Security Directory

The website kose.ee serves as a simple informational portal for Kose vald, a local government municipality in Estonia. It primarily functions as a redirect and contact hub linking users to the official Kose vald website (kosevald.ee) and its Facebook page. The site provides basic contact information including official email addresses and phone numbers but lacks comprehensive privacy, cookie, or terms of service policies. The content is minimal and targeted at residents or stakeholders seeking municipal information. Technically, the site is built on WordPress using common libraries such as jQuery, Bootstrap, and Font Awesome. Hosting appears to be managed by Zone Media OÜ, an Estonian registrar and hosting provider. The site uses HTTPS with good SSL configuration but lacks advanced security headers and modern privacy compliance features. Mobile optimization and accessibility are basic but functional. From a security perspective, the site shows moderate maturity with HTTPS enabled but no visible security policies or incident response contacts. No forms or user data collection mechanisms are present, reducing attack surface but also limiting user engagement. The absence of privacy and cookie policies indicates non-compliance with GDPR best practices, which is a risk for a government entity. Overall, the website is legitimate and consistent with its stated purpose but would benefit from enhanced security practices, privacy compliance, and improved user experience to better serve its audience and meet regulatory requirements.

V

Võru Linnavalitsus

voru.ee

0

Võru Linnavalitsus operates as the official municipal government of Võru city in Estonia, delivering a wide range of public services including urban planning, social welfare, cultural activities, and administrative support. The website serves residents, local businesses, tourists, and other stakeholders by providing comprehensive information and access to e-services. The site is multilingual, supporting Estonian, English, and Russian languages, enhancing accessibility for diverse users. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It demonstrates moderate performance and good mobile optimization, with a clear navigation structure and professional design. The presence of Google Analytics indicates moderate user tracking, balanced with a cookie consent mechanism and a privacy policy page, reflecting good privacy compliance. From a security perspective, the site enforces HTTPS and employs secure form submissions. However, it lacks explicit security headers and a dedicated incident response or vulnerability disclosure page. The use of an older jQuery version may pose minor risks. Overall, the security posture is solid but could benefit from enhancements in security policy transparency and technical hardening. The website's WHOIS data aligns well with its government identity, showing consistent registrant information and domain age appropriate for a municipal entity. No blocking or WAF interference was detected, allowing full content accessibility. Strategic recommendations include updating JavaScript libraries, implementing security headers, and publishing clear security policies to further strengthen trust and compliance.

Viljandi Linnavalitsus operates as the official municipal government of Viljandi city in Estonia, providing a broad range of public services including social support, education, urban planning, and cultural activities. The website serves residents, local businesses, and visitors by offering comprehensive information and access to municipal services. The site is well-structured with clear navigation and content relevant to its audience, reflecting a mature public sector digital presence. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It employs HTTPS with a valid SSL certificate ensuring secure communications. The site is moderately optimized for performance and mobile devices, though some legacy JavaScript libraries like jQuery 1.10.2 present potential security risks. SEO and accessibility are adequately addressed, but there is room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks modern security headers and uses outdated JavaScript libraries that could be vulnerable. There is no visible security policy or incident response contact, and no cookie consent mechanism is implemented, which may affect GDPR compliance. Google Analytics is used for visitor tracking, indicating moderate user tracking. Overall, the website demonstrates a solid business credibility and trustworthiness as a government entity, with a good content quality and technical foundation. Strategic improvements in updating libraries, enhancing security headers, and implementing privacy compliance mechanisms would strengthen its security posture and regulatory adherence.

R

Rapla vald

rapla.ee

0

Rapla vald operates as a local government entity serving the Rapla region in Estonia, providing a broad range of municipal services including social support, education, cultural activities, infrastructure management, and community engagement. The website serves as an official portal for residents and visitors, offering news, event information, and access to various public services. The organization maintains a clear and consistent brand presence with a well-structured website in Estonian, targeting local community members and stakeholders. Technically, the website is built on WordPress CMS, leveraging modern plugins and frontend technologies such as jQuery, FontAwesome, and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Hosting and domain registration are managed by a reputable Estonian registrar, Telia Eesti AS, with domain age consistent with the organization's history. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers, published security policies, and incident response contact information. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security maturity. Overall, the website presents a trustworthy and professional digital presence for a government entity, with moderate technical and security posture. Strategic enhancements in security headers, incident response readiness, and vulnerability disclosure would strengthen its security and compliance stance.

