and HSTS are missing, reducing the overall security posture. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Contact information is primarily via email with multiple office locations listed, but no phone numbers are explicitly provided. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

V

Viewpointsystem: Smart Glasses und Eye Tracking

viewpointsystem.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 27 security findings identified across all modules.

Bacardi Limited is the world's largest privately held spirits company, with a rich heritage dating back over 160 years. The company operates globally with a portfolio of over 200 brands and labels, serving a diverse audience including consumers, industry professionals, investors, and job seekers. The website reflects a mature business model focused on brand management, production, distribution, and corporate sustainability initiatives. Technically, the site is built on WordPress, hosted on WP Engine with Cloudflare CDN, and integrates modern marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent. However, the absence of a valid SSL certificate and lack of HTTPS significantly undermine the site's security posture, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms, but explicit security policies and incident response information are missing. Overall, the site is professional and trustworthy but requires urgent security improvements to align with best practices.

E

evolaris next level GmbH

evolaris.net

0

evolaris next level GmbH is a technology-focused company specializing in mobile communication and digital innovation services. Their website highlights their role as a bridge between science and business, offering digital assistance systems, customized solutions, software engineering, user experience design, and research activities. The company targets enterprises seeking to enhance their digital capabilities and innovation potential. The website is professionally designed, with clear navigation and relevant content, supporting their market position as an established innovation center in Austria. Technically, the website runs on WordPress CMS with common plugins such as NextGEN Gallery and EvoSlider, and uses Apache server hosting likely provided by Hetzner. While the site includes Google Analytics for user tracking, performance metrics are not optimal, and mobile optimization is good. However, a critical technical shortfall is the lack of a valid SSL certificate and HTTPS support, exposing users to security risks. From a security perspective, the site lacks HTTPS, HSTS, and modern TLS protocol support, which are fundamental for secure communications. No advanced security headers or incident response contacts are found. The absence of cookie consent mechanisms and limited privacy policy details indicate partial GDPR compliance. The WHOIS data aligns well with the website's business information, supporting legitimacy. Overall, the website presents a moderate risk profile primarily due to missing HTTPS and security best practices. Strategic improvements in SSL configuration, security headers, and privacy compliance would significantly enhance trust and security posture.

thyssenkrupp AG is a large multinational industrial technology group focused on engineering innovative and sustainable solutions for future challenges. The website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and job seekers. Technically, the site uses modern frameworks like Angular and is hosted on Amazon CloudFront, but lacks a valid SSL certificate and HTTPS enforcement, which is a critical security deficiency. Security headers are well implemented, but the absence of TLS protocols and session security features lowers the security posture significantly. Privacy compliance is good with a clear privacy policy and GDPR adherence, though no cookie consent mechanism was detected. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

CARE Österreich is a well-established non-profit organization focused on humanitarian aid and sustainable development in over 100 countries. The website reflects a professional and content-rich platform targeting donors, partners, and beneficiaries. The technical infrastructure is based on WordPress hosted on WP Engine, utilizing modern plugins and tracking tools with GDPR-compliant cookie consent. However, the absence of a valid SSL/TLS certificate is a critical security flaw that exposes users to risks and undermines trust. While privacy policies and contact information are comprehensive and transparent, the lack of incident response and security policy pages indicates room for improvement in security governance. Overall, the site demonstrates strong business credibility and user experience but requires urgent security enhancements.

Security assessment completed with an overall score of 0/100 (unknown risk). 6 critical issues require immediate attention. Total of 30 security findings identified across all modules.

Volkswagen Versicherungsdienst GmbH (VVD) is a medium-sized insurance service company operating as a subsidiary of Porsche Bank in Austria. It specializes in providing automotive insurance products and services to customers of Volkswagen Group brands and other vehicle owners. The website presents a professional and consistent brand image with comprehensive service offerings including liability, partial and full coverage insurance, legal protection, and additional guarantees. Technically, the site is built on Craft CMS and leverages Cloudflare for hosting and security, along with modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly undermines the security posture. Privacy compliance is well addressed with a detailed privacy policy and cookie consent mechanism. Contact information is clearly provided, enhancing business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

apis labor GmbH

apislabor.at

0

apis labor GmbH is an Austrian company operating as the first fully digitalized GMP laboratory in Austria, offering laboratory and consulting services primarily to the life science sector across Austria and the European Union. The company emphasizes professionalism, flexibility, and extensive experience in the life science field. The website is built on the Squarespace platform, featuring professional design and basic mobile optimization, but lacks performance metrics and advanced accessibility features. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, no modern TLS protocols enabled, and missing security headers such as HSTS. Privacy compliance is partial with a cookie consent banner present but no privacy policy or terms of service pages found. Contact information and social media presence are clearly provided, supporting business credibility. Overall, the website presents a legitimate business but requires significant improvements in security and privacy compliance to meet modern standards.

