Security Directory

K

Kibion GmbH

kibion.com

32

Kibion GmbH is a specialized healthcare company focused on providing rapid and reliable urea breath test solutions for diagnosing Helicobacter pylori infections, a key factor in stomach ulcers. The company positions itself as a global leader in this niche diagnostic market, supported by its ISO 13485 certification and affiliation with the parent company Mayoly Spindler. The website targets healthcare professionals and distributors, offering product information, scientific publications, and support resources. The business model centers on manufacturing and distributing medical diagnostic devices, with a clear emphasis on quality and regulatory compliance. Technically, the website is built on WordPress with a modern tech stack including RequireJS, jQuery, and Modernizr, enhanced by SEO and multilingual plugins. The site demonstrates good mobile optimization and user experience, though performance is moderate. SEO practices are well implemented, but accessibility features are basic. The site uses Google Analytics for user tracking but lacks visible cookie consent mechanisms and privacy policies, indicating gaps in privacy compliance. From a security perspective, the site does not show evidence of advanced security headers or explicit HTTPS enforcement in the provided data, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. The security posture is moderate but could benefit from enhanced policies and technical controls. Incident response and vulnerability disclosure information are absent, which may impact trust and compliance. Overall, Kibion's website reflects a professional and credible healthcare business with solid market positioning but requires improvements in privacy compliance and security best practices to enhance trustworthiness and regulatory adherence.

O

OPV Media Systems

opv.se

49

OPV Media Systems is a Sweden-based technology company specializing in cloud-based SaaS solutions for digital asset management (DAM), product information management (PIM), and cloud printing services. With over 20 years of industry leadership, particularly in the grocery and pharmacy sectors, OPV offers robust, scalable platforms tailored to European businesses. Their key services include OPV® STORAGE for DAM, OPV® Online for PIM and DAM integration, and OPV® ELC for cloud-based print management. The company targets medium-sized enterprises seeking efficient media and product data management solutions.

D

Digicom B810 Group

digicom.it

33

Digicom B810 Group is an established Italian technology company with over 45 years of experience in IoT and connected products. As part of the B810 Group since 2017, it offers advanced solutions across telecommunications, energy, industrial applications, and vertical mobility sectors. The company provides end-to-end services including design, production, and cloud-based management platforms. The website reflects a mature digital presence with modern CMS and compliance with GDPR through iubenda cookie management. Security posture is solid with HTTPS and consent mechanisms, though some security headers are not explicitly detected. Contact information is comprehensive and professional, supporting business credibility. Overall, the site is well-structured, user-friendly, and trustworthy.

M

MAC Group

mac-financial.com

52

MAC Group is a well-established financial services provider based in the Isle of Man, founded in 2004. It is the largest independent financial advisory and insurance broking group in the region, serving both corporate and private clients. The company offers a range of services including employee benefits advice, private client financial services, and commercial insurance broking. Their market position is strong within the Isle of Man, supported by a consistent brand presence and clear business information. The website reflects a professional and user-friendly design, optimized for mobile devices and SEO, leveraging WordPress with the Divi theme and Yoast SEO plugin. Privacy and cookie policies are comprehensive and GDPR compliant, with an active consent mechanism.

D

Derivco

derivco.com

57

Derivco is a well-established global technology company specializing in innovative software solutions for the iGaming industry. With over 30 years of experience and operations spanning Australia, Europe, and South Africa, Derivco positions itself as a leader in delivering advanced gaming platforms and integration services. Their product suite includes CORE+, CONNECT+, SPORTS+, Arena+, and Kipem+, targeting online casino operators and gaming businesses seeking cutting-edge technology and personalized player experiences. The website reflects a mature digital presence with professional design, clear branding, and comprehensive content tailored to their industry audience. Technically, the site is built on WordPress with Elementor, leveraging modern JavaScript libraries and Google services for analytics and tag management. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. Overall, Derivco demonstrates a strong business credibility and digital maturity, with room for improvement in transparency around security policies and direct contact information.

Zurich Ireland operates as a comprehensive insurance and financial services provider, offering a wide range of products including life insurance, pensions, home and car insurance, and business insurance. It is a large, well-established entity regulated by the Central Bank of Ireland and is part of the global Zurich Insurance Group. The website is professionally designed with clear navigation and good content quality, targeting both personal and corporate customers in Ireland. Technically, the site uses modern JavaScript libraries and frameworks, integrates Google Tag Manager for analytics, and employs OneTrust for cookie consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration details align well with the business identity, supporting high legitimacy and trustworthiness.

