Security Directory

G

GATX Corporation

gatx.com

37

GATX Corporation is a well-established global leader in transportation asset leasing, with a diverse portfolio including railcars, locomotives, tank containers, and aircraft spare engines. The company holds a strong market position across North America, Europe, and India, supported by a comprehensive service offering and a commitment to sustainability and customer support. The website reflects a mature digital presence with professional design, clear navigation, and extensive business information tailored to customers, investors, and job seekers. Technically, the site leverages modern frameworks such as Vue.js and integrates advanced search and consent management tools, although performance is moderate and SSL/TLS configuration is currently lacking. Security headers are properly set, but the absence of a valid SSL certificate significantly impacts the security posture. Overall, the site is trustworthy and professional but requires urgent remediation of HTTPS to ensure secure communications and maintain user trust.

P

Pittel+Brausewetter Holding GmbH

pittel.at

40

Pittel+Brausewetter Holding GmbH is a well-established Austrian family-owned construction company with over 150 years of experience. They specialize in a broad range of construction services including road, civil, industrial, structural, bridge, and sports facility construction. The company maintains a strong market position with multiple reference projects and a consistent brand presence. Technically, the website is built on WordPress using common plugins and themes, with moderate performance and good mobile optimization. However, a critical security weakness is the lack of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Contact information and social media presence are clearly provided, enhancing business credibility.

A

Allea Group

alleagroup.com

40

Allea Group is a medium-sized real estate investment and development holding company based in Cyprus, specializing in exclusive European residential and commercial property projects. The website presents a professional and well-structured digital presence targeting investors and clients interested in high-end real estate opportunities. The technical infrastructure is built on WordPress with popular plugins and is hosted behind Cloudflare CDN, but critically lacks a valid SSL certificate, resulting in no HTTPS availability which severely impacts security posture. Privacy and cookie policies are comprehensive and GDPR compliant, indicating good privacy awareness. However, the absence of terms of service, security policy, and vulnerability disclosure reduces transparency. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

C

CANBERRA PACKARD Central Europe GmbH

cpce.net

40

CANBERRA PACKARD Central Europe GmbH is a well-established company specializing in the sales, installation, and servicing of nuclear and environmental radiation detection and measurement equipment, as well as medical radiation diagnostic and therapy equipment. Founded in 1987 in Austria, the company has grown to become the largest supplier in Central and Eastern Europe, serving a diverse clientele including government organizations, nuclear power plants, research centers, and international bodies. The website reflects a professional corporate presence with relevant content and clear contact information, targeting industry professionals and institutional customers. Technically, the website is built on WordPress 6.8.1 running PHP 8.2.28 and hosted on DigitalOcean infrastructure. While the site demonstrates good mobile optimization and accessibility, performance metrics are lacking, and SEO optimization is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks and undermining trust. Security headers are minimal, and no advanced security frameworks or incident response policies are evident. From a security perspective, the site’s posture is weak due to the lack of HTTPS, no cookie or privacy policies, and no vulnerability disclosure mechanisms. The SPF record is valid, and DNS configurations are consistent with the business location, but the SSL/TLS configuration is non-existent, which is a major vulnerability. No WAF or blocking mechanisms are detected, indicating open accessibility but also potential exposure. Overall, the site is functional and professional in content but requires urgent improvements in security and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies, and enhancing security headers and incident response readiness to improve trust and compliance.

T

Tenne Export-Import Handelsgesellschaft m.b.H.

tenne.at

40

Tenne Export-Import Handelsgesellschaft m.b.H. is a well-established Austrian retail company specializing in bathroom products and complete bathroom systems. With over 40 years of industry experience, the company operates multiple showrooms across Austria and offers an online shop, targeting both end consumers and business clients. Their product range includes bathroom furniture, fittings, tiles, showers, and accessories, supported by services such as online bathroom planning and mobile consultation. The company holds reputable certifications and awards, reinforcing its strong market position as a leading bathroom retailer in Austria. Technically, the website is built on WordPress with a variety of plugins including Yoast SEO, Borlabs Cookie for consent management, and Contact Form 7 for user interactions. The site uses Apache hosting likely provided by Telekom Austria. While the site is rich in content, well-structured, and optimized for SEO and mobile devices, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security-wise, the site lacks modern TLS protocols, HSTS headers, and email security measures such as DMARC and DNSSEC. However, it employs reCAPTCHA on forms and avoids known SSL vulnerabilities. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms in place. Contact information is abundant and clearly presented, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy from a business perspective but requires urgent improvements in SSL/TLS configuration and security headers to protect user data and improve trustworthiness. Addressing these issues will elevate the site's security score and user confidence.

W

WeRetail GmbH

weretail.com

24

WeRetail GmbH is a small German-based company specializing in integrated travel retail and cross-border e-commerce solutions targeting Chinese tourists and customers. Their services include enabling businesses to accept mobile payments via Alipay and WeChat Pay, providing POS solutions with table reservation and menu pre-ordering, and offering cross-border logistics and VAT refund services. The company leverages popular Chinese social media platforms such as WeChat and Xiaohongshu for marketing and customer engagement. Technically, the website is built on WordPress using the Enfold theme and Avia framework, hosted likely on AWS infrastructure. While the site is well-structured and content-rich, it suffers from a critical lack of HTTPS, which severely impacts its security posture. Cookie consent mechanisms are implemented, but Google Analytics is installed without active configuration. Contact information is clearly provided, enhancing business credibility.

