Security Directory

A

Autoportaal OÜ

autoportaal.ee

0

Autoportaal.ee is a well-established Estonian automotive portal founded in 2010, operated by Autoportaal OÜ. The website serves as a marketplace for new and used cars, including rental listings, targeting Estonian consumers interested in buying, selling, or renting vehicles. The business model focuses on providing free ad postings to attract a broad user base. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and SEO friendly, with comprehensive meta tags and Open Graph data enhancing social media sharing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit privacy and terms of service policies are missing, representing compliance gaps. WHOIS data confirms domain legitimacy with consistent registration details and a long operational history. Overall, the website presents a professional and trustworthy platform in the transportation sector.

Z

Zone Media OÜ

kuhuviia.ee

0

Kuhuviia.ee is a localized Estonian platform focused on facilitating waste sorting and repair services by providing an interactive map and search functionality for users to find waste disposal points and repair locations. The service is supported by Zone Media OÜ, a local Estonian company, and has been operational since 2014. The platform integrates Google Maps API for geolocation and mapping, and offers user engagement features such as adding new repair points and saving favorites. The website targets general users interested in environmental sustainability and waste management within Estonia. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, and Google Maps API, with asynchronous loading of data from a dedicated API. The site is mobile-optimized and provides a good user experience with clear navigation and search autocomplete. However, some minor server-side errors are exposed in the HTML source, and no advanced security headers are implemented, indicating room for improvement in security hardening. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, and exposes a PHP warning which could leak information. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism detected. No direct contact information or incident response contacts are found, which may impact trust and compliance. Overall, the security posture is moderate but could be enhanced with standard best practices. The overall risk assessment suggests the site is legitimate and functional but would benefit from improvements in security and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include fixing server-side errors, enabling DNSSEC, implementing security headers, and adding cookie consent mechanisms to align with GDPR requirements.

T

Tschudi Ship Management AS

tschudishipmanagement.com

0

Tschudi Ship Management AS is a well-established ship management company with Nordic roots and a global reach, offering a comprehensive range of services including technical, crew, operational, insurance, financial, supervision, and consultancy management. The company is part of the larger Tschudi Group, which has a long history dating back to 1883, positioning it as a reputable player in the maritime and offshore energy sectors. Their target audience primarily includes vessel owners and managers worldwide seeking reliable and flexible ship management solutions. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as jQuery, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience with clear navigation and professional design. Hosting is managed via Webflow's CDN, ensuring fast load times and reliability. From a security perspective, the website employs HTTPS with excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and explicit security or incident response policies indicates room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Business credibility is supported by detailed service descriptions, clear contact information, and trust signals such as group affiliation and professional branding. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The main concern lies in the missing WHOIS domain registration data, which conflicts with the company's claimed long-standing history and reduces domain trustworthiness. Verification of domain registration details is recommended to enhance legitimacy and trust.

S

Smaily - intentionally simple email marketing and automation

smaily.com

0

Smaily is a small Estonian technology company specializing in providing an intentionally simple email marketing and automation platform. Founded in 2014, it offers a SaaS model with key services including email marketing, template editing, landing pages, automation, transactional emails, and app integrations. The company emphasizes GDPR compliance, ISO/IEC certification, and excellent human customer support, positioning itself as a trustworthy and user-friendly alternative in the email marketing space. Technically, the website is built on WordPress with modern tools such as Yoast SEO, WPBakery, and Google Tag Manager, ensuring good performance, SEO, and mobile optimization. Security posture is strong with HTTPS, cookie consent mechanisms, and CAPTCHA protections, although DNSSEC is not enabled and some security headers could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

Eesti Inimõiguste Keskus

humanrights.ee

0

Eesti Inimõiguste Keskus is an established independent non-profit organization focused on promoting and protecting human rights in Estonia. The organization provides comprehensive services including human rights reporting, advocacy, refugee counseling, events, and educational materials. Their website reflects a professional and consistent brand image, targeting Estonian residents, NGOs, policymakers, and human rights advocates. The domain has been active since 2010, supporting their credibility and long-term presence in the sector. Technically, the website is built on WordPress with WooCommerce and integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience.

