Security Directory

F

Freiform Werkzeugbau GmbH

freiform.eu

23

Freiform Werkzeugbau GmbH is a small manufacturing company specializing in tooling, plastic, aluminum, and graphite electrode products, serving clients primarily in Austria, Switzerland, and Germany. The website is built on WordPress with a modern tech stack including PHP 8, Yoast SEO, and GDPR-compliant cookie management. However, the site lacks a valid SSL certificate, exposing it to security risks and reducing trustworthiness. Legal and privacy documentation is comprehensive and GDPR compliant, with a cookie consent mechanism in place. The site uses Matomo for analytics, indicating a moderate level of user tracking with privacy considerations. Overall, the business presents a professional image but must urgently address its lack of HTTPS to improve security and user trust.

O

Opus Marketing GmbH

opus-marketing.de

23

Opus Marketing GmbH is a German branding agency specializing in transforming visions and ideas into impactful brands with a focus on strategic branding, digital transformation, and sustainability. The company targets businesses seeking creative and strategic brand development and positions itself as a medium-sized agency with a consistent and professional brand presence. Technically, the website is built on WordPress using WPBakery and integrates modern marketing and analytics tools such as Usercentrics for cookie consent, Google Tag Manager, and Facebook Pixel. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support and lack of security headers, which significantly impacts its security posture. Performance is also suboptimal with a slow load time and large page size. Overall, the business credibility and content quality are high, but technical and security improvements are necessary to enhance trust and compliance.

S

Sun Chemical

sunchemical.com

40

Sun Chemical is a globally recognized enterprise manufacturing inks, pigments, and advanced materials serving diverse industrial sectors including packaging, graphics, automotive, electronics, and healthcare. As a member of the DIC Group with over 22,000 employees and a legacy spanning over 200 years, the company holds a strong market position supported by extensive patents and sustainability initiatives. The website reflects a mature digital presence with comprehensive content, professional design, and good SEO practices. However, the absence of a valid SSL certificate and HTTPS implementation significantly undermines the security posture, exposing users to risks and reducing trust. Security headers are partially implemented but insufficient without proper TLS. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit security or incident response policies are found. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect data and user trust.

W

Wiener Messe und Congress GmbH

messe.at

27

Wiener Messe und Congress GmbH operates the VIECON – Vienna Congress & Convention Center, a leading event venue in Vienna offering flexible spaces for congresses, exhibitions, and corporate events. The website presents a professional image with comprehensive information about the venue, services, and sustainability initiatives. Technically, the site is built on WordPress with modern plugins and SEO optimizations, but lacks a valid SSL certificate, resulting in an insecure HTTP-only connection. Security headers are present but insufficient without HTTPS. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is credible and well-structured but requires urgent SSL implementation to improve security and trust.

G

Greater Europe Mission

gemission.org

40

Greater Europe Mission is a well-established Christian missions non-profit organization focused on disciple-making and evangelism throughout Europe. The organization has a mature online presence with a professionally designed WordPress website that clearly communicates its mission, values, and ministry areas. The website targets Christian communities, churches, missionaries, and donors interested in European missions. It offers resources, contact options, and donation capabilities to support its mission. Technically, the site uses modern web technologies including WordPress, Beaver Builder, and integrates Google Analytics and Tag Manager for tracking. However, the site lacks a valid SSL certificate and HTTPS support, which is a significant security concern. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site is credible and trustworthy but requires urgent security improvements to protect user data and enhance trust.

B

Baschnegger Ammann Partner

bap.cc

25

Baschnegger Ammann Partner is a well-established creative agency based in Dornbirn, Austria, specializing in branding, design, communication, and digital marketing services. With over 40 years of experience, the agency targets small to large companies primarily in the Bodensee region and surrounding economic areas. Their market position is strong within western Austria, supported by a professional website showcasing client references and a consistent brand image. Technically, the website is built on WordPress with a modern tech stack including PHP 8.4.8 and various JavaScript libraries, optimized for mobile and SEO. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. The site implements GDPR-compliant cookie consent mechanisms and uses reputable analytics and marketing tools such as Google Analytics and HubSpot. Overall, the business demonstrates high professionalism and trustworthiness but must address its SSL deficiency to improve security posture and user trust.

D

diego5 studios

diego5studios.com

37

diego5 studios is a medium-sized influencer marketing agency and video content production company based in Austria, founded in 2015. It operates the largest influencer community in Austria and offers comprehensive services including influencer marketing, branded entertainment, workshops, and live events. The company targets brands seeking to engage audiences through digital video content and influencer collaborations. The website reflects a professional and consistent brand presence with good content quality and clear navigation, optimized for mobile users. Technically, the site is built on WordPress using common plugins and jQuery libraries, hosted on servers managed by world4you.at. However, the website lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. The business demonstrates legitimacy through client logos and active social media channels.