B

Bob Silverstein

bobsilverstein.com

31

Bob Silverstein's website represents a small professional services business specializing in therapy, coaching, and crisis management consulting, primarily targeting individuals and organizations in high-stress professions such as investment professionals and corporate lawyers. The business is positioned as a niche provider with over 25 years of experience, offering unique tools and personalized services. The website content is well-structured and professionally presented, though lacking formal privacy and cookie policies. Technically, the site is built on WordPress with common plugins like Contact Form 7 and Yoast SEO, hosted on HostPapa infrastructure. However, the site suffers from poor performance with a very slow load time and large page size. Mobile optimization and accessibility are basic, and SEO is adequately addressed through Yoast. From a security perspective, the site has significant weaknesses: no valid SSL certificate or HTTPS support, no security headers, and malformed DNS CAA records. While Google reCAPTCHA is implemented to protect forms, the lack of HTTPS and other security best practices exposes the site to risks. No incident response or vulnerability disclosure policies are present, and privacy compliance is minimal. Overall, the site is functional and credible as a professional service platform but requires urgent improvements in security and privacy compliance to protect users and enhance trust.

biolution GmbH is a specialized scientific consulting and visualization company serving the life sciences sector with over 20 years of experience. Their services include scientific consulting, 3D visualizations, grant and funding support, project management, coaching, workshops, and media design. The company targets researchers and organizations in the life sciences domain, positioning itself as a niche expert with a professional online presence. Technically, the website is built on WordPress with modern plugins like Elementor and WooCommerce, hosted on a LiteSpeed server by mysecurecloudhost.com. While the site has good SEO and structured data, it lacks a valid SSL certificate, which is a critical security gap. Privacy compliance is well addressed with iubenda cookie and privacy policies, including consent mechanisms. Social media integration is strong, enhancing trust and engagement. Security posture is weak due to missing HTTPS and lack of advanced security headers, exposing the site to potential risks. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

H

HAINZL Industriesysteme GmbH

hainzl.at

40

HAINZL Industriesysteme GmbH is a well-established Austrian industrial technology company specializing in system technology, testing technology, hydrogen technologies, process automation, embedded systems, and electrical engineering. With a history dating back to 1965, it holds a leading position in the European market, supported by multiple subsidiaries across Europe. The company targets industrial clients in machinery, vehicle manufacturing, metal industry, and construction sectors, offering comprehensive technological solutions and services. The website reflects a mature digital presence with professional design, multilingual support, and strong SEO practices. However, the technical infrastructure shows critical security weaknesses, notably the absence of a valid SSL certificate and disabled TLS protocols, which severely impact the security posture. While security headers are properly configured, the lack of HTTPS undermines trust and data protection. Privacy policies are present and GDPR compliant, but no explicit cookie consent mechanism is implemented. Overall, the site is professional and credible but requires urgent security improvements to align with best practices and protect user data.

C

celix Solutions GmbH

celix.at

40

celix Solutions GmbH is an Austrian technology company specializing in consulting and implementation services for Atlassian products. As an Atlassian Platinum Solution Partner and part of the Communardo Group, celix offers a comprehensive portfolio including consulting, deployment, migration, integration, custom development, training, support, and licensing. The company targets teams and enterprises seeking agile and efficient work processes, positioning itself as a trusted partner in the Atlassian ecosystem with a strong client base and partner network. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, indicating a mature digital infrastructure. The site is well-structured, mobile-optimized, and integrates marketing and analytics tools like Google Analytics and Mailchimp, with privacy compliance mechanisms in place. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS enforcement, which is a critical vulnerability. No modern TLS protocols are enabled, and HSTS is not properly configured, exposing users to potential risks. Despite these issues, other security headers and best practices are partially implemented. Overall, celix Solutions GmbH presents a professional and trustworthy business with strong market positioning and comprehensive service offerings. Immediate attention to SSL/TLS configuration is recommended to enhance security and trustworthiness.

N

Nils Jürgens

nilsjuergens.com

35

Nils Jürgens operates a professional UX/UI design service website targeting businesses seeking digital product design expertise. The site presents a strong portfolio, client testimonials, and clear contact information, positioning the business as a trusted small-scale design consultancy in Austria. Technically, the website is built on WordPress using the Enfold theme, enhanced with Yoast SEO and WP Rocket for SEO and performance optimization. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks and undermining trust. The site lacks advanced security headers and cookie consent mechanisms, indicating partial privacy compliance. Overall, while the business and content quality are excellent, the security posture requires urgent improvement to meet modern standards and GDPR requirements.

Landis+Gyr is a global leader in smart metering and grid edge intelligence technologies, providing advanced energy management solutions to utilities and energy providers. The company offers a broad portfolio including smart meters, analytics, consumer engagement, and managed services, positioning itself as a key enabler of the modern digital energy grid. Their website reflects a mature enterprise with comprehensive content, strong branding, and active communication channels including news, blogs, and social media. Technically, the site is built on WordPress with a robust set of plugins and integrations for analytics, marketing, and multilingual support. However, the current lack of a valid SSL certificate and disabled TLS protocols represent significant security weaknesses that undermine user trust and data protection. Security headers are partially implemented, and cookie consent mechanisms comply with GDPR standards. Overall, the website demonstrates high professionalism and business credibility but requires urgent remediation of its SSL/TLS configuration to meet modern security expectations.