B

benteler.com

benteler.com

0

Security assessment incomplete. Successfully analyzed: nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website rccglivingspring.org is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain is registered and uses Cloudflare for DNS and security services but lacks a valid SSL certificate, resulting in no HTTPS support. The site does not present any privacy, cookie, or terms of service policies, nor does it provide contact information or forms for user interaction. The technical infrastructure relies heavily on Cloudflare, but the absence of a valid certificate and the blocking of content severely limit the ability to assess the site's digital maturity or business credibility. Security headers are present but basic, and no advanced security features like HSTS are enabled. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the lack of accessible content and security shortcomings.

S

Syensqo

cytec.com

0

Syensqo is a global science company focused on developing advanced, forward-looking solutions that enhance various sectors including energy, transportation, and manufacturing. The company positions itself as a market leader with a strong emphasis on innovation, sustainability, and investor transparency. Their website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and potential employees. Technically, the site is built on Drupal 10 with modern web technologies and integrates multiple analytics and marketing tools. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS support, which is a critical issue for trust and data protection. Despite strong security headers and privacy policies, the missing SSL significantly impacts the overall security score. The domain registration details are consistent with the business claims, indicating legitimacy. Strategic recommendations include immediate SSL implementation and enhancement of security configurations to align with best practices.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

O

Octapharma AG

octapharma.com

0

Octapharma AG is a leading global manufacturer of human protein therapies derived from plasma and human cell lines, serving patients in over 120 countries. The company operates a large network of plasma donation centers and production facilities, emphasizing patient engagement and innovation in immunotherapy, haematology, and critical care. The website is professionally designed with comprehensive content, including employee stories, press releases, and detailed product information. Technically, the site uses modern frameworks like Next.js and is hosted on AWS infrastructure, but suffers from critical SSL/TLS configuration issues, lacking a valid certificate and modern protocol support. Security headers are partially implemented, but the absence of HTTPS severely impacts the security posture. Privacy compliance is well addressed with clear policies and a cookie consent mechanism. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and trust.

T

Treibacher Industrie AG

treibacher.com

0

Treibacher Industrie AG is a well-established Austrian company specializing in chemical and metallurgical precursors with a global market presence and over 125 years of experience. The website reflects a professional and comprehensive digital presence with detailed product portfolios, sustainability focus, and clear contact information. Technically, the site is built on WordPress with modern plugins for SEO, caching, and cookie management, but critically lacks HTTPS, exposing visitors to security risks. Privacy compliance is well addressed with cookie consent and a detailed privacy policy. The absence of explicit security policies and incident response information suggests room for improvement in security governance. Overall, the site is trustworthy and business credible but requires urgent security enhancements.

Swarovski Group operates a comprehensive e-commerce platform showcasing its luxury jewelry, watches, and crystal decorations. The website reflects a mature digital presence with extensive product categorization, rich multimedia content, and integrated marketing and analytics tools. The brand maintains a strong market position as a leading global luxury retailer with a history dating back to 1895. Technically, the site leverages modern JavaScript libraries, Google Tag Manager, and third-party personalization and fraud prevention services, hosted on AWS infrastructure. However, a critical security concern is the invalid SSL certificate and lack of enabled TLS protocols, which significantly impacts the site's security posture. Privacy and cookie policies are well implemented and GDPR compliant, with clear contact channels available. Overall, the site is professional and trustworthy but requires urgent remediation of SSL issues to ensure secure user interactions.

FERNBACH Financial Software operates FlexFinance, a specialized software suite designed to optimize lending business processes including loan origination, credit lifecycle management, and risk management. The company targets banks and financial institutions, offering solutions that enhance efficiency, transparency, and compliance. With a user base exceeding 12,000 and over one million credit decisions processed annually, FERNBACH holds a solid position in the finance software niche, supported by multilingual capabilities and a consistent brand presence. Technically, the website employs modern front-end technologies such as jQuery, Bootstrap, and Popper.js, alongside analytics tools like Google Analytics and Microsoft Clarity. However, the site suffers from poor performance with a notably high load time and lacks a valid SSL certificate, which critically undermines its security posture. The absence of HTTPS and security headers exposes the site to potential risks, despite no detected vulnerabilities in SSL protocols themselves. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. Contact information is limited but present, primarily via a company email address. The overall website quality is good in terms of design, content relevance, and user experience, though technical and security improvements are necessary. Strategically, the company should prioritize securing its website with a valid SSL certificate and enabling HTTPS to protect user data and improve trust. Performance optimization and implementation of security headers would further enhance the site's security and user experience. Maintaining transparent privacy practices and expanding contact options could strengthen business credibility and customer confidence.

