Security Directory

E

Excellence-Innova S.L.

campusdelvino.com

61

Campus Internacional del Vino, operated by Excellence-Innova S.L., is a specialized educational platform offering university-level training focused on the wine industry, including enology, viticulture, wine business management, and enotourism. The website presents a professional and content-rich platform with a clear focus on e-learning and collaborative education. It targets professionals and students seeking specialized knowledge in the vitivinicultural sector. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and UIkit, integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mautic. The site is mobile-optimized and provides a good user experience with clear navigation and professional branding. Security-wise, HTTPS is enforced, and forms include CSRF tokens; however, the absence of security headers and a missing WHOIS domain registration record are notable concerns. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the site is credible and functional but would benefit from improved domain registration transparency and enhanced security headers.

iPlead is a website positioned as a legal information portal targeting legal professionals and individuals seeking legal information, primarily in Ireland. The site is currently down for maintenance, limiting content availability and preventing a full assessment of its market position and business operations. The website uses Joomla CMS with UIkit and FontAwesome libraries, indicating a moderately modern technical infrastructure. However, the lack of active content and absence of privacy, cookie, or terms of service policies suggest limited digital maturity at this time. Security posture is basic with HTTPS enabled and CSRF tokens implemented in the login form, but no security headers were detected, and no vulnerability disclosures or incident response information is provided. Overall, the site exhibits low trustworthiness and poor user experience due to minimal content and lack of transparency.

C

Community Nursing Services

cns-cares.org

53

Community Nursing Services is a well-established non-profit healthcare provider specializing in home health care, hospice, and related medical services across Utah. With nearly 100 years of experience, the organization serves patients and families seeking compassionate, high-quality care in their homes. The website reflects a mature business with a clear market position and a comprehensive range of services including home medical equipment, infusion pharmacy, and immunizations. Their target audience primarily includes elderly and chronically ill patients and their caregivers within Utah. Technically, the website is built on Joomla CMS using the Astroid template framework and incorporates modern web technologies such as jQuery, Bootstrap, and Smart Slider 3. The site is mobile-optimized with good navigation and SEO practices, though accessibility could be improved. Security posture is strong with HTTPS, security headers, and CSRF protections, but lacks some privacy compliance features such as cookie consent mechanisms and terms of service documentation. Overall, the security posture is solid with no critical vulnerabilities detected. The site demonstrates compliance with HIPAA privacy requirements and includes a privacy policy. However, it would benefit from enhanced privacy compliance features and a formal vulnerability disclosure policy. The WHOIS data aligns well with the website's claims, indicating a legitimate and trustworthy organization. Strategically, CNS should focus on improving privacy compliance and transparency to strengthen user trust and regulatory adherence. Enhancing accessibility and publishing incident response contacts would further improve their security culture and user confidence.

T

Town of Laurel Park

laurelpark.org

27

The Town of Laurel Park website serves as the official online presence for the municipal government of Laurel Park, North Carolina. It provides residents and visitors with information about government departments, parks, community events, and public services. The site targets local community members and stakeholders, emphasizing transparency and community engagement. The business model is that of a local government entity focused on service delivery and community information dissemination. The website is positioned as a trusted source for local government information and community resources.

D

Dmax & Associates Ltd.

dmax.tv

37

Dmax & Associates Ltd. is a Malta-based company specializing in digital marketing services including social media management, email marketing intelligence, smartphone apps, knowledge sharing solutions, and data visualization services. The company targets businesses seeking focused and results-oriented marketing solutions, positioning itself as a regional player with a strong client testimonial base and a portfolio of digital products. The website is built on Joomla CMS with a moderate technical infrastructure leveraging common JavaScript libraries and third-party tools such as Google Analytics and MyLiveChat for user engagement and analytics. While the site demonstrates basic GDPR compliance through privacy and cookie policies and consent mechanisms, it lacks explicit security policies and incident response contacts. Security posture is moderate but impacted by the use of outdated JavaScript libraries and absence of security headers. Overall, the website is professional and functional but would benefit from technical and security improvements to enhance trust and compliance.

H

HM Viloo Ltd

kenyacompanies.com

37

KenyaCompanies.com operates as a leading online business directory focused on Kenyan businesses, providing a platform for verified business listings, enhancing brand visibility, and facilitating business connections. The website targets businesses and customers within Kenya, offering services such as business listings, company registration assistance, event listings, and promotional offers. The platform is positioned as a trusted and human-edited directory, managed by HM Viloo Ltd, with a medium-sized operational scale and consistent branding. Technically, the website is built on Joomla CMS and leverages a modern technology stack including React, jQuery, Google Analytics, and various UI libraries. The site demonstrates moderate performance and good mobile optimization, with a structured navigation and SEO-friendly meta tags. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, but lacks explicit security headers and published security policies. No incident response or vulnerability disclosure information is available, and cookie consent mechanisms are absent. Advertising is managed through Google Adsense, with tracking via Google Analytics and Tag Manager, indicating moderate user tracking. Overall, the website presents a moderate risk profile with good business credibility but room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing security headers, publishing privacy and security policies, and adding cookie consent mechanisms to enhance trust and compliance.