Murexin GmbH is a medium-sized Austrian company specializing in manufacturing and distributing building materials and construction products. The company targets professional builders and tradespeople such as floor layers, tilers, painters, and masons, offering a broad product portfolio across six main categories. The website is well-structured, professionally designed, and optimized for SEO with multilingual support and social media integration. Technically, the site runs on WordPress with modern plugins and caching but critically lacks HTTPS, exposing users to security risks. The security posture is weak due to missing SSL/TLS and limited security headers, although privacy compliance is addressed with cookie consent mechanisms and a comprehensive privacy policy. Contact information is detailed with multiple physical locations and verified company emails and phone numbers. Overall, the site is credible and business-focused but requires urgent security improvements.

The Sigmund Freud PrivatUniversität Berlin is a private European university accredited under Austrian law, offering a range of degree programs primarily in psychology, psychotherapy, media, digital journalism, and related fields. The institution targets students and professionals seeking academic and continuing education in these disciplines, positioning itself as a specialized private university with a European footprint. The website reflects a professional and well-structured digital presence, leveraging WordPress CMS and common web technologies, with good content quality and clear navigation tailored for its academic audience. Technically, the website uses Apache hosting on a Hetzner IP, with WordPress and several JavaScript libraries including jQuery and Turbolinks. SEO and accessibility features are adequately implemented, though performance data is unavailable. However, a critical security shortfall is the absence of a valid SSL certificate and HTTPS support, which severely impacts the site's security posture and user trust. Cookie consent mechanisms and GDPR compliance indicators are present, reflecting attention to privacy regulations. Security-wise, the lack of HTTPS and modern TLS protocols, absence of HSTS, and missing security headers expose the site to potential risks. No incident response or security policies are publicly documented. WHOIS data aligns well with the university's identity, showing consistent registration and no privacy protection, supporting legitimacy. Overall, while the website excels in content and business credibility, urgent improvements in security infrastructure are necessary to protect users and enhance trust. Strategic recommendations include immediate SSL deployment, enabling security headers, and enhancing incident response visibility.

E

ErgoServices Ltd.

ergogroup.ie

40

ErgoServices Ltd. is a leading Irish IT solutions provider with over 30 years of experience, specializing in managed services, cloud infrastructure, digital transformation, security, and license management. The company holds prestigious certifications such as Microsoft Country Partner of the Year 2024 and Azure Expert MSP, positioning it strongly in the Irish technology market. Their target audience includes organizations in financial services, public sector, and life sciences sectors. The website reflects a professional and consistent brand with rich content and clear navigation, supporting their market position. Technically, the website is built on WordPress hosted on WP Engine with Cloudflare CDN, utilizing modern JavaScript libraries and SEO tools like Yoast. The site is mobile-optimized and includes multilingual support via WPML. However, performance metrics are unavailable, and accessibility is basic. Security headers are well implemented, but the SSL certificate is invalid or missing, and no modern TLS protocols are enabled, which is a significant security concern. The security posture shows strengths in header implementation and cookie security but is critically weakened by the lack of valid SSL/TLS encryption. No explicit security or incident response policies are found, and no vulnerability disclosure mechanism is present. Privacy compliance is strong with comprehensive privacy and cookie policies and consent mechanisms. Business credibility is high with clear company information, awards, and trust indicators. Overall, the website is professional and trustworthy but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve its security score. Strategic recommendations include fixing SSL configuration, enabling modern TLS protocols, implementing vulnerability disclosure, and enhancing accessibility and performance monitoring.

Laserer alpin OG is a specialized alpine travel and training company founded in 1989 in Graz, Austria, now headquartered in Gosau. The company offers a wide range of mountain-related services including ski tours, climbing courses, trekking, and expeditions worldwide, supported by certified mountain guides. It holds the Gütesiegel der Alpinschulen Österreichs, reflecting high quality standards. The website is professionally designed with comprehensive content targeting outdoor enthusiasts and adventure travelers. Technically, the site runs on WordPress with WooCommerce and integrates marketing tools like Rapidmail and Google Analytics. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, lowering the overall security posture significantly. Privacy and cookie policies are well implemented and GDPR compliant, enhancing user trust. Business information is transparent and consistent with domain registration data, supporting legitimacy. Strategic improvements in security infrastructure are recommended to enhance trust and compliance.

Häuser zum Leben is Austria's largest provider of senior care and housing services, operating 30 pensioners' homes and 135 clubs in Vienna. The organization focuses on providing accommodation, care, assisted living, dementia support, and social activities for senior citizens. Their business model is non-profit, emphasizing quality of life and integration for seniors. The website is professionally designed, content-rich, and targets senior citizens and their families in Vienna. Technically, the site runs on WordPress with modern plugins and optimizations, but suffers from critical security issues due to lack of a valid SSL certificate and disabled TLS protocols, which significantly impact its security posture. Privacy compliance is strong with GDPR-aligned cookie consent and privacy policies. Contact information and social media presence are clear and professional. Overall, the site is trustworthy but urgently needs to address its SSL/TLS configuration to improve security and user trust.