C

Capgemini

capgemini-consulting.com

40

Capgemini Invent is a prominent management consultancy brand under the Capgemini group, specializing in innovative consulting services that combine strategy, technology, data science, and design to help businesses transform and grow. The website reflects a mature, enterprise-level digital presence with comprehensive content, strong branding, and a wide range of services targeting C-level executives and large enterprises. Technically, the site is built on WordPress with modern frameworks like React and Bootstrap, indicating a contemporary and scalable infrastructure. However, a critical security issue is the lack of a valid SSL certificate, which undermines the site's security posture despite the presence of several security headers. Privacy and cookie policies are well implemented, showing good compliance with GDPR and related regulations. Overall, the site is professional and trustworthy but requires immediate attention to SSL configuration to enhance security and user trust.

H

HABAU

habau.at

27

HABAU is a well-established Austrian construction company with over 110 years of experience, offering a broad range of construction services including high-rise construction, civil engineering, pipeline construction, and precast concrete solutions. It operates as part of the larger HABAU GROUP, which has a significant international presence and a large workforce. The website reflects a professional and content-rich digital presence targeting construction clients, partners, and job seekers. Technically, the site is built on WordPress with common performance and cookie management plugins, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is weak due to missing HTTPS and security headers, exposing the site to risks. Overall, the site is trustworthy and professional but urgently needs to address its SSL and security configuration to protect users and improve trust.

S

SRG IT & Marketing GmbH

leadchamps.co

37

LeadChamps is a small Austrian technology company specializing in sales automation and lead generation services for B2B clients, primarily in the DACH region. Their offerings include intent data lead research, multi-channel campaigns leveraging LinkedIn and email, and a proprietary sales automation platform. The website is built on WordPress with the Divi theme and integrates HubSpot forms for lead capture. While the content is professionally presented and relevant to their target audience, the technical infrastructure lacks a valid SSL certificate and modern TLS protocols, exposing the site to security risks. The absence of cookie consent mechanisms and limited security headers further weaken their privacy and security posture. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

RUBICON IT GmbH is a medium-sized Austrian technology company specializing in digitalization solutions and IT services. Their product portfolio includes leading software such as Nova Find, a prominent lost and found software in Europe, alongside other enterprise solutions like Acta Nova and Document Partner. The company also offers professional services, managed services, and training, targeting business and public sector clients seeking digital transformation. The website is professionally designed, multilingual, and well-structured, reflecting a mature digital presence. Technically, the site is built on WordPress with various plugins and frameworks, including ASP.NET components, but suffers from critical SSL/TLS misconfigurations, lacking a valid certificate and modern protocol support. Security headers are partially implemented but incomplete, and no advanced security mechanisms like OCSP stapling or session resumption are enabled. Privacy compliance is strong, with clear cookie consent and a comprehensive privacy policy. Social media integration and certifications like Kubernetes demonstrate trust and industry alignment. Overall, the site is functional and business-credible but requires urgent security improvements to protect user data and enhance trust.

S

SIGAL UNIQA

sigal.com.al

40

SIGAL UNIQA is a leading regional insurance group operating primarily in Albania, Kosovo, and North Macedonia, offering a comprehensive portfolio of insurance products including life, health, property, automobile, and marine insurance. The company is well-established since 1999 and is part of the larger UNIQA Insurance Group, which enhances its market credibility and operational scale. The website reflects a professional and well-branded digital presence with clear navigation and extensive content tailored to its target audience of individuals and businesses seeking insurance solutions. Technically, the site is built on WordPress with modern plugins and integrations, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and lack of HTTPS support, which poses risks to user data confidentiality and trust. The company demonstrates commitment to security governance through ISO 27001:2022 certification and implements privacy and cookie policies compliant with GDPR standards. Marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp are actively used, indicating a mature digital marketing strategy. Overall, while the business and content aspects are strong, urgent improvements in SSL/TLS configuration are necessary to enhance security posture and user trust.

A

akaryon

akaryon.com

24

Akaryon is a mature small-sized company founded in 1999, specializing in software development with a focus on environmental informatics and sustainability tools. Their offerings include websites, webshops, CSR reporting tools, CO2 calculators, and support for funding applications. The company targets organizations, companies, and municipalities aiming to digitalize sustainability management. Technically, the website is built on WordPress with a variety of plugins for SEO, forms, and cookie management. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

J

JAWA Management Software GmbH

jawa.at

23

JAWA Management Software GmbH is an established Austrian technology company specializing in customized software solutions for process optimization and information management. Their flagship product, the inforum management platform, supports supplier management, quality control, production planning, and AI-enhanced business solutions. With over 25 years of market presence and a medium-sized operation, JAWA serves a broad international clientele with a focus on efficiency and productivity improvements. Technically, the website is built on a modern WordPress CMS infrastructure using popular plugins and frameworks such as WPBakery, WPML, and Woodmart theme. The site is well-structured, mobile-optimized, and SEO-friendly, demonstrating a mature digital presence. However, the hosting environment lacks a valid SSL certificate and proper TLS configuration, which significantly undermines the security posture. Security-wise, the absence of HTTPS and modern TLS protocols is a critical vulnerability, exposing users to potential data interception and trust issues. While no active vulnerabilities or malware are detected, the site misses essential security headers and DNS security configurations. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the website presents a professional and credible business front but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate SSL deployment, enabling modern security protocols, and implementing advanced security headers and DNS protections.