P

Prepaid Financial Services Limited

prepaidfinancialservices.com

60

Prepaid Financial Services Limited operates as a regulated financial entity in the UK, providing prepaid Mastercard solutions including virtual and physical cards, account management, and payment processing services. The company holds FCA authorization and is a principal member of Mastercard, positioning itself as a trusted provider in the prepaid payments market. Their offerings target businesses, government entities, local authorities, and individual cardholders, emphasizing flexibility, security, and compliance. The website reflects a mature digital presence built on Joomla CMS with modern frameworks and privacy compliance mechanisms such as Cookiebot and Google Consent Mode. Security posture is strong with advanced measures like SCA, 3DS, and integration with KYC partners, alongside certifications including ISO 27001 and PCI DSS. Overall, the site is professional, well-structured, and compliant with GDPR, though it lacks explicit incident response contact details and a public vulnerability disclosure policy.

S

SIA "Jaunmoku pils"

jaunmokupils.lv

64

Jaunmoku pils is a Latvian cultural and hospitality business centered around a historic hunting castle built in 1901. The company offers museum exhibitions, hotel accommodations, guided tours, and event hosting services targeting tourists, families, and cultural visitors. The website is professionally designed using Joomla CMS and integrates modern technologies such as Matomo analytics and social media platforms. It provides clear navigation, multilingual support, and GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and CSRF protections, though explicit security policies and headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a positive risk profile.

A

Akciju sabiedrība "CATA"

cata.lv

41

Akciju sabiedrība "CATA" is a Latvian regional transportation company specializing in regular bus services, bus rentals, heavy vehicle maintenance, and related services such as tachograph inspection and room rental. The company targets regional passengers and businesses requiring transportation and vehicle services, positioning itself as a key regional transport operator in Latvia. The website reflects a medium-sized enterprise with a professional online presence, providing clear service descriptions and contact information. Technically, the site is built on Joomla CMS with Gantry 5 framework, integrating modern web technologies and Google Maps for location services. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are found. Overall, the site is trustworthy and compliant with GDPR basics, but could improve security and transparency aspects.

P

Premator AB

premator.com

37

Premator AB is a Swedish company specializing in blasting and painting services primarily for the marine and industrial sectors. Established in 1976, the company has positioned itself as a key player in ship repair and new building markets, offering a wide range of services including tank coating, water blasting, branding, and stress-oriented protection. Their website reflects a professional and consistent brand image, targeting marine industry clients requiring high-quality blasting and coating solutions. Technically, the website is built on Joomla CMS with UIkit framework, integrating Google Analytics and Google Maps API for enhanced user experience and analytics. Privacy compliance is well managed through Iubenda, providing comprehensive privacy and cookie policies with a consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though additional security headers and incident response policies could enhance their security maturity. Overall, the website is accessible, well-structured, and trustworthy, supporting Premator's business credibility and market presence.

E

Envoy Communication AB

envoy.se

33

Envoy Communication AB is a Swedish consultancy specializing in digitalization, marketing communication, and web development services. The company positions itself as a strategic partner offering consulting in strategy, content marketing, and cloud computing solutions. Their website reflects a small-sized business with a clear focus on providing tailored digital and communication solutions to other businesses. The site is built on Joomla CMS with UIkit framework, indicating a moderate level of technical maturity and a focus on responsive design and usability. The integration of Google Translate suggests an intent to reach a broader audience beyond Swedish speakers. Security-wise, the website uses HTTPS and obfuscates email addresses to reduce spam, but lacks visible security headers and formal security policies, which could be improved to enhance trust and compliance. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional, professional, and moderately secure but would benefit from enhanced privacy and security practices.

Metrima AB operates as a specialized supplier of Automatic Meter Reading (AMR) systems, focusing on smart metering solutions primarily for electricity, district heating, water, and cooling meters. Their flagship product, MActor, provides a flexible and cost-efficient communication platform supporting multiple meter manufacturers, positioning them as a reliable player in the energy metering sector in Sweden. The company emphasizes open, future-proof systems with backward compatibility, supported by ISO certifications (ISO-9001, ISO-14001, ISO-45001) that reinforce their commitment to quality and environmental standards. Technically, the website is built on Joomla CMS with Bootstrap framework, delivering a moderate performance and basic mobile optimization. The site is accessible and well-structured, though it lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS and includes CSRF tokens, but lacks explicit security headers and a visible privacy policy, which are areas for improvement. No tracking or analytics scripts were detected, indicating minimal user tracking and a privacy-conscious approach. Overall, the security posture is moderate with no critical vulnerabilities detected, but compliance gaps exist, particularly regarding privacy policy and cookie consent mechanisms. The absence of contact information on the homepage limits direct communication channels, which could impact user trust and support responsiveness. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness. Strategically, Metrima should prioritize publishing a comprehensive privacy policy, implementing cookie consent mechanisms, enhancing security headers, and providing clear contact information to improve compliance and user trust. These steps will strengthen their security posture and align with GDPR requirements, supporting sustainable business growth.