U

Umina Beach Book Nook

uminabeachbooknook.com.au

58

Umina Beach Book Nook is a small, community-focused independent bookstore located in Umina Beach, New South Wales, Australia. The business operates both a physical store and an online WooCommerce-based e-commerce platform, offering a wide range of books including new releases, classics, kids' books, and gifts. The company also hosts book clubs and events, fostering a strong local community presence. Owned by Stay Tooned Pty Ltd, the bookstore emphasizes a warm, welcoming atmosphere and personalized customer service. The website is professionally designed using WordPress with the Divi theme and integrates marketing tools such as ActiveCampaign and Google Analytics for customer engagement and tracking.

F

Festival Krapoldi

krapoldi.at

40

The KRAPOLDI Festival website represents a well-established cultural event based in Innsbruck, Austria, focusing on international ensembles in clownery, new circus, and street theater. The festival offers a mix of free and ticketed performances, aiming to be accessible and engaging for a diverse audience including families and local residents. The site demonstrates a strong market position within the regional cultural landscape, supported by numerous sponsors and partners. Technically, the website is built on WordPress with a modern tech stack including Apache, jQuery, and various plugins for SEO, performance, and multimedia content. The site is mobile-optimized, fast-loading, and SEO-friendly, with multilingual support for German, English, and Italian. Security posture is adequate with HTTPS and valid SPF records, but could be improved by enabling HSTS, OCSP stapling, and adding DMARC. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and a consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-maintained, though some security enhancements are recommended.

J

Jank Weiler Operenyi Rechtsanwälte (JWO) | Deloitte Legal Österreich

jankweiler.at

48

Jank Weiler Operenyi Rechtsanwälte (JWO) | Deloitte Legal Österreich is a medium-sized, entrepreneurially minded law firm based in Austria, specializing in a broad range of economic and corporate law services. The firm benefits from its integration into the global Deloitte network, offering clients a one-stop-shop for legal and related advisory services. Their market position is strong, supported by multiple industry awards and testimonials from reputable legal ranking organizations. The website reflects a high level of professionalism, with comprehensive content and clear navigation tailored to business clients and private clients alike. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement, consent management, and anti-spam measures, though some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site and business demonstrate high credibility and trustworthiness.

T

Theater Regensburg

theaterregensburg.de

25

Theater Regensburg is a public theater institution located in Regensburg, Germany, offering a diverse range of cultural performances including music theater, dance, and plays. The website serves as a portal for event information, ticket sales, and community engagement, targeting local and regional audiences interested in cultural arts. The business operates primarily in the hospitality and cultural sector with a medium-sized organizational footprint. Technically, the website employs a modern frontend stack with libraries such as jQuery, Bootstrap, and Font Awesome, providing a good user experience and mobile optimization. However, the absence of a valid SSL certificate and missing DNS records represent significant technical and security shortcomings. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance with GDPR. The site maintains active social media channels and provides clear contact information, enhancing business credibility. Overall, the website is functional and professional but requires urgent improvements in security infrastructure to protect user data and improve trust.

Y

Yeates

yeates.co.uk

26

Yeates is a well-established family-run removals and storage company operating in Clevedon and Weston-super-Mare, UK, with over 100 years of history. The company offers a range of services including household removals, packing, containerised storage, self storage, and shredding services. It holds reputable certifications such as Which? Trusted Trader and memberships with the Self Storage Association and The Furniture Ombudsman, reinforcing its market credibility and trustworthiness. The website is designed to target residential and business customers seeking reliable moving and storage solutions in the local area. Technically, the website is built on WordPress with modern plugins and tools for SEO and marketing, but lacks a valid SSL certificate, which is a critical security gap. The site is mobile responsive and includes structured data for enhanced SEO.

S

s-team IT solutions GmbH

s-team.at

38

s-team IT solutions GmbH is a small Austrian IT services company based in Vienna, specializing in IT infrastructure, server maintenance, virtualization, and custom web development. Established in 2002, it serves a diverse clientele including small and large companies as well as public organizations. The website reflects a professional and consistent brand presence with clear contact information and client testimonials, indicating a trustworthy business. Technically, the site runs on Contao CMS with common JavaScript libraries but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS exposes visitors to potential data interception risks. Security headers are well configured, but the lack of modern TLS protocols and HSTS reduces the overall security posture. Privacy compliance is partially met with a GDPR-compliant privacy policy but no cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect users and enhance trust.

Visiativ Austria GmbH is a well-established digital transformation partner specializing in CAD and Product Lifecycle Management (PLM) solutions for manufacturing companies. With over 30 years of experience, the company offers a comprehensive portfolio including consulting, software sales, and training services. Their market position is strong within the manufacturing and technology sectors, supported by partnerships with Dassault Systèmes and a broad regional presence across Europe. The website reflects a professional and consistent brand image with high-quality content and effective SEO practices. Technically, the website is built on WordPress with modern plugins for SEO, caching, and cookie consent management. The infrastructure includes Apache hosting with DNS managed via Google Domains. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Other security best practices such as SPF records for email and vulnerability scanning show positive signs, but the lack of HTTPS is a major concern. The security posture is currently basic, with no detected vulnerabilities but missing essential HTTPS protections and security headers. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies and consent mechanisms. Contact information is clearly provided, including phone numbers and social media links, enhancing business credibility. Overall, the website is functional and professional but requires urgent security improvements to enable HTTPS and modern TLS protocols. Strategic recommendations include installing a valid SSL certificate, enabling HSTS, and improving server security headers to enhance trust and protect user data.