The website parnu.ee is registered to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) via EENet, indicating a government affiliation. However, the website content is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge, which blocks automated access and requires human verification. This prevents direct analysis of the site's content, policies, and contact information. The domain is well-established since 2010 and shows no suspicious registration patterns, supporting its legitimacy as a government domain. Technically, the site leverages Cloudflare's security and performance services, including the Turnstile CAPTCHA for bot mitigation. No CMS or additional frameworks are detectable from the accessible content. The lack of visible privacy, cookie, or terms of service policies, as well as absence of contact details, limits assessment of compliance and user engagement features. From a security perspective, the use of Cloudflare provides a baseline of protection, but the absence of visible security headers or policies in the accessible content is a gap. The domain does not have DNSSEC enabled, which is recommended for enhanced DNS security. No vulnerabilities or exposed sensitive data are observable due to the content block. Overall, the site appears to be a legitimate government domain with strong domain registration trustworthiness but currently limited accessibility and transparency. Strategic recommendations include improving public access to privacy and security policies, enabling DNSSEC, and providing clear contact and incident response information to enhance trust and compliance.

M

MTÜ Kodukant Läänemaa

kklm.ee

0

MTÜ Kodukant Läänemaa is a small Estonian non-profit organization dedicated to promoting and supporting village life and rural community development in the Läänemaa region. The organization provides project support, facilitates funding opportunities, and organizes community events to strengthen local engagement. The website is built on WordPress using the Virtue theme and several plugins such as MailPoet for newsletters and Google Calendar Events for event management. The technical infrastructure is modern and moderately performant with good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks important security headers and formal privacy or cookie policies. Contact information is clearly provided with a physical address and company email, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security practices.

R

Rohelise Jõemaa Koostöökogu

joemaa.ee

0

Rohelise Jõemaa Koostöökogu is a small regional cooperative organization based in Estonia, focused on sustainable rural economic development, cultural heritage preservation, and tourism promotion. The website serves as an informational and promotional platform highlighting the organization's mission, events, and regional identity. The technical infrastructure is based on WordPress with common plugins such as Yoast SEO and Contact Form 7, supported by standard web technologies like jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but requires improvements in privacy, security, and compliance to enhance trust and user protection.

P

Pärnu Lahe Partnerluskogu

plp.ee

0

Pärnu Lahe Partnerluskogu is a regional non-profit partnership organization based in Estonia, focused on supporting local development projects, cooperation, and dissemination of information in the Pärnu Bay area. The website serves as an information hub for local government entities, community organizations, and residents, providing updates on meetings, funding opportunities, and collaborative projects. The organization appears well-established with a domain age since 2010 and consistent regional focus. Technically, the website is built on WordPress using the Sydney theme and common plugins such as Yoast SEO and Elementor. It employs HTTPS and basic SEO optimizations, with moderate performance and good mobile responsiveness. However, accessibility features are basic, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a good SSL configuration but lacks advanced security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure mechanisms are evident. The absence of contact emails and phone numbers in the HTML limits direct communication channels, though physical addresses linked to local municipalities are present. Overall, the website is functional and professional for its purpose but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

G

Geopeitus MTÜ

geopeitus.ee

0

Geopeitus.ee is a niche community platform dedicated to geocaching activities in Estonia, operated by Geopeitus MTÜ. The website offers geocache listings, user forums, event announcements, and user-generated content such as logs and photos. It targets geocaching enthusiasts primarily within Estonia, fostering an active and engaged community with premium membership features and event support. The platform's market position is that of a specialized community hub rather than a commercial enterprise. Technically, the site uses legacy JavaScript libraries like jQuery 1.6.4 and jQuery Fancybox 1.3.4, along with Google Tag Manager for analytics. The CMS appears custom-built, with basic mobile optimization and accessibility features. Security posture is moderate but could be improved; the site lacks modern security headers and uses outdated libraries that may expose vulnerabilities. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Contact information is limited to an obfuscated email and a login form; no phone numbers or physical addresses are provided. Overall, the site is functional and community-focused but would benefit from modernization and enhanced security and privacy practices.