B

BOA arhitektid

boa.ee

0

BOA arhitektid is an established Estonian architecture firm specializing in architecture and main design services. Founded in 2011, the company presents a professional online presence showcasing a portfolio of architectural projects and competitions. The website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization. The technical infrastructure includes modern web technologies such as jQuery and Google Fonts, with hosting likely provided by Zone Media OÜ, an Estonian registrar and hosting provider. The site implements HTTPS and a cookie consent mechanism via CookieYes, reflecting a basic level of privacy compliance. However, explicit privacy policies and terms of service are not found, which could be improved for better compliance and user trust. Security posture is moderate with HTTPS enabled but lacks visible security headers and incident response contacts. Overall, the website is professional, well-structured, and suitable for its target audience of clients seeking architectural services.

M

Marati maja

maratimaja.ee

0

Marati maja is a commercial real estate project centered on a historic textile factory building located at Tartu maantee 63 in Tallinn, Estonia. The website presents the building's history, sustainability credentials including BREEAM certification, and modern office rental offerings. The project is owned by LHV Pensionifondid and managed in partnership with Colliers, with architectural and construction partners named. The site targets businesses seeking office space in a landmark building with modern amenities and flexible leasing options. Technically, the website is built on WordPress with modern JavaScript libraries, responsive design, and integrated contact forms. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the site is professional and trustworthy but could improve compliance and security practices.

O

OÜ Eesti Elektroonikaromu

elektroonikaromu.ee

0

OÜ Eesti Elektroonikaromu operates as a producer responsibility organization in Estonia, focusing on the collection and recycling of electronic waste, batteries, and accumulators. It is the largest network for electronic device collection in Estonia, providing free disposal services and compliance support for producers, importers, retailers, and online shops. The organization is well-established with a domain age since 2010 and recognized market presence, including partnerships such as the pilot electronic waste collection station in Ülemiste shopping center. Technically, the website is built on WordPress with modern themes and SEO tools, employing Google Analytics and Leadfeeder for visitor tracking. Security posture is adequate with HTTPS enforced but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and serves a clear environmental and regulatory function in Estonia.

C

Coop Eesti Keskühistu

coopkokad.ee

0

Coop Eesti Keskühistu operates the Coop Kokad website, a retail cooperative focused on selling food products in Estonia. The company is well-established with a domain age consistent with its founding year 2017. The website is built on a modern Drupal 10 CMS with Commerce 3, integrating advanced cookie consent management via Cookiebot and analytics tools such as Google Analytics and Hotjar. Advertising is managed through major networks including Adform and Meta Platforms, ensuring targeted marketing and retargeting capabilities. The website demonstrates good technical maturity with HTTPS, responsive design, and clear business information. Security posture is solid with encrypted connections and consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

C

Coop Pank

cooppank.ee

0

Coop Pank is a well-established Estonian bank offering a comprehensive range of retail and business banking services including loans, savings, insurance, and payment solutions. The bank positions itself as a local partner for customers both in urban and rural areas, emphasizing innovative and customer-centric financial products. The website reflects a mature digital presence with modern technologies such as React and Next.js, and integrates multimedia content and social media channels effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit cookie consent mechanisms and published security policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives and regulatory requirements.

S

Swedbank AS

swedbank.ee

0

Swedbank AS is a leading Estonian bank providing a wide range of financial services including daily banking, financing, insurance, investment, and savings solutions. The website serves both private and business clients with a strong focus on digital banking services such as internet and mobile banking. The company holds a strong market position in Estonia and is part of the larger Swedbank Group, with several subsidiaries specializing in leasing, investment funds, and insurance. The website content is professionally designed, localized primarily in Estonian with English translations, and demonstrates a high level of GDPR compliance and user privacy awareness. Technically, the website employs modern web technologies including Web Components, JavaScript frameworks, and optimized asset loading strategies. It supports multiple authentication methods including Smart-ID, Mobile-ID, and biometrics, indicating a mature digital infrastructure. Performance and mobile optimization are excellent, with good accessibility and SEO practices observed. From a security perspective, the site uses HTTPS with strong SSL configuration and implements best practices such as ARIA labels for accessibility and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not prominently published, suggesting room for improvement in transparency. Overall, the website is trustworthy, professional, and secure, reflecting the reputation of a major financial institution. Recommendations include publishing detailed security policies, adding a security.txt file for vulnerability disclosures, and enhancing visible security headers to further strengthen the security posture.