I

Institute of Microtraining

micro-training.com

25

Institute of Microtraining is a small-sized education technology company specializing in mobile learning solutions for corporate clients. Their core offering is a mobile learning app leveraging proprietary Microtraining® technology, complemented by content creation and training services. The company operates under the parent company duftner.digital, providing a full-service approach to mobile learning. The website is professionally designed with good content quality and clear navigation, targeting businesses seeking flexible and effective employee training solutions. Technical infrastructure is based on WordPress with common plugins and frameworks, hosted on a dedicated IP likely at Hetzner. However, the absence of HTTPS and valid SSL certificate is a critical security gap that undermines user trust and data protection. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Social media presence and video testimonials add trust signals. Overall, the site is functional but requires urgent security improvements to meet modern standards.

T

The Los Angeles Film School

filmproductionservices.info

37

The Los Angeles Film School website presents a comprehensive and professional educational institution focused on film, media, animation, and music production programs. It targets prospective students and professionals seeking accredited degree programs both on-campus and online. The site highlights alumni success, industry recognition, and offers extensive resources such as tours, webinars, and detailed program information. Technically, the website is built on WordPress using the Avia framework and incorporates multiple JavaScript libraries for enhanced user experience. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap, exposing users to potential risks. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance practices. Overall, the site is trustworthy and professionally maintained but requires urgent security improvements to protect user data and enhance trust.

B

B+S Banksysteme AG

bs-ag.com

40

B+S Banksysteme AG is a German-based software manufacturer specializing in banking and financial services software solutions. With over 40 years of experience, the company serves a broad range of clients including traditional banks, fintechs, and neobanks primarily in the D-A-CH region. Their offerings include core banking applications, online and mobile banking, banking APIs, and modular banking services underpinned by a ZAG license. The company maintains a medium-sized presence with subsidiaries such as B+S Banksysteme Salzburg GmbH and emphasizes customer-centric service models like Banking as a Service. Technically, the website is built on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution. While the site is well-structured, SEO optimized, and mobile responsive, it suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support. The security headers are well configured, but the lack of TLS protocols and the presence of unsafe inline scripts reduce the overall security posture. From a security perspective, the site demonstrates good header policies and content security policies but critically lacks HTTPS, which exposes users to potential risks. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are present. Contact information is clearly provided, including multiple phone numbers, email addresses, and physical locations, supporting business credibility. Overall, the website presents a professional and trustworthy business front with strong market positioning in banking software. However, the lack of HTTPS significantly undermines security and trustworthiness, necessitating urgent remediation to protect user data and comply with modern security standards.

B

BEWOTEC GmbH

bewotec.de

24

BEWOTEC GmbH is a German-based technology company specializing in software solutions for travel agencies and tour operators. Their product suite includes myJACK, a comprehensive travel agency software, DaVinci for tour operators, and dynamic packaging tools like flexStore and OTDS Player. The company has a strong market presence in the German-speaking travel industry, with a history dating back to 1988. Technically, the website is built on WordPress with modern plugins and tools, offering good content quality and user experience. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, exposing users to potential risks. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance with GDPR. Overall, the site is professional and trustworthy but requires urgent security improvements to enable HTTPS and enhance protection.

H

Holzhausen Verlag

verlagholzhausen.at

31

Holzhausen Verlag is a well-established Austrian publishing company specializing in scientific and professional publications across sectors such as innovation, research, technology, installation, logistics, and transport. The company holds a strong market position as a leading publisher for specialized industry sectors in Austria, offering a broad range of print and digital media products, newsletters, social media marketing, and event organization. Their business model focuses on delivering high-quality content and media services to professionals and decision-makers in their target industries. Technically, the website is built on WordPress using the Extra theme and integrates modern SEO and analytics tools, but suffers from a critical lack of HTTPS and valid SSL certificate, which significantly impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Overall, the website presents professional content and branding but requires urgent security improvements to protect user data and enhance trust.

