Security Directory

K

Kambja vald

kambja.ee

0

Kambja vald is a municipal government entity serving the Kambja region in Estonia, providing a broad range of public services, community news, and administrative information to its residents. The website serves as an official portal for local governance, social services, education, culture, and infrastructure-related information. It targets local residents and stakeholders, offering access to documents, contact details, and event calendars. The business model is typical for a government authority, focusing on service provision rather than commercial activities. Technically, the website is built on the Liferay CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and FontAwesome. It integrates third-party services like Google Analytics and Facebook SDK for analytics and social media functionalities. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technologies like jQuery are outdated, which could pose security risks. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. There is no evidence of advanced security headers or explicit security policies and incident response information publicly available. The use of outdated libraries and lack of visible security headers suggest room for improvement in security posture. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is a credible and professional government portal with good content quality and business credibility. Strategic recommendations include updating outdated libraries, implementing security headers, and publishing explicit security and incident response policies to enhance trust and compliance.

The website linnuriik.ee serves as an informational and promotional platform focused on birdwatching and nature tourism in Matsalu National Park, Estonia. It provides detailed descriptions of bird species, observation towers, hiking trails, and virtual tours, targeting nature enthusiasts and tourists interested in the region. The site is operated by the Foundation of Lääne County and funded by the European Regional Development Fund, indicating a regional public interest focus. Technically, the website is built on WordPress using a modern tech stack including popular plugins like Yoast SEO, WPBakery Page Builder, and Slider Revolution. The site is hosted under the registrar Zone Media OÜ, an Estonian entity, with HTTPS enabled and good SEO practices implemented. Mobile optimization and accessibility are adequate, though some improvements could be made. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks DNSSEC and important security headers, and does not publish explicit security or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. Overall, the website is a well-maintained regional informational resource with good business credibility but requires enhancements in privacy compliance and security best practices to improve trust and regulatory adherence.

V

Visit Haapsalu

visithaapsalu.com

0

Visit Haapsalu is a regional tourism promotion website focused on Haapsalu and Läänemaa in Estonia, targeting tourists including families, couples, and health seekers. The site provides comprehensive travel information, event listings, guided tours, and recommendations for accommodation and dining. It positions itself as a key regional tourism information portal with a consistent brand and active social media presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating Google Analytics for visitor tracking. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are missing and no explicit cookie consent mechanism is present. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional website content. Overall, the site is functional, informative, and trustworthy for visitors but would benefit from enhanced transparency and security practices.

E

Ettevõtlusnädal 2025

ettevotlusnadal.ee

0

Ettevõtlusnädal 2025 is a prominent Estonian nationwide entrepreneurship event organized annually by regional development centers to foster entrepreneurial spirit and support business startups. The website serves as an information hub for event programs, regional trainings, and inspirational content targeting entrepreneurs and aspiring business owners. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and security, including Google Tag Manager and reCAPTCHA. The site is well-optimized for mobile and SEO, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the site reflects a trustworthy and professional digital presence for a non-profit event organization.

T

Tartumaa Omavalitsuste Liit

tartumaa.ee

0

Tartumaa Omavalitsuste Liit is a regional governmental association representing municipalities in Tartu County, Estonia. The organization focuses on local governance, regional cooperation, education, welfare, culture, and strategic development. Their website serves as an information hub for residents, officials, and partners, providing news, event updates, and resources relevant to the county's municipalities. The association operates as a non-profit entity with a clear regional focus and a small organizational size. Technically, the website is built on the Voog CMS platform and utilizes modern web technologies including jQuery, Vue.js, Axios, Google Fonts, and Google Maps API. The site is mobile-optimized with a clear navigation structure and moderate performance. Security measures include HTTPS enforcement and Google reCAPTCHA integration on the contact form, though additional security headers and policies could enhance the security posture. From a security perspective, the site shows good baseline practices but lacks comprehensive privacy and cookie policies, as well as vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's governmental nature, supporting legitimacy and trustworthiness. Overall, the website is professional, trustworthy, and serves its intended audience effectively. However, improvements in privacy compliance and security hardening are recommended to align with best practices and regulatory requirements.

The website tartu2024.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha to verify visitors as human. This indicates a strong security posture at the perimeter but prevents content analysis. The domain is registered since 2018 with Telia Eesti AS, a reputable Estonian registrar, consistent with the domain's country context. No business, contact, or policy information is visible on the landing page, limiting insights into the organization's operations or compliance status. The technical infrastructure leverages Cloudflare's security and analytics services, but no CMS or other technologies are detectable due to blocked content. Overall, the site appears to be protected but lacks publicly accessible content for detailed evaluation.