GCC is a large multinational company specializing in the production and distribution of cement, concrete, aggregates, and innovative construction products across Mexico, the United States, Latin America, and Canada. The company positions itself as a sustainable and innovative leader in the construction materials industry, targeting construction professionals and businesses. The website is built on WordPress with a modern tech stack including jQuery, Flickity, and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and New Relic. While the site is professionally designed, mobile-optimized, and rich in content, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support. Security headers are partially implemented, and privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Contact information and business details are clearly presented, enhancing business credibility. Overall, the site demonstrates strong business and technical maturity but requires urgent remediation of SSL/TLS issues to improve security posture and user trust.

S

Samsung SDI Battery Systems GmbH

samsungsdibs.at

0

Samsung SDI Battery Systems GmbH is a medium-sized company specializing in the development, testing, and industrialization of advanced lithium-ion battery systems for electric and hybrid vehicles. Located in Kalsdorf near Graz, Austria, the company is part of the Samsung SDI family and holds multiple ISO certifications demonstrating a strong commitment to quality, environmental management, information security, and cybersecurity. The website presents a professional and content-rich digital presence targeting automotive OEMs and stakeholders in the e-mobility sector. Technically, the site is built on WordPress with Elementor and uses Matomo for analytics, but lacks HTTPS, which is a critical security shortfall. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the company shows a strong market position in energy and transportation sectors with a focus on sustainability and innovation.

Primetals Technologies is a global leader in metallurgical plant solutions, offering a comprehensive portfolio of services and technologies across the steel production value chain. Their website reflects a mature enterprise-level business with a strong focus on innovation, digitalization, and sustainability, including green steel initiatives. The company targets industrial clients and professionals in the steel and metallurgical sectors, providing automation, lifecycle services, and integrated plant solutions. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes multilingual support and professional design. However, the absence of a valid SSL/TLS certificate and HTTPS support is a critical security gap that undermines data protection and user trust. Security headers are well implemented, but the lack of encryption and modern TLS protocols significantly lowers the security posture. Privacy compliance is well addressed with Cookiebot and Google Consent Mode integration, ensuring GDPR alignment. Overall, the site demonstrates high business credibility and professionalism but requires urgent security improvements to meet modern standards.

J

JUDO.eu

judo.eu

0

JUDO.eu is a well-established German company specializing in water treatment solutions, with a history dating back to 1936. The company offers a broad range of products including protective filters, softening systems, lime protection, dosing pumps, leakage protection, wellness, heating protection, and smart home water solutions. Their market position is strong with a focus on innovation and sustainability, targeting both professional and consumer markets internationally. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for SEO, cookie management, and user interaction. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security weakness. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

S

Security Company - Leading Security Solutions - Lodge Service

lodgeservice.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 29 security findings identified across all modules.

Silhouette International Schmied AG is a well-established manufacturer and market leader specializing in premium rimless eyewear. The company targets consumers and businesses seeking high-quality, innovative eyewear products. Their website reflects a professional brand image with consistent messaging and clear business focus. Technically, the website is built on modern technologies including Storyblok CMS and Vue.js, with content delivery optimized via Amazon CloudFront. However, the website lacks a valid SSL certificate and does not support HTTPS, which significantly undermines its security posture. Security headers are partially implemented but cannot compensate for the absence of proper encryption. Privacy and cookie policies are missing, indicating compliance gaps with GDPR and related regulations. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

A

Alicona Imaging GmbH

alicona.com

0

Alicona Imaging GmbH operates as a global provider of optical 3D metrology and surface roughness measurement solutions, specializing in non-contact measurement technologies based on Focus-Variation. The company targets manufacturing sectors such as automotive, aerospace, medical technology, and precision manufacturing, offering devices and automation solutions to enhance quality assurance and production measurement. The website reflects a mature digital presence with professional design, comprehensive content, and active engagement through blogs and events. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security vulnerability that undermines user trust and data protection. The technical infrastructure leverages modern frameworks and CMS platforms, but performance issues such as slow load times need addressing. Privacy compliance is well managed with cookie consent mechanisms and clear privacy policies. Overall, Alicona demonstrates strong business credibility but must urgently improve its security posture to align with best practices and regulatory requirements.