I

Interbrand

interbrand.com

35

Interbrand is a leading global brand consultancy with a 50-year history, specializing in brand strategy, experience design, and brand valuation. The company targets global enterprises seeking to enhance their brand value and market presence through comprehensive consultancy services. The website reflects a mature digital presence built on WordPress, integrating modern analytics and marketing tools such as Google Analytics, HubSpot, and MonsterInsights. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, exposing the site to potential risks and undermining user trust. Privacy compliance is well addressed with GDPR-compliant cookie consent mechanisms and a comprehensive privacy policy. Overall, the site demonstrates strong business credibility and professional content but requires urgent security improvements.

L

LIMAK Austrian Business School GmbH

limak.at

35

LIMAK Austrian Business School is a well-established educational institution in Austria specializing in executive education and leadership development. With over 30 years of experience, LIMAK offers a broad portfolio of academic programs including various MBA tracks, university courses, inhouse corporate training, and digital learning solutions. The institution targets professionals and companies seeking advanced management and leadership skills. The website reflects a mature digital presence with rich content, testimonials, and strong branding aligned with its market position. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and CDN services, but suffers from critical SSL/TLS misconfigurations that undermine security. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, LIMAK presents a credible and professional business front but must urgently address its HTTPS and SSL issues to protect users and maintain trust.

B

Boom Software

boomsoftware.com

39

Boom Software is an established software company specializing in innovative solutions for maintenance, service, and production management across selected industrial sectors such as transportation, manufacturing, and energy. With over 25 years of experience, the company offers tailored software products including Maintenance Manager, Production Manager, and Rail Solutions, targeting niche markets like rail and public transport. The website reflects a professional digital presence with comprehensive content and clear business focus. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, exposing users to potential risks. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the company demonstrates strong business credibility but must urgently address its SSL/TLS configuration to improve security posture and user trust.

R

Rupp Austria GmbH

rupp.at

19

Rupp Austria GmbH is a well-established cheese product manufacturer and retailer based in Austria with over 100 years of history. The company offers a variety of cheese products and engages consumers through recipes and branded content. The website is professionally designed, content-rich, and optimized for SEO with structured data and social media integration. However, the absence of a valid SSL certificate and HTTPS support is a critical security vulnerability that undermines user trust and data protection. The site implements GDPR-compliant cookie consent mechanisms and provides comprehensive privacy and terms of service documentation. Overall, the business demonstrates strong market positioning in the retail cheese sector with a medium-sized operational scale.

P

PROVA

prova.fr

22

PROVA is a French manufacturing company specializing in custom brown extracts and aromatic solutions for the food industry, with a strong heritage of 75 years. The company targets B2B clients in the food manufacturing sector, offering tailored flavor creation and innovation services. The website is professionally designed, SEO optimized, and provides multilingual support via Weglot. However, the technical infrastructure lacks a valid SSL certificate and HTTPS enforcement, which is a critical security gap. The absence of DNSSEC and CAA records further reduces domain security. Privacy compliance is well addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Contact information is available primarily via contact forms and social media links. Overall, the business appears legitimate and well-positioned, but the security posture requires urgent improvement to protect user data and enhance trust.

M

MedQuest Imaging

mqimaging.com

36

MedQuest Imaging operates as a leading outpatient imaging provider in the United States, managing a network of over 60 radiology centers affiliated with hospitals and health systems. Their business model focuses on partnerships that enhance financial performance and patient care quality in radiology services. The website reflects a professional presence with clear business information and a comprehensive privacy policy. However, the absence of a valid SSL certificate and lack of cookie consent mechanisms indicate significant security and privacy compliance gaps. Technically, the site is built on WordPress with Elementor and uses Google Analytics for tracking, but performance data is unavailable. Security posture is weak due to missing HTTPS and security headers, which poses risks to user data confidentiality and trust. Overall, the site is functional and credible but requires urgent security improvements to meet modern standards.

B

BEWOTEC GmbH

bewotec.de

24

BEWOTEC GmbH is a German-based technology company specializing in software solutions for travel agencies and tour operators. Their product suite includes myJACK, a comprehensive travel agency software, DaVinci for tour operators, and dynamic packaging tools like flexStore and OTDS Player. The company has a strong market presence in the German-speaking travel industry, with a history dating back to 1988. Technically, the website is built on WordPress with modern plugins and tools, offering good content quality and user experience. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, exposing users to potential risks. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good compliance with GDPR. Overall, the site is professional and trustworthy but requires urgent security improvements to enable HTTPS and enhance protection.

T

Today Experts

today-experts.com

37

Today Experts is a small Austrian IT recruitment company specializing in connecting IT specialists with client projects. Their website is professionally designed using WordPress and Elementor, targeting IT professionals and clients seeking staffing solutions. The company showcases partnerships with notable firms such as A1, ÖBB, IBM, UNIQA, and nagarro, indicating a credible market position within the technology and transportation sectors. Technically, the site uses modern web technologies but suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts user trust and security posture. Privacy compliance is basic, with a cookie consent mechanism implemented but lacking comprehensive GDPR indicators. Overall, the site is functional and content-rich but requires urgent security improvements to meet modern standards.