J

Julianus Inkasso

julianus.ee

0

Julianus Inkasso is a well-established Estonian debt collection company founded in 1995, operating as a leading provider in Estonia and the Baltic region. The company offers comprehensive credit management services including debt collection, legal proceedings, and purchase of debt portfolios. It is part of the Aktiva Finance Group, which enhances its market position and operational scale. The website reflects a professional and consistent brand image, targeting both debtors and creditors with multilingual support and self-service portals. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and credible business presence.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

T

Telia Eesti AS

telia.ee

0

Telia Eesti AS operates a comprehensive telecommunications platform in Estonia, offering mobile, internet, TV, and IT solutions to both private individuals and businesses. The company holds a strong market position as a leading telecom provider with a broad portfolio of services and a well-established brand. The website reflects a mature digital presence with multi-language support and a user-friendly interface. Technically, the site leverages modern frameworks such as React and integrates analytics and consent management tools, ensuring a balance between user experience and compliance. Security posture is robust with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness, supporting Telia's reputation in the telecommunications sector.

T

Tele2

tele2.ee

0

Tele2.ee is the official website of Tele2, a well-established telecommunications provider in Estonia founded in 2010. The company offers a wide range of services including mobile packages, mobile internet, TV services, and additional offerings such as mobile payments and smart home devices. The website targets both private and business customers in Estonia, providing a professional and user-friendly digital experience. The site is built on modern web technologies including Next.js and React, ensuring good performance, mobile optimization, and accessibility. Tele2 demonstrates strong privacy compliance with a comprehensive cookie consent mechanism and detailed privacy policy in Estonian, including a clear Data Protection Officer contact. Security posture is robust with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Overall, Tele2.ee presents a professional, secure, and compliant online presence suitable for a major telecom operator.

C

Coop Eesti

coop.ee

0

Coop Eesti is the oldest and largest retail cooperative group in Estonia, operating approximately 330 stores with around 6000 employees and serving about 70,000 client-owners. The website reflects a mature retail business with a cooperative model focused on Estonian consumers. Technically, the site is built on Drupal 10, integrating modern analytics and advertising tools such as Google Analytics, Hotjar, and Adform, with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, secure, and compliant, supporting Coop Eesti's market position as a trusted retail cooperative.

A

AS LHV Pank

lhv.ee

0

AS LHV Pank is a leading Estonian financial institution offering a broad range of services including banking, loans, investments, insurance, and pension management. The company targets both individual and business customers within Estonia, positioning itself as a trusted and comprehensive financial services provider. The website reflects this with professional design, clear navigation, and extensive service information. Technically, the site employs modern frameworks such as Bootstrap and uses analytics tools like Google Analytics and PostHog, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure login mechanisms, although there is room for improvement in publishing dedicated security policies and incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

Inbank is a medium-sized Estonian financial institution specializing in retail banking services such as loans and deposits. The website reflects a professional digital banking platform primarily targeting customers in Estonia and the Baltic region. The technical infrastructure leverages modern web technologies including Nuxt.js and integrates third-party authentication services like Dokobit, hosted on Amazon AWS infrastructure. While the site demonstrates good design and mobile optimization, it lacks visible privacy and cookie policies, as well as explicit contact information, which impacts privacy compliance and user trust. Security posture is moderate with HTTPS enforced and use of secure authentication, but missing security headers and incident response details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. Strategic enhancements in privacy transparency, security headers, and incident response readiness are recommended to strengthen compliance and trust.

K

Krediidiregister

krediidiregister.ee

0

Krediidiregister is an established Estonian company providing comprehensive data solutions for credit and business risk management. With over 11 years in the market, it operates the largest payment default and business information database in Estonia, offering services such as credit scoring, account statement analysis, and business monitoring. The company targets businesses and financial institutions seeking to make informed credit decisions and manage financial risks effectively. Technically, the website is built on WordPress with WooCommerce and optimized for performance using WP Rocket. It integrates modern analytics and marketing tools including Google Analytics, Facebook Pixel, and GetResponse Analytics, while implementing GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and partial security headers, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and well-structured digital presence aligned with its business objectives.

Z

Zone Media OÜ

taust.ee

0

Taust.ee is a well-established Estonian credit information platform operated by Zone Media OÜ, founded in 2014. It provides comprehensive credit and background data services including payment defaults, tax debts, court rulings, and financial reports to banks, credit providers, and businesses. The website demonstrates a strong market position with partnerships from major Estonian banks and telecom companies. Technically, the site is built on WordPress with modern front-end technologies and integrates multiple analytics and tracking tools. Security posture is good with HTTPS and no exposed sensitive data, though security headers could be enhanced. Privacy compliance is robust with clear cookie consent and privacy policies. Overall, the site is professional, trustworthy, and serves a critical role in the Estonian financial ecosystem.