W

Wilhelm Schwarzmüller GmbH

schwarzmueller.com

38

Wilhelm Schwarzmüller GmbH operates as one of Europe's largest providers of towed commercial vehicles, specializing in manufacturing and servicing premium transport solutions tailored to various industries such as construction, logistics, and tank transport. The company maintains a strong market position with a broad portfolio of over 150 vehicle types and a commitment to quality, evidenced by ISO certifications and industry awards. Their digital presence is robust, featuring multilingual support, active social media channels, and comprehensive customer service offerings including telematics and rental services. Technically, the website is built on WordPress with modern frameworks and SEO optimizations, although it lacks HTTPS encryption, which is a significant security concern. The security posture is weak due to the absence of SSL/TLS, HSTS, and other critical security headers, exposing users to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business credibility is high, supported by consistent branding, detailed contact information, and trust signals. Strategic improvements in security infrastructure are essential to enhance trust and protect user data.

S

SanLucar Fruit S.L.U.

sanlucar.com

39

SanLucar Fruit S.L.U. is a well-established company specializing in fresh fruits, vegetables, and related products, with a strong emphasis on quality, sustainability, and natural health benefits. The website reflects a mature digital presence with comprehensive product categories, corporate responsibility initiatives, and multilingual support targeting consumers and business partners globally. Technically, the site is built on WordPress with modern plugins and a reputable theme, offering good SEO and user experience. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing users to potential risks and undermining trust. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting responsible data handling. Overall, while the business and content quality are high, urgent improvements in SSL/TLS implementation are necessary to enhance security and user trust.

E

Edelweiss Consulting GmbH

edelweiss-consulting.at

51

Edelweiss Consulting GmbH is a small Austrian consulting firm specializing in strategy development, organizational development, and personnel development, primarily serving clients in Vienna and Linz. The company presents itself professionally with a well-structured website, social media presence, and recognized certifications such as the Top Berater Gütesiegel Kurier 2024. Technically, the website is built on WordPress using common plugins for SEO, forms, and cookie consent, hosted on world4you.at. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing visitors to risks and undermining trust. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, supporting GDPR adherence. Overall, the website is functional and professional but requires urgent security improvements.

Arthur Hunt is a French-based human resources consulting firm specializing in executive search, HR strategy consulting, transition management, and talent development across France and Europe. The company positions itself as a medium-sized, established player with a professional and consistent brand presence. The website is built on WordPress using the Divi theme and incorporates modern plugins for multilingual support and user experience enhancements. However, the technical infrastructure lacks a valid SSL certificate and does not support modern TLS protocols, which poses a significant security risk. The site includes GDPR-compliant cookie consent mechanisms and clear contact information but lacks explicit security policies or incident response details. Overall, the business is credible and professionally presented, but the absence of HTTPS critically impacts the security posture.

D

Distillery | Paranormal Agency

distillery.cc

20

Distillery | Paranormal Agency is a small creative agency based in Austria specializing in transformative branding, experiential marketing, media production, and communication design. The company positions itself as a niche player focusing on immersive and genuine cultural experiences. The website is built on WordPress with a modern tech stack including Yoast SEO and Contact Form 7, but lacks a valid SSL certificate, which is a critical security concern. The site implements cookie consent mechanisms indicating GDPR awareness but lacks explicit privacy policy and terms of service pages. Contact information including company emails and physical address is clearly presented, alongside active social media profiles. Overall, the website is professionally designed with good content quality and navigation but suffers from poor security posture due to missing HTTPS.

P

Paul Lange Austria

thalinger-lange.com

38

Paul Lange Austria operates as a specialized wholesaler and supplier for the Austrian bicycle and fishing retail markets, providing a wide range of accessories and components from well-known brands such as Shimano. The company supports its dealer network with training, catalogs, and online portals, positioning itself as a key regional player with a professional digital presence. The website is built on WordPress with Elementor and incorporates modern SEO and UI tools, reflecting a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS significantly undermines the site's security posture, exposing users to risks and potentially impacting trust. While cookie consent mechanisms and privacy policies are in place, the lack of advanced security headers and modern TLS protocols indicates room for improvement in security practices. Overall, the business appears legitimate and well-established, but urgent remediation of SSL/TLS issues is recommended to enhance security and compliance.

A

Amadeus International School Vienna

amadeus-vienna.com

28

Amadeus International School Vienna is a well-established private international school offering IB education and boarding services with a unique integrated Music and Arts Academy. The school targets international students and families seeking high-quality education in Vienna. The website is professionally designed with rich content and multimedia, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are implemented with consent mechanisms, supporting GDPR compliance. Contact information is clearly presented, enhancing business credibility. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and enhance trust.

wengermayer business consulting is a small Austrian consulting firm specializing in human-centric organizational development, communication culture, conflict management, and personnel development. Their services focus on supporting businesses where human interaction and development are central. The website is built on Contao CMS and hosted on an Apache server with Ubuntu, using various JavaScript libraries for UI enhancements. However, the site lacks HTTPS, which is a critical security vulnerability. Cookie consent is implemented via Cookiebot, indicating awareness of privacy compliance. Social media presence on XING, LinkedIn, Facebook, and Twitter supports business credibility. Overall, the technical infrastructure is basic with room for modernization and security improvements.