V

Veinitee.ee

veinitee.ee

0

Veinitee.ee is a small Estonian hospitality business focused on promoting local wineries and wine tourism through a collaborative network of producers. The website serves as a portal to explore various wine routes and wineries across Estonia, targeting wine enthusiasts and tourists. The business is relatively new, founded in 2022, and leverages modern web technologies including WordPress with the Divi theme and Yoast SEO for content management and search optimization. The site integrates Google Tag Manager and Analytics for visitor tracking but lacks visible privacy and cookie policies, which impacts compliance. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but could be improved with enhanced security headers and incident response information. Overall, the website is professionally designed with good content relevance and navigation, though privacy compliance and explicit contact details could be enhanced to improve trust and regulatory adherence.

T

Tervise Paradiis

terviseparadiis.ee

0

Tervise Paradiis is a well-established 4-star spa hotel and water center located in Pärnu, Estonia, offering a comprehensive range of leisure and wellness services including accommodation, water park facilities, sports complex, bowling, and dining options. The business targets spa and wellness tourists, families, and leisure travelers, positioning itself as a leading hospitality provider in the region. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress CMS, leveraging modern SEO tools and cookie consent management, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks some advanced security headers and published security policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in privacy compliance and security transparency would enhance trust and compliance.

T

Trinidad Wiseman OÜ

twn.ee

0

Trinidad Wiseman OÜ is an Estonian technology company specializing in human-centered digital services including software development, business analytics, machine learning, user experience design, accessibility audits, and training. The company holds a strong market position with over 20 years of experience, more than 140 specialists, and a significant number of successful public sector projects. Their business model focuses on service delivery to public and private sector clients, emphasizing professionalism, autonomy, and user-centric solutions. Technically, the website is built on Drupal 10 with modern frontend technologies and integrates Cookiebot for privacy compliance. The site is well-optimized for mobile and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, although explicit security policies and incident response information are not published. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements, supporting the company's credible market presence.

The website ilmateenistus.ee is currently inaccessible due to a Cloudflare Turnstile security challenge that blocks automated access and requires human verification. This prevents retrieval of actual website content, including business descriptions, policies, and contact information. The domain is registered since 2013 with an Estonian registrar, indicating a stable and legitimate presence. The technical infrastructure relies on Cloudflare services for security and performance. Due to the blocking, no privacy, cookie, or terms of service policies are detectable, and no contact or business details are accessible. The security posture is strong in terms of WAF protection but limits content visibility for analysis. Overall, the site’s risk assessment is limited by lack of accessible data, and the AI score is capped low due to blocking.

F

Fibes

eatfibes.com

0

Fibes is a small Estonian e-commerce business specializing in functional fruit purees rich in dietary fibers, targeting active individuals seeking digestive health support. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party integrations for customer reviews, analytics, and marketing. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and domain transfer lock, though improvements such as enabling DNSSEC and publishing comprehensive privacy and terms policies are recommended. Overall, the business appears legitimate and digitally mature for its size and market niche.

The website apek.ee is currently inaccessible, returning a 503 Service Unavailable error indicating maintenance or capacity issues. Due to this, no business content, metadata, or contact information is available for analysis. The domain is registered since 2016 with Zone Media OÜ, a reputable Estonian registrar, suggesting legitimacy of the domain ownership. The technical infrastructure is basic, running on an Apache server hosted by Zone Media OÜ. Security posture is weak as no security headers or policies are detected, and the site lacks privacy and cookie policies. Overall, the site is not currently functional for end users, which severely limits its business and security effectiveness.

The website estonia.ee is currently inaccessible due to a Cloudflare Turnstile security challenge, which blocks content access and prevents detailed analysis of the site's business, security, and compliance posture. The domain is registered with Zone Media OÜ, an Estonian registrar, since 2010, indicating a legitimate and established presence likely related to the Estonian government. The technical infrastructure leverages Cloudflare services for security and performance, but no direct content or metadata is accessible to evaluate privacy policies, contact information, or business details. Due to the WAF challenge, the overall AI score is low, reflecting the inability to perform a full assessment.

E

Estiko Grupp

estiko.ee

0

Estiko Grupp is a well-established Estonian enterprise group primarily operating in Tartu, with diversified business interests in packaging production, real estate development and management, accommodation services, and energy production. The company has a medium-sized footprint with numerous subsidiaries and a strong local market presence, supported by government recognition and a professional digital presence. The website reflects a solid business model targeting both corporate clients and local communities, emphasizing sustainability and community engagement. Technically, the website is built on the Voog CMS platform, leveraging modern JavaScript libraries such as jQuery, TweenMax, and Slick slider for interactive and responsive user experience. The site is mobile-optimized and includes standard SEO and accessibility features, although some accessibility aspects could be improved. Hosting and domain registration are consistent and transparent, with no blocking or WAF interference detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected, but improvements such as enabling DNSSEC and publishing a security.txt file would enhance the security posture. Privacy compliance is basic but present, with a privacy policy and cookie banner aligned with GDPR requirements. Overall, Estiko Grupp's website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, scoring an overall AI rating of 81. Strategic improvements in security policies and technical security controls are recommended to further strengthen trust and resilience.