M

Metro Safety

metrosafety.co.uk

39

Metro Safety is a UK-based company specializing in fire, health, and safety compliance services targeted primarily at property professionals including managing agents, retailers, local authorities, and social housing providers. The company positions itself as a leading provider in the UK market with a comprehensive service offering that includes risk assessments, testing, maintenance, consultancy, and training. Their digital presence reflects a mature business with a professional website built on Joomla CMS and enhanced by modern UIkit frameworks. The site is mobile optimized and provides clear navigation and relevant content, supporting their market position and business model effectively. From a security perspective, the website employs HTTPS and includes CSRF tokens, but lacks some advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is partially addressed with a cookie and privacy policy page, though no active consent mechanism is present. Overall, the website demonstrates a solid business credibility and technical foundation with room for improvement in privacy and security transparency.

L

Latvijas tūrisma informācijas organizāciju asociācija LATTŪRINFO

latturinfo.lv

45

LATTŪRINFO is a Latvian tourism information organization association that focuses on promoting tourism information exchange, organizing tourism information markets, and supporting regional tourism development. The website is built on Joomla CMS with a moderate technical infrastructure including Bootstrap and common JavaScript libraries. It uses Google Analytics and Google Tag Manager for visitor tracking but lacks visible privacy and cookie policies, which impacts privacy compliance. Security posture is moderate with no explicit security headers detected and no vulnerability disclosure mechanisms. The website content is relevant and professionally presented, targeting tourism professionals and stakeholders in Latvia. Overall, the site is functional and credible but would benefit from enhanced privacy and security practices.

O

Online-Shop Gegenbauer Essig

gegenbauer.at

7

Online-Shop Gegenbauer Essig is a small Austrian artisanal business specializing in vinegar and gourmet products with a rich history dating back to 1929. The company operates an e-commerce platform built on Joomla CMS with VirtueMart, offering a diverse product range including over 70 vinegar varieties, oils, fruit juices, and coffee. The website is well-structured, mobile-optimized, and uses modern web technologies such as Uikit and jQuery. Structured data is implemented for SEO benefits. Security posture is adequate with HTTPS enforced and CSRF protections in place, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is limited to a login and contact form, with no direct emails or phone numbers visible. Overall, the site is professional and trustworthy, though improvements in security transparency and privacy compliance are recommended.

LB-electronics GmbH is a market-leading distributor of high-quality and innovative broadcast technologies based in Austria. The company offers specialized system solutions including studio planning, lighting technology, mobile transmission, and video over IP, complemented by comprehensive service offerings. Their website targets broadcast technology professionals and media production companies, positioning them as a key player in the Austrian broadcast technology sector. Technically, the website is built on Joomla CMS with several modern libraries and plugins, but suffers from poor SSL/TLS configuration, lacking a valid certificate and modern protocols, which poses security risks. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, enhancing business credibility. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

Z

Zertifizierungsstelle ERC

e-r-c.at

40

ERC is a European certification body specializing in the railway sector, offering comprehensive vehicle approval services primarily in the German-speaking region of Europe. Their key services include TSI conformity assessment as a Notified Body, ECM certification, and DeBo and AsBo evaluations. The website is professionally designed using Joomla CMS with a Bootstrap framework, providing clear navigation and relevant content in German with English alternatives. Technically, the site uses a valid SSL certificate but lacks modern TLS protocol support and advanced security headers, which slightly reduces its security posture. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR explicit indicators. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy but would benefit from security and privacy improvements.

B

BG/BRG/BORG Graz-Liebenau (HIB)

hib-liebenau.at

20

HIB Graz-Liebenau is a well-established federal secondary school in Graz, Austria, specializing in general education with emphases on languages, sports, and boarding facilities. The website provides comprehensive information about the school's programs, services, and extracurricular activities, targeting students, parents, and educators. Technically, the site is built on Joomla CMS with Bootstrap and UIkit frameworks, but suffers from critical security shortcomings including lack of HTTPS and missing privacy policies. The security posture is weak due to absence of valid SSL certificates and security headers, exposing the site to risks. Overall, while the content and business credibility are good, the technical and security aspects require urgent improvements to ensure trust and compliance.

N

NETxAutomation Software GmbH

netxautomation.com

37

NETxAutomation Software GmbH is a medium-sized company specializing in building management software and multi-protocol gateways for medium-sized and enterprise building automation projects. With over 20 years of experience and a presence in more than 100 countries, the company offers a comprehensive suite of products including the NETx BMS Platform and NETx Multi Protocol Server, alongside services such as project analysis, commissioning, and driver development. Their target audience includes system integrators, electrical engineers, and end customers seeking integrated building automation solutions. Technically, the website is built on Joomla CMS with jQuery and FontAwesome libraries, served by an Apache 2.4.62 server. However, the site lacks a valid SSL certificate and does not support HTTPS or modern TLS protocols, which significantly impacts its security posture. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. SEO is basic but includes meta tags and alternate language links. From a security perspective, the site implements some security headers such as Strict-Transport-Security and X-Content-Type-Options, and uses HttpOnly cookies. However, the absence of a valid SSL certificate, lack of TLS support, and missing advanced security headers reduce the overall security score. No explicit security or incident response policies are found, and no vulnerability disclosure or security.txt file is present. Overall, the website is professional and content-rich but suffers from critical security shortcomings due to missing HTTPS. Strategic improvements in SSL/TLS deployment and enhanced security policies are recommended to improve trust and compliance.