Genuine Parts Company is a well-established global leader in the distribution of automotive and industrial replacement parts, founded in 1928. The company operates extensively across North America, Europe, and Australasia with a large workforce and numerous locations. Their business model focuses on providing quality parts and value-added solutions through a network of subsidiaries and partner brands such as NAPA and Motion. The website reflects a mature corporate presence with investor relations, sustainability reporting, and career opportunities prominently featured. Technically, the site is built on WordPress with common libraries and frameworks, and is hosted behind Cloudflare. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy compliance is addressed through a OneTrust cookie consent mechanism and a comprehensive privacy policy, but no explicit terms of service or security policies are found. Overall, the site is professional and content-rich but requires urgent security improvements to meet modern standards.

A

Amiblu Group

amiblu.com

25

Amiblu Group operates as the world's largest producer and technology partner for GRP (glass-fiber reinforced plastics) pipe systems, focusing on sustainable water infrastructure solutions. The company targets urban and rural communities, industries, and infrastructure planners, offering a broad portfolio of pipe products, technical documentation, and reference databases. Their market position is strong, supported by certifications such as EcoVadis and partnerships like the UNESCO World Engineering Day 2025. The website reflects a mature, well-established business with a professional and consistent brand presence. Technically, the website is built on WordPress with a modern tech stack including caching and multilingual support. However, performance is moderate and accessibility is basic. The site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are minimal, and no advanced security policies are implemented. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to potential risks. No incident response or security policy information is publicly available. The domain registration is consistent and mature, supporting the legitimacy of the business. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and enhance trust.

B

BBMRI-ERIC

bbmri-eric.eu

26

BBMRI-ERIC is a European research infrastructure focused on biobanking and biomolecular resources, supporting researchers in health and life sciences to find new treatments. Established in 2013 and headquartered in Graz, Austria, it provides a range of services including a directory of biobank metadata, federated platforms for privacy-preserving data queries, and quality management. The website reflects a mature organization with consistent branding and professional content aimed at the scientific community. Technically, the site is built on WordPress with a variety of plugins supporting SEO, newsletter management, and social media integration. However, the site lacks HTTPS and a valid SSL certificate, which is a critical security vulnerability. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy but requires urgent security improvements to protect user data and maintain credibility.

R

Rechberger Ges.m.b.H.

rechberger.at

21

Rechberger Ges.m.b.H. is a well-established Austrian company specializing in gastronomy and hotel supplies, with a strong market position in Austria and Bavaria. The company offers a broad product range including porcelain, glassware, cutlery, and professional kitchen equipment, supported by a large team of specialized consultants and an online shop. The website is professionally designed, content-rich, and targets B2B customers in hospitality and retail sectors. Technically, the site uses the Contao CMS with modern JavaScript libraries and integrates Google Tag Manager for analytics. However, the lack of a valid SSL certificate and HTTPS support significantly weakens the security posture, exposing users to risks. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the business credibility is high, but security improvements are critical.

I

IVM Ltd.

ivm-vending.eu

25

IVM Ltd. is a medium-sized manufacturing company based in Hungary specializing in industrial vending machines and tool management solutions. Their website, built on WordPress with the Divi theme, presents a professional and well-structured digital presence targeting industrial clients and partners. The company emphasizes innovation in micrologistics and asset management, supported by proprietary software and certifications such as ISO 9001 and ISO 27001. Technically, the site uses common web technologies including Apache, jQuery, and Google Tag Manager, but lacks a valid SSL certificate, which impacts security posture negatively. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information and social media links are clearly provided, enhancing business credibility. Overall, the website is functional and professional but requires improvements in security and privacy compliance to meet modern standards.

The United Nations Office for Outer Space Affairs (UNOOSA) operates as a key UN entity facilitating international cooperation in peaceful space activities, space law, and capacity building. It serves a global audience including member states, space agencies, academia, and industry. The website reflects a mature and consistent brand aligned with UN standards, offering comprehensive information on space policy, events, and programs. Technically, the site uses a legacy tech stack with Apache, jQuery, and Bootstrap, but suffers from slow performance and basic mobile optimization. Security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, exposing users to risks. Privacy compliance is minimal, lacking cookie consent mechanisms and GDPR indicators. Contact information and social media presence are well established, enhancing business credibility. Overall, the site is authoritative but requires urgent security and privacy improvements.