R

RAMIRENT BALTIC AS

ramirent.ee

0

Ramirent Baltic AS operates as the largest tool and construction equipment rental service provider in the Baltic region, offering a comprehensive range of rental products and services including 24-hour technical support and modular factory solutions. The company is part of the Loxam Group, a recognized leader in equipment rental, which enhances its market position and credibility. The website reflects a professional and user-friendly digital presence with clear navigation and localized content tailored for Estonian customers. Technically, the website is built on a modern WordPress CMS platform with WooCommerce integration, leveraging popular libraries such as jQuery and Google Tag Manager for analytics and marketing. The site demonstrates good mobile optimization and moderate performance, with a GDPR-compliant cookie consent mechanism and structured data enhancing SEO and user experience. From a security perspective, the site enforces HTTPS and uses Cloudflare bot management cookies, indicating a proactive approach to security. However, some security headers are not explicitly detected, and there is no publicly available security policy or incident response contact, which could be improved to strengthen trust and compliance. Overall, the website presents a trustworthy and professional image with strong business credibility and compliance posture. Strategic improvements in security policy transparency and enhanced accessibility could further elevate the site's maturity and user trust.

A

Art Media Agency OÜ

elundidoonorlus.ee

0

The website elundidoonorlus.ee serves as an informational platform dedicated to organ, tissue, and cell donation and transplantation in Estonia. It is operated by Art Media Agency OÜ and provides educational content, registration links for organ donors, and related legal and statistical information. The site targets Estonian residents interested in organ donation and transplantation, positioning itself as a niche public health resource. Technically, the site uses legacy JavaScript libraries such as jQuery 1.4.4 and integrates Google Analytics and Facebook Pixel for user tracking. The hosting is provided by Zone Media OÜ, an Estonian registrar, and the domain has been active since 2011, indicating a stable presence. Security-wise, the site uses HTTPS but lacks visible security headers and employs outdated libraries that may pose vulnerabilities. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, despite the use of tracking technologies. Contact information is not explicitly provided on the main page, limiting direct user engagement. Overall, the site is functional and informative but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Ravijuhend.ee is a healthcare information portal coordinated by Tartu Ülikool and funded by Tervisekassa, providing evidence-based medical guidelines and patient instructions primarily for Estonian healthcare professionals and patients. The website serves as a trusted source for treatment guidelines, patient care instructions, and related educational content, positioning itself as a key national resource in Estonia's healthcare sector. Technically, the site employs modern web standards including HTTPS, Cloudflare DNS, and uses popular web fonts and iconography, delivering a professional and accessible user experience with good mobile optimization and SEO practices. Security-wise, the site benefits from HTTPS and secure form handling but lacks advanced DNS security (DNSSEC) and security headers, and does not publish privacy or cookie policies, which are important for GDPR compliance. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures and security hardening to improve compliance and user trust.

A

AS Arstikeskus Confido

1220.ee

0

The website 1220.ee serves as the official Estonian health advice line platform, providing telephone and web chat medical consultation services. It targets Estonian residents and callers abroad, offering guidance on medical issues, prescription renewals, and emergency care decisions. The service operates under the auspices of the Estonian Health Insurance Fund (Tervisekassa) and collaborates with healthcare providers and pharmacies. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages (Estonian and Russian). Technical infrastructure includes modern JavaScript libraries, CDN-hosted resources, and integration with Facebook SDK and Google Tag Manager for analytics and marketing purposes. The site uses HTTPS and shows no signs of blocking or WAF interference, indicating good accessibility and security basics. However, it lacks visible privacy and cookie policies, which impacts GDPR compliance and privacy posture. Contact information is limited to phone numbers with no email or physical address disclosed. No forms collecting personal data are present on the main page, reducing immediate data protection concerns. Overall, the site demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and security policy transparency.

S

Sõeluuring.ee

soeluuring.ee

0

Sõeluuring.ee is a health screening awareness website focused on early detection of cellular changes and pre-cancerous conditions in Estonia. The website provides informational content aimed at encouraging participation in health screenings to improve treatment outcomes. Technically, the site is built on WordPress using the Divi theme, with integrations for Google Analytics and Facebook Pixel for tracking user interactions. The site is hosted with DNS managed by Cloudflare, providing good performance and security benefits. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a significant gap given the use of tracking technologies. Business credibility is moderate, with consistent branding and good content quality, but no explicit contact information or certifications are provided. Overall, the site is functional and professionally designed but would benefit from enhanced privacy compliance and security transparency.