H

HS-ART Digital

hs-art.com

24

HS-ART Digital is a specialized technology company focused on providing high-end digital film restoration software solutions, including the DIAMANT-Film Restoration Suite and DustBuster+. Established in 2001, the company serves a niche market of film archives, post-production houses, studios, and laboratories worldwide. Their website reflects a professional presence with detailed product information and clear contact channels, supporting their market position as an established player in the film restoration industry. Technically, the website is built on Joomla CMS with Bootstrap and jQuery, hosted likely on Google Cloud infrastructure. However, the absence of HTTPS and valid SSL certificates significantly undermines the security posture, exposing users to risks. Cookie consent mechanisms and privacy policies are in place, indicating basic GDPR compliance, but there is no evidence of advanced security policies or incident response readiness. Overall, the website is functional and informative but requires urgent security improvements to protect users and enhance trust.

V

VINICKY Armaturen Handels GmbH

vinicky.at

37

VINICKY Armaturen Handels GmbH is an established Austrian company specializing in industrial valves and pumps, serving sectors such as water treatment, petrochemical, building technology, and power plants. The company has a long history dating back to 1952 and recently expanded its portfolio by acquiring Sonnleitner Industriearmaturen GmbH, enhancing its market position and product offerings. The website reflects a professional B2B supplier model targeting industrial clients with a focus on reliability and comprehensive solutions. Technically, the website is built on Joomla CMS with common JavaScript libraries and plugins, but lacks modern performance optimizations and mobile responsiveness is basic. Security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to risks. Privacy compliance is partially addressed with cookie consent mechanisms and basic privacy policy presence. Overall, the site is functional but requires significant improvements in security and technical modernization to meet current standards.

S

SOL4 IT-Consulting GmbH

sol4.at

30

SOL4 IT-Consulting GmbH is a specialized IT consulting firm based in Austria, focusing on CRM software solutions and digitalization services for small and medium-sized enterprises. The company offers CRM software consulting, project implementation, industry-specific solutions, and support services, positioning itself as a market leader in CRM solutions within its region. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience. Technically, the site is built on Joomla CMS with modern UIkit framework and common JavaScript libraries, providing a good user experience and mobile optimization. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the site's security posture and trustworthiness. The site implements GDPR-compliant privacy and cookie policies with active consent mechanisms and transparent contact information. Overall, while the business and content quality are strong, the lack of HTTPS is a major risk that should be addressed promptly.

E

EXERGY Studios, s.r.o.

exergystudios.com

35

EXERGY Studios, s.r.o. is a Slovak-based company specializing in building certification services such as BREEAM and LEED, building simulation, optimization, and integrated design. The company targets building owners, developers, and construction professionals seeking to enhance building performance and certification compliance. Their market position is that of a niche regional expert with a small business size and a focused service portfolio. Technically, the website is built on Joomla CMS using a Gavick template and includes legacy JavaScript libraries like jQuery 1.7 and MooTools. The site lacks HTTPS, which significantly impacts its security posture. Security headers are minimal, and no advanced security practices such as HSTS or OCSP stapling are implemented. Privacy compliance is poor, with no visible privacy or cookie policies or consent mechanisms. Business credibility is moderate due to the presence of trust indicators like membership in SKGBC and USGBC but is weakened by the lack of clear contact information and security best practices.

MBM Intellectual Property Law LLP is a Canadian intellectual property law firm providing services such as patents, trademarks, copyright protection, and litigation. The firm targets Canadian and international clients and operates multiple offices across Canada. The website content reflects a professional legal service provider with a moderate market position in the IP law sector. Technically, the website is built on outdated Joomla 1.7 CMS and PHP 5.5.9, lacks HTTPS encryption, and shows no evidence of modern security or privacy compliance practices. Security posture is weak due to missing SSL, outdated software, and lack of security headers. Privacy compliance is poor with no visible privacy or cookie policies. Overall, the website presents moderate business credibility but requires urgent technical and security improvements to protect client data and enhance trust.