O

Ospelt Gruppe

ospelt.com

30

Ospelt Gruppe is a well-established international manufacturer specializing in private label food products including ready meals, fresh meals, convenience foods, and pet food. Founded in 1958 and headquartered in Liechtenstein, the company operates multiple production sites across Liechtenstein, Switzerland, and Germany. The website reflects a mature digital presence with multilingual support and professional branding, targeting both consumers and business clients in the food manufacturing sector. Technically, the site is built on WordPress with the Divi theme and incorporates modern web technologies and SEO best practices. However, a critical security gap exists due to the absence of a valid SSL certificate, which undermines HTTPS security and user trust. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the site demonstrates strong business credibility but requires urgent improvements in security infrastructure to protect user data and enhance trust.

G

Global Hospitality Solutions

ghsolutions.net.au

40

Global Hospitality Solutions is an established Australian company specializing in premium housekeeping, cleaning, maintenance, and outsourcing services for the hospitality sector. With over 18 years of experience and a client base of 50+ hotels, the company positions itself as a trusted partner offering tailored solutions to enhance hospitality operations. Their digital presence is built on a modern WordPress platform with Elementor, hosted on Hostinger with LiteSpeed server technology, ensuring good performance and mobile optimization. Security measures include valid SSL but lack advanced features like HSTS and OCSP stapling, indicating room for improvement. The website provides clear contact channels and client testimonials, enhancing business credibility. However, privacy compliance is basic with no cookie policy or consent mechanism detected. Overall, the site is professional and trustworthy but could benefit from enhanced security and privacy practices.

S

SPS Technik Ges.m.b.H

sps.at

40

SPS Technik Ges.m.b.H is a well-established Austrian company specializing in turnkey automation solutions for various industries including manufacturing, transportation, and energy. The company operates internationally with subsidiaries in China and Poland, offering comprehensive services from electro planning, robot programming, mechanical construction, to service and maintenance. Their market position is strong, supported by over 70 years of experience and installations in more than 50 countries. Technically, the website is built on a modern WordPress CMS with Elementor and Yoast SEO, featuring good mobile optimization and accessibility. Security-wise, the site uses a valid SSL certificate but lacks modern TLS protocols and some security headers, which lowers its security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website reflects a professional and credible business presence with room for security improvements.

G

GIG Fassaden GmbH

gig.at

32

GIG Fassaden GmbH is a medium-sized Austrian company specializing in premium metal and glass facade solutions for international architecture projects. Their business model focuses on B2B services including design, engineering, prototyping, manufacturing, installation, maintenance, and renovation of building envelopes. The company maintains a strong market position with a consistent brand presence and comprehensive service offerings. Technically, the website is built on WordPress with modern libraries and plugins, optimized for SEO and mobile responsiveness. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, exposing the site to risks and undermining user trust. Privacy policies and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Overall, the site is professional and content-rich but requires urgent security improvements to meet modern standards.

A

Apitech

apitech.fr

39

Apitech is a French technology company specializing in open source productivity solutions and custom software development. With over 30 years of experience, it positions itself as a trusted partner for organizations seeking sovereign and secure digital tools. The company leverages open source expertise and partnerships with major technology providers like Microsoft and Dell to deliver tailored solutions. The website reflects a professional and consistent brand image targeting business clients in France. Technically, the site is built on WordPress with the Divi theme and uses modern plugins and analytics tools. However, a critical security issue is the lack of a valid SSL certificate, resulting in no HTTPS, which significantly impacts the security posture. While some security headers are present, the absence of HTTPS and modern TLS protocols is a major vulnerability. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and trust.

C

CAE Expert Group GmbH

caeexpert.group

27

CAE Expert Group GmbH is a specialized provider of ECAD engineering services and software solutions, operating primarily in Austria and Germany. The company offers a broad range of services including system automation, consulting, software development, training, and project support, positioning itself as a trusted expert with TÜV SÜD certification. The website is professionally designed, content-rich, and targets businesses and professionals seeking ECAD system expertise. Technically, the website is built on WordPress with Elementor and employs modern SEO and cookie consent tools, but suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and overall trustworthiness from a cybersecurity perspective. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Contact information is comprehensive and transparent, supporting business credibility. Strategic improvements in SSL/TLS implementation and security headers are essential to elevate the security maturity and user trust.

P

PRAXIS

praxispr.ca

40

PRAXIS is a Canadian marketing communications agency specializing in integrated services including PR, digital marketing, live events, social media management, and collaborations. The company positions itself as a leading Canadian-owned agency with a strong client portfolio including major brands such as Pepsi, Cineplex, and Purina. The website is professionally designed with rich content and clear navigation targeting Canadian businesses seeking marketing communications expertise. Technically, the site is built on WordPress with modern plugins and SEO tools, but suffers from a lack of HTTPS security due to an invalid or missing SSL certificate. Security headers are minimal but present, and no cookie consent or GDPR compliance mechanisms are evident. The agency maintains active social media presence and uses Google Analytics and LinkedIn Insight for tracking. Overall, the website reflects a credible and professional business but requires urgent security improvements to protect user data and enhance trust.

eSYS Informationssysteme GmbH is a regional IT service provider based in Austria, specializing in IT support, network management, software development, and cloud solutions, with a strong focus on serving businesses and schools in Upper Austria. The company maintains a professional online presence with comprehensive service descriptions and a clear target audience. Their website is built on WordPress with Elementor and uses modern plugins for SEO and cookie management. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security shortfall that undermines user trust and data protection. The site includes privacy and cookie policies with consent mechanisms, indicating good GDPR compliance. Social media integration and structured data enhance their digital maturity. Overall, eSYS demonstrates a solid business and technical foundation but must urgently address its SSL/TLS configuration to improve security posture and user confidence.