Piiriveekogu.ee is a government-related service platform managed by Elkdata OÜ, established in 2015. The website appears to provide information and assistance related to border water bodies in Estonia. The platform uses AngularJS and Material Design for its user interface, indicating a moderate level of technical maturity. However, the website lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is weak due to the absence of security headers and incident response information. Overall, the site is functional but requires improvements in security and compliance to enhance trustworthiness and user protection.

A

Andmik

andmik.ee

0

Andmik is a specialized platform focused on providing data visualization and budget tracking services for Estonian municipalities. The website presents detailed geographic and demographic data for various local governments, targeting municipal officials and stakeholders. The platform leverages modern web technologies including Vue.js and Leaflet for interactive maps, supported by Google Analytics and Tag Manager for user tracking. The domain is registered with a reputable Estonian registrar, Zone Media OÜ, and was created in 2021, aligning with the platform's apparent recent launch. Technically, the website employs a modern JavaScript framework and mapping libraries, ensuring a responsive and interactive user experience. However, there is room for improvement in accessibility and SEO optimization. Security-wise, the site lacks visible security headers and does not enable DNSSEC, which could be enhanced to improve overall security posture. Privacy compliance is weak, with no visible privacy or cookie policies, and no consent mechanisms, which is a significant gap given the use of tracking technologies. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and providing clear contact and incident response information.

E

Euroopa rändevõrgustiku Eesti kontaktpunkt

emn.ee

0

The website www.emn.ee serves as the official Estonian contact point for the European Migration Network, providing comprehensive migration and asylum policy reports, applied research, and urgent information exchange. It targets policymakers, researchers, and migration professionals, positioning itself as a trusted government-related entity with a focus on migration statistics and policy analysis. The site is well-structured, content-rich, and regularly updated with news, events, and publications relevant to migration topics. Technically, the website is built on WordPress with Yoast SEO and integrates Google Analytics and Tag Manager for tracking. It demonstrates good mobile optimization and moderate performance. The use of HTTPS and cookie consent mechanisms reflects a solid privacy posture, although some security headers and explicit incident response information are missing. Security-wise, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks published security policies and vulnerability disclosure mechanisms, which could enhance trust and compliance. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and professional resource in its domain. Strategic improvements in security headers, incident response transparency, and accessibility could further strengthen its position.

S

Siseministeeriumi infotehnoloogia- ja arenduskeskus

smit.ee

0

Siseministeeriumi infotehnoloogia- ja arenduskeskus (SMIT) is the largest governmental IT institution in Estonia focused on developing and managing critical information systems for internal security and emergency services. It serves key government agencies such as the Police and Border Guard Board, Rescue Board, and Ministry of the Interior, providing vital communication and ICT services nationwide. The website reflects a professional government entity with clear service offerings and a strong market position as a trusted IT service provider for public safety. Technically, the site uses modern frameworks like Vue.js and Nuxt.js, ensuring a responsive and moderately performant user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and policies could be enhanced. Privacy compliance is basic with cookie policy present but lacking explicit consent mechanisms. Overall, the site is trustworthy and well-aligned with its government mission.

SoftExpert OÜ is an Estonian IT company specializing in the development and maintenance of mission-critical and complex web-based systems. Established since 2000, it has contributed to several major Estonian web services such as CV-Online and various photo and video platforms. The company offers a broad range of IT services including consulting, system creation, and maintenance, targeting Estonian businesses requiring reliable IT partnerships. The website content is primarily in Estonian with an English option, reflecting a local market focus. Technically, the website uses legacy technologies such as PHP, Perl, and C, hosted on Unix/Linux platforms. The site lacks modern frameworks and shows basic SEO and accessibility features. Performance is moderate, but mobile optimization is poor. The site includes Google Analytics and Tag Manager scripts for user tracking but lacks visible privacy or cookie policies, which is a compliance gap. From a security perspective, no HTTPS confirmation or security headers were detected in the provided data, indicating potential vulnerabilities. No forms or input fields are present, reducing attack surface but also limiting user interaction. The WHOIS data is consistent and transparent, with a domain age appropriate for the business history. Overall, the security posture is moderate but requires improvements in SSL/TLS implementation and security headers. The overall risk is moderate with recommendations to implement HTTPS, add privacy and cookie policies, improve mobile responsiveness, and enhance security headers. These steps will improve compliance, user trust, and security resilience.

The website rtk.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to actual content. The domain is registered since 2012 by Zone Media OÜ, an Estonian registrar, indicating a legitimate and stable registration. However, no business, contact, or policy information is accessible on the challenged page. The technical infrastructure relies heavily on Cloudflare's security and analytics services, but no further CMS or platform details are available. Due to the blocking, the security posture cannot be fully assessed, but the use of Cloudflare indicates a baseline security measure. Overall, the site cannot be properly evaluated until the WAF challenge is passed.