C

Capgemini

capgemini-consulting.com

40

Capgemini Invent is a prominent management consultancy brand under the Capgemini group, specializing in innovative consulting services that combine strategy, technology, data science, and design to help businesses transform and grow. The website reflects a mature, enterprise-level digital presence with comprehensive content, strong branding, and a wide range of services targeting C-level executives and large enterprises. Technically, the site is built on WordPress with modern frameworks like React and Bootstrap, indicating a contemporary and scalable infrastructure. However, a critical security issue is the lack of a valid SSL certificate, which undermines the site's security posture despite the presence of several security headers. Privacy and cookie policies are well implemented, showing good compliance with GDPR and related regulations. Overall, the site is professional and trustworthy but requires immediate attention to SSL configuration to enhance security and user trust.

H

Hackabu Growth Consulting

hackabu.com

40

Hackabu Growth Consulting is a specialized digital marketing and growth consulting firm based in Austria, serving both B2C and B2B clients. The company offers a broad range of services including online marketing, marketing automation, performance marketing, programmatic advertising, social recruiting, AI consulting, and workshops. Their market position is that of a leading online marketing and growth consultancy with a strong focus on data-driven strategies and innovative technologies. The website is professionally designed, content-rich, and targets businesses seeking growth through digital channels. Technically, the site is built on WordPress with Elementor and uses various modern web technologies and optimization tools. However, a critical security issue is the absence of a valid SSL certificate and lack of enabled TLS protocols, which significantly impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the business credibility is high, supported by clear contact information, social media presence, and client logos. Strategic recommendations include immediate SSL implementation and enhancement of security configurations to protect user data and improve trust.

L

Loredo Muebles y Equipos

loredomuebles.com

19

Loredo Muebles y Equipos is a Mexican manufacturing company specializing in office, school, medical, stainless steel, and hospitality furniture. The company operates a WordPress-based website using the Divi theme and Yoast SEO plugin, targeting regional business and institutional customers. The website provides clear contact information and displays relevant certifications, indicating a legitimate and socially responsible business. However, the technical infrastructure lacks a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. The absence of privacy and cookie policies also indicates compliance gaps. Overall, the website is functional with good content quality but requires urgent security improvements to protect user data and enhance trust.

A

Agentur XY GmbH

xy.de

21

Agentur XY GmbH is a creative agency and production house based in Berlin, Germany, founded in 2018. The company specializes in delivering bold advertising campaigns and production services for global brands, including notable clients such as Netflix, Stepstone, and Playmobil. The website reflects a professional and consistent brand image with rich multimedia content and active social media presence. Technically, the site is built on WordPress with modern libraries and SEO optimizations, but lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. Security headers are partially implemented, but the absence of TLS protocols and domain security features like DNSSEC and DMARC reduce the overall security posture. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or detailed GDPR compliance indicators. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

T

TheAngryTeddy Communications

theangryteddy.com

22

TheAngryTeddy Communications is a specialized marketing and podcast production company based in Linz, Austria, serving self-employed professionals and SMEs. The company offers strategic content marketing, podcast production, social selling systems, and coaching services, positioning itself as a trusted partner with over a decade of experience. The website is professionally designed, content-rich, and well-structured, targeting German-speaking audiences with a focus on authentic and mindful marketing approaches. Technically, the site runs on WordPress with the Divi theme and employs multiple marketing and analytics tools, including Google Analytics, Facebook Pixel, and LinkedIn Insight. However, the absence of a valid SSL certificate and HTTPS significantly impacts the security posture, exposing users to risks and reducing trust. Privacy compliance is well addressed with comprehensive policies and consent mechanisms via iubenda. Overall, the business demonstrates strong credibility and market positioning but must urgently address security gaps to protect users and improve trust.

I

Invitario GmbH

invitario.com

40

Invitario GmbH offers a professional software solution for smart participant and invitation management tailored for various types of events including live, virtual, and hybrid formats. The company positions itself as a trusted provider with ISO 27001 certification and a strong focus on GDPR compliance, serving a broad range of industries and company sizes. Their platform supports comprehensive event marketing and management processes, integrating data analytics and personalized communication to enhance event success. Technically, the website is built on WordPress using the Divi theme and incorporates modern tools such as Lottie animations and Borlabs Cookie for consent management. However, the security posture is weakened by an invalid SSL certificate and lack of proper TLS configuration, which is a critical issue that must be addressed to ensure secure data transmission and user trust. Overall, the website demonstrates high content quality, good business credibility, and solid privacy compliance, but requires immediate improvements in SSL/TLS security to enhance its security score and user confidence.

S

Stieglbrauerei zu Salzburg GmbH

stiegl.at

40

Stiegl Privatbrauerei is Austria's leading private brewery with a rich heritage dating back to 1492. The company offers a broad portfolio of beer specialties, operates an online shop, and provides B2B distribution and technical services. The website reflects a mature digital presence with professional design, comprehensive content, and active marketing integrations. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. The site implements GDPR-compliant privacy and cookie policies with consent mechanisms, indicating good privacy awareness. Overall, the business is well-established and credible, but urgent improvements in security infrastructure are recommended.