David Gregory TV is a small-scale personal trainer blog operated by trainers David and Gregory from Brooklyn, NY. The website primarily offers fitness and health-related blog content focusing on yoga, exercise tips, and healthy living. The business model appears to be content-driven, likely supporting personal training services or brand awareness. The site uses WordPress 3.8.1 with an outdated technology stack and is hosted behind Cloudflare DNS with a LiteSpeed server. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security shortfall. No privacy or cookie policies are present, and no contact emails or phone numbers are explicitly provided, limiting user trust and compliance with privacy regulations. The overall website quality is basic with limited content and minimal SEO or accessibility features.

F

Forstbaumschulen Stingel

forstbaumschule-stingel.de

23

Forstbaumschulen Stingel is a small forestry business based in Germany specializing in forest plants, forest protection materials, and comprehensive forestry services such as seed harvesting, planting, fencing, and forest maintenance. The company holds several certifications and memberships that support its market credibility. The website is built on WordPress with WooCommerce, indicating a moderate level of digital maturity with e-commerce capabilities. The site includes GDPR-compliant cookie consent mechanisms and a comprehensive privacy policy, reflecting good privacy practices. However, the absence of a valid SSL certificate and HTTPS support is a critical security weakness, exposing users to potential data interception risks. The lack of advanced security headers and incident response information further highlights areas for improvement. Overall, the website provides good content quality and business information but requires urgent security enhancements to protect user data and improve trust.

S

strasser-consulting

strasser-consulting.at

25

Strasser-Consulting is a small Austrian consulting business specializing in project and process management, restructuring, controlling, strategy development, and business succession. The website presents a professional image with clear service descriptions and a consistent brand presence. Technically, the site is built on WordPress with Yoast SEO for optimization but lacks a valid SSL certificate, serving content only over HTTP, which significantly impacts security posture. The absence of privacy and cookie policies, as well as contact details, reduces trust and compliance with GDPR requirements. Security best practices are minimal, with no modern TLS protocols or security headers implemented. Overall, the site is functional and informative but requires urgent improvements in security and privacy compliance to enhance trustworthiness and protect visitors.

S

SOLVION information management GmbH

solvion.net

25

SOLVION information management GmbH is a well-established IT consulting and solutions provider specializing in digital workplace transformation within the Microsoft 365 ecosystem. With over 22 years of experience, the company serves medium-sized commercial enterprises primarily in the DACH region, focusing on sectors such as production, retail, services, and transportation. Their key services include strategic and technology consulting, adoption and change management, implementation of Microsoft-based solutions, and ongoing technical support. The website reflects a professional and consistent brand image with comprehensive content, active blogs, and customer testimonials, positioning SOLVION as a leading player in their market segment. Technically, the website is built on WordPress with the Divi theme and utilizes modern JavaScript libraries and marketing tools such as Google Tag Manager and Borlabs Cookie for consent management. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Other security best practices like HSTS, OCSP stapling, and modern TLS protocols are also missing, exposing the site to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies, including a consent mechanism that aligns with GDPR requirements. The site employs extensive tracking and marketing tools, but these are transparently disclosed. Contact information is clearly presented, including a detailed contact form, phone number, and physical address, enhancing business credibility. Overall, while the business and content aspects of the website are strong and trustworthy, the lack of HTTPS and proper SSL configuration is a critical vulnerability that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include implementing a valid SSL certificate, enabling modern security protocols, and enhancing security headers to improve the site's security posture and compliance.

W

W.D. Matthews Machinery Co.

wdmatthews.com

40

W.D. Matthews Machinery Co. is a well-established heavy equipment dealer operating primarily in New England, with a history dating back to 1939. The company specializes in new and used forklifts, heavy machinery, warehousing supplies, rentals, parts, and service. It maintains strong partnerships with reputable brands such as Toyota, Manitou, Clark, and Bobcat, positioning itself as a leading regional provider in the transportation and industrial equipment sector. The website reflects a professional business model focused on equipment sales, rentals, and maintenance services targeting commercial and industrial clients in the region. Technically, the website is built on WordPress with WooCommerce and utilizes modern web technologies including Gravity Forms for data collection and Google Tag Manager for analytics. Hosting is provided by WP Engine with Cloudflare CDN for content delivery. While the site is mobile-optimized and well-structured with good SEO practices, performance data is incomplete, and some accessibility features are basic. The site lacks a valid SSL certificate, which is a critical security gap. From a security perspective, the absence of HTTPS and modern TLS protocols significantly reduces the site's security posture. No advanced security headers or mechanisms such as HSTS or OCSP stapling are implemented. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service page detected. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a moderate risk profile due to the lack of HTTPS and limited privacy compliance. Strategic improvements in security configuration and privacy practices are recommended to enhance trust and protect user data. The business itself appears legitimate and well-positioned in its market, but the website's security shortcomings could impact user confidence and compliance with regulations.