Z

Zone Media OÜ

kiiskshooting.ee

0

The website kiiskshooting.ee represents Team KiiskShooting, a small Estonian business focused on sport shooting mental toughness literature and related content. The primary offering is a book titled "Sisekümne Seisund" which addresses mental strength in sport shooting, targeting athletes and enthusiasts in this niche. The site also provides team information and uses social media channels such as Facebook and X (Twitter) for outreach. The business is registered under Zone Media OÜ, consistent with the domain registration data, and the domain age supports the legitimacy of the business. Technically, the website is built on WordPress using the OceanWP theme and Elementor page builder, with SEO enhancements via Yoast SEO and analytics through Jetpack Stats. The site is hosted with a registrar Zone Media OÜ and uses Cloudflare for DNS. Performance and mobile optimization are good, though accessibility is basic. The site uses HTTPS with a valid SSL certificate but lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, the site has a moderate posture with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, it lacks security headers and formal security or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Contact information is limited to a contact form without direct emails or phone numbers, which may impact user trust. Overall, the website is functional and professional for its niche but would benefit from enhanced privacy compliance, security hardening, and clearer contact information to improve trust and regulatory adherence.

O

OÜ Tervise Paradiis

veekeskus.eu

0

OÜ Tervise Paradiis operates the largest water center in Estonia, located in Pärnu, offering a wide range of recreational and sports facilities including pools, saunas, bowling, and fitness services. The website is well designed, multilingual, and provides comprehensive information and booking forms for various customer segments such as families, schools, and groups. Technically, the site is built on WordPress with modern plugins and frameworks, and it integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and secure form handling, though some security headers could be improved and no explicit security policies are published. Privacy compliance is addressed with a privacy policy and cookie consent mechanism. Overall, the domain registration is consistent with the business location and sector, indicating legitimacy and trustworthiness.

J

Jazz Pesulad OÜ

jazzpesulad.ee

0

Jazz Pesulad OÜ operates a well-established car wash chain in Estonia, providing a variety of vehicle cleaning services including self-service, hand wash, and drive-through options. The company has a strong market presence with 23 locations across multiple cities and serves thousands of customers daily. Their business model includes loyalty and prepaid card programs to enhance customer retention and convenience. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA Enterprise, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement and standard security headers, although no explicit security policy or incident response contacts are published. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting a positive digital maturity profile.

T

Toyota Eesti

toyota.ee

0

Toyota Eesti operates as the official Toyota brand presence in Estonia, offering a comprehensive range of automotive products including hybrid and electric vehicles, SUVs, commercial vehicles, and special offers. The website serves as a digital storefront and information hub for Estonian consumers and businesses interested in Toyota's mobility solutions. It reflects Toyota's global brand standards and local market adaptation. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies such as Adobe Launch for tag management, Datadog for real user monitoring, and OneTrust for cookie consent management. The infrastructure is robust, with CDN usage and integration with Toyota Europe services. Security posture is strong, with HTTPS enforced, privacy-conscious tracking, and no visible vulnerabilities or exposed sensitive data. However, explicit privacy policy and terms of service documents are not detected in the provided content, which is a compliance gap. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience.

I

Invaru OÜ

invaru.ee

0

Invaru OÜ operates as a specialized provider of assistive devices and healthcare-related products in Estonia, offering a comprehensive range of mobility aids, incontinence products, rehabilitation equipment, and personal care items. The company supports its customers through both online e-commerce and multiple physical store locations, providing sales, rental, repair, and consultation services. Their market position is that of a trusted regional player catering to individuals with special needs, elderly customers, and healthcare providers. Technically, the website is built on the nopCommerce platform, integrating modern analytics and marketing tools such as Google Analytics, Facebook SDK, and Klevu Search, reflecting a mature digital infrastructure with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security policies and vulnerability disclosure reduces transparency. Overall, the site demonstrates moderate to good professionalism and trustworthiness, with room for improvement in privacy compliance and security communication.

E

ENRE OÜ

oakohv.ee

0

ENRE OÜ operates the website oakohv.ee, an Estonian e-commerce platform specializing in the retail and wholesale of coffee products including coffee beans, capsules compatible with Dolce Gusto, Nespresso, and Senseo machines, as well as coffee machines and accessories. The company targets both individual consumers and businesses within Estonia, offering a broad product range with options for bulk purchases and subscription services. The website is professionally designed with clear navigation, product categorization, and detailed product information, supporting a positive user experience.

K

Kääriku Spordikeskus

kaariku.ee

0

Kääriku Spordikeskus is an established Estonian sports training and conference center with a history dating back to 1947. It offers a wide range of services including sports facilities, accommodation, conference hosting, and leisure activities, targeting athletes, sports teams, and event organizers. The website is built on WordPress with modern technologies such as Bootstrap, jQuery, and Three.js, providing a good user experience with multilingual support and accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks published privacy and cookie policies, and security headers. Contact information is clearly provided with official registration details, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security best practices.