Soomaa.com is a small hospitality and tourism business focused on providing wilderness experiences in Estonia, particularly in Soomaa National Park. The website offers detailed information and booking options for various outdoor activities such as canoe trips, kick-bike trips, bogwalking, mushrooming, and snowshoeing. The company targets nature enthusiasts and tourists seeking authentic outdoor adventures in Estonia. The business appears established, with a domain registered since 1999, and maintains a consistent brand presence including social media channels on Facebook, YouTube, and Instagram. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, integrating third-party booking services via FareHarbor. The site is well-structured with good SEO practices, mobile optimization, and a cookie consent mechanism compliant with GDPR principles. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS with good SSL configuration but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The cookie consent banner and detailed preferences indicate a commitment to privacy compliance, although no explicit privacy policy or terms of service were found in the analyzed content. Overall, Soomaa.com presents a credible and professional online presence for a niche tourism business. Strategic improvements in security headers, explicit privacy and security policies, and enhanced accessibility would strengthen its security posture and compliance. The domain registration data supports legitimacy and trustworthiness.

E

Eesti Maaturismi Ühing

saunatee.ee

0

Saunatee.ee is a specialized Estonian website dedicated to promoting sauna culture, tourism, and related products. Operated by Eesti Maaturismi Ühing, it serves as a comprehensive portal listing various sauna types, sauna packages, and educational content about sauna traditions in Estonia. The website targets sauna enthusiasts and tourists interested in authentic Estonian sauna experiences, positioning itself as a niche cultural and tourism information platform. The business model focuses on information dissemination and promotion of sauna-related services and products, supported by a small but consistent content base and community engagement through newsletters and social media.

A

Allikukivi Veinimõis

allikukivi.ee

0

Allikukivi Veinimõis is a small family-owned Estonian business specializing in handcrafted berry and fruit wines produced on-site in their manor's wine cellar. They complement their wine production with hospitality services including wine tastings, tours, and glamping accommodations in a historic manor park. The website is built on WordPress with WooCommerce, featuring a professional design and moderate performance. The site includes cookie consent mechanisms and integrates third-party booking services. Security posture is good with HTTPS and no exposed sensitive data, but lacks some security headers and formal privacy and terms policies. Overall, the business presents a trustworthy local niche hospitality and wine production service with room for improvement in privacy compliance and security documentation.

V

Valgeranna Seikluspark

valgerannaseikluspark.ee

0

Valgeranna Seikluspark is an Estonian adventure park offering active outdoor recreational activities primarily targeting families, children, and groups near Pärnu. The website presents a professional and consistent brand image with clear descriptions of services such as adventure trails, group bookings, and special events. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and Tag Manager for tracking. Cookie consent is implemented with detailed user controls, reflecting a basic level of privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security and incident response policies are absent. Overall, the site is functional, trustworthy, and well-positioned regionally, but could improve transparency by publishing privacy and terms policies and enhancing contact information visibility.

Z

Zone Media OÜ

visitkorvemaa.ee

0

VisitKorvemaa is a regional tourism platform focused on promoting the Kõrvemaa nature area in Estonia. It aggregates local tourism services and offers authentic nature and community experiences including guided tours, outdoor activities, accommodation, and workshops. The website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern plugins for SEO and marketing. The business is small, founded in 2021, and targets tourists interested in nature and active tourism. The platform integrates social media and third-party review widgets to build trust and engagement. Technically, the site is well-structured and mobile-optimized but lacks some advanced security headers and explicit privacy and cookie policies. The domain registration is consistent and transparent, supporting the legitimacy of the business.