H

Heller Consulting

teamheller.com

0

Heller Consulting is a mature and reputable technology consulting firm specializing in nonprofit and higher education sectors. They provide tailored technology strategies and implementations focusing on platforms such as Salesforce, Microsoft, and Blackbaud. The company has a strong market position supported by client testimonials, certifications like Certified B Corporation, and partnerships with major technology providers. Technically, the website is built on WordPress with modern plugins and SEO tools, offering good mobile optimization and accessibility. However, the absence of HTTPS is a critical security gap, exposing users to potential risks. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the business credibility is high, but security posture needs urgent improvement to protect user data and enhance trust.

K

Kaleidoscope GmbH

kaleidoscope.at

0

Kaleidoscope GmbH is a medium-sized technology company specializing in terminology management, quality management, translation, and documentation services. They provide a comprehensive suite of software and consulting services aimed at enabling businesses to communicate content globally in a consistent and efficient manner. Their market position is supported by long-standing client relationships and partnerships with technology providers such as Eurocom, Congram, and Greatcontent. The website is professionally designed, content-rich, and optimized for SEO, targeting companies seeking global content solutions. Technically, the site is built on WordPress with modern plugins and themes but lacks a valid SSL certificate, which is a significant security concern. The security posture is basic with several missing best practices, including HTTPS and TLS support. Privacy compliance is well addressed with cookie consent and privacy policies in place. Overall, the site is trustworthy but requires urgent security improvements.

The website bluedanuberobotics.com is currently inaccessible due to a DNS resolution error as indicated by the Cloudflare error page. This prevents access to any meaningful business content or contact information. The site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. The technical infrastructure relies on Cloudflare for DNS and hosting services, but the current misconfiguration or propagation delay is causing the site to be unreachable. Security headers are partially implemented but insufficient to ensure robust security. No privacy, cookie, or terms of service policies are present, indicating poor compliance posture. Overall, the site is not operational and presents significant risks and trust issues.

The website brf-global.com is currently inaccessible due to a Web Application Firewall (WAF) protection by Incapsula, which blocks all content and prevents any meaningful analysis of the site's business or security posture. The domain is mature, registered since 2014, and uses Azure DNS and Microsoft Outlook for mail services, indicating a legitimate registration and hosting setup. However, the absence of an active SSL certificate and the lack of accessible content severely limit the ability to assess the company's business model, services, or compliance with privacy regulations. The security posture is weak due to missing HTTPS and security headers, and no privacy or cookie policies are detectable. Overall, the site appears to be protected by strong domain registration controls but lacks visible digital maturity and security best practices on the web front.

I

ING

ing.at

0

The website ing.at serves as an informational landing page announcing the transfer of ING Austria's private banking business to bank99 AG as of November 30, 2021. It provides contact information for former customers and legal representatives handling specific cases. The site is primarily targeted at former ING Austria private banking customers and does not offer active banking services. Technically, the site uses modern web technologies including Lit for UI components, service workers for offline capabilities, and integrates third-party services such as Usercentrics for cookie consent and Webtrekk for analytics. However, the SSL configuration is critically flawed with no valid certificate and no TLS protocols enabled, severely impacting security posture. Security headers are well implemented but undermined by the lack of proper SSL. The domain registration and DNS records are consistent with a legitimate banking entity, and the site includes standard privacy and cookie policies compliant with GDPR. Overall, the site is professional and trustworthy in content but requires urgent remediation of SSL issues to ensure secure user access.

The website for t-systems.at is currently inaccessible, returning a 403 Forbidden error with minimal HTML content, indicating that access is blocked or restricted. The domain is registered and maintained by a reputable telecommunications entity associated with Telekom, as evidenced by DNS and WHOIS data. However, the lack of SSL/TLS encryption and absence of any visible website content or metadata severely limits the ability to assess the company's digital presence and user engagement. The technical infrastructure shows hosting behind an AWS Elastic Load Balancer but without proper HTTPS configuration, which is a critical security gap. Security posture is weak due to missing HTTPS, lack of security headers, and no advanced protections such as HSTS or OCSP stapling. Overall, the site is not currently usable for public interaction or business communication, and the security risks are significant due to the absence of encryption and content access restrictions.