T

Tervisekassa

haigekassa.ee

0

Tervisekassa is a government-related healthcare organization in Estonia responsible for managing national health insurance and providing various health-related benefits and services to insured individuals. The website serves a broad audience including individuals, employers, healthcare providers, and vulnerable groups such as Ukrainian refugees. It offers comprehensive information on health insurance, medical services, preventive screenings, and related administrative procedures. The site is well-structured, multilingual, and integrates modern digital tools to enhance user experience and accessibility. Technically, the website is built on the Drupal CMS platform and leverages several third-party services including Google Analytics, Google Tag Manager, Google reCAPTCHA, Siteimprove, and tawk.to for analytics, marketing, security, and user support. The site is hosted behind Cloudflare DNS, uses HTTPS, and implements a robust cookie consent mechanism compliant with GDPR. Performance and accessibility are rated good, with mobile optimization and clear navigation. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, it lacks explicit security headers and a published security policy or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's governmental and Estonian identity, supporting legitimacy. Overall, Tervisekassa's website demonstrates a mature digital presence with strong business credibility and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

L

Liikumistervise innovatsiooni klaster SportEST

sportest.eu

0

Liikumistervise innovatsiooni klaster SportEST is a small Estonian cluster organization focused on fostering innovation in the field of movement health. The website presents the cluster as a recognized European-level partner with a bronze certification from the European Cluster Excellence program. The business model centers on collaboration among sector organizations and companies to develop innovative solutions in movement health. The website content is primarily in Estonian with language options for English and Russian, targeting regional and international stakeholders in the health innovation sector. Technically, the website is built on WordPress 4.7.29, utilizing common JavaScript libraries such as jQuery and plugins for slideshows and lightboxes. Google Analytics and Google Tag Manager are implemented for user tracking. The site is served over HTTPS, ensuring encrypted communication. However, the WordPress version is outdated, and minor PHP warnings are visible, indicating backend issues that could pose security risks. Accessibility and SEO optimizations are basic but functional, and mobile responsiveness is good. From a security perspective, the site lacks important security headers and does not publicly disclose privacy or cookie policies, which impacts GDPR compliance. No incident response or vulnerability disclosure information is available. The WHOIS data is unavailable due to EURid privacy policies, but the domain appears legitimate based on website content and certifications. Overall, the security posture is moderate but could be improved by addressing backend errors, updating software, and enhancing privacy compliance. The overall risk is moderate with recommendations to improve backend stability, implement security headers, publish privacy and cookie policies, and update the CMS to a supported version. These steps will enhance trust, compliance, and security posture for the cluster and its stakeholders.

U

Uma Mekk

umamekk.ee

0

Uma Mekk is a regional food brand based in Estonia, specifically targeting the Vana-Võromaa area. The website serves as a platform for local food and beverage producers to obtain branding and certification under the Uma Mekk trademark. The business model focuses on promoting local food products and supporting regional producers. The website is built on WordPress using the Divi Builder and Bootstrap framework, indicating a modern and maintainable technical infrastructure. SEO is enhanced with Yoast SEO and structured data, improving search visibility. The site is mobile optimized and includes cookie consent mechanisms, reflecting awareness of privacy regulations. Security posture is solid with HTTPS and security headers implemented, though explicit privacy and security policies are absent. Tracking via Google Analytics and Facebook Pixel is present, indicating moderate user data collection. Overall, Uma Mekk presents a credible and professional online presence for a small regional food brand.

S

SIIDRIKODA OÜ

kodas.ee

0

SIIDRIKODA OÜ operates the Kodas brand, a craft cider producer and hospitality business based in Estonia. The company offers a range of award-winning sustainable ciders, a restaurant, factory tours, accommodation in unique iglu houses, and event tickets. The website is professionally designed using WordPress and WooCommerce, supporting e-commerce and booking functionalities. The digital infrastructure includes modern marketing and analytics tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and Klaviyo, indicating a mature digital marketing approach. Security posture is good with HTTPS enabled and privacy compliance evident through comprehensive privacy and cookie policies. No critical vulnerabilities or blocking mechanisms were detected, and WHOIS data supports the legitimacy of the domain and business. Overall, the website presents a trustworthy and professional online presence for a small hospitality and retail business.

M

Murimäe veinikelder

murimaevein.ee

0

Murimäe veinikelder is a small Estonian hospitality business operating the world's northernmost terraced vineyard. The company offers a combination of e-commerce wine sales, wine tastings, accommodation, and event hosting, targeting wine enthusiasts and tourists. The website is built on WordPress with WooCommerce and Elementor, reflecting a moderate level of digital maturity with good SEO and mobile optimization. Security posture is adequate with HTTPS and nonce usage, but lacks advanced security headers and explicit privacy and cookie policies, indicating room for compliance improvement. Overall, the business presents a professional online presence with clear offerings but should enhance privacy compliance and security transparency to strengthen trust and regulatory adherence.