E

Elkdata OÜ (registrar)

veetee.ee

0

VeeTee.ee is a small Estonian business specializing in outdoor recreational services including ski and snowboard rentals, canoe and rubber boat trips, and accommodation rental at Annemäe Puhkemaja. The company targets tourists and local outdoor enthusiasts seeking guided water and winter sports experiences. The website is built on WordPress with modern plugins and provides clear contact information and service descriptions. Technically, the site uses HTTPS and common WordPress technologies but lacks some security headers and explicit privacy consent mechanisms. Security posture is moderate with no critical vulnerabilities detected but room for improvement in policy transparency and compliance. Overall, the business appears legitimate with consistent domain registration data and a professional web presence.

A

Adrenaator Grupp

adrenaator.ee

0

Adrenaator Grupp operates the website adrenaator.ee, providing adventure and outdoor experiences such as canoe trips, hiking, and team events primarily in the Aidu quarry area in Estonia. The company targets families, friends, and corporate groups seeking unique adventure activities. The business is positioned as a niche local provider with a focus on experiential tourism and event hosting. The website is built on WordPress with modern SEO and GDPR compliance plugins, indicating a moderate level of digital maturity. Technical infrastructure includes Google Analytics and Tag Manager for tracking, and the site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional and trustworthy with room for improvement in security and contact transparency.

Maaturism.ee is the official website of MTÜ Eesti Maaturism, a non-profit organization dedicated to promoting rural tourism in Estonia. The website offers comprehensive information about accommodation, active holidays, food services, health tourism, family vacations, themed farms, museums, seminars, weddings, and cooperation networks. It also highlights various projects aimed at developing rural tourism products and services, targeting tourists interested in nature and cultural experiences in Estonia and the Baltic region. The organization has a strong local presence and a network of members, positioning itself as a key player in Estonia's rural tourism sector. Technically, the website employs a modern tech stack including jQuery, Leaflet.js for mapping, Google Tag Manager, and Google Analytics for tracking. It uses HTTPS with a hosting provider Elkdata OÜ, an Estonian registrar and hosting company, ensuring secure connections. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the site uses HTTPS and asynchronous script loading, but no explicit security headers were detected. There is no visible vulnerability disclosure or incident response contact information. The WHOIS data is transparent and consistent with the website's business and location, supporting legitimacy. Overall, the site demonstrates a moderate to good security posture but could improve compliance and security best practices. The overall risk assessment is moderate with recommendations to implement privacy and cookie policies, add security headers, and establish vulnerability disclosure mechanisms to enhance trust and compliance.

A

AS Kihnu Veeteed

veeteed.com

0

AS Kihnu Veeteed operates as a regional ferry transportation service provider in Estonia, specializing in ferry routes connecting several islands including Kihnu, Vormsi, Hiiumaa, Saaremaa, and others. The company offers online ticket sales through a modern React-based single-page application, targeting residents and visitors requiring reliable ferry transport. The website is professionally designed with consistent branding and provides essential information such as schedules, routes, and news updates. Technical infrastructure leverages modern web technologies including React, Material-UI, service workers for offline capabilities, and Google Analytics for user behavior tracking. Hosting and DNS services are managed via Google Cloud infrastructure, ensuring reliable uptime and performance. Security posture is adequate with HTTPS enforced and domain transfer protection enabled; however, DNSSEC is not enabled and security headers are not explicitly present, indicating room for improvement. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and security policies are absent. Overall, the website demonstrates a moderate to good level of digital maturity and business credibility, with recommendations to enhance security headers, DNSSEC, and incident response disclosures to strengthen trust and compliance.

R

Romantiline Rannatee

rannatee.ee

0

Romantiline Rannatee is a well-established regional tourism promotion website focused on the Pärnumaa coastal area in Estonia. The site offers rich content including destination guides, events, accommodations, and virtual tours, targeting tourists interested in nature, culture, and leisure activities. The business operates primarily as a tourism marketing platform, leveraging partnerships with local organizations and maintaining a consistent brand presence. Technically, the website is built on WordPress using the Avada theme and Yoast SEO plugin, with Google Tag Manager integrated for analytics. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, with no blocking or WAF detected, supporting a moderate to good trust level for visitors.