C

contextflow GmbH

contextflow.com

25

contextflow GmbH is a small Austrian healthcare technology company specializing in AI-powered computer-aided detection software for chest CT scans. Their flagship product integrates directly into PACS systems, targeting radiologists, PACS providers, and pharmaceutical companies. The website is professionally designed with rich content, including scientific research, testimonials, and partner logos, indicating a strong market position in AI medical imaging. Technically, the site runs on WordPress with modern plugins and uses AWS for hosting. However, the security posture is weak due to the absence of a valid SSL certificate and HTTPS support, which is a critical issue. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Overall, the site is trustworthy but requires urgent security improvements.

E

EPSIMEC GmbH & Co KG

epsimec.com

28

EPSIMEC GmbH & Co KG is a small Austrian digital agency specializing in social media marketing, newsletter marketing, content management, and web development services. Established in 2012, the company has a mature online presence with a professional website built on WordPress, leveraging modern plugins such as Yoast SEO and WP Rocket for optimization. The website presents a consistent brand image, clear contact information, and client references, positioning EPSIMEC as a credible service provider in the technology sector. Technically, the site uses PHP 8.0.3 on an Apache server hosted by Host Europe, but lacks HTTPS support, which is a significant security concern. The cookie consent mechanism is well implemented, indicating good privacy compliance. However, the absence of SSL/TLS encryption and security headers lowers the overall security posture. No explicit security policies or incident response contacts are published, and no vulnerability disclosure or security.txt files are found. Overall, EPSIMEC demonstrates a solid business and technical foundation but should prioritize securing its website with HTTPS and enhancing security best practices to improve trust and compliance.

D

decide Clinical Software GmbH

decide-clinical.com

26

decide Clinical Software GmbH operates the GlucoTab platform, a specialized clinical decision support system designed to assist healthcare professionals in managing diabetes patients in hospital settings. The company holds important certifications such as ISO 13485 and MDR Class IIa, underscoring its commitment to quality and regulatory compliance. Their product integrates evidence-based insulin dosing algorithms and workflow digitalization, targeting hospitals and clinical staff. The website is professionally designed, multilingual, and content-rich, reflecting a mature digital presence. However, the lack of a valid SSL certificate and HTTPS support significantly undermines the security posture, especially critical in healthcare. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Contact information and trust indicators are clearly presented, enhancing business credibility.

S

Sanochemia Pharmazeutika GmbH

sanochemia.at

20

Sanochemia Pharmazeutika GmbH is an established Austrian pharmaceutical manufacturer specializing in contrast agents for medical imaging, including MRI and CT products, with a focus on gadolinium-free alternatives to enhance patient safety. The company operates globally with distribution in over 50 countries and offers contract manufacturing and API production services. The website is built on WordPress with modern plugins and multilingual support, providing a professional and content-rich user experience. However, the absence of a valid SSL certificate is a critical security gap, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting good GDPR compliance. Overall, the business presents a credible and professional digital presence but must urgently address its SSL/TLS configuration to improve security posture.

U

Università degli Studi Internazionali di Roma - UNINT

unint.eu

37

Università degli Studi Internazionali di Roma - UNINT is a large, established higher education institution based in Italy, offering a wide range of undergraduate and graduate programs with a strong international focus. The website is professionally designed, content-rich, and targets students, faculty, and academic partners. The technical infrastructure is based on WordPress with modern plugins and frameworks, though performance is somewhat slow. Security posture is basic with critical issues such as an invalid SSL certificate and lack of security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy but requires immediate attention to SSL and security configurations to enhance user trust and data protection.

S

Swimsol GmbH

swimsol.com

28

Swimsol GmbH is a specialized energy company focused on providing floating and rooftop solar photovoltaic (PV) systems primarily for island environments such as the Maldives. The company positions itself as a leader in solar-at-sea technology with over 35 islands operating their systems and a significant installed capacity. Their business model includes system design, installation, operation, maintenance, and financing options, targeting luxury resorts and small businesses in tropical regions. Technically, the website is built on WordPress with a modern tech stack including Fusion Builder and WP Rocket, but lacks a valid SSL certificate, which impacts security and user trust. The site is well-designed, mobile-optimized, and SEO-friendly, with comprehensive content and strong branding. However, the absence of HTTPS and security headers represents a critical security gap. Privacy compliance is addressed with visible policies and consent mechanisms. Overall, Swimsol demonstrates a strong market presence and professional online representation but should prioritize securing their website with HTTPS and enhanced security practices.