T

TachoEASY GmbH

tachoeasy.com

39

TachoEASY GmbH is a medium-sized Austrian company specializing in telematics and tachograph data archiving software solutions for the transportation and logistics sector. With nearly two decades of market presence, it offers products such as tacholog² and BlueLOGICO® targeting fleet operators and transport companies. The website is built on Joomla CMS with modern UIkit framework and integrates various third-party services including Calendly and friendly-challenge captcha for user interaction. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, representing a critical security vulnerability. Security headers are partially implemented but key protections like HSTS and DNSSEC are missing. The company provides comprehensive privacy and cookie policies with a consent mechanism, reflecting good GDPR compliance. Contact information is clearly presented with multiple channels including phone, email, and contact forms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

S

SimTech GmbH

simtechnology.com

31

SimTech GmbH is a specialized software company providing advanced simulation technology primarily for energy and chemical engineering sectors. With over 30 years of experience, the company offers simulation software (IPSEpro), model libraries, consulting, and training services targeted at plant manufacturers, consultants, and R&D organizations. The website reflects a professional and consistent brand with clear business information and reputable client references. Technically, the site is built on Joomla CMS with modern frameworks but lacks HTTPS, which is a critical security gap. Security headers are present but insufficient without SSL/TLS. Privacy compliance is good with a clear privacy policy, though no cookie consent mechanism is implemented. Overall, the site is content-rich and trustworthy but requires urgent security improvements to protect user data and enhance trust.

E

Econsult

econsult.at

25

Econsult is a small Austrian logistics consulting firm specializing in production logistics, supply chain design, transport economics, system and warehouse planning, process management, and public projects. The website targets businesses seeking expert logistics consulting services and presents a professional, content-rich presence primarily in German with English alternatives. The technical infrastructure is based on Joomla CMS with PHP 8 and hosted by Austria Web Hosting. However, the site lacks HTTPS, exposing visitors to significant security risks. Basic security headers are present, but critical SSL/TLS configurations are missing. Privacy compliance is minimal with no cookie consent mechanism despite Google Analytics tracking. Contact information is limited to an obfuscated email address, with no phone or physical address visible. Social media presence includes LinkedIn and Xing profiles.

I

InfoMatrix Technologies Pvt. Ltd.

infomatrix.com

23

InfoMatrix Technologies Pvt. Ltd. is a small Indian IT services company specializing in web design, software development, ecommerce solutions, SEO, and hosting services primarily targeting clients in Noida and Delhi/NCR. The company has an established regional presence with repeat business and a focus on customer satisfaction. Technically, the website is built on an outdated Joomla 1.5 CMS platform hosted on Apache servers without HTTPS enabled, which exposes users to security risks. The site includes basic SEO and accessibility features but lacks modern performance optimizations and mobile responsiveness. Security posture is weak due to absence of SSL/TLS, missing security headers, and no published security or incident response policies. Privacy compliance is minimal with no cookie consent mechanism despite use of Google Analytics tracking. Overall, the website presents a basic professional front but requires significant improvements in security, privacy, and technical modernization to meet current standards.

F

Flaga s r.o.

flaga.cz

21

Flaga s r.o. is a mature Czech energy company specializing in the distribution of liquefied petroleum gas (LPG) in cylinders, tanks, and for automotive use. The company has a strong market presence supported by a 27-year domain age and recognized safety certifications. Their website targets both corporate and individual customers in the Czech Republic and Poland, offering a range of LPG products and customer services including electronic invoicing. Technically, the website is built on Joomla CMS with PHP 8.3.3 backend and jQuery frontend, integrating Google Tag Manager and OneTrust for analytics and cookie consent. However, the site lacks HTTPS, which is a critical security deficiency. Security headers are partially implemented but the absence of SSL/TLS and modern protocols significantly weakens the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the business credibility is solid, but the technical and security implementations require urgent improvements to meet modern standards.

H

Hair & Makeup by Lois Poulsen

hairandmakeup.com.au

24

Hair & Makeup by Lois Poulsen is a small Australian business specializing in professional hair and makeup services primarily for weddings, formals, special events, and photo shoots in the Brisbane and Gold Coast regions. The website presents a clear business focus with detailed service descriptions and customer testimonials, targeting individuals seeking mobile and venue-based beauty services. The technical infrastructure is based on Joomla CMS with modern frontend libraries such as Bootstrap and jQuery, hosted on a LiteSpeed server. However, the website lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts security and trustworthiness. Security headers are minimal, and no advanced security or privacy policies are present. The absence of privacy and cookie policies indicates non-compliance with GDPR and related regulations. Overall, the site is functional and professionally presented but requires urgent security and compliance improvements.

H

Harouge Oil Operations

harouge.com

40

Harouge Oil Operations is a Libyan energy company specializing in the development and exploitation of oil fields. The company operates under international agreements and OPEC directives, focusing on safe and efficient oil extraction and export. Their website provides corporate information, news, tenders, and operational details primarily targeting industry stakeholders and partners. Technically, the site is built on Joomla CMS with K2 content management and uses common web technologies like jQuery and Bootstrap. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which critically impacts security posture. Security headers are partially implemented but insufficient without proper TLS. Privacy compliance is weak, with no cookie consent or detailed privacy policy. Contact information is limited to a contact form and webmail link, with no explicit emails or phone numbers. Overall, the website is functional but requires significant improvements in security and privacy to meet modern standards.