V

Visit Pärnu

visitparnu.com

0

Visit Pärnu operates a well-established regional tourism portal focused on the Pärnu area in Estonia, providing comprehensive information on accommodation, dining, events, transport, and general tourism guidance. The website targets tourists and visitors seeking detailed and localized travel information. The business is positioned as a key regional tourism information provider with a clear focus on hospitality and visitor services. Technically, the site is built on WordPress with Elementor and integrates modern plugins for search, analytics, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected, though improvements in DNSSEC and security headers are recommended. Privacy compliance is robust with accessible privacy and cookie policies aligned with GDPR requirements. Overall, the site demonstrates a professional and trustworthy online presence with good user experience and content relevance.

Z

Zone Media OÜ

spoku.ee

0

Spoku.ee is a government-focused support application and processing system primarily serving Estonian municipalities and institutions. The platform offers a comprehensive suite of features including application submission, payment integration, digital contract signing, and data integration with national registries. The website is built on WordPress with modern plugins and technologies, reflecting a moderate level of digital maturity. While the technical implementation is solid and the site is mobile-optimized with good SEO practices, there is a lack of published privacy, cookie, and security policies, which impacts compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal incident response documentation. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

Piksel OÜ

arno.ee

0

Arno.ee is a professionally developed WordPress-based website representing Piksel OÜ's software system for managing educational services in Estonia. The platform targets municipalities, schools, kindergartens, and hobby schools, offering modules for youth work, parental consent, invoicing, and digital signing via Smart-ID. The website demonstrates a consistent brand presence and good content quality, with a clear focus on the Estonian education sector. Technically, the site uses modern web technologies including WordPress 6.8.1, Kadence Blocks, and integrates Google Analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partial; a privacy policy is present and GDPR compliance is indicated, but cookie consent mechanisms are missing. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

S

Siseturvalisus

siseturvalisus.ee

0

Siseturvalisus.ee is a government-affiliated career portal dedicated to internal security in Estonia, providing job opportunities and career information across seven key security agencies. The website serves as a centralized platform for recruitment and career development in the Estonian internal security sector, targeting job seekers interested in contributing to national security. Technically, the site is built on WordPress with modern frontend libraries such as jQuery, Fancybox, and Splide.js, delivering a responsive and well-structured user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and explicit incident response contacts. Privacy compliance is adequate with privacy and cookie policies present, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its government sector mission.

V

Virupärane

laaneviru.ee

0

The website laaneviru.ee serves as an official regional portal for Lääne-Viru County in Estonia, focusing on tourism, living, and entrepreneurship. It provides comprehensive information about local attractions, events, accommodation, business support, and municipal resources. The site targets tourists, residents, and entrepreneurs interested in the region. The business model is informational and promotional, likely operated by a government or regional development entity. The domain is newly registered in 2024, consistent with the website's launch and content. Technically, the site is built on WordPress with modern performance and image optimization plugins. It uses Google Tag Manager and Facebook Pixel for analytics and marketing, with a cookie consent mechanism implemented via CookieYes. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly present, and no published security or incident response policies were found. Privacy compliance is basic, with no visible privacy policy or terms of service pages, which should be addressed to improve compliance and user trust. Overall, the website is professional and trustworthy, with a solid technical foundation and clear business purpose. Strategic recommendations include publishing privacy and security policies, enhancing security headers, and adding vulnerability disclosure information to strengthen security posture and compliance.

Z

Zone Media OÜ

eestitoit.ee

0

Eestitoit.ee is a government-affiliated website focused on promoting Estonian food culture, local food products, and sustainable food practices. It serves as an informational and educational platform targeting Estonian residents, food enthusiasts, and culinary tourists. The site is well-branded and consistent with official government initiatives, featuring rich content about food events, traditions, and sustainability projects. Technically, the website is built on Drupal CMS and uses modern analytics tools such as Google Analytics and Matomo. It is mobile-optimized and accessible, with good SEO practices. Security-wise, the site implements cookie consent with an opt-in mechanism but lacks visible advanced security headers and a published privacy policy or terms of service. WHOIS data confirms the domain's legitimacy and long-standing registration since 2010. Overall, the website is professional, trustworthy, and serves its informational purpose effectively.