B

bulthaup

bulthaup.com

22

bulthaup is a premium kitchen brand specializing in high-quality kitchen concepts and living space solutions. The company operates a multilingual WordPress-based website that serves as a platform for product information, dealer location, and appointment scheduling. The site targets affluent consumers and businesses seeking bespoke kitchen solutions, positioning itself as a premium retail brand with a global dealer network. Technically, the website employs modern JavaScript libraries and WordPress plugins, including hCaptcha for form security and Cookiebot for cookie consent management. However, the site lacks a valid SSL certificate and modern TLS support, which significantly weakens its security posture. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

M

Mediaplanet Group

mediaplanet.com

40

Mediaplanet Group is a mature, established content marketing company founded in 1993, delivering over 1,000 campaigns annually to a global client base exceeding 15,000. The company operates primarily in the media sector, providing content marketing services worldwide. The website is built on WordPress and leverages modern JavaScript libraries such as jQuery and amCharts, with Cloudflare providing CDN and security services. Despite a professional design and good SEO practices, the site lacks a valid SSL certificate, serving content over HTTP only, which significantly impacts its security posture. No privacy or cookie policies are present, and no explicit contact information is found on the main page, which affects privacy compliance and business credibility scores. Advertising and tracking tools like Facebook Pixel and Google Tag Manager are integrated, indicating moderate user tracking.

A

Amaris Consulting

amaris.com

25

Amaris Consulting is a well-established global technology consulting firm founded in 2007, operating across multiple sectors including technology, healthcare, finance, transportation, and energy. With a workforce of approximately 7,600 employees spread over 60 countries, it serves over 1,000 clients worldwide. The company is part of the Mantu group, which is confirmed by website footer references and structured data. The website presents a professional and consistent brand image, with comprehensive content describing its services, centers of excellence, and industry focus. Technically, the site is built on WordPress using Elementor and optimized with WP Rocket, but suffers from a critical security issue due to the lack of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is partially addressed with a clear privacy policy and GDPR-compliant contact form, but lacks a cookie consent mechanism. Overall, the site demonstrates good business credibility and user experience but requires urgent security improvements.

I

Interfood Lebensmittelgroßhandel Ges.m.b.H.

interfood.at

23

Interfood Lebensmittelgroßhandel Ges.m.b.H. is a medium-sized Austrian wholesaler specializing in international fine foods. The company emphasizes quality, freshness, and supply reliability, supported by certifications such as IFS, MSC, ASC, and organic labels. Their website targets retailers and fine food distributors, showcasing a curated product portfolio and strong logistics capabilities. Technically, the site runs on WordPress with popular plugins and themes but lacks HTTPS, which is a critical security gap. The site includes comprehensive privacy and cookie policies, indicating GDPR compliance. However, the absence of SSL/TLS significantly impacts the security posture and trustworthiness. Overall, the website is professionally designed with good content quality and user experience but requires urgent security improvements.

B

BMI Productivity Solutions

bmisw.com

28

BMI Productivity Solutions is a small technology company specializing in productivity enhancement software and services, including document management, loan management, and workflow automation. Established since 1992, the company targets organizations seeking to improve business processes and compliance. Their offerings include both on-premise and cloud-hosted solutions, with cloud hosting on Microsoft Azure and a SOC 2 TYPE II certification indicating some level of security assurance. The website is built on WordPress using the Divi theme and includes plugins for performance and download management. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Other security best practices such as security headers and incident response policies are absent or not publicly disclosed. Privacy compliance is minimal, with a basic privacy policy present but no cookie policy or consent mechanism. Contact information is limited to an email address and a contact form, with no phone number or physical address provided. Overall, the website is professionally designed and content is relevant, but the lack of HTTPS and security controls significantly lowers the security posture and trustworthiness.

H

Huppenkothen GmbH

huppenkothen.at

35

Huppenkothen GmbH operates a professional website focused on the sale and rental of mini and compact construction machinery, serving primarily the Austrian construction sector. The company maintains a strong market position with 42 locations and a large inventory of machines and spare parts. The website is well-designed, content-rich, and optimized for SEO and accessibility, targeting construction professionals and businesses. Technically, the site is built on WordPress with modern plugins and frameworks, but lacks HTTPS, which is a critical security vulnerability. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site demonstrates a mature digital presence but requires urgent security improvements to protect user data and trust.