KAUN GmbH is a medium-sized carpentry business based in St.Florian, Upper Austria, specializing in manufacturing and installation of windows, doors, furniture, sun protection, and window renovation services. The company targets residential and commercial customers within the region, emphasizing quality craftsmanship and sustainability. The website is built on Joomla CMS using the Helix Ultimate framework and incorporates modern frontend technologies such as Bootstrap and jQuery. However, the site lacks HTTPS, which is a critical security deficiency. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Social media presence on Instagram and Facebook supports customer engagement. Overall, the business presents a professional image but must urgently address security gaps to protect user data and improve trust.

G

Graz-Köflacher Bahn und Busbetrieb GmbH

gkb.at

23

Graz-Köflacher Bahn und Busbetrieb GmbH (GKB) is a regional transportation company based in Austria, providing rail and bus services primarily in the West Styria region. The company has a long history dating back to 1935 and focuses on sustainable mobility solutions including electrification of rail lines and regional bus services. Their website serves as an information portal for passengers, offering schedules, fare information, and service updates. The company maintains an active social media presence and provides comprehensive privacy and cookie policies in compliance with GDPR. Technically, the website is built on Joomla CMS with common web technologies such as jQuery and Bootstrap, but lacks a valid SSL certificate, which is a critical security shortfall. The absence of HTTPS and modern TLS protocols exposes users to potential risks. Despite this, the site is well-structured, mobile-optimized, and provides clear contact information. Overall, the business is credible and well-established, but the website's security posture requires urgent improvement to protect user data and maintain trust.

A

ACN Opportunity, LLC

myacn.com

40

ACN Opportunity, LLC operates a mature and established website offering essential services such as internet, energy, and wireless, combined with a home-based business opportunity model. The company targets individuals interested in essential services and entrepreneurial ventures, positioning itself as a trusted provider with strong industry memberships and a broad social media presence. Technically, the website leverages modern frontend technologies including Joomla CMS, Bootstrap, jQuery, and Swiper.js, hosted on AWS infrastructure with CloudFront CDN. The site is mobile optimized and SEO friendly, though performance metrics are unavailable. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, despite the presence of several security headers. Privacy compliance is strong with comprehensive policies and a OneTrust cookie consent mechanism. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and enhance trust.

P

Pers-Con

pers-con.at

24

Pers-Con is a specialized recruitment and personal consulting firm focusing on sectors such as automotive, IT, pharma, waste management, insurance, finance, law, and construction. The company operates primarily in Austria and neighboring countries, offering services including direct candidate approach, media-supported search, and social media utilization. The website reflects a professional business with clear service offerings and team member contacts, targeting both companies and job seekers. Technically, the site is built on Joomla CMS with common web technologies like jQuery and Bootstrap, but lacks modern performance optimizations and mobile responsiveness is basic. Critically, the absence of HTTPS and a valid SSL certificate severely impacts security posture and trustworthiness. Cookie consent and privacy policies are implemented, indicating GDPR awareness. Overall, the site is functional but requires urgent security upgrades to meet modern standards.

Y

yandree GmbH

yandree.com

36

yandree GmbH is a small Austrian IT services company specializing in IT documentation and data migration with over 20 years of experience. The company serves clients primarily in the energy, insurance, hosting, and IT sectors worldwide. Their website is built on Joomla CMS with a modern UI framework and includes comprehensive business and legal information. However, the site lacks HTTPS encryption, which is a critical security shortfall. Cookie consent mechanisms are implemented with a privacy-first approach, denying analytics and advertising cookies by default. The company demonstrates moderate digital maturity but should prioritize securing their website with SSL/TLS and enhancing security policies. Overall, yandree GmbH presents a professional and trustworthy business presence with room for technical and security improvements.

P

Polymer Competence Center Leoben GmbH

pccl.at

38

The Polymer Competence Center Leoben GmbH (PCCL) is a leading Austrian research institution specializing in polymer technology and polymer sciences. It collaborates closely with industry partners and academic institutions to deliver innovative R&D projects across sectors such as automotive, aerospace, packaging, and renewable energy. The website reflects a mature organization with a clear focus on cooperative research and sustainable polymer solutions. Technically, the site is built on Joomla CMS with a variety of extensions and frameworks, but suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and user trust. Privacy and compliance documentation is well maintained, including GDPR-compliant privacy policies and incident reporting mechanisms. Overall, the site is professional and content-rich but requires urgent improvements in security infrastructure to align with best practices and user expectations.

E

Evon Technologies

evontech.com

40

Evon Technologies Pvt. Ltd. is a well-established software development company based in India, with over 17 years of experience serving a global clientele. The company offers a broad range of services including custom web and app development, AI and machine learning solutions, cloud consulting, ERP/CRM implementations, and staff augmentation. Their market position is strengthened by certifications such as CMMI Level 5 and ISO 27001:2022, and a diverse client portfolio featuring technology heavyweights and startups. Technically, the website is built on Joomla CMS, hosted likely on AWS infrastructure, and integrates modern marketing and analytics tools. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security gap. Privacy and cookie policies are present with consent mechanisms, supporting basic GDPR compliance. Contact information is comprehensive and accessible via multiple channels.