P

Põllumajanduse Registrite ja Informatsiooni Amet (PRIA)

pria.ee

0

PRIA (Põllumajanduse Registrite ja Informatsiooni Amet) is the official Estonian government agency responsible for managing agricultural subsidies, registers, and providing information services to farmers and rural entrepreneurs. The website serves as a comprehensive portal offering subsidy information, registers, news, and e-services such as the e-PRIA login portal. The site targets Estonian agricultural stakeholders and the general public interested in rural development. Technically, the website is built on Drupal 10, employs modern web technologies, and integrates analytics and business intelligence tools, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and shows no signs of exposed sensitive data or vulnerabilities. Overall, the website demonstrates a strong security posture and good privacy compliance, supporting its role as a trusted government resource.

@

@weboinc

webolution.ee

0

Webolution is a small Estonian web development company specializing in creating functional digital solutions and websites. With nearly 20 years of experience, they position themselves as a reliable partner for businesses seeking end-to-end digital services from concept to launch. Their portfolio showcases a variety of projects including websites and e-commerce platforms, indicating a focus on quality and client satisfaction. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though the absence of security headers and explicit privacy policies suggests room for improvement. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

S

SYNLAB Eesti

synlab.ee

0

SYNLAB Eesti is the largest medical laboratory in Estonia, operating since 1995 and part of the global SYNLAB Group. The company provides a wide range of medical laboratory testing services targeting medical professionals, private clients, and employers. The website reflects a mature digital presence built on WordPress with modern plugins and SEO optimizations. It offers multilingual support and integrates GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and explicit security policies could enhance trust. Contact is primarily via a contact form, with no exposed direct emails or phone numbers. Overall, the site is professional, trustworthy, and well-aligned with the business's market position.

A

AS Medisoft

medisoft.ee

0

AS Medisoft is an Estonian technology company with a domain registered since 2010, indicating a stable business presence. The website is built on WordPress using the Divi theme, reflecting a standard and professional digital infrastructure. The site appears to target a local or regional audience, though explicit business descriptions and contact details are not readily found in the provided content. The technical setup is moderate in performance and mobile optimization, but lacks advanced SEO and accessibility features. Security posture is average, with no detected security headers or explicit SSL/TLS configuration details, and no privacy or cookie policies are present, which may impact compliance and user trust. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

P

Perearst24

perearst24.ee

0

Perearst24.ee is a healthcare-focused digital platform serving family doctor centers in Estonia by providing a secure environment for patients to submit electronic health inquiries. The platform enhances health data security and facilitates better patient-doctor communication by allowing 24/7 submission of health concerns, which are processed during the centers' operational hours. The website is professionally designed with a clear focus on its target audience, patients of Estonian family doctor centers. Technically, the site employs modern frontend technologies such as Vue.js and Vuetify, ensuring a responsive and user-friendly experience. Security is well-handled with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit security policies are absent. Overall, the site demonstrates a good security posture and compliance with privacy regulations, including GDPR, supported by clear privacy and cookie policies. However, contact information and incident response details are not directly available, which could be improved to enhance trust and transparency.

J

Jäneda Mõis OÜ

janedaturism.ee

0

Jäneda Mõis OÜ operates a tourism and hospitality center in Estonia offering conference facilities, restaurant services, accommodation, theater performances, and seasonal markets. The company targets tourists and event organizers, positioning itself as a regional hospitality provider with a medium-sized operation founded in 2010. The website is built on WordPress with WooCommerce and uses modern plugins and themes, providing a good user experience with multilingual support and clear navigation. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site reflects a professional and trustworthy business with good digital maturity.

The website mirko.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered with Zone Media OÜ in Estonia since 2022, indicating a relatively new but legitimate registration. Due to the WAF challenge, no business information, contact details, or policies are visible, limiting the ability to assess the company's operations or compliance posture. The technical infrastructure relies on Cloudflare services for security and performance, but no additional frameworks or CMS platforms are detectable. Security headers and privacy compliance measures are not observable due to the blocked content. Overall, the site appears to be protected by Cloudflare's security mechanisms but lacks publicly accessible information for a full evaluation.