I

ivii GmbH

ivii.eu

40

ivii GmbH is a small Austrian technology company specializing in AI-powered visual intelligence systems designed to optimize quality assurance and logistics processes in industrial manufacturing environments. Their flagship product, ivii iriis, combines artificial intelligence, machine learning, and camera technology to enable error-free production and logistics workflows. The company positions itself as an innovative provider with a strong focus on practical, plug-and-play solutions that empower employees and improve operational efficiency. The website content is professionally crafted, targeting industrial and logistics sectors, and supported by customer testimonials and ISO 27001 certification, enhancing trust and credibility. Technically, the website is built on WordPress with modern SEO and performance plugins such as Yoast SEO Premium and WP Rocket. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Performance is also suboptimal with a high page load time. Privacy compliance is well addressed with comprehensive GDPR-compliant privacy and cookie policies, including a consent mechanism. The company maintains active social media profiles and provides clear contact information. Security-wise, the lack of HTTPS and modern TLS protocols, absence of security headers, and missing DNSSEC and CAA records expose the site to potential risks. While no active vulnerabilities or WAF blocks are detected, these gaps should be addressed promptly to protect user data and maintain trust. Overall, ivii GmbH demonstrates a strong business and content presence but must urgently improve its security infrastructure to align with best practices and industry standards. Strategic recommendations include implementing SSL/TLS, enabling security headers, and optimizing performance to enhance user experience and trust.

B

Byte Media GmbH

vbwienbaden.at

34

Byte Media GmbH operates a WordPress-based website providing SEO, domain trading, and digital marketing services, with a focus on banking and insurance information for Baden bei Wien. The site targets private and business customers seeking financial services in the region. The technical infrastructure relies on nginx, WordPress, jQuery, and Bootstrap, hosted on a Plesk Linux environment. While the content is well-structured and SEO-optimized, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Additionally, no cookie consent mechanism or explicit privacy compliance features are implemented, despite the use of Google Analytics and Tag Manager for tracking. Contact information is clearly presented, and social media presence is strong, enhancing business credibility. Overall, the website demonstrates moderate digital maturity but requires urgent security improvements to protect users and comply with privacy regulations.

T

TS-Promotion

ts-promotion.at

23

TS-Promotion is a small Austrian digital marketing company specializing in social media advertising and content creation. The website presents a professional and consistent brand image targeting marketers and content creators. It leverages WordPress with popular plugins such as Yoast SEO and Borlabs Cookie for SEO and privacy compliance. The company maintains active social media profiles on Facebook, Instagram, TikTok, and Messenger, enhancing its market presence. However, the lack of HTTPS is a critical security gap that undermines user trust and data protection. The website includes comprehensive privacy and cookie policies with consent mechanisms, reflecting good GDPR compliance practices. Contact options include an email address and a contact form, but no phone number or physical address is provided.

M

motion06 gmbh

motion06.at

23

motion06 GmbH is a medium-sized Austrian company specializing in the manufacture and supply of advanced conveyor systems primarily for airport baggage handling, ecommerce logistics, and industrial intralogistics. As a global leader in its niche, motion06 offers customized hardware and software solutions to optimize logistics processes. The company operates under the parent company Duravant, reflecting a strong corporate backing and market presence. The website content is well-structured, professionally designed, and targets logistics and industrial sectors with clear product and service offerings. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and marketing integrations such as Google Analytics and Marketo. However, the site lacks HTTPS encryption, which is a critical security flaw. Performance metrics are missing but inferred to be slow. Mobile optimization and SEO are adequately addressed, though accessibility is basic. From a security perspective, the absence of SSL/TLS and security headers significantly lowers the security posture. While cookie consent and privacy policies are implemented and GDPR compliant, there is no visible security or incident response policy. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional business front but requires urgent security improvements, especially implementing HTTPS and enhancing security headers, to protect user data and improve trust. Strategic recommendations include upgrading security infrastructure, publishing security policies, and improving performance metrics for better user experience.

V

Vapiano Franchising s.r.o.

vapiano.com

37

Vapiano is an established international hospitality brand specializing in fresh handmade pasta, pizza, and salads served in a casual dining environment. Founded in 2002, the company operates a franchise business model with over 155 global restaurants. The website reflects a professional brand presence with consistent design and clear navigation targeting consumers seeking quality Italian cuisine in a relaxed setting. Technically, the site is built on WordPress hosted on WP Engine and protected by Cloudflare, utilizing common web technologies such as jQuery, Google Tag Manager, and Google Maps API. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing users to risks and reducing trust. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site demonstrates good business credibility but requires urgent security improvements to meet modern standards.