V

Venionaire Capital

venionaire.com

28

Venionaire Capital is a medium-sized, globally active investment and advisory firm specializing in Private Equity and Venture Capital. The company offers a broad range of services including fund management, corporate finance, M&A, restructuring, and research products. It targets investors, entrepreneurs, and corporates, positioning itself as an entrepreneurial partner with a strong global footprint and multiple co-founded initiatives enhancing the investment ecosystem. The website content is professionally presented with clear navigation and rich service descriptions, reflecting a mature business model and market presence. Technically, the website is built on WordPress using the Enfold theme and integrates common technologies such as jQuery, Yoast SEO, and Google Analytics. However, the site suffers from critical security shortcomings, notably the absence of HTTPS and a valid SSL certificate, which severely impacts its security posture. Performance is slow, and while mobile optimization and SEO are good, accessibility is basic. Cookie consent mechanisms are present, but no explicit security or incident response policies are published. Security-wise, the lack of HTTPS and modern TLS protocols is a major vulnerability, exposing users to data interception risks. No advanced security headers or certificate transparency measures are implemented. The WHOIS data is consistent with the business claims, showing no suspicious patterns. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and enhance trust. Strategically, Venionaire Capital should prioritize obtaining and configuring a valid SSL certificate, enabling HTTPS, and implementing modern security headers and protocols. Enhancing privacy and incident response disclosures would also improve compliance and user confidence. These steps will strengthen the company's digital maturity and reduce risk exposure.

C

Cass County Memorial Hospital

casshealth.org

47

Cass Health is a mature healthcare provider organization based in the United States, specifically serving southwest Iowa. The website reflects a medium-sized rural hospital with a strong community focus, offering a wide range of medical services including specialty clinics, obstetrics, and rapid care. The organization is well-established with a domain age of 26 years and multiple awards that reinforce its market position and trustworthiness. Technically, the website is built on WordPress with modern front-end frameworks and integrates third-party services such as Algolia for search and Google Tag Manager for analytics. However, the site lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security gap. Privacy and cookie policies are not found, indicating potential compliance issues. The site includes contact information and social media links, supporting user engagement but lacks explicit security or incident response policies. Overall, while the business and content quality are strong, the security posture and privacy compliance require urgent improvements to protect user data and enhance trust.

Heaven by Health is a small healthcare-focused business based in Owensboro, KY, offering health coaching, workshops, seminars, and a marketplace for health-related products. The website targets individuals interested in holistic health, nutrition, and spirituality. The business operates primarily through service offerings and online content. Technically, the website is built on WordPress using the Divi theme and several common plugins, hosted on SiteGround. However, the site suffers from slow performance and lacks a valid SSL certificate, exposing users to security risks. Privacy compliance is poor, with no visible privacy or cookie policies, and contact information is limited to a contact form and social media links. Security posture is weak due to missing HTTPS, lack of security headers, and outdated TLS support. Overall, the site is functional and professionally designed but requires significant improvements in security and privacy to enhance trust and compliance.

L

Libraesva

esvacloud.com

52

Libraesva is a technology company specializing in advanced email security, archiving, phishing awareness, and DMARC protection solutions. Positioned as an industry leader, the company serves a broad B2B audience seeking to protect business communications from evolving cyber threats. Their product suite integrates with major platforms like Microsoft 365 and Google, emphasizing zero-day threat prevention and compliance. The website reflects a mature digital presence with professional design, rich content, and multiple industry recognitions. However, the absence of a valid SSL certificate is a critical security flaw that undermines trust and secure communications. The technical infrastructure leverages WordPress with modern plugins and Cloudflare CDN, but performance metrics are unavailable. Security headers and content security policies are well implemented, though the lack of HTTPS significantly reduces the overall security posture. Privacy compliance is partially addressed through a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found. Contact information is limited to physical addresses without direct emails or phone numbers. Overall, the site demonstrates good business credibility and technical maturity but requires urgent remediation of SSL issues to ensure secure user interactions.

J

JAGGAER

jaggaer.com

59

JAGGAER is an enterprise-level provider of AI-powered source-to-pay and supplier collaboration software solutions. The company targets procurement, finance, IT, and supply chain professionals across multiple industries including education, manufacturing, healthcare, and financial services. Their platform integrates a comprehensive suite of tools covering category management, contracts, invoicing, payments, and supply chain collaboration, positioning them as a leading player in the procurement software market. Technically, the website is built on WordPress with the Divi theme and leverages modern JavaScript libraries and plugins for enhanced user experience and content management. While the site employs Cloudflare for CDN and security, the SSL certificate appears invalid or misconfigured, which is a significant security concern. Security headers such as HSTS and CSP are implemented, indicating a good security posture, but the SSL issues reduce the overall security score. The site demonstrates good privacy compliance with clear privacy and cookie policies, including consent mechanisms. Overall, the website is professionally designed, content-rich, and well-structured, supporting a high level of business credibility and trustworthiness.