Valga Kultuurikeskus is a local cultural center based in Valga, Estonia, established in 2010. It serves as a community hub offering a variety of cultural experiences including theater, concerts, exhibitions, cinema, and room rental services. The website effectively communicates event information and provides contact details, positioning itself as a trusted local institution. Technically, the site uses a modern CMS (Greativ) and integrates popular JavaScript libraries and marketing tools such as Facebook Pixel and Google Analytics. However, it lacks published privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing key security headers and vulnerability disclosure mechanisms. Overall, the site is accessible, professionally designed, and serves its target audience well but should improve privacy compliance and security transparency.

Valga Perekeskus Kurepesa is a municipal social welfare institution in Estonia providing childcare and social services to children, youth, and families within the Valga municipality. The organization focuses on creating a safe and supportive environment tailored to individual needs, aiming to foster independent and socially responsible individuals. The website is built on WordPress with a moderate technical infrastructure, including jQuery and Foundation frameworks, and demonstrates good mobile responsiveness and basic accessibility. Security posture is adequate with HTTPS enforced and a cookie consent mechanism in place, though it lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally presented, reflecting its role as a public social service provider.

V

Valga and Valka Municipalitys

visitvalgavalka.com

0

Visit Valga Valka is a regional tourism website promoting the twin towns of Valga (Estonia) and Valka (Latvia). It provides information on tourism destinations, food and drink, accommodation, and local news and events. The website targets tourists and visitors interested in exploring this unique cross-border region. The business model focuses on tourism promotion supported by local municipalities. The site is relatively small in scale, founded in 2019, and maintains consistent branding and good content quality.

M

MTÜ Eesti Linnade ja Valdade Liit

annateada.ee

0

Anna teada is a public service website operated by MTÜ Eesti Linnade ja Valdade Liit, enabling Estonian citizens to report local maintenance and public order issues to relevant municipal or state authorities. The platform leverages Google Maps API for geolocation and provides a user-friendly interface with clear instructions and privacy policies. It is funded by the European Regional Development Fund and developed in cooperation with the Ministry of Economic Affairs and Communications. The website demonstrates a good level of digital maturity with modern technologies such as Bootstrap, jQuery, Google reCAPTCHA, and Google Analytics integrated for functionality and analytics. Security posture is adequate with HTTPS and spam protection, though improvements are recommended in security headers and DNSSEC. Privacy compliance is basic but present, with clear privacy statements though lacking explicit cookie consent mechanisms. Overall, the site is trustworthy, professionally presented, and serves an essential government-related function.

O

OÜ Piksel

piksel.ee

0

OÜ Piksel is an established Estonian software company founded in 1994, specializing in custom software development focused on information systems, databases, registries, and dynamic websites. The company serves businesses and organizations, including local governments and educational institutions, providing services such as software development, implementation, optimization, and hosting. Their market position is that of a trusted, experienced small enterprise with a clear focus on tailored software solutions. Technically, the website is built on WordPress with modern plugins and frameworks, offering good mobile optimization and moderate performance. Security measures include HTTPS and Google reCAPTCHA on forms, but the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the security posture is solid but could be enhanced with additional policies and headers. The website is professional, trustworthy, and free from suspicious content, with clear contact information and partner relationships. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and publishing a vulnerability disclosure policy to improve compliance and trust.

V

Valga vald

valga.ee

0

Valga.ee is the official website of Valga municipality in Estonia, serving as a comprehensive portal for local government information, news, social services, education, culture, and community engagement. The site targets residents and visitors, providing essential public service information and citizen self-service tools. The website is built on WordPress, leveraging modern plugins such as The Events Calendar and TranslatePress, ensuring multilingual support and event management capabilities. The technical infrastructure is solid, with good mobile optimization and moderate performance. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with a clear cookie consent mechanism and GDPR-compliant privacy policy. Overall, the site reflects a professional and trustworthy government digital presence.

Eesti Lasterikaste Perede Liit is a reputable Estonian non-profit organization dedicated to advocating for large families with three or more children. The organization operates a well-structured website built on WordPress with WooCommerce integration, providing information about their activities, events, and support services. The site demonstrates a solid digital presence with modern technologies and SEO optimization, targeting families and member organizations in Estonia. Security posture is good with HTTPS and no visible vulnerabilities, though additional security headers and policies could enhance protection. Privacy compliance is lacking as no privacy or cookie policies were found, which is a notable gap for GDPR adherence. Overall, the website is professional, content-rich, and trustworthy, serving its community effectively.