O

Ottakringer Getränke AG

ottakringerkonzern.com

40

Ottakringer Getränke AG is a well-established Austrian family-owned beverage group comprising key subsidiaries such as Ottakringer Brauerei, Vöslauer Mineralwasser, and Del Fabro Kolarik. The company focuses on manufacturing and distributing beer, mineral water, and beverage wholesale products, targeting both B2B and B2C markets primarily in Austria and neighboring countries. The website content is professionally presented in German, emphasizing sustainability and quality. Technically, the site is built on Joomla CMS with common web technologies like jQuery and Bootstrap, and it integrates Google Analytics for user tracking. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no functional HTTPS, which significantly impacts its security posture. Security headers are partially implemented, and cookie consent mechanisms are in place, indicating reasonable privacy compliance. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in SSL configuration and security practices to enhance trust and protect user data.

J

JanLa Oy

janla.fi

37

JanLa Oy is a Finnish wholesale and service center specializing in roofing and sheet metal products, including steel roofing, solar power solutions, rainwater systems, and safety equipment. The company serves construction industry professionals, sheet metal businesses, private customers, and housing companies, positioning itself as a leading player in its sector with a focus on quality and innovation. The website reflects a medium-sized enterprise with multiple physical locations across Finland and a comprehensive product offering.

M

M15 Restaurant Kft.

babel-budapest.hu

40

Babel Budapest is a well-established Michelin-starred fine dining restaurant located in Budapest, Hungary, operating since 2008 under the company M15 Restaurant Kft. The website presents a professional and content-rich experience targeting fine dining customers and gastronomes, with clear business information and strong branding. Technically, the site is built on Joomla CMS using UIkit and Yootheme frameworks, with moderate performance and good mobile optimization. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern security headers, exposing the site to risks and reducing user trust. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite usage of tracking scripts like Google Tag Manager. Overall, the site is credible but requires urgent security improvements to protect user data and enhance trust.

N

Nemzeti Adatvédelmi és Információszabadság Hatóság

naih.hu

40

The Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH) is the Hungarian national authority responsible for data protection and freedom of information enforcement. The website serves as an official government portal providing comprehensive information on data protection laws, GDPR compliance, public information access, and related regulatory activities. It targets data controllers, data subjects, legal professionals, and the general public in Hungary. The business model is that of a government regulatory authority with a medium organizational size and a mature domain age of 14 years, reflecting its established presence. Technically, the website is built on Joomla CMS with Bootstrap and jQuery frameworks, hosted behind Cloudflare DNS. The site is content-rich and well-structured, with good mobile optimization and accessibility features. However, performance is slow due to a large page size and many resources. The site lacks a valid SSL certificate and modern TLS protocols, which is a critical security shortfall. No advanced security headers or session management features are implemented, exposing the site to potential risks. Security posture is weak due to the absence of HTTPS and security headers, despite no detected vulnerabilities like Heartbleed or POODLE. Privacy compliance is strong with clear privacy and cookie policies and GDPR alignment. Contact information is transparent and comprehensive, including emails, phone numbers, and physical addresses. No advertising or tracking services are detected, indicating a privacy-conscious approach. Overall, the site is trustworthy and authoritative but requires urgent security improvements, especially SSL/TLS implementation, to protect user data and maintain compliance. Strategic recommendations include deploying a valid SSL certificate, enabling modern TLS protocols, adding security headers, and optimizing performance to enhance user experience and security.

M

Meraki Marketing Kft.

meraki.hu

40

Meraki Marketing Kft. is a Hungarian digital marketing agency specializing in services such as web development, SEO, videomarketing, branding, and digital campaigns. The company targets businesses aiming for growth and international market entry, positioning itself as an innovative and fast-growing agency with a strong client portfolio and testimonials. The website is professionally designed, content-rich, and provides clear contact information and GDPR-compliant privacy policies. Technically, the site uses Joomla CMS with UIkit framework and integrates common marketing and analytics tools like Google Analytics, Facebook Pixel, and Google Tag Manager. However, the website suffers from critical security issues due to an invalid or missing SSL certificate and disabled TLS protocols, which undermines secure communications. Performance is also a concern with slow load times and large page size. Overall, the site demonstrates good privacy compliance and business credibility but requires urgent security improvements to protect user data and enhance trust.

H

HRmaster

hrmaster.ro

40

HRmaster.ro is a Romanian-based HR software provider offering a modular and scalable solution for companies of all sizes to automate and manage human resources processes. The company positions itself as a recognized player in the European HR Tech market with a focus on recruitment, employee management, training, and performance evaluation. The website is built on Joomla CMS with modern UIkit frontend framework and integrates Google services for analytics and bot protection. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing users to risks. Privacy compliance is partially addressed with a privacy policy and GDPR consent on forms, but lacks cookie consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site demonstrates good content quality and business legitimacy but requires urgent security improvements.