M

M. M. Newman

mmnewman.com

40

M.M. Newman Corporation is a specialized manufacturer and distributor of Heli-Tube® spiral cable wrap and related specialty tubing and hot tool products. Established in 1956, the company holds a strong market position as a leading supplier in the manufacturing sector, targeting industrial and commercial customers requiring cable management solutions. Their website reflects a professional e-commerce platform built on WordPress and WooCommerce, offering clear navigation and relevant product information. The company demonstrates trustworthiness through certifications such as ISO 9001:2015 and provides comprehensive contact information and social media presence. However, the technical infrastructure shows gaps in security, notably the absence of a valid SSL certificate and incomplete HTTPS implementation, which poses risks to user data and trust. The site uses multiple analytics and marketing tools but lacks a cookie consent mechanism, indicating partial privacy compliance.

N

NDI

ndi.video

63

NDI.video is a leading technology provider specializing in IP-based video connectivity solutions that enable seamless multimedia experiences across various industries including broadcast, corporate collaboration, education, and content creation. The company offers a comprehensive ecosystem including SDKs, tools, certification programs, and a connected community platform to support developers and users. Their market position is strong, supported by a large product ecosystem and partnerships with notable organizations. Technically, the website is built on a modern WordPress VIP platform with Elementor and optimized for performance, mobile responsiveness, and SEO. Security posture is adequate with HTTPS and basic security headers, though improvements in DNS security and HTTPS hardening are recommended. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website reflects a professional and trustworthy business with a strong focus on developer enablement and user engagement.

V

Viz Flowics

flowics.com

37

Viz Flowics is a cloud-native platform specializing in live data-driven broadcast graphics, targeting broadcasters, live streamers, and corporations. The platform offers an intuitive web-based HTML5 graphics editor, native data connectors, social media integration, and NRCS integration, positioning itself as a modern solution in the media technology sector. The website reflects a professional and consistent brand presence supported by customer testimonials and case studies, indicating a solid market position under its parent company Vizrt. Technically, the site is built on WordPress with modern plugins and integrates multiple marketing and analytics tools, though performance metrics are not explicitly available. Security posture is weakened by the absence of a valid SSL certificate and lack of TLS support, which is a critical vulnerability for a platform serving professional clients. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates strong business credibility but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

A

Amway Global

amwayglobal.com

40

AmwayGlobal.com serves as the official digital presence of Amway Corporation, a globally recognized leader in direct selling and wellness products. The website effectively communicates the company's extensive product portfolio, business opportunities, and corporate social responsibility initiatives, targeting health-conscious consumers and entrepreneurs worldwide. The site demonstrates a mature digital infrastructure leveraging WordPress CMS, modern JavaScript libraries, and performance optimization tools, ensuring a good user experience across devices. However, the absence of a valid SSL certificate and disabled TLS protocols represent significant security gaps that undermine the site's secure communication capabilities. While security headers and privacy policies are well implemented, the lack of HTTPS is a critical issue that should be addressed promptly. Overall, the website reflects a reputable enterprise with strong branding and compliance posture but requires urgent improvements in its SSL/TLS configuration to enhance trust and security.

A

adRom Media Marketing GmbH

adrom.net

32

adRom Media Marketing GmbH is a well-established Austrian online marketing agency specializing in email marketing, lead generation, display advertising, and digital prospectus solutions. With over 25 years of experience and a large GDPR-compliant database of 45 million addresses, the company serves a broad B2B audience including agencies and enterprises. The website is professionally designed, content-rich, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with Elementor and employs performance tools like WP Rocket, but suffers from critical security weaknesses due to an invalid SSL certificate and lack of modern TLS protocols, which undermines secure HTTPS delivery. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Contact information and social media presence are transparent and professional. Overall, the site demonstrates high business credibility but requires urgent security improvements to protect user data and enhance trust.

I

iSEEit

iseeit.com

40

iSEEit is a technology company specializing in a native Salesforce Opportunity Management Tool designed to help sales teams visualize and qualify opportunities using structured sales methodologies such as MEDDIC and MEDDPICC. The company targets sales professionals and organizations seeking to improve sales process adoption and forecasting accuracy. The website presents a professional and content-rich platform with detailed product features, customer testimonials, and partner logos, positioning iSEEit as an award-winning solution in its niche. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, Hotjar, and various marketing tools. Hosting is inferred to be on Amazon AWS infrastructure. While the site is mobile-optimized and SEO-friendly, performance metrics indicate slow loading times, suggesting room for optimization. From a security perspective, the site lacks a valid SSL certificate and does not enable modern TLS protocols, which is a critical vulnerability impacting user trust and data security. Although some security headers like HSTS are present, the absence of HTTPS and other best practices significantly lowers the security posture. Privacy compliance is well addressed with comprehensive privacy and cookie policies and user consent mechanisms. Overall, the site demonstrates strong business credibility and content quality but requires urgent improvements in SSL/TLS configuration and security practices to ensure safe user interactions and compliance with modern security standards.