I

iLabXP

ilabxp.com

42

iLabXP is an educational platform specializing in teaching computer networks and distributed systems through lab courses and virtual labs. It targets university students and educators, providing a free and open source eLearning system to enhance learning outcomes. The platform has a niche market position with a small but focused user base. Technically, the website is built on WordPress and hosted on Contabo servers, using common web technologies such as jQuery and MediaElement.js. However, the site lacks a valid SSL certificate and proper HTTPS configuration, which significantly impacts its security posture. Security headers and DNS security features are also missing, exposing the site to potential risks. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Contact information is limited to subscription forms without explicit emails or phone numbers. Overall, the website is functional and content-rich but requires urgent improvements in security and privacy to enhance trust and compliance.

F

future-iot.org

future-iot.org

40

future-iot.org is an academic and research-focused website that serves as an umbrella platform for activities related to the Internet of Things, co-organized by teams at IMT Atlantique, TU München, and other academic partners. It primarily targets researchers, PhD students, and industry collaborators interested in IoT and security. The site offers information about summer schools, research projects, and educational resources. Technically, the website is built on WordPress and hosted on Contabo servers, utilizing common web technologies such as Apache and jQuery. However, it lacks HTTPS support, which is a critical security deficiency. The absence of cookie consent mechanisms and limited privacy compliance further reduce its security posture. Overall, the website provides good content quality and user experience but requires significant improvements in security and privacy to meet modern standards.

F

France FinTech

frenchfintechweek.org

40

French FinTech Week is a prominent initiative supported by France FinTech, the AMF, and the ACPR to promote the dynamic fintech ecosystem in France. The website serves as a platform to showcase the annual event, with the upcoming fifth edition scheduled from October 1 to 17, 2025. It targets institutional partners, public entities, corporates, incubators, research institutes, and academic institutions involved in fintech. The business model focuses on event promotion and ecosystem engagement, positioning itself as a key national fintech promoter. Technically, the site is built on WordPress with the Divi theme, hosted on OVHcloud, and uses standard web technologies including PHP 7.4 and jQuery. The site is mobile optimized and presents good SEO practices but lacks advanced accessibility features. Security posture is basic with a valid SSL certificate but missing important security headers and email protection mechanisms like DMARC. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy measures.

G

Gemeinde Börnsen

boernsen-erleben.de

40

The website 'boernsen-erleben.de' serves as an official community information portal for the municipality of Börnsen, Germany. It provides residents and visitors with local news, event announcements, business listings, and social information. The site promotes a mobile app and offers structured navigation across various community topics. Technically, the site is built on the ProcessWire CMS, hosted by Strato, and uses common web libraries such as jQuery and Owl Carousel. Performance is moderate with a page load time of approximately 3.8 seconds. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security deficiency. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. The site uses Matomo analytics, indicating moderate user tracking with some privacy considerations. Overall, the website is functional and informative but requires significant security improvements to protect user data and comply with modern web standards.

M

Mídia de Impacto | Agência Digital Multimídia

midiadeimpacto.com.br

51

Mídia de Impacto is a Brazilian digital multimedia agency specializing in e-commerce structuring, traffic management, website development, radio and TV services, streaming audio, inbound marketing, and visual identity. The company positions itself as an experienced player in the media sector with a focus on digital transformation and multimedia solutions. Their website is built on WordPress with WooCommerce and uses modern JavaScript libraries and plugins to deliver content. However, the site lacks a valid SSL certificate, which impacts security and trust. The presence of reCAPTCHA on forms and SPF DNS records indicates some security awareness, but the absence of HTTPS and malformed DNS CAA records are significant vulnerabilities. Privacy and cookie policies are not found, which may affect compliance with GDPR and other regulations. Overall, the website is professionally designed and content-rich but requires urgent security improvements to enhance trust and compliance.

U

Ubigreen

ubigreen.com

54

Ubigreen is a French company specializing in software and sensor solutions for optimizing energy performance and workspace management in buildings. Positioned as an essential player in the energy sector, it serves large enterprises, public organizations, and educational institutions with a comprehensive suite of services including energy management systems, telemetering, regulatory compliance consulting, and simplified building technical management (GTB Light). The company is part of the Planon group, enhancing its market credibility and reach. Technically, the website is built on WordPress with the Divi theme and several advanced plugins, offering good content quality and user experience. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and legal compliance are addressed with clear privacy and terms pages, though a cookie consent mechanism is missing. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.