M

MedTriX Group

medizin-medien.at

40

MedTriX Group is a specialized medical communication service provider with a strong presence in Austria, Germany, and Switzerland. The company offers unique healthcare professional (HCP) data intelligence and a broad portfolio of services including data targeting, CRM data quality enhancement, telephone communication, medical media publishing, digital newsletters, and educational events. Their market position is reinforced by a strong regional footprint and partnerships with sister companies MTX Schweiz and MTX Deutschland. Technically, the website is built on WordPress with Elementor and Yoast SEO, indicating a modern CMS and SEO-friendly infrastructure. However, performance metrics are lacking, and the SSL/TLS configuration is critically flawed with no valid certificate and no TLS protocols enabled, which severely impacts security and trust. Security posture is weak due to the invalid SSL certificate and incomplete TLS support, despite the presence of several security headers. Privacy compliance is strong with a clear privacy policy, cookie consent mechanism, and GDPR adherence. Contact information is comprehensive and professionally presented, enhancing business credibility. Overall, the site is functional and professional but requires urgent remediation of SSL/TLS issues to ensure secure communications and maintain trust. Strategic improvements in security configuration and performance optimization are recommended.

A

acccoi partners GmbH

acccoi.com

27

acccoi partners GmbH is a small technology-focused company based in Austria specializing in enabling corporate business development through startup collaboration, corporate accelerators, and co-innovation programs. Established since 2012, the company targets large corporates and startups seeking innovation partnerships. The website is built on WordPress using Elementor and several plugins for SEO and marketing, but lacks HTTPS which is a critical security shortfall. The site includes standard legal pages and contact mechanisms, including a contact form and social media links. However, Google Analytics is installed but not configured, and performance metrics are unavailable. Security posture is weak due to missing SSL/TLS and security headers, exposing the site to risks. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

F

Fair Finance

fairfinance.org.uk

38

Fair Finance is a UK-based direct lender specializing in affordable personal loans up to £3000, targeting individuals including those with bad credit or on benefits. The company emphasizes social impact and financial advice, operating with FCA authorization. The website is built on WordPress with Elementor and integrates multiple marketing and analytics tools such as Google Analytics, Tag Manager, Hotjar, and Trustpilot for reputation management. Despite a professional design and clear business information, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Privacy and terms of service pages are present and comprehensive, but no cookie consent mechanism is implemented despite tracking scripts being active. Contact information including phone and physical address is clearly provided, enhancing business credibility.

H

HICO

hico-ics.com

39

HICO is a specialized provider of Integrated Product Support (IPS) business solutions targeting sectors such as civil and military aviation, security and defence, shipbuilding, rail, and IT solutions. Their offerings include engineering support, maintenance planning, supply support, IPS management, technical documentation, and training services. The company positions itself as a niche player with a focus on maximizing system availability and cost optimization. The website is professionally designed using WordPress CMS with modern plugins and SEO optimizations, though performance is moderate and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, lack of security headers, and missing advanced SSL features. Privacy compliance is adequate with clear privacy and cookie policies and consent mechanisms. Business credibility is supported by detailed service descriptions and consistent branding, but contact information lacks explicit phone numbers or direct emails on the homepage. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

A

ADRESYS Adaptive Regelsysteme Gesellschaft m.b.H.

adresys.com

24

ADRESYS Adaptive Regelsysteme Gesellschaft m.b.H. is a small Austrian company specializing in innovative safety solutions for lone workers, including emergency call systems and smart textile technologies. Operating as a subsidiary of OMICRON electronics GmbH, a global leader in energy technology testing, ADRESYS leverages advanced technology to enhance workplace safety. The website is professionally designed, multilingual, and provides comprehensive information about products and services, targeting industrial safety managers and workers. Technically, the site runs on WordPress with modern plugins for multilingual support, cookie consent, and analytics. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with detailed policies and consent mechanisms. Overall, the business presents a credible and professional digital presence but must urgently address its SSL/TLS configuration to improve security posture.

S

Swat.io GmbH

swat.io

40

Swat.io GmbH is a mature technology company based in Austria, specializing in SaaS social media management tools designed for professionals and teams. Their platform offers comprehensive services including publishing, community management, customer service, automation, analytics, and AI-powered assistance. The company has a strong market presence with over 30,000 users and is certified under ISO 27001, reflecting a commitment to information security. The website is professionally designed, content-rich, and well-structured, targeting social media managers, agencies, and marketing teams. Technically, the site is built on WordPress with Elementor and uses modern SEO and marketing tools, though performance metrics indicate room for improvement. Security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which is a critical issue for a SaaS provider. Privacy compliance is well addressed with clear policies and consent mechanisms. WHOIS data confirms the legitimacy and consistency of the business entity. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect user data and maintain trust.

C

Collini gruppe

collini.eu

25

Collini gruppe is a well-established European leader in surface technology, specializing in industrial coatings for metals and plastics. With over 125 years of experience, the company offers a broad range of surface treatment processes including anodizing, precious metal coatings, galvanizing, and organic coatings. The website targets industrial clients across sectors such as automotive, medical, and machinery manufacturing, emphasizing customized surface solutions to enhance product success. The business model is B2B with a strong international presence, supported by multiple global locations and a large workforce. The website content is rich, professionally designed, and well-structured, supporting multiple languages and providing detailed service information and contact options.

