Tool Overview:
Bizoscore
Overview
Based: Ireland
Contact: https://bizoscore.eu/contact_us/
About Bizoscore
Bizoscore is a website scanning tool developed by Bizoneo, a division of Wandsoft Ltd, an Irish software company established in 2001. The scanner evaluates websites for both security vulnerabilities and privacy compliance issues, specifically targeting businesses that need to assess their websites against data protection regulations like GDPR. The service operates on a freemium model, providing an initial free scan followed by detailed paid reports.
What does Bizoscore do?
The scanner performs automated assessments of websites by simulating typical user visits with a default browser configuration. It examines publicly available information from the supplied domain and cross-references it against known vulnerabilities. The tool tests for preventative measures against various security threats including cross-site scripting attacks, man-in-the-middle attacks, cross-domain information leakage, cookie compromise, content delivery network compromise, and improperly issued certificates.
Bizoscore generates scores using a grading system from A+ to E, similar to Mozilla Observatory's approach for comparable tests. The scoring reflects industry best practices and considers both security and privacy aspects. For privacy assessment, the tool examines cookie usage, data transfers, and compliance with EU legislation regarding cookie consent. When IP addresses are detected, the system attempts to resolve them to specific countries to identify potential data transfer issues.
The service maintains strict privacy standards in its own operations. It uses a proprietary captcha system instead of Google's to avoid mass surveillance concerns, and only implements essential functional cookies. The system retains email addresses for notification purposes for just 24 hours after scan completion, adhering to data minimization principles.
What makes Bizoscore different?
The key differentiator for Bizoscore is its combined focus on both security and privacy assessment in a single tool, which the company claims is unique in the market. While many scanning tools focus solely on security vulnerabilities, Bizoscore extends its analysis to privacy compliance aspects, making it particularly relevant for organizations dealing with GDPR requirements.
Another distinctive aspect is Bizoscore's minimalist approach to data collection. The service operates without web analytics or tracking mechanisms, generating its key performance indicators solely from the number of daily scans and sales. This approach aligns with the tool's privacy-first philosophy and demonstrates practical implementation of data minimization principles.
Use cases and industries
The primary users of Bizoscore include business owners, IT teams, and data protection officers who need to understand and address vulnerabilities in their website infrastructure. The tool serves as a preliminary step before more comprehensive security measures like penetration testing, helping organizations understand their processing context and identify basic security and privacy issues.
The service has particular relevance for industries with significant data protection requirements. The company is developing specific benchmarks for sectors such as healthcare and financial institutions. For corporate clients, Bizoscore offers integration with Bizoneo's Vendor Management module, facilitating supplier due diligence as part of a broader governance, risk, and compliance platform.
It's important to note that Bizoscore has certain limitations. The tool does not test for outdated software versions, SQL injection vulnerabilities, vulnerable content management system plugins, or password-related issues. Additionally, the automated nature of the scanning means results may not be 100% accurate, and some cookies might be tagged as unknown if they're not in the tool's database.
Pricing
A high level scan report is free, the detailed report can then be purchased for €119 excluding VAT.