The website maaamet.ee is currently inaccessible due to a Cloudflare Turnstile CAPTCHA security challenge, preventing access to any meaningful content. Based on the domain and WHOIS data, it is an established domain registered since 2010 under Zone Media OÜ, consistent with an Estonian government entity, likely the Estonian Land Board. The lack of accessible content means no privacy, cookie, or terms of service policies are visible, nor any contact information or business descriptions. The technical infrastructure relies heavily on Cloudflare services for security and analytics, indicating a modern but heavily protected setup. The security posture is difficult to fully assess due to the blocked content, but the presence of Cloudflare WAF and CAPTCHA suggests a focus on mitigating automated threats. Overall, the site cannot be fully analyzed in its current state, and the AI score is low due to lack of accessible content and policies.

K

Krka d.d., Novo mesto Eesti filiaal

krka.ee

0

Krka d.d., Novo mesto Eesti filiaal operates as a branch of the well-established Krka pharmaceutical group, specializing in the development, manufacturing, and marketing of generic medicines including prescription, over-the-counter, and veterinary products. The company holds a strong market position as one of the leading generic pharmaceutical producers globally, with a history spanning over 70 years. The website targets healthcare professionals and general consumers, providing comprehensive product information and corporate insights. Technically, the site is built on a modern Nuxt.js framework with good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. Overall, the site reflects a professional and trustworthy corporate presence with clear contact information and compliance with GDPR and cookie regulations.

E

Ektaco AS

ektaco.ee

0

Ektaco AS is an established Estonian technology company specializing in point-of-sale (POS) systems and workforce management solutions, with over 35 years of market presence. Their flagship products, CompuCash and CompuAccess, cater primarily to retail, hospitality, and manufacturing sectors, offering integrated hardware and software solutions. The company maintains a strong local market position supported by ISO 9001 certification and positive customer testimonials. Technically, the website is built on WordPress with modern integrations such as Google Analytics, Facebook Pixel, and Tawk.to live chat, complemented by a robust cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforcement and reCAPTCHA protection on forms, though some security headers could be enhanced. Overall, the digital infrastructure supports a professional and trustworthy online presence.

E

Eesti Hotellide ja Restoranide Liit

ehrl.ee

0

Eesti Hotellide ja Restoranide Liit (EHRL) is the largest professional association representing the hospitality sector in Estonia, including hotels, restaurants, schools, and supporting members. The organization focuses on advocacy, information dissemination, and training to support its members and the broader hospitality industry. The website reflects a mature digital presence with content primarily in Estonian and an English alternative, targeting hospitality businesses and professionals in Estonia. The business model is membership-based, emphasizing industry representation and service provision. The domain age and WHOIS data support the legitimacy and established nature of the organization. Technically, the website is built on WordPress 6.8.2 with common plugins such as Yoast SEO and CookieYes for cookie consent management. It uses modern JavaScript libraries like jQuery and Swiper for UI components. The site is hosted under Zone Media OÜ, a known Estonian registrar and hosting provider. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism, including granular user controls. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the HTML content. The site uses tracking tools such as Google Analytics and Facebook Pixel, with moderate user tracking levels and basic privacy compliance. Overall, the website is professional, trustworthy, and aligned with its business purpose. The main risks relate to the absence of a published privacy policy and security headers, which could be improved to enhance compliance and security posture. The site is safe for general audiences with no adult or questionable content.

The website tallinn.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to the actual content. The domain is registered to Spin TEK AS, an Estonian company, consistent with the .ee country code top-level domain. The domain was created in 2010, indicating an established presence likely related to government or municipal services. Due to the access block, no business descriptions, contact information, or policies are visible on the site. The technical infrastructure includes Cloudflare security and analytics services, but no CMS or frameworks are detectable from the challenge page. Security posture cannot be fully assessed, but the presence of Cloudflare indicates some level of protection. Privacy and cookie policies are not found, and no contact or incident response information is visible. Overall, the site appears legitimate but inaccessible for detailed analysis.

E

Eesti E-kaubanduse Liit

e-kaubanduseliit.ee

0

Eesti E-kaubanduse Liit is a well-established non-profit association uniting over 530 reputable e-commerce businesses in Estonia, operating for more than 16 years. The organization focuses on fostering collaboration, trust, and growth within the Estonian e-commerce sector by providing education, events, legal guidance, and a recognized trustmark certification called 'Turvaline ostukoht'. The website reflects a mature market position with strong community engagement and a clear mission to improve the e-commerce ecosystem in Estonia. Technically, the site is built on Webflow, leveraging modern web technologies and Google Tag Manager for analytics and consent management. The site is mobile-optimized, accessible, and professionally designed, providing a positive user experience. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism integrated with Google Consent Mode, although some security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the website and business demonstrate high credibility and trustworthiness.