E

EVOLUXER

evoluxer.com

17

EVOLUXER is a Spanish consultancy company specializing in the comprehensive management of international tenders. The company targets businesses and public/private entities seeking to expand their international presence and develop new projects globally. Their services include advisory, administrative, and financial management throughout the project lifecycle, with experience working alongside major multilateral organizations such as EuropaAid, the World Bank, and the Inter-American Development Bank. The website reflects a professional and consistent brand image with clear contact information and relevant business content. Technically, the site is built on WordPress using Elementor and related plugins, but suffers from slow load times and lacks modern security configurations such as HTTPS and security headers. The absence of a valid SSL certificate and security policies represents a significant security risk. Privacy compliance is basic, with privacy and cookie policies present but lacking consent mechanisms. Overall, the website demonstrates moderate business credibility but requires urgent improvements in security and technical performance to enhance trust and user experience.

K

Kraftwerk Living Technologies GmbH

kraftwerk.at

36

Kraftwerk Living Technologies GmbH is a specialist provider of integrated media technology solutions, delivering innovative and customized concepts for sectors including entertainment, industry, science, museums, exhibitions, corporate, and architectural solutions. The company operates globally with offices in Austria, China, UAE, Saudi Arabia, and South Africa, targeting businesses seeking advanced AV systems integration and media-based attractions. Their website reflects a professional and content-rich digital presence, leveraging WordPress with SEO enhancements and Google Tag Manager for analytics. However, the security posture is currently weak due to the absence of a valid SSL certificate and lack of HTTPS, which poses significant risks to user trust and data protection. Privacy policies and GDPR compliance are well addressed, but incident response and security policy disclosures are missing. Overall, the business appears legitimate and well-positioned in its niche, but urgent improvements in security infrastructure are recommended.

O

OVIVO Inc.

ovivowater.com

40

Ovivo Inc. is a well-established global leader in sustainable water treatment solutions with over 150 years of expertise. The company provides a comprehensive portfolio of equipment, technology, and services targeting industrial, municipal, and electronics sectors. The website reflects a mature digital presence with multilingual support and rich content tailored for B2B audiences. Technically, the site is built on WordPress with modern SEO and analytics tools, but suffers from critical security shortcomings due to the absence of a valid SSL certificate and HTTPS support. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Overall, Ovivo demonstrates strong business credibility and professionalism but must urgently address its SSL/TLS configuration to improve security posture and user trust.

T

TableConnect GmbH

tableconnect.net

22

TableConnect GmbH is a technology company specializing in the design and manufacture of large-scale interactive touch products such as Multi Touch Tables, Digital Blackboards, and Touchscreen Modules. Their products target enterprises, retail, hospitality, and media sectors, serving notable clients including Fortune 500 companies. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. However, the lack of HTTPS and modern security headers represents a critical security gap. Privacy policies and terms are present, but cookie consent mechanisms are missing. Overall, the company demonstrates a credible market position with strong branding and client trust signals.

S

Speed U Up GmbH

speed-u-up.at

24

Speed U Up GmbH is a specialized digital marketing agency focused on Alpine tourism, offering a broad range of services including content marketing, social media campaigns, voice platform development, and digital transformation consulting. The company operates across Austria, Switzerland, and Germany with a medium-sized team and a strong regional presence. Technically, the website is built on WordPress with modern plugins and technologies, but suffers from critical security shortcomings such as the absence of a valid SSL certificate and HTTPS, which significantly impacts its security posture. The privacy policy and terms of service are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Overall, the business is credible and professional, but the lack of HTTPS is a major risk that should be addressed immediately.

D

DYWIDAG Dyckerhoff & Widmann GmbH

dywidag.at

23

DYWIDAG Dyckerhoff & Widmann GmbH is a well-established construction company operating primarily in Austria and Southern Bavaria, specializing in general contracting and complex construction projects. The company holds multiple recognized certifications such as ISO 9001, ISO 45001, and compliance management certifications, underscoring its commitment to quality and safety. Their website reflects a professional business with a clear focus on construction services, career opportunities, and regional presence through multiple offices. The target audience includes construction clients and partners within the real estate and building sectors in Austria. Technically, the website is built on WordPress with common plugins and frameworks, including Visual Composer and Slider Revolution, and integrates Google Analytics and marketing pixels for user tracking. However, the site suffers from slow performance and outdated SSL/TLS configuration, lacking a valid HTTPS certificate, which is a critical security concern. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Contact information is clearly provided with multiple channels and locations. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