F

Flint Group

flintgrp.com

0

Flint Group is a global enterprise specializing in manufacturing print consumables for the packaging and printing industries. The company emphasizes sustainable innovation, customer support, and ethical business practices, positioning itself as a global leader in its sector. The website reflects a professional and comprehensive digital presence with extensive content, clear navigation, and a focus on sustainability and corporate responsibility. Technically, the site uses modern analytics and tracking tools but lacks HTTPS support due to an invalid or missing SSL certificate, which is a significant security concern. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Overall, Flint Group demonstrates strong business credibility but must address its SSL/TLS configuration to improve security posture and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

Active Solution Sverige AB

activesolution.se

0

Active Solution Sverige AB is a well-established Swedish technology consulting company founded in 1998, specializing in system development, cloud-based solutions, artificial intelligence, and digital transformation. The company holds recognized Microsoft Solutions Partner Designations and a specialization in building and modernizing AI applications with Microsoft Azure, indicating strong technical expertise and market positioning. Their website reflects a professional and content-rich presence, targeting businesses seeking innovative digital solutions and cloud transformation services. Technically, the site is built on Squarespace with integrations of HubSpot and Google Tag Manager for marketing and analytics, but suffers from a critical security issue due to the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and user trust. While cookie consent mechanisms are implemented, the absence of privacy and terms of service policies indicates incomplete privacy compliance. Overall, the business appears credible and mature, but immediate attention is needed to secure the website with proper SSL/TLS configuration to protect visitors and maintain trust.

The website quorumconsulting.com currently serves only a minimal HTML page containing a JavaScript redirect to /lander, with no additional content, metadata, or business information. The domain is registered and active with GoDaddy nameservers but lacks a valid SSL certificate, resulting in no HTTPS support. This severely limits the site's security posture and trustworthiness. No privacy, cookie, or terms of service policies are present, and no contact or social media information is available. Overall, the site appears to be either under development or a placeholder with no meaningful public-facing content.

P

PARTNER Consulting+Projects GmbH

partner-cp.com

0

PARTNER Consulting+Projects GmbH is a specialized consulting and project realization company serving cultural institutions and museums primarily in Austria and beyond. With over 30 years of experience, the company offers comprehensive services including consulting, project management, sustainability solutions, and interim management. Their market position is well-established with a strong portfolio of projects and partnerships. Technically, the website is built on WordPress with modern plugins and hosted on WP Engine with Cloudflare CDN, reflecting a mature digital infrastructure. However, the lack of a valid SSL certificate and disabled TLS protocols represent significant security weaknesses. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policies. Overall, the business demonstrates professionalism and trustworthiness but must urgently address its SSL/TLS security to protect user data and improve trust.

The website boutique1.com currently serves minimal content, appearing as a placeholder or parking page with no visible business or contact information. The domain is mature, registered since 2007 with GoDaddy.com, LLC, and shows strong domain protection and low expiry risk. However, the lack of a valid SSL certificate and absence of privacy or cookie policies indicate a low security and compliance posture. The technical infrastructure includes JavaScript and hosting on Amazon AWS, but performance is slow and SEO optimization is poor. Security best practices are not implemented, and no forms or user data collection mechanisms are present. Overall, the site lacks professionalism and trust indicators, resulting in a low AI score and high risk for user trust and compliance.

A

Axians ICT Austria GmbH

axians.at

0

Axians ICT Austria GmbH is a well-established IT service provider in Austria, offering a broad range of IT solutions including cloud services, cyber security, enterprise networks, and SAP consulting. The company targets business customers across various industries and emphasizes a human-centric approach to technology. Technically, the website is built on WordPress with modern libraries and integrates analytics and marketing tools such as Matomo and HubSpot. However, the site suffers from a critical security issue due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Privacy compliance is strong, with comprehensive policies and consent mechanisms in place. Overall, the website is professional and trustworthy but requires urgent improvements in its SSL/TLS configuration to enhance security and user trust.

The website cddiputados.gob.mx serves as a minimal redirect page to https://congresoedomex.gob.mx, indicating it is an official government domain related to the legislative body of the State of Mexico. The site lacks substantive content, policies, or contact information, reflecting a very basic web presence. Technically, the site is served by Apache over HTTP without SSL/TLS encryption, which is a significant security shortfall for any modern website, including government domains. The absence of security headers, DNSSEC, and other best practices further weakens its security posture. From a business perspective, the domain is consistent with government registration norms and appears legitimate, but the digital maturity is low. Overall, the site presents a low-risk profile due to its minimal functionality but requires urgent improvements in security and compliance to meet modern standards.

B

BioEnergy Consult

bioenergyconsult.com

0

BioEnergy Consult is a specialized advisory and consulting organization focusing on biomass energy, waste-to-energy, and waste management sectors. The website serves as a rich knowledge base with extensive articles targeting professionals and organizations interested in renewable energy and environmental sustainability. The technical infrastructure is based on WordPress with common plugins for SEO and analytics, but lacks HTTPS security, which is a critical vulnerability. The site has implemented privacy and cookie policies with consent mechanisms, but lacks explicit terms of service and security policies. Overall, the site is content-rich and professionally presented but requires significant security improvements to protect users and enhance trust.