A

Askly OÜ

askly.me

0

Askly OÜ operates a professional SaaS platform providing AI-powered multilingual chat and customer support solutions primarily targeting e-commerce and retail businesses. The website demonstrates a strong market position with numerous notable clients and testimonials, emphasizing ease of use, automation, and enhanced customer engagement. The company leverages modern digital marketing and analytics tools, including Google Analytics, Facebook Pixel, Hotjar, and FullStory, indicating a mature digital infrastructure. The technical implementation is robust, with responsive design, fast performance, and comprehensive SEO and accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. WHOIS data is unavailable due to privacy protection, which is typical for SaaS providers, but the website content and business presence support legitimacy. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

T

T1 Tallinn

t1tallinn.com

0

T1 Tallinn operates as a large retail and entertainment shopping center located in Tallinn, Estonia. The website presents a comprehensive overview of the business offerings including retail stores, dining options, entertainment venues, and additional customer services. The site targets a broad audience including families and general shoppers, positioning itself as a key shopping and leisure destination in the region. The business appears well-established with a domain age consistent with its operational history since 2016. Technically, the website is built on WordPress CMS, leveraging modern web technologies such as jQuery, Video.js, and Google Fonts. It uses Cloudflare for DNS and CDN services, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with structured data and meta tags implemented effectively. Analytics and marketing tools like Google Analytics and Facebook Pixel are used for user tracking and marketing purposes. From a security perspective, the website enforces HTTPS and uses clientTransferProhibited domain status to prevent unauthorized transfers. However, DNSSEC is not enabled, and security headers are not explicitly observed, indicating room for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR requirements. Contact information is transparent and professionally presented. Overall, the website demonstrates a solid security posture and business credibility with no major red flags. Recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and considering a vulnerability disclosure program to further enhance trust and security maturity.

M

MTÜ Eesti Lasterikaste Perede Liit

perekaart.ee

0

Perekaart is a well-established non-profit organization in Estonia providing a discount card service targeted at large families with three or more children. The website serves as a platform to promote the discount network, which includes over 600 partners offering more than 800 unique discounts across various sectors such as leisure, culture, and food services. The organization is positioned as a key player in supporting family welfare in Estonia, with a strong partnership ecosystem and a clear mission to add value to families' everyday lives. Technically, the website is built using modern web technologies including React and Material-UI, hosted behind Cloudflare DNS services, and integrates Google Tag Manager for analytics and SendSmaily for newsletter management. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. Privacy compliance is addressed through a cookie consent mechanism and a privacy policy page, reflecting awareness of GDPR requirements. From a security perspective, the website uses HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and detailed security or incident response policies on the site. No vulnerabilities or suspicious patterns were detected in the analysis. Overall, the security posture is adequate but could be improved with additional headers and documented policies. The overall risk assessment is low, with the website showing high trustworthiness and professionalism. Strategic recommendations include enhancing security headers, expanding privacy and incident response disclosures, and improving SEO and accessibility features to further strengthen the site's digital maturity and compliance posture.

V

Valga Muuseum

valgamuuseum.ee

0

Valga Muuseum is a regional cultural and educational institution based in Valga, Estonia, providing museum exhibitions, educational programs, research activities, and a museum shop. The website reflects a stable and established organization with a domain registered since 2010. The museum targets a broad audience including local visitors, students, and researchers, offering a variety of cultural and educational services. Technically, the website uses a common CMS (Greativ), standard JavaScript libraries, and integrates Google Analytics and Facebook SDK for tracking. The site is mobile-optimized with good navigation and content relevance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and a cookie consent mechanism, which impacts privacy compliance. Overall, the website is professional, trustworthy, and serves its purpose well.

Valga Sport is a local Estonian sports organization focused on promoting youth and community sports activities, managing sports facilities, and organizing events. The website serves as an information portal for sports opportunities, events, and news relevant to the Valga region. The organization appears to be a small-sized entity with a public or non-profit orientation, supported by local government affiliations. Technically, the website is built on the Greativ CMS platform and uses common web technologies including Google Analytics and Facebook Pixel for tracking. The site is mobile-optimized with a moderate performance profile and basic SEO and accessibility features. Hosting and domain registration are consistent with a local Estonian provider, Telia Eesti AS. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks advanced security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The WHOIS data is transparent and consistent with the business claims, supporting legitimacy. Overall, the website is professional and trustworthy for its intended audience but could improve in privacy compliance and security posture to better align with modern standards.