E

esarom gmbh

esarom.com

40

esarom gmbh is a medium-sized manufacturing company based in Austria specializing in the development of compounds, flavours, extracts, and ingredients for the beverage and food industries. The company positions itself as a global partner in taste, serving a broad international market with a strong export rate exceeding 80%. Their business model focuses on B2B partnerships, providing tailored flavour solutions and full-service support to manufacturers worldwide. The website reflects a professional and well-branded presence with multilingual support and detailed partner network information. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO, multilingual support, and user experience enhancements. However, the site suffers from a critical security misconfiguration: it lacks a valid SSL certificate and does not properly support HTTPS, which significantly undermines its security posture. Despite this, the site implements several security headers and content policies that indicate an awareness of security best practices. From a security perspective, the absence of HTTPS and TLS protocols is a major vulnerability, exposing users to potential interception and undermining trust. The site lacks explicit incident response or vulnerability disclosure policies, and no cookie consent mechanism was detected, which may impact privacy compliance. The presence of certifications such as halal, kosher, and organic, along with transparent contact information and a global partner network, enhance business credibility. Overall, while the business and content quality are strong, the technical and security shortcomings, especially the missing SSL certificate, pose significant risks. Strategic improvements in SSL deployment, privacy mechanisms, and incident response transparency are recommended to elevate the site's trustworthiness and compliance.

T

TicketLens GmbH

ulmon.com

37

TicketLens GmbH operates a travel-focused media and ticket comparison platform primarily targeting travelers seeking tickets, tours, and activities worldwide. The website provides travel app reviews and curated travel content to support its audience. The business model centers on affiliate marketing and price comparison, positioning TicketLens as a niche player in the travel media sector. Technically, the site is built on WordPress with common SEO and performance plugins, hosted on WP Engine, and uses privacy-conscious analytics via Plausible. However, the absence of a valid SSL certificate and HTTPS support represents a critical security gap, exposing users to potential risks. Privacy compliance is basic, with privacy and terms pages present but lacking explicit GDPR compliance indicators or cookie consent mechanisms. Contact information is limited to email and social media, with no phone or physical address provided. Overall, the website is functional and content-rich but requires urgent security improvements to protect user data and enhance trust.

SCAG Power Equipment is a well-established manufacturer specializing in commercial and residential lawn care machinery, including zero-turn riding mowers, electric mowers, stand-on mowers, and various attachments. The company operates a comprehensive dealer network and offers financing options and warranty programs, positioning itself as a trusted brand in the lawn equipment manufacturing sector. The website reflects a mature digital presence built on WordPress with WooCommerce and Elementor, providing rich product information and user-friendly navigation. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Marketing and tracking tools such as Google Tag Manager, Meta Pixel, and LinkedIn Insight Tag are actively used, with appropriate cookie consent mechanisms in place, indicating good privacy compliance. Overall, while the business and content quality are strong, immediate attention to security infrastructure is necessary to enhance the website's trustworthiness and compliance.

H

Hackabu Growth Consulting

hackabu.com

40

Hackabu Growth Consulting is a specialized digital marketing and growth consulting firm based in Austria, serving both B2C and B2B clients. The company offers a broad range of services including online marketing, marketing automation, performance marketing, programmatic advertising, social recruiting, AI consulting, and workshops. Their market position is that of a leading online marketing and growth consultancy with a strong focus on data-driven strategies and innovative technologies. The website is professionally designed, content-rich, and targets businesses seeking growth through digital channels. Technically, the site is built on WordPress with Elementor and uses various modern web technologies and optimization tools. However, a critical security issue is the absence of a valid SSL certificate and lack of enabled TLS protocols, which significantly impacts the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the business credibility is high, supported by clear contact information, social media presence, and client logos. Strategic recommendations include immediate SSL implementation and enhancement of security configurations to protect user data and improve trust.

A

ABAX Informationstechnik GmbH

abax.at

27

ABAX Informationstechnik GmbH is a well-established Austrian IT service provider with over 25 years of experience, offering a broad portfolio of IT infrastructure, support, security, and data analytics services. The company is part of the Roxcel Group, enhancing its enterprise readiness and market credibility. The website is professionally designed, content-rich, and targets businesses of various sizes seeking comprehensive IT solutions. Technically, the site uses WordPress with Elementor and integrates modern marketing and consent tools, but suffers from a critical lack of valid SSL/TLS configuration, impacting security posture significantly. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business presents a trustworthy and professional image, though security improvements are urgently needed.

E

ECOTEC GmbH

ecotec.at

21

ECOTEC GmbH is a small Austrian company founded in 1992 that supports European companies in establishing a presence in East Africa by managing communication and partnerships during initial phases. The company has a niche market position with a long history in development cooperation and consultancy. The website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, showing moderate digital maturity but suffers from slow performance and lacks modern security configurations. Critically, the site does not have a valid SSL certificate or HTTPS enabled, exposing visitors to security risks. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional but requires urgent security improvements to protect users and improve trust.