E

Evolution Consulting Ltd.

hrmaster.io

54

HRmaster.io is a professional website representing Evolution Consulting Ltd., a Hungarian company specializing in modular HR software solutions for businesses of all sizes. The platform offers a comprehensive suite of HR management tools designed to automate workflows and improve efficiency for HR professionals and company leadership. The website is well-structured, content-rich, and targets a broad audience including small to large enterprises. Technically, the site is built on Joomla CMS with modern UIkit framework and integrates Google services such as reCAPTCHA and Tag Manager for security and analytics. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. Privacy compliance is addressed with a clear GDPR-compliant privacy policy, but cookie consent mechanisms are lacking despite the use of tracking technologies. Contact information is comprehensive and includes multiple channels, enhancing business credibility. Overall, while the business and content quality are strong, the security shortcomings require urgent remediation to protect user data and improve trust.

E

Evolution Consulting Kft.

hrmaster.hu

40

HRmaster.hu is the online presence of Evolution Consulting Kft., a mature Hungarian company founded in 2012, offering modular HR software solutions tailored for small to large enterprises. The website presents a comprehensive portfolio of HR management modules and payroll services, positioning itself as a top European HR Tech provider. The technical infrastructure is based on Joomla CMS, PHP, ASP.NET, and Microsoft IIS, with modern JavaScript frameworks enhancing user experience. However, the site lacks a valid SSL certificate, exposing it to security risks and reducing trustworthiness. Contact information and business credibility are well established with testimonials and certifications. Overall, the website is professional and content-rich but requires urgent security improvements to enable HTTPS and enhance privacy compliance.

I

IDIMweb

idimweb.com

40

IDIMweb is a small, specialized web agency operating primarily in France and the Caribbean, with over 15 years of experience in custom website creation, development, SEO, and digital marketing. The company targets professionals, institutions, and individuals seeking tailored web solutions, leveraging Joomla CMS and modern frontend technologies. The website reflects a professional and consistent brand image with clear contact channels and a portfolio of client references. Technically, the site uses Joomla with Bootstrap and jQuery, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security shortfall. Privacy compliance is well addressed with comprehensive cookie and privacy policies and a consent mechanism. Social media integration and analytics usage are moderate and transparent.

D

Dauphin Telecom Business

dauphintelecompro.com

37

Dauphin Telecom Business is a regional telecommunications and digital solutions provider focused on serving businesses in French overseas territories such as Guadeloupe, Martinique, Guyane, and the Northern Islands. The company offers a range of services including fiber internet (FTTH, FTTO), unified communication solutions, mobile plans, cloud and data center services, and VPN interconnection. Their website reflects a professional digital presence with clear navigation and relevant content tailored to their target audience. Technically, the website is built on Joomla CMS using the Helix Ultimate framework and Bootstrap 5, incorporating modern libraries like jQuery and Awesomplete. However, the site suffers from slow load times and lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. Cookie consent and privacy policies are implemented, showing good GDPR compliance, and Google Analytics is used with appropriate data retention policies. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture. While Google reCAPTCHA is used to protect forms, the lack of SSL/TLS encryption exposes users to risks. The WHOIS data confirms the domain is mature and registered transparently, consistent with the business claims. Overall, the website is functional and informative but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling security headers, and optimizing performance to improve user experience and security compliance.

D

Dauphin Telecom Business

dauphintelecom-business.com

39

Dauphin Telecom Business is a telecommunications company focused on providing digital transformation solutions to businesses in French overseas territories such as Guadeloupe, Martinique, Guyane, and the Northern Islands. Their offerings include fiber internet (FTTH, FTTO), unified communication solutions, mobile plans, cloud and data center services, and VPN solutions. The company positions itself as a regional partner for business digitalization with a medium-sized operation and a consistent brand presence. Technically, the website is built on Joomla CMS using the Helix Ultimate template and Bootstrap framework, with various JavaScript libraries for enhanced UI and forms. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a significant security and trust concern. The site includes cookie consent mechanisms and privacy policies aligned with GDPR, and uses Google Analytics with consent management. Security posture is weak due to the absence of HTTPS and modern TLS protocols, no HSTS, and no OCSP stapling. Security headers are present but insufficient to compensate for the lack of encryption. There are no explicit security or incident response policies visible on the site. Overall, the website is functional and professional in content and design but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, and improving server security configurations.

Network & Knowledge is a professional services firm based in Brescia, Italy, specializing in accounting, legal, and business consultancy services. Established in 2000, the company has grown to a medium-sized firm with over 70 professionals across 7 offices serving more than 1,200 clients. Their service portfolio includes traditional accounting, legal consultancy, labor consultancy, and specialized training through their Academy. The website reflects a mature and professional business with consistent branding and comprehensive service descriptions targeting businesses in the Brescia province. Technically, the site uses Joomla CMS with modern frontend libraries and frameworks, but lacks HTTPS support, which is a critical security gap. Security headers are present but the absence of SSL/TLS significantly reduces the security posture. Privacy and cookie policies are implemented with GDPR compliance. Overall, the site is content-rich and user-friendly but requires urgent security improvements to protect user data and enhance trust.