E

Eesti Kergejõustikuliit

ekjl.ee

0

Eesti Kergejõustikuliit is the national athletics federation of Estonia, providing organizational support, event management, and athlete services within the Estonian athletics community. The website serves as a comprehensive portal for news, competition calendars, results, rankings, and educational materials targeting athletes, coaches, clubs, and fans. It holds a strong market position as the official governing body for athletics in Estonia. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, and uses Bootstrap for responsive design. The site demonstrates good digital maturity with structured data, SEO optimization, and mobile responsiveness, although some accessibility features could be improved. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and uses standard libraries without visible vulnerabilities. However, it lacks some security headers and does not provide explicit security or incident response policies. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance, security policy transparency, and accessibility would enhance its security posture and user trust.

E

Eesti Jalgpalli Liit

jalgpall.ee

0

Eesti Jalgpalli Liit is the official governing body for football in Estonia, managing national teams, leagues, and grassroots football development. The website serves as a comprehensive portal for football news, events, and organizational information targeted at players, fans, and stakeholders within Estonia's football community. The site integrates multimedia content including live scores, videos, and social media feeds, reflecting a mature digital presence. Technically, the website employs a custom CMS with modern JavaScript libraries and asynchronous loading of third-party SDKs such as Facebook and Google Analytics, ensuring moderate performance and good mobile optimization. Security posture is strong with enforced HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic but includes cookie consent and a privacy policy in Estonian. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

L

Lääne-Virumaa Spordiliit

lvsl.ee

0

Lääne-Virumaa Spordiliit is a regional sports organization based in Rakvere, Estonia, focused on leading and developing sports activities in the Lääne-Virumaa region. The website serves as an informational portal primarily targeting local residents and sports enthusiasts. The business model is non-profit and community-oriented, with a clear regional focus. The website is built on the Wix platform, leveraging Wix Thunderbolt and standard web technologies, providing a moderate level of performance and mobile optimization. However, the site lacks comprehensive privacy and cookie policies, which impacts compliance and user trust. Security posture is adequate with HTTPS and some JavaScript hardening but could be improved with additional security headers and incident response information. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security transparency.

E

Eesti Korvpalliliit

basket.ee

0

Eesti Korvpalliliit is the official governing body for basketball in Estonia, managing national teams, leagues, coaching, refereeing, and basketball development programs. The organization holds a strong market position as the primary basketball authority in Estonia, supported by sponsorship from Swedbank. The website provides comprehensive content including news, events, galleries, and contact information, targeting basketball players, coaches, referees, and fans within Estonia. Technically, the site uses a custom CMS with jQuery, Owl Carousel, and Google Tag Manager, offering good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements like updated libraries and security headers are recommended. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

E

Eesti Võrkpalli Liit

volley.ee

0

Eesti Võrkpalli Liit operates as the official Estonian Volleyball Federation, providing comprehensive information on volleyball teams, competitions, and related activities in Estonia. The website serves as a central hub for volleyball enthusiasts, players, coaches, and fans, offering news, schedules, and organizational details. The site is well-structured and professionally designed, reflecting its role as a national sports governing body. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and Facebook Pixel. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements some best practices like opening external links in new windows with noopener. However, it lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Overall, the domain is legitimate, well-established since 2010, and consistent with the organization's profile. Strategic improvements in privacy compliance and security headers would enhance the site's trustworthiness and regulatory adherence.

L

Lääne-Virumaa Kossuliiga

virukorvpall.ee

0

Lääne-Virumaa Kossuliiga operates a regional basketball league website serving the Lääne-Virumaa community in Estonia. The site provides schedules, results, team information, and news updates related to basketball events. The business model focuses on sports event promotion and community engagement within the regional sports sector. The website is built on WordPress with SportsPress Pro plugin, indicating a moderate level of digital maturity and technical infrastructure. Hosting is provided by Zone Media OÜ, a known Estonian hosting provider. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and privacy policies indicates room for improvement. The site uses common analytics and marketing tools such as Google Analytics and AddThis, but lacks explicit privacy compliance mechanisms. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