E

Edhotels OÜ

edhotels.com

0

ED Hotels (Edhotels OÜ) is a small Estonian company specializing in web design and a proprietary hotel sales and management system called BOUK. The company targets hospitality providers such as hotels, guest apartments, and other accommodation services primarily in Estonia and neighboring countries. Their market position is that of an established regional player with a decade-plus history and a loyal client base. Technically, the website is built on WordPress with modern analytics and marketing integrations including Google Tag Manager, Facebook Pixel, Hotjar, and MailerLite, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS registration data is a notable concern for domain legitimacy, but the professional website content and client testimonials support business credibility. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

O

OpenHotels

bouk.io

0

Bouk is a technology platform focused on providing next-generation hospitality system solutions. The company behind the domain is OpenHotels, registered in Estonia since 2021, indicating a relatively new but legitimate business entity in the hospitality technology sector. The website presents minimal visible content, primarily a React-based single-page application with integration of Stripe for payments and FullStory for analytics. The technical infrastructure leverages modern web technologies and is hosted on AWS, as inferred from DNS records. Security posture is moderate with HTTPS enforced and domain transfer protection enabled, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy and cookie policies are absent, which impacts compliance and user trust. Overall, the website is safe with no adult or questionable content detected, but lacks comprehensive transparency and contact information. Strategic improvements in security policies, privacy compliance, and user engagement features are advised to strengthen trust and regulatory adherence.

The website www.peresobralik.ee represents the Estonian non-profit organization Eesti Lasterikaste Perede Liit, which focuses on promoting family-friendly dining establishments through a certification mark. The site targets families with children in Estonia and provides information about the certification, news updates, and regional member organizations. The business model is non-profit and community-oriented, aiming to enhance societal recognition and support for families with children. Technically, the website is built on WordPress and utilizes common web technologies such as jQuery, Owl Carousel, Font Awesome, and Google Fonts. The site is moderately performant, mobile-optimized, and has a clear navigation structure. However, it lacks advanced SEO and accessibility features. The hosting provider is not explicitly identified from the content. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present. The site does not use analytics or tracking services, indicating minimal user tracking. Overall, the website is legitimate, safe, and professionally presented but has room for improvement in privacy compliance and security best practices. The WHOIS data aligns well with the website's claims, supporting its trustworthiness.

T

Tallinn Restaurant Week MTÜ

tallinnrestaurantweek.ee

0

Tallinn Restaurant Week MTÜ operates a well-established hospitality event promoting fine dining experiences across over 100 restaurants in Tallinn, Estonia. The website serves as an informational and promotional platform, highlighting event dates, restaurant participation, awards, and green dining initiatives. The business targets general audiences interested in culinary experiences and positions itself as a reputable local event with international quality standards. Technically, the website is built using modern frameworks such as SvelteKit and integrates common analytics and marketing tools like Google Analytics and Facebook Pixel. The site is performant, mobile-optimized, and professionally designed, though it lacks some advanced accessibility features and explicit cookie consent mechanisms. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is trustworthy and credible, with consistent WHOIS data supporting legitimacy. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing security policies to strengthen user trust and regulatory adherence.

S

Stokker AS

stokker.com

0

Stokker AS is a leading sales and service company specializing in professional tools, machinery, and maintenance services primarily serving the Baltic region and Europe. With over 30 years of experience, it operates both physical tool centers and an e-commerce platform, offering a broad range of products and services including a loyalty program and financing solutions. The company positions itself as a reliable partner with extensive expertise and a large maintenance team. Technically, the website is built on modern frameworks such as Next.js and React, integrating Google Tag Manager and Salesforce Live Agent for analytics and customer support. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although some advanced security policies and incident response information are not publicly disclosed. Privacy and cookie policies are present and GDPR compliant. Overall, the website is professional, user-friendly, and trustworthy, though the absence of WHOIS data introduces some uncertainty about domain registration details.