G

Great Sales Force GmbH

greatsalesforce.com

31

Great Sales Force GmbH is a consulting and survey tools provider specializing in enhancing sales force effectiveness and customer intelligence. The company offers a suite of proprietary tools and services such as the GSF® Survey Tools, Benchmark Data, Consulting, and specialized checks for customer culture, leadership, CRM, and customer experience. Their market position is that of a niche provider with international reach, serving businesses aiming to improve sales performance and customer satisfaction. The website is professionally designed, content-rich, and well-branded, targeting business clients primarily in Austria and German-speaking regions. Technically, the website is built on WordPress using Elementor and Yoast SEO, with integrations like Google Tag Manager and Google reCAPTCHA v3 for tracking and form security. Hosting is provided by Hetzner, a reputable provider. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture and user trust. Performance metrics are not available, but the site shows good mobile optimization and basic accessibility. Security-wise, while some best practices like cookie consent and reCAPTCHA are implemented, the lack of HTTPS and modern TLS protocols is a major vulnerability. No advanced security headers or incident response policies are found. Privacy compliance is strong with comprehensive policies and GDPR adherence. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a trustworthy and professional business front but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate SSL deployment, enabling modern TLS, and enhancing security headers and monitoring.

A

AGS

ags-engineering.at

27

AGS is a medium-sized Austrian company specializing in high-end automated special machines, robotics, and industrial data solutions. The company emphasizes quality, innovation, and long-standing experience, positioning itself as a regional leader in manufacturing automation. Their website reflects a professional and consistent brand image with clear service offerings and active social media presence. Technically, the site is built on WordPress with Elementor and uses modern plugins for enhanced functionality, though performance metrics are moderate. Security-wise, while several security headers are implemented, the absence of a valid SSL certificate and lack of modern TLS protocols significantly weaken the security posture. Privacy compliance is minimal, with no visible privacy or cookie policies. Overall, the website is trustworthy but requires urgent improvements in security and privacy compliance to meet modern standards.

S

Stratodesk Corp.

stratodesk.com

40

Stratodesk Corp. is a mature technology company founded in 2010, specializing in secure, managed endpoint operating systems designed for virtual desktop infrastructure (VDI), Desktop-as-a-Service (DaaS), SaaS, secure browsing, and industrial IoT applications. The company has established a strong market position as a leading innovator with multiple industry awards and partnerships with major technology vendors such as Microsoft, Citrix, and VMware. Recently, Stratodesk became part of IGEL, further strengthening its market presence. The website reflects a professional and comprehensive digital presence, targeting enterprise customers seeking secure and manageable endpoint solutions. Technically, the site is built on WordPress with modern plugins and integrations, but suffers from a critical security shortfall due to the absence of a valid SSL/TLS certificate and HTTPS support, which significantly impacts its security posture. Privacy policies and terms of service are well documented, and contact information is clearly provided, supporting good privacy compliance and business credibility. Overall, Stratodesk demonstrates a solid business and digital maturity but should urgently address its SSL/TLS configuration to improve security and trust.

H

Holzhausen Verlag

verlagholzhausen.at

31

Holzhausen Verlag is a well-established Austrian publishing company specializing in scientific and professional publications across sectors such as innovation, research, technology, installation, logistics, and transport. The company holds a strong market position as a leading publisher for specialized industry sectors in Austria, offering a broad range of print and digital media products, newsletters, social media marketing, and event organization. Their business model focuses on delivering high-quality content and media services to professionals and decision-makers in their target industries. Technically, the website is built on WordPress using the Extra theme and integrates modern SEO and analytics tools, but suffers from a critical lack of HTTPS and valid SSL certificate, which significantly impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Overall, the website presents professional content and branding but requires urgent security improvements to protect user data and enhance trust.

U

Umdasch Group

umdaschgroup-ventures.com

35

Umdasch Group is a large Austrian manufacturing and retail company specializing in comprehensive lifecycle solutions for building projects. Their subsidiaries include Doka, a global leader in formwork and scaffolding, umdasch The Store Makers focusing on retail space planning, and Industrial Solutions providing specialized industrial scaffolding and safety services. The company emphasizes sustainability and digital innovation as core drivers of their business model. Technically, the website is built on WordPress with modern plugins and multilingual support, hosted on Azure DNS. However, a critical security weakness is the invalid SSL certificate and lack of TLS protocol support, which undermines secure communications. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional and content-rich, but the security posture requires urgent improvement to protect user data and maintain trust.

L

Leading Search Partners

leadingsearchpartners.com

26

Leading Search Partners is a specialized recruitment and consulting firm focused on executive and professional search services, management audits, performance checks, and outplacement. The company targets businesses and professionals seeking high-quality personnel placement and organizational development support. Established since at least 2016, it operates primarily in Austria with offices in multiple countries, emphasizing a personalized and quality-driven approach. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support. The infrastructure uses Apache server technology but lacks HTTPS, which is a significant security shortfall. The site includes cookie consent mechanisms and Google Analytics tracking, indicating moderate digital maturity but with room for improvement in performance and security. Security posture is weak due to the absence of SSL/TLS encryption and missing security headers, exposing the site to potential risks. However, no active vulnerabilities or malware were detected. Privacy compliance is good with GDPR-aligned cookie consent and a comprehensive privacy policy. Business credibility is supported by clear contact information and professional content. Overall, the site is functional and professional but requires urgent security enhancements, especially enabling HTTPS, to protect user data and improve trustworthiness.