T

Toidutänavad

toidutanavad.ee

0

Toidutänavad is an event organization business hosting Estonia's largest street food festival, established in 2020. The website serves as a promotional platform targeting families and street food enthusiasts in Estonia, offering information about the festival and related events. The site is built on WordPress with modern SEO and multilingual support, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, which are critical for GDPR compliance. Contact and incident response information are not present, limiting user trust and compliance transparency. Overall, the website is functional and professional but requires improvements in privacy, security policies, and contact transparency to enhance trust and compliance.

L

Luke Mõis

lukemois.ee

0

Luke Mõis is a hospitality business based in Estonia, operating a website that serves as a digital presence for their venue and services. The website is built on WordPress using the Divi theme and integrates WooCommerce for e-commerce functionality. It targets local and regional customers interested in hospitality, events, and accommodation services. The site demonstrates a moderate level of digital maturity with standard tracking tools such as Google Analytics and Facebook Pixel implemented alongside cookie consent mechanisms. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities detected, though the absence of security headers and explicit privacy policies indicates room for improvement. Overall, the website is functional and professional but lacks some compliance and security best practices, which should be addressed to enhance trust and regulatory adherence.

M

MTÜ Hiiukala

hiiukala.org

0

MTÜ Hiiukala is a small Estonian non-profit organization dedicated to supporting the sustainable development of the Hiiumaa fishing region and representing the interests of local professional fishermen. Founded in 2008, it has a solid history of managing European fisheries fund projects and engaging the local community. The website reflects a well-structured WordPress platform with good design and navigation, optimized for mobile devices and SEO. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled and domain registration consistent with the organization's identity, but could be improved by enabling DNSSEC and adding security headers. Contact information is clearly provided, and the organization maintains an active Facebook presence. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

A

Anija Mõis

anijamois.ee

0

Anija Mõis is a historic manor and cultural site located in Northern Estonia, offering a wide range of services including a permanent exhibition, visitor programs, event hosting such as weddings and seminars, workshops, a manor café, and a gift shop. The website reflects a well-established cultural tourism business targeting families, tourists, and event organizers. The site is built on WordPress using the Avada theme and Fusion Builder, integrating modern plugins like Slider Revolution and Contact Form 7 with Google Analytics and reCAPTCHA for security and analytics. Security posture is good with HTTPS and reCAPTCHA, though some security headers are missing and no privacy policy page was found, indicating room for compliance improvement. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and active social media presence.

T

Tartu County Tourism Foundation

visitnarva.ee

0

Visit Narva is the official tourism website for Narva city and its surrounding county in Estonia, managed by the Tartu County Tourism Foundation. The site provides comprehensive and up-to-date information on local attractions, events, conferences, and travel logistics, targeting tourists, event organizers, and local businesses. It serves as a key regional portal promoting Narva as a travel destination with multilingual support and rich multimedia content including virtual tours and social media integration. Technically, the website is built on Drupal 7 with a moderate performance profile and good mobile and accessibility features. Security posture is adequate with HTTPS and basic security headers, though there is room for improvement in advanced security practices and incident response readiness. Privacy compliance is basic with a cookie consent mechanism and privacy policy present, but lacks detailed GDPR-specific disclosures or a data protection officer contact. Overall, the website is professional, trustworthy, and well-aligned with its business purpose, with a domain registration consistent with its Estonian location and tourism focus.

M

MTÜ Sibulatee

sibulatee.ee

0

Sibulatee is a non-profit organization dedicated to promoting the cultural and tourism assets of the Peipsimaa region in Estonia. The website serves as a comprehensive portal for events, local businesses, cultural heritage, and educational opportunities, targeting tourists and local communities interested in authentic regional experiences. The platform leverages WordPress and WooCommerce to provide event listings, e-commerce for local products, and seminar information, supported by active social media engagement and newsletter subscriptions. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements in security headers and policies are recommended. Privacy compliance is addressed with a clear privacy policy and cookie banner, aligning with GDPR requirements. Overall, the site is professionally designed, user-friendly, and trustworthy, with clear contact information and consistent branding. No critical vulnerabilities or blocking mechanisms were detected, supporting a positive risk profile.

K

kalateave.ee

kalateave.ee

0

The website kalateave.ee serves as the Fisheries Information Centre for Estonia, focusing on enhancing knowledge and sustainability in fisheries, aquaculture, and aquatic resource utilization. It targets industry professionals, non-profits, research institutions, and the general public interested in fisheries. The site offers informational content, research publications, educational materials, and event announcements, positioning itself as a central knowledge hub in the Estonian fisheries sector. Technically, the site is built on Joomla CMS with modern web technologies including jQuery, Bootstrap, and FontAwesome, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and has good SEO practices but lacks some accessibility features and security headers. Security posture is solid with HTTPS enforced and CSRF protections, but there is room for improvement in privacy compliance and explicit security policies. Overall, the site is professional and trustworthy but should enhance privacy transparency and security headers to align with best practices.