S

Spordikoolituse ja -Teabe SA

sport.ee

0

Sport.ee is a government-affiliated Estonian sports information portal managed by Spordikoolituse ja -Teabe SA. It serves as a comprehensive platform providing data on sports training, coaching qualifications, sports organizations, events, and statistics. The site targets sports organizations, coaches, athletes, and enthusiasts within Estonia, positioning itself as a key national resource for sports-related information and management. The business model revolves around offering informational services and integration with official sports registers and government bodies. Technically, the website employs a modern tech stack including Bootstrap, jQuery, AngularJS, and various libraries for UI and data visualization, ensuring a responsive and user-friendly experience. Performance is moderate with good mobile optimization and basic accessibility features.

S

Spordikoolituse ja -Teabe Sihtasutus

spordiinfo.ee

0

Spordikoolituse ja -Teabe Sihtasutus is an Estonian government-affiliated foundation specializing in sports education, information management, and support services. It operates key national sports registers, administers coach certification and labor cost subsidies, and coordinates EU-funded sports projects. The website is well-structured, content-rich, and primarily targeted at sports organizations, coaches, and sports employees within Estonia. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes multilingual support and cookie consent mechanisms. Security posture is solid with HTTPS and nonce usage, but lacks advanced security headers and published security policies. The domain is well-established since 2010, registered by a credible Estonian registrar consistent with the organization's profile. Overall, the site demonstrates good professionalism and trustworthiness but could improve privacy compliance and security transparency.

P

Peipsimaa turism

visitpeipsi.com

0

Visitpeipsi.com is a regional tourism promotion website dedicated to Peipsimaa, Estonia, highlighting the area's natural beauty, cultural heritage, local cuisine, and events. The site targets tourists interested in authentic regional experiences, offering information, event promotion, and an e-commerce shop for local products. The business operates as a small-sized entity focused on hospitality and non-profit tourism promotion, founded in 2011. The website branding is consistent and content quality is good, supporting its market position as a key regional tourism promoter. Technically, the site is built on WordPress with WooCommerce and Yoast SEO plugins, leveraging jQuery and Google Analytics for functionality and tracking. The site is mobile-optimized with good navigation and SEO practices, though performance is moderate. Hosting details are not explicit but DNS and registrar data suggest a stable setup. No WAF or blocking mechanisms are detected, and the site uses HTTPS with a clientTransferProhibited domain status, indicating basic security measures. Security posture is moderate; while HTTPS is enforced, no DNSSEC or security headers are detected, and no explicit security or incident response policies are published. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. The domain WHOIS data aligns well with the website content, showing consistent registration and legitimacy. Overall, the site is functional and professional but could improve security and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

F

Flavors of Livonia

flavoursoflivonia.com

0

Flavors of Livonia is a regional culinary tourism website focused on promoting the food heritage and cultural experiences of the historical Livonia region, covering Estonia and Latvia. The platform provides curated culinary routes, listings of local food producers, and information on traditional recipes and food heritage. The target audience includes tourists and culinary enthusiasts interested in exploring regional cuisine and culture. The business operates as a niche tourism promotion entity with a small-scale footprint and a focus on cultural preservation. Technically, the website uses a combination of jQuery, social media SDKs (Facebook and Twitter), Google Fonts, and various JavaScript libraries for UI and parallax effects. The site is mobile-optimized with a moderate performance profile. However, no explicit CMS or hosting provider information is evident. SEO and accessibility are basic but functional. From a security perspective, the site enforces HTTPS and includes a CSRF token, but lacks visible security headers and published privacy or cookie policies. No contact information or incident response channels are provided, which limits transparency and user trust. The WHOIS data indicates a stable domain registration with no privacy protection, consistent with the website's age and purpose. Overall, the site is professionally designed and serves its niche well but would benefit from enhanced privacy compliance, security hardening, and clearer contact and policy disclosures to improve trust and regulatory adherence.

L

Lõuna-Eesti

visitsouthestonia.com

0

Lõuna-Eesti is a regional tourism promotion website dedicated to showcasing the cultural, natural