A

Amphora

amphora.ee

0

Amphora is an Estonian-based company specializing in comprehensive information management software solutions, including document management, digital signatures, e-invoicing, contract management, and internal communication tools. Established in 2010, Amphora targets businesses and government entities seeking to digitize and streamline their document workflows and administrative processes. The company offers tiered SaaS subscription plans with transparent pricing and emphasizes integration with popular tools like Outlook and Google Calendar. Technically, the website is built on a custom ASP.NET WebForms platform utilizing Telerik UI components and jQuery 1.8.3. While the infrastructure supports modern web features and includes HTTPS encryption, some technologies are outdated, which may pose security risks. The site uses Google Analytics for visitor tracking and has basic SEO and accessibility features. From a security perspective, the site benefits from HTTPS and secure form handling but lacks visible security headers and uses an outdated JavaScript library version. There is no evidence of privacy or cookie policies, vulnerability disclosure, or incident response information, which are important for compliance and trust. Contact information is clearly presented, enhancing business credibility. Overall, Amphora's website is professional and trustworthy, with good content quality and business information. However, improvements in privacy compliance, security best practices, and technology updates are recommended to enhance security posture and regulatory adherence.

V

Valga Muusikakool

valgamuusikakool.ee

0

Valga Muusikakool is a well-established music school based in Valga, Estonia, with a history spanning approximately 100 years. The institution provides structured music education programs, organizes academic concerts, and participates in projects aimed at enhancing inclusive education and modernizing public services. The website serves as an information hub for students, parents, and the local community, offering event calendars, news updates, and application submission forms. The business model focuses on education and cultural enrichment within the local region, positioning the school as a key regional player in music education. Technically, the website is built on the Greativ CMS platform and incorporates modern web technologies such as Google Analytics, Facebook SDK, and Owl Carousel for interactive content. The site is mobile-optimized with good navigation and content quality, although some SEO and accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and includes some best practices like secure form handling and analytics integration. However, it lacks explicit security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or exposed sensitive data were found, indicating a generally sound security posture but with room for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and serves its educational purpose effectively. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and considering a vulnerability disclosure program to strengthen trust and compliance.

M

Mulgi Elamuskeskus MTÜ

mulgielamuskeskus.ee

0

Mulgi Elamuskeskus MTÜ operates a cultural and experience center in Mulgimaa, Estonia, dedicated to showcasing the region's history, traditions, and cultural heritage. The center functions as a museum, event venue, and local product sales point, targeting tourists, families, and educational groups. The website is professionally designed using WordPress and Elementor, providing clear navigation and relevant content about visiting hours, ticketing, and events. Social media integration with Facebook and Instagram supports community engagement. Technically, the site uses modern web technologies and enforces HTTPS, but lacks advanced security headers and privacy compliance features such as cookie consent and privacy policies. Contact information is clearly presented, enhancing business credibility.

E

Ekstreemmoto OÜ

renditsikkel.ee

0

Renditsikkel is a small Estonian business specializing in the rental of KTM motorcycles and related riding equipment. The company operates a professional WordPress-based e-commerce website that showcases a variety of motorcycle categories and rental options. The business targets motorcycle enthusiasts and renters in Estonia, offering convenience and access to premium motorcycle models without ownership burdens. Technically, the website leverages modern WordPress plugins such as WooCommerce and Elementor, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

V

Valvoline

valvoline.ee

0

Valvoline.ee is the Estonian localized website for Valvoline, a globally recognized lubricant and automotive chemical brand with a history dating back to 1866. The website presents product offerings primarily focused on lubricants, coolants, and maintenance chemicals targeting automotive, industrial, and motorsports sectors. The site demonstrates a moderate level of digital maturity with use of common JavaScript libraries and Google Analytics for tracking. However, it lacks visible privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The website is accessible without WAF or blocking mechanisms, indicating no access restrictions. Overall, the site is professionally designed with good content relevance but could improve in privacy compliance and security posture.

E

Ekstreemmoto OÜ

klim.ee

0

Klim.ee is an Estonian e-commerce website specializing in quality on-road and off-road motorcycle apparel and accessories. Operated by Ekstreemmoto OÜ, the site targets motorcycle enthusiasts in Estonia, offering a range of products including jackets, pants, helmets, gloves, and protective gear for both men and women. The business appears to be a small-sized retailer founded in 2019, with a clear focus on niche motorcycle apparel markets. The website is professionally designed with good navigation and mobile responsiveness, supporting a positive user experience.

A

Allee restoran

alleerestoran.ee

0

Allee restoran is a small hospitality business located in Tallinn, Estonia, offering a diverse and seasonal menu with a focus on fresh, local ingredients catering to omnivores and vegans alike. The restaurant operates at two addresses and provides services including lunch offers, breakfast, drinks, group menus, and event hosting. The website is professionally designed, mobile-optimized, and integrates modern web technologies and analytics tools, reflecting a mature digital presence. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is good with HTTPS and no exposed sensitive data, but could be improved by adding security headers and incident response information. Overall, the site is trustworthy, content-rich, and well-positioned in its market segment.