Z

Zone Media OÜ

xn--puhvetitepiv-pcb.ee

0

The website 'PUHVETITE PÄIV RÕNGUST RANNUNI' serves as the official online presence for a regional Estonian food and cultural event organized by Zone Media OÜ. It provides visitors with event details, galleries, maps, and multimedia content to promote local buffets and experiences in the Rõngu and Rannu areas. The site targets local visitors and tourists interested in Estonian culinary culture. Technically, the site is built on WordPress with a modern theme and several plugins supporting multilingual content, social media integration, and cookie consent management. The infrastructure is hosted likely by Zone Media OÜ, with proper HTTPS and moderate performance. Security posture is adequate with SSL and cookie consent but lacks advanced security headers and explicit incident response or vulnerability disclosure mechanisms. Privacy compliance is partial, with a cookie policy and consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its niche but could improve in privacy and security transparency.

V

Visit Otepää

visitotepaa.com

0

Visit Otepää is a regional tourism promotion website dedicated to showcasing the attractions, events, accommodation, and culinary experiences of Otepää, Estonia's winter capital. The site targets tourists and visitors interested in exploring the natural beauty and cultural offerings of the region. It provides comprehensive information and interactive features such as maps, event listings, and a newsletter subscription to engage its audience. Technically, the website is built on WordPress with modern front-end technologies including Bootstrap and JavaScript libraries, and integrates Google Maps for location services. SEO is enhanced through Rank Math plugin and structured data markup is implemented for better search engine understanding. Security-wise, the site uses HTTPS with a valid SSL certificate and employs Google reCAPTCHA on its contact form to mitigate spam. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Overall, the website is professional, user-friendly, and trustworthy, but could improve its privacy compliance and security headers to enhance its security posture.

O

OÜ Veinimõisnik

veinivilla.ee

0

Valgejõe Veinivilla is a small Estonian winery operating since 2014, positioned as the northernmost winery in Estonia. They produce fruit, berry, and grape wines using local ingredients, offering retail sales through their online wine shop and on-site services including tours, tastings, and events. The business targets wine enthusiasts and tourists seeking authentic local experiences. Technically, the website is built on WordPress with WooCommerce and Elementor, supported by a reputable hosting provider. The site is well-structured, mobile-optimized, and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS and no visible vulnerabilities, but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy with room for compliance and security enhancements.

T

Tartu Welcome Centre

tartuwelcomecentre.ee

0

Tartu Welcome Centre is a local newcomer information and support center based in Tartu, Estonia, founded in 2019. It provides free consultations, registry services, cultural and networking events, and useful information to international newcomers and their families in Tartu and South-Estonia. The organization positions itself as a community-oriented non-profit entity aiming to facilitate smooth integration and settlement for newcomers. The website is built on WordPress with modern SEO and analytics tools, hosted by Zone Media OÜ. The site is well designed, mobile optimized, and offers clear navigation and professional content. However, it lacks formal privacy and cookie policies, which impacts compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the website is trustworthy and functional, serving its target audience effectively.

T

Tiigi Seltsimaja

tartukorraldab.ee

0

Tartu korraldab is a government-affiliated event coordination platform managed by Tiigi Seltsimaja, focusing on organizing and promoting cultural and city-wide events in Tartu, Estonia. The website serves as a central hub for information on major city celebrations such as Tartu linna päev, jõululinn, and other seasonal festivals. The business operates under the official city branding and targets residents and visitors interested in Tartu's cultural life. Technically, the site is built on WordPress with modern plugins like Elementor and Modern Events Calendar, optimized for performance and mobile responsiveness. Security posture is solid with HTTPS, anti-spam measures, and GDPR-compliant cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy presence.

V

V360 agency

v360.ee

0

V360 Agency OÜ is a small Estonian digital agency specializing in web development, e-commerce solutions, branding, and full digital marketing services. The company positions itself as a smart solution for digital success, targeting businesses seeking to elevate their online presence through comprehensive marketing and branding strategies. Their website showcases a professional design with clear navigation, client testimonials, and a portfolio of projects, indicating a trusted market presence. Technically, the site is built on WordPress with modern JavaScript libraries such as Swiper.js and Tippy.js, and integrates Google Tag Manager and reCAPTCHA for tracking and security. The hosting and domain registration are managed by Zone Media OÜ, a reputable Estonian registrar and hosting provider. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional and credible, though improvements in privacy and security policies are recommended.