Security Directory

S

Salinen Austria Aktiengesellschaft

salinen.com

40

Salinen Austria Aktiengesellschaft is a leading Austrian salt manufacturer specializing in high purity salt products including pharmaceutical salt, cooking salt, industrial salt, and agricultural fertilizers. The company serves both private consumers and business clients, offering a broad product portfolio and an online webshop. Their market position is strong within Austria and the surrounding region, supported by multiple country-specific sister sites. Technically, the website is built on TYPO3 CMS with modern frontend features such as lazy loading images and Google Analytics integration. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture. Security headers are partially implemented but without encryption, the site is vulnerable to interception. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

B

Bridgestone Americas, Inc.

bridgestoneamericas.com

40

Bridgestone Americas, Inc. is a leading enterprise in the transportation sector specializing in tire manufacturing and sustainable mobility solutions. Founded in 1931 and operating as a subsidiary of Bridgestone Corporation, the company maintains a strong market position with a comprehensive digital presence. The website reflects a professional and consistent brand image, targeting both consumers and business clients with detailed corporate information and resources. Technically, the site leverages modern frameworks such as Adobe Experience Manager and Vuetify, supported by a robust hosting infrastructure on AWS. However, a critical security gap exists due to an invalid or missing SSL certificate, severely impacting the site's security posture. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained but requires urgent remediation of its SSL configuration to ensure secure user interactions.

B

Bischöflich Münstersches Offizialat

bmo-vechta.de

23

The Bischöflich Münstersches Offizialat website serves as an official regional church institution platform providing a wide range of services including church law, pastoral care, education, and prevention of sexualized violence. It targets the Catholic community and church stakeholders in the Oldenburger Land region of Germany. The site is built on TYPO3 CMS and integrates various extensions for search and event management, reflecting a moderate level of digital maturity. However, the absence of HTTPS is a critical security flaw that undermines user trust and data protection. The website lacks a cookie consent mechanism and explicit security or incident response policies, which are important for GDPR compliance and overall security posture. Despite these issues, the site presents professional content with clear navigation and consistent branding, supported by links to reputable church partners.

4ward Energy Research GmbH is a specialized research institution focused on energy technologies and energy economics. The company offers a broad range of services including technology development, business model creation, concept and study preparation, simulations, and knowledge transfer. Their expertise spans project leadership and coordination, particularly within national and EU research funding frameworks. The website targets research projects, companies, and municipalities involved in the energy sector, positioning itself as a reliable partner with extensive experience and a strong network. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. However, the site lacks HTTPS support, which is a critical security shortfall. Security headers are minimal but some best practices like X-Content-Type-Options are implemented. Privacy compliance is addressed with a cookie consent mechanism and a comprehensive privacy policy in German. Contact information is clearly presented with official company email, phone, and physical address. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

The website amsc-windtec.com currently serves only a parking or under construction page with no active business content or services presented. The domain lacks DNS records and a valid SSL certificate, resulting in no HTTPS support and poor security posture. The site includes third-party ad scripts from suspicious domains, further reducing trustworthiness. There is no privacy policy, cookie policy, terms of service, or contact information available, indicating a lack of compliance and transparency. Overall, the site does not represent an active or legitimate business presence online. From a technical perspective, the infrastructure is minimal and outdated, with no modern security protocols or performance optimizations. The absence of DNS records and SSL suggests the domain is parked or abandoned. The site is not mobile optimized and lacks accessibility and SEO best practices. Security evaluation reveals critical vulnerabilities including no HTTPS, no security headers, and no incident response or data protection policies. The presence of third-party ad scripts without consent mechanisms raises privacy concerns. The domain's WHOIS data is incomplete or unavailable, limiting trust and legitimacy assessments. Given these findings, the overall risk is high for users attempting to interact with this domain. Strategic recommendations include obtaining a valid SSL certificate, configuring DNS properly, removing third-party ad scripts, and developing a compliant, content-rich website with clear business and contact information.

C

Caterpillar Energy Solutions GmbH

mwm.net

28

MWM, operating under Caterpillar Energy Solutions GmbH, is a well-established company specializing in highly efficient and environmentally friendly combined heat and power plants and block heating power plants. With over 150 years of experience, the company offers a broad portfolio of gas engines and power generation solutions targeting industrial, commercial, and public utility sectors globally. The website reflects a mature digital presence with comprehensive product and service information, supported by a global service and sales network. Technically, the site is built on WordPress with common libraries and plugins, but suffers from a critical lack of a valid SSL certificate, which severely impacts its security posture. Privacy policies and GDPR compliance are well addressed, and contact is primarily via web forms. Overall, the site is professional and trustworthy but requires urgent security improvements.

wengermayer business consulting is a small Austrian consulting firm specializing in human-centric organizational development, communication culture, conflict management, and personnel development. Their services focus on supporting businesses where human interaction and development are central. The website is built on Contao CMS and hosted on an Apache server with Ubuntu, using various JavaScript libraries for UI enhancements. However, the site lacks HTTPS, which is a critical security vulnerability. Cookie consent is implemented via Cookiebot, indicating awareness of privacy compliance. Social media presence on XING, LinkedIn, Facebook, and Twitter supports business credibility. Overall, the technical infrastructure is basic with room for modernization and security improvements.

R

Raiffeisen Informatik GmbH & Co KG

raiffeiseninformatik.at

40

Raiffeisen Informatik GmbH & Co KG is a well-established IT service provider specializing in comprehensive IT solutions for financial and insurance sectors, with over 50 years of experience and a strong presence in Austria and neighboring countries. The company offers a broad range of services including data center operations, security services, IT consulting, and banking and insurance solutions. Their business model focuses on close collaboration with clients from planning through operation, supported by a large workforce and significant annual revenue. Technically, the website is built on WordPress with Apache server infrastructure and uses Cloudflare for DNS, but critically lacks a valid SSL certificate, exposing it to security risks. Security headers are implemented, but without HTTPS the security posture is severely weakened. Privacy compliance is basic with no visible cookie consent or incident response information. Overall, the website is professional and content-rich, but the lack of HTTPS is a major security concern that must be addressed urgently.

T

Therefore Corporation

therefore.net

31

Therefore Corporation operates a comprehensive information management platform targeting businesses across multiple industries. The company positions itself as a market leader in ECM and workflow automation, offering a wide range of software solutions designed to improve document management, workflow digitization, and data accessibility. Their website reflects a mature digital presence with professional design, rich content, and clear navigation. Technically, the site is built on WordPress with modern optimization plugins and uses Google Tag Manager for analytics. However, the absence of a valid SSL certificate is a significant security gap, undermining the otherwise strong security headers and policies. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the business credibility is high, supported by certifications, partner relationships, and extensive case studies.

T

twinformatics GmbH

twinformatics.at

39

twinformatics GmbH is a medium-sized Austrian IT service provider specializing in software development and operation for major insurance companies such as Wiener Städtische Versicherung AG and Vienna Insurance Group. The company positions itself as a strong IT partner with end-to-end responsibility for innovative software solutions trusted by thousands of users. The website is professionally designed, primarily in German, targeting IT professionals and potential employees. Technically, the site runs on WordPress with modern PHP and uses several plugins for enhanced functionality. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, despite the presence of HSTS headers. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. The security posture is basic and requires immediate improvements in SSL/TLS configuration and vulnerability disclosure practices. Overall, the website reflects a credible and professional business but needs technical security enhancements to align with best practices.

Ö

Österreichische Gesundheitskasse

ooegkk.at

40

The Österreichische Gesundheitskasse (ÖGK) operates as a major public health insurance provider in Austria, delivering comprehensive health insurance services and support to insured individuals, employers, and contract partners. The website serves as an official portal offering information, appointment scheduling, customer service, and career opportunities, targeting Austrian residents and stakeholders in the healthcare sector. The digital presence is supported by a modern technology stack including Apache, Jakarta Faces, and jQuery, managed via a Gentics CMS platform, and hosted within the Austrian social insurance infrastructure. Despite a professional and content-rich website, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. The site implements a strong Content Security Policy and cookie consent mechanisms, reflecting good privacy compliance, but the lack of HTTPS and TLS protocols is a critical vulnerability. Social media integration and clear contact information enhance trust and user engagement. Overall, the website is functional and credible but requires urgent security improvements to protect user data and comply with modern standards.

A

Amiblu Group

amiblu.com

25

Amiblu Group operates as the world's largest producer and technology partner for GRP (glass-fiber reinforced plastics) pipe systems, focusing on sustainable water infrastructure solutions. The company targets urban and rural communities, industries, and infrastructure planners, offering a broad portfolio of pipe products, technical documentation, and reference databases. Their market position is strong, supported by certifications such as EcoVadis and partnerships like the UNESCO World Engineering Day 2025. The website reflects a mature, well-established business with a professional and consistent brand presence. Technically, the website is built on WordPress with a modern tech stack including caching and multilingual support. However, performance is moderate and accessibility is basic. The site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are minimal, and no advanced security policies are implemented. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The security posture is weak due to the absence of HTTPS and modern TLS protocols, exposing users to potential risks. No incident response or security policy information is publicly available. The domain registration is consistent and mature, supporting the legitimacy of the business. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and enhance trust.

W

Wiener Privatbank

wienerprivatbank.com

40

Wiener Privatbank is a medium-sized Austrian private bank specializing in wealth and asset management, capital market investments, and real estate. The bank emphasizes personalized service, crisis-proof investment strategies, and trusted FATCA solutions. The website is built on a modern CMS platform (Craft CMS) with SEOmatic for SEO optimization and includes rich content and clear navigation targeting private banking clients and investors. However, the absence of a valid SSL certificate and HTTPS support is a critical security vulnerability that undermines user trust and data protection. While privacy policies are present and GDPR compliance appears addressed, no cookie consent mechanism or terms of service were found. Social media presence on Facebook, LinkedIn, and YouTube supports brand visibility. Overall, the website demonstrates good business credibility and content quality but requires urgent security improvements to protect users and enhance trust.

F

Fenster. Türen. KATZBECK.

katzbeck.at

35

KATZBECK FensterGmbH Austria is a well-established manufacturer specializing in high-quality, custom windows and doors produced exclusively in Austria since 1950. The company emphasizes sustainability, regional production, and premium craftsmanship, targeting both end consumers and professional partners within Austria. Their website reflects a mature digital presence built on WordPress with the Divi theme, incorporating modern web technologies and user-friendly design. However, a critical security gap exists due to the absence of an SSL/TLS certificate, exposing users to potential risks. The site implements GDPR-compliant privacy and cookie policies, with clear contact channels and a professional content structure. To enhance trust and security, immediate implementation of HTTPS and additional security headers is recommended.

E

Englisch Dekor

englisch.at

40

Englisch Dekor is a well-established Austrian company specializing in the manufacturing and supply of flame-retardant furniture fabrics, curtains, and decorative textiles primarily for the hospitality, gastronomy, and healthcare sectors. With a history dating back to 1866, the company holds a leading position in the European market, offering a wide range of functional and sustainable textile solutions. Their business model focuses on B2B sales supported by a comprehensive global network of sales representatives and an online webshop. Technically, the website is built on TYPO3 CMS and hosted on Apache servers managed by internex.at. The site features modern interactive elements such as global contact maps and language selection, with good mobile optimization and accessibility. However, performance metrics indicate slow loading times, which could be improved. From a security perspective, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical vulnerability. While several security headers are present, the absence of HTTPS significantly impacts the overall security posture. The site implements a cookie consent mechanism with detailed cookie information, indicating good privacy compliance. Contact information is comprehensive and includes multiple regional sales contacts. Overall, the website is professionally designed and content-rich, reflecting a mature business with strong market presence. However, the lack of proper SSL/TLS configuration poses a significant risk that should be addressed promptly to ensure secure communications and maintain trust.

A

American Austrian Foundation

aaf-online.org

22

The American Austrian Foundation is a well-established non-profit organization dedicated to fostering knowledge transfer and experience exchange in medicine, culture, and media through fellowship programs and bilateral exchanges. The website reflects a professional and consistent brand with clear program offerings and international reach. Technically, the site is built on WordPress with Elementor and uses modern web technologies, but suffers from a critical lack of HTTPS, which undermines security and user trust. The security posture is weak due to the absence of a valid SSL certificate and missing security headers, although no major vulnerabilities were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Business credibility is strong, supported by trust badges and consistent WHOIS data. Overall, the site is functional and informative but requires urgent security improvements to protect users and enhance trust.

V

Virtual Identity AG

virtual-identity.com

35

Virtual Identity AG is a well-established digital agency founded in 1999, specializing in AI integration, UX design, software engineering, and digital marketing services. The company targets businesses aiming for digital transformation and human-centered business growth. Their market position is strong, supported by a reputable client portfolio and consistent branding. Technically, the website is built on WordPress, hosted on AWS CloudFront, and uses modern JavaScript libraries and SEO tools, though performance is moderate. Security posture is currently weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent security improvements to meet modern standards.

A

AirPlus

airplus.com

40

AirPlus operates as a global enterprise specializing in corporate travel payment and expense management solutions. The company targets business travelers and corporate clients worldwide, offering localized website versions for multiple countries and languages. The business model focuses on B2B services within the transportation sector, positioning AirPlus as an established player in the corporate travel payment industry. Technically, the website is hosted on an Apache server with Akamai CDN support, utilizing JavaScript and Bootstrap frameworks for frontend presentation. While the site offers multilingual support and country-specific content, performance metrics are not provided, and the site shows basic mobile optimization and accessibility features. The technical stack is modern but lacks advanced CMS or platform indicators. From a security perspective, the website lacks a valid SSL certificate and does not enable any TLS protocols, which is a critical vulnerability. Although several security headers are present, some important protections like X-XSS-Protection are disabled, and HSTS is not fully configured. The site uses multiple external tracking and advertising services, leading to extensive user tracking without visible privacy or cookie policies, indicating poor privacy compliance. Overall, the website demonstrates moderate business credibility but suffers from significant security and privacy shortcomings. Strategic improvements in SSL/TLS configuration, privacy policy implementation, and security header enhancements are essential to reduce risk and improve trustworthiness.

F

Foggia Città Aperta

foggiacittaaperta.it

33

Foggia Città Aperta is a local news media website providing news, videos, blogs, and event information focused on the Foggia province in Italy. Established in 2012, it serves a regional audience with content spanning politics, sports, culture, and society. The website demonstrates a consistent brand presence and active social media engagement. Technically, the site uses a variety of JavaScript libraries and frameworks such as jQuery and Bootstrap, hosted on Aruba infrastructure. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a significant security concern. Cookie consent is implemented, but privacy policies are basic and lack comprehensive GDPR compliance indicators. No explicit security or incident response policies are found. Overall, the site is functional and content-rich but requires urgent security improvements to protect user data and enhance trust.

P

Phoenix

theater-phoenix.at

37

Theater Phönix is a cultural non-profit theater organization based in Linz, Austria, offering a diverse range of stage performances with a focus on contemporary and socially relevant works. The website presents a professional and well-structured digital presence with clear navigation, social media integration, and community engagement features such as newsletters and surveys. However, the technical infrastructure shows critical security gaps, notably the absence of HTTPS and a valid SSL certificate, which significantly impacts the site's security posture. The lack of published security policies and incident response information further highlights areas for improvement. Overall, the business appears legitimate and consistent with its domain registration, but urgent security enhancements are recommended to protect user data and improve trust.

The website domcollection.ch currently hosts a default Apache HTTP server test page running on Rocky Linux, indicating that the server is operational but no actual business content or services are published. The site lacks any commercial or organizational information, contact details, or user engagement features. Technically, the infrastructure is basic, with Apache on Linux, but critically lacks HTTPS support and modern security configurations. The security posture is weak due to the absence of SSL/TLS, minimal security headers, and no privacy or cookie policies. Overall, the site appears to be either under construction or abandoned, presenting a low trust profile and minimal business credibility.

G

GeoVille Information Systems and Data Processing GmbH

geoville.com

26

GeoVille Information Systems and Data Processing GmbH is a medium-sized Austrian technology company specializing in satellite-based Earth Observation services. With over 25 years of experience and a global footprint spanning 140 countries and 510 implementations, GeoVille offers a range of services including satellite imagery, data access, land monitoring analytics, platform interfaces, and advisory capacity building. Their target audience includes government agencies, environmental organizations, and sectors such as energy, security, and urban planning. The website is built on TYPO3 CMS with modern frontend technologies and demonstrates good design and navigation, though performance data is limited. From a technical perspective, the website uses Apache server technology and integrates libraries such as Bootstrap, jQuery, FontAwesome, and Google Tag Manager. However, the site lacks HTTPS encryption, which is a critical security deficiency. Security headers are minimal, and no advanced security mechanisms like HSTS or OCSP stapling are enabled. Privacy compliance is basic, with a privacy policy page present but no cookie consent mechanism detected. Contact information is limited to a contact form, with no direct emails or phone numbers published. The security posture is weak due to the absence of SSL/TLS, exposing users to potential interception risks. No incident response or vulnerability disclosure policies are published, which could impact trust. The domain registration data is consistent with the company's claims, showing a long-established presence since 1998. Social media presence is strong, supporting business credibility. Overall, the website is professionally designed and content-rich but requires urgent security improvements, especially enabling HTTPS and enhancing privacy compliance. Strategic recommendations include installing a valid SSL certificate, implementing cookie consent mechanisms, publishing security policies, and improving contact transparency to enhance trust and compliance.

The website weinert.at currently serves as a minimal placeholder page indicating that the site is under reconstruction. It lacks substantive business content, contact information, or user engagement features. The domain is registered and hosted in Austria with consistent DNS records, but the website itself is not secured with HTTPS and does not provide any privacy or cookie policies, which are critical for compliance and user trust. Technically, the site uses an outdated HTML standard and a basic Apache server setup with no modern security or performance optimizations. The absence of SSL/TLS and security headers exposes the site to potential risks and undermines user confidence. Overall, the website's digital maturity is low, and it does not currently support business operations or customer interactions effectively.

W

WELLCON

wellcon.at

22

Wellcon is an established Austrian company specializing in occupational health, safety, and workplace wellness services. With 25 years of experience and multiple locations, it serves companies seeking comprehensive occupational medicine, psychology, and safety technology solutions. The website is professionally designed using WordPress and Elementor, featuring good content quality and SEO optimization. However, the technical infrastructure lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite the use of Matomo analytics. Contact information is not explicitly provided on the homepage or footer, limiting direct communication channels. Overall, the business credibility is strong, but the security posture requires urgent improvement to protect user data and enhance trust.

H

Harouge Oil Operations

harouge.com

40

Harouge Oil Operations is a Libyan energy company specializing in the development and exploitation of oil fields. The company operates under international agreements and OPEC directives, focusing on safe and efficient oil extraction and export. Their website provides corporate information, news, tenders, and operational details primarily targeting industry stakeholders and partners. Technically, the site is built on Joomla CMS with K2 content management and uses common web technologies like jQuery and Bootstrap. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which critically impacts security posture. Security headers are partially implemented but insufficient without proper TLS. Privacy compliance is weak, with no cookie consent or detailed privacy policy. Contact information is limited to a contact form and webmail link, with no explicit emails or phone numbers. Overall, the website is functional but requires significant improvements in security and privacy to meet modern standards.

Schachermayer GmbH is a well-established Austrian wholesale company specializing in technical products and design solutions, serving primarily B2B customers in trade, industry, and commerce. With a history dating back to 1838, the company offers a broad product range exceeding 100,000 items, supported by professional consulting and logistics services. Their digital presence includes a comprehensive web catalog and partner portal, facilitating efficient ordering and customer engagement. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and integrates a cookie consent mechanism via Klaro, reflecting a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security improvements to safeguard data and user trust.

I

Institute of Brand Logic

brand-logic.com

22

Institute of Brand Logic is a professional consulting firm specializing in brand strategy, growth strategies, and organizational development with over 25 years of experience. The company operates primarily in Austria with offices in Innsbruck, Vienna, and Munich. Their website is well-designed, content-rich, and targets businesses and executives seeking to strengthen their market position through integrated brand and business development strategies. Technically, the website runs on WordPress with common plugins for multilingual support and performance optimization. However, a critical security gap exists as the site lacks a valid SSL certificate and HTTPS support, exposing visitors to potential risks. Privacy compliance is addressed with a cookie consent mechanism and a comprehensive privacy policy. Business credibility is supported by client testimonials and professional presentation. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

R

Rustler Gruppe

rustler.eu

40

Rustler Gruppe is a well-established Austrian real estate services company with a strong market position in property management, brokerage, development, facility management, and construction project management. Founded in 1935, it operates primarily in Austria and Central and Eastern Europe, targeting property owners, tenants, and investors. The website reflects a professional digital presence with comprehensive service descriptions and multilingual support. Technically, the site is built on WordPress using the Enfold theme and several plugins including Yoast SEO and Borlabs Cookie for privacy compliance. However, the security posture is weak due to the absence of a valid SSL certificate and disabled TLS protocols, exposing users to potential risks. Privacy compliance is well addressed with cookie consent mechanisms and detailed policies. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

N

NTS Retail

ntsretail.com

28

NTS Retail is a specialized B2B software provider offering smart commerce and retail management solutions primarily for telecommunications operators and specialist retailers. The company positions itself as a preferred partner for leading telco brands worldwide, delivering unified commerce platforms and tailored retail management services. Their website reflects a professional and consistent brand image with strong client references and active social media engagement. Technically, the website is built on Drupal CMS, hosted on Azure DNS infrastructure, and utilizes Apache server technology. It incorporates modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the security posture and user trust. Security-wise, while some security headers are implemented, the lack of HTTPS, HSTS, and incident response information exposes the site to risks and compliance gaps. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site demonstrates good business credibility but requires urgent security improvements. Strategically, the company should prioritize securing its website with HTTPS, implement comprehensive privacy and cookie consent mechanisms, and publish clear security policies and incident response contacts to enhance trust and compliance.

S

SBA Research gGmbH

sba-research.org

28

SBA Research gGmbH is a well-established research center specializing in information security, funded partly by national and European initiatives such as the COMET Competence Centers for Excellent Technologies. The organization offers a broad range of services including research, professional security consulting, security trainings, and vulnerability disclosure. Their market position is strong within Austria and Europe, supported by partnerships with governmental and scientific bodies. The website reflects a professional and content-rich digital presence targeting researchers, security professionals, and industry partners. Technically, the site is built on WordPress with Apache server and uses jQuery for client-side scripting. While the site is mobile-optimized and accessible, performance data is unavailable. Security headers are well implemented, but the lack of a valid SSL certificate and proper HTTPS configuration is a significant weakness. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy. Business credibility is supported by ISO 27001 certification and transparent partnership disclosures. Overall, the site is trustworthy but requires urgent SSL/TLS remediation to improve security posture and user trust.

A

AURIGON Advisors AG

aurigon.ch

40

AURIGON Advisors AG is a specialized consulting firm focused exclusively on reinsurance and insurance sectors, serving clients primarily in Switzerland, the EU, USA, UK, and Latin America. Their key services include conflict resolution, audits, claims management, exit strategies, and strategic consulting. The company maintains a multilingual website with professional team profiles and contact information, indicating a small but internationally oriented business. Technically, the website is built on WordPress using the Enfold theme and includes multiple shortcodes and scripts, but lacks a valid SSL certificate, which is a critical security deficiency. The cookie consent mechanism is implemented, supporting GDPR compliance. Security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Overall, the website is functional and professional in content but requires urgent security improvements to protect user data and enhance trust.

B

BVAEB Versicherungsanstalt öffentlich Bediensteter, Eisenbahnen und Bergbau

bvaeb.at

40

BVAEB is an Austrian government social insurance institution serving public servants, railway workers, and mining employees. It provides comprehensive information and services related to health insurance, accident insurance, pension, and family benefits. The website is well-structured and targets insured persons, employers, and partners within its sector. Technically, the site uses Apache, Jakarta Faces, and modern JavaScript libraries, but suffers from a critical lack of valid SSL/TLS certificates, severely impacting its security posture. Privacy and cookie policies are implemented with consent mechanisms, and contact information is clearly provided. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and comply with modern standards.

Ö

Österreichische Gesundheitskasse

meineoegk.at

40

The website meineoegk.at serves as the official service portal for the Österreichische Gesundheitskasse, Austria's public health insurance provider. It offers a broad range of online services including e-Rezept, insurance data access, pension applications, and various social insurance related forms. The portal targets insured Austrian residents and provides a secure login mechanism via ID Austria, ensuring user data protection and access control. The site is professionally designed with clear navigation and comprehensive content relevant to its audience. Technically, it employs a custom CMS with Jakarta Faces framework and uses modern JavaScript libraries such as jQuery 3.6.0 and Slick Carousel for UI components. Analytics is managed through Piwik PRO with user consent mechanisms in place, reflecting good privacy practices. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the site's security posture. The Content Security Policy is robust but includes unsafe directives that could be improved. Overall, the site is trustworthy and authoritative but requires urgent security enhancements to protect user data and comply with best practices.

The website global-consulting.ca presents minimal content, consisting solely of an iframe embedding an external domain (iyfhshsp.com). There is no visible business information, contact details, or policies on the site. The domain is registered since 2019 with privacy protection enabled, hosted on HostGator, but lacks a valid SSL certificate and serves content over HTTP only. The technical infrastructure is basic with no modern security configurations or performance optimizations. Security posture is weak due to lack of HTTPS, missing security headers, and suspicious external content. Overall, the site exhibits low trustworthiness and poor professionalism, raising concerns about legitimacy and security risks. Strategic improvements are needed to establish a credible online presence and secure the website.

W

Wirtschaftsagentur Wien

wirtschaftsagentur.at

40

Wirtschaftsagentur Wien is a well-established government agency founded in 1982, dedicated to supporting economic development in Vienna. The agency offers a comprehensive range of services including free consulting, funding opportunities, event organization, and networking for startups, established businesses, and international companies. Their market position as the official economic development fund of the City of Vienna is strong, supported by consistent branding and a professional online presence. The website is content-rich, multilingual, and targets a broad audience of entrepreneurs and businesses in Vienna. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes interactive features such as animated content and a service compass tool.

S IMMO AG is a prominent Austrian real estate investment company with a diversified portfolio across several European Union countries. The company focuses on office, retail, hotel, and residential properties, targeting investors and stakeholders interested in European real estate markets. The website provides comprehensive corporate and investor relations information, including news updates and portfolio insights. Technically, the website is built on TYPO3 CMS and hosted on an Apache server with nameservers indicating a German hosting provider. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. The cookie consent mechanism and privacy policy are well implemented, indicating good privacy compliance. Security headers are minimal, and modern TLS protocols are not supported, which lowers the security posture significantly. Overall, the website is professional and content-rich but requires urgent improvements in security infrastructure to protect user data and enhance trust.

R

Rechberger Ges.m.b.H.

rechberger.at

21

Rechberger Ges.m.b.H. is a well-established Austrian company specializing in gastronomy and hotel supplies, with a strong market position in Austria and Bavaria. The company offers a broad product range including porcelain, glassware, cutlery, and professional kitchen equipment, supported by a large team of specialized consultants and an online shop. The website is professionally designed, content-rich, and targets B2B customers in hospitality and retail sectors. Technically, the site uses the Contao CMS with modern JavaScript libraries and integrates Google Tag Manager for analytics. However, the lack of a valid SSL certificate and HTTPS support significantly weakens the security posture, exposing users to risks. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the business credibility is high, but security improvements are critical.

The website comunicative.net is currently inaccessible, serving an HTTP 423 Locked status page with minimal HTML content indicating that the requested resource is locked and requires proper identification or unlocking. Due to this access restriction, no meaningful content, metadata, or business information is available for analysis. The domain is registered with valid DNS records but lacks DNSSEC and CAA configurations. The site does not have an SSL/TLS certificate installed, resulting in no HTTPS support and a poor security posture. No privacy, cookie, or terms of service policies are present, and no contact or business information is available on the site. Overall, the website appears to be either under maintenance, restricted by access controls, or improperly configured for public access.

A

AFEC

afec.fr

21

AFEC is a well-established French professional training organization specializing in continuing education and alternance programs. Founded in 1975, it serves job seekers, apprentices, and employees aiming to develop skills or change careers. The website presents a comprehensive portfolio of training services, including certifications, VAE accompaniment, and competency assessments, supported by strong trust signals such as Qualiopi certification and partner endorsements. Technically, the site is built on WordPress with common plugins and tracking tools, but suffers from a critical security weakness due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with visible GDPR and cookie policies, including consent mechanisms. Overall, the site offers good content quality and user experience but requires urgent security improvements to protect user data and enhance trust.

V

Verjus-Shop

verjus-shop.com

24

Verjus-Shop is a specialized e-commerce business based in Austria, founded in 2012, offering natural, additive-free, gluten-free, low histamine, and alcohol-free products including Verjus and non-alcoholic beverages. The website is professionally designed with clear navigation and rich content targeting health-conscious consumers and B2B clients such as retailers and restaurateurs. Technically, the site runs on WordPress with WooCommerce and uses modern marketing and analytics tools, but suffers from a lack of HTTPS due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Overall, the business appears legitimate and well-positioned in its niche, but the lack of HTTPS is a critical security concern that should be addressed immediately.

S

Starlinger & Co GmbH

starlinger.com

39

Starlinger & Co GmbH operates as a world-leading supplier of machinery for woven plastic packaging production and plastics recycling. The company offers comprehensive turnkey solutions covering the entire packaging lifecycle, including engineering, financing, after-sales service, and training. Their website reflects a mature B2B business model targeting manufacturers and recyclers globally, with a strong emphasis on sustainability and closed-loop packaging solutions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes tracking and consent management tools such as Google Tag Manager and Cookiebot. However, the website suffers from a critical security weakness due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

F

FELIX Austria GmbH

felix.at

40

FELIX Austria GmbH operates a well-established website focused on food products, particularly sauces such as ketchup, mayonnaise, and pestos. The company targets consumers primarily in Austria and German-speaking regions, offering product information, recipes, and partnerships. The website is built on TYPO3 CMS and integrates Google Tag Manager for analytics. While the site presents a professional design with good content quality and navigation, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Security headers are properly configured, but the absence of HTTPS significantly impacts the overall security posture. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Contact information is available via a contact page, though no direct emails or phone numbers are explicitly listed. The domain registration data aligns well with the website content, indicating legitimacy. Strategic recommendations include obtaining a valid SSL certificate, implementing cookie consent, and publishing security policies to enhance trust and compliance.

A

ace Neue Informationstechnologien GmbH

ace.at

26

ace Neue Informationstechnologien GmbH is an established Austrian IT company with over 25 years of experience specializing in digital transformation solutions, including foundation management software, CRM based on Microsoft Dynamics 365, and business applications leveraging Microsoft Azure. Their market position is that of a trusted regional provider targeting foundations, public sector entities, and businesses seeking efficient CRM and digital solutions. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site uses a modern frontend stack with SilverStripe CMS and popular JavaScript libraries, but lacks HTTPS, which is a critical security shortfall. The cookie consent mechanism and privacy policy indicate good GDPR compliance. Security posture is basic with no advanced headers or incident response information published. Overall, the site is functional and professional but requires urgent SSL implementation to improve security and trust.

A

AASupplies e.U

aa-supplies.eu

27

AASupplies e.U is a Vienna-based company specializing in the sale and logistics of premium used warehousing equipment, forklifts, generators, and material handling machinery. The company targets businesses primarily in Europe and the Middle East, offering access to a large inventory and comprehensive transport services. Their multilingual team and European supplier network position them as a reliable B2B provider in the transportation sector. Technically, the website is built on WordPress with modern plugins such as WooCommerce, Elementor, and Gravity Forms, but lacks a valid SSL certificate, which is a critical security gap. The site includes GDPR-compliant cookie consent and privacy policies, reflecting good privacy practices. However, the absence of HTTPS and some security headers reduces the overall security posture. The business information is transparent and consistent with WHOIS data, enhancing credibility. Strategic improvements in SSL deployment and security policy publication are recommended to strengthen trust and compliance.

W

Workheld GmbH

tabletsolutions.at

20

Workheld GmbH operates a professional website presenting a software platform focused on connected workforce management for industrial and manufacturing sectors. The company offers digital workflows, mobile apps, remote support, and IIoT integration, positioning itself as a leading Field Service Management solution aligned with Industry 4.0 principles. The website is well-structured, content-rich, and targets industrial clients seeking digital transformation solutions. Technically, the site is built on WordPress with modern plugins and integrates with Microsoft Azure and SAP HANA platforms. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture, exposing users to risks and reducing trust. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent mechanisms despite using tracking services like HubSpot. Business credibility is strong with clear branding, client logos, and legal pages, but contact details such as emails and phone numbers are not explicitly provided on the site. Overall, the site demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

The website jumptomorrow.com is currently inaccessible, serving an HTTP 403 Forbidden error page that blocks access to any meaningful content. The site lacks a valid SSL certificate, resulting in no HTTPS support, which severely impacts its security posture. No metadata, structured data, or business-related content is available to assess the company's operations, market position, or services. The DNS records are standard and indicate a registered domain with mail exchange and name servers configured, but no DNSSEC or CAA records are present. Overall, the technical infrastructure appears minimal and outdated, with no modern security or privacy practices implemented. This results in a low trust and credibility score for the website.

W

Westcam - The Know-WOW Company

westcam.at

35

Westcam - The Know-WOW Company is a well-established Austrian technology and manufacturing solutions provider founded in 1990. The company offers a comprehensive portfolio of services and products including CAD design, CAM programming, 3D printing, 3D metrology, PDM/MES systems, mechatronics, robotics, and industrial image processing. Their market position is strong in the regional industrial sector, supported by their Autodesk Gold Partner status and ISO 9001:2015 certification. The website demonstrates a high level of digital maturity with a modern WordPress-based infrastructure, multilingual support, and integrated marketing and analytics tools. However, a critical security weakness is the absence of a valid SSL certificate and HTTPS support, which significantly impacts their security posture. Privacy compliance is well addressed with explicit cookie consent mechanisms and a comprehensive privacy policy. Overall, the business presents itself professionally with clear contact information and strong trust indicators.

P

Pioneers Innovation GmbH

pioneers.io

22

Pioneers Innovation GmbH is an established innovation consulting and corporate venture building firm founded in 2013, serving a broad range of corporate clients across sectors such as energy, transportation, banking, and technology. The company offers comprehensive services including innovation strategy, setup, execution, venture building, and startup services, positioning itself as a trusted partner for innovation-powered transformation and growth. The website reflects a mature digital presence with professional design, clear navigation, and rich content including client testimonials and references to large organizations. Technically, the site is built on WordPress with modern marketing and analytics tools integrated, but suffers from critical security shortcomings including the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the business credibility is high, but the lack of HTTPS is a major risk that should be urgently addressed.

The PKE Group is a well-established Austrian technology company founded in 1979, specializing in security, communication, media, traffic, building, and logistics technology solutions. It operates internationally with a strong regional presence across Europe and the Middle East through multiple subsidiaries. The website reflects a professional and comprehensive digital presence, targeting businesses seeking innovative and reliable technology services. Technically, the site uses modern frameworks such as Pimcore CMS and Alpine.js, and employs Matomo for analytics, indicating a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security weakness, exposing users to potential risks and undermining trust. Privacy compliance is partially met with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site demonstrates strong business credibility but requires urgent security improvements to align with best practices.

V

VARIOTHERM HEIZSYSTEME GMBH

variotherm.com

21

Variotherm Heizsysteme GmbH is an established Austrian company specializing in surface heating and cooling systems for floors, walls, and ceilings, leveraging over 30 years of expertise. Their product portfolio targets contractors, installers, architects, and end customers seeking efficient heating and cooling solutions. The company maintains a professional online presence with multilingual support and a comprehensive product and service offering. Technically, the website is built on TYPO3 CMS served by Apache, with integrated analytics via Matomo and Google Tag Manager. However, the absence of HTTPS and a valid SSL certificate significantly undermines the security posture. While cookie consent mechanisms and privacy policies are in place, the lack of advanced security headers and incident response information indicates room for improvement. Overall, the website is functional and professional but requires urgent security enhancements to protect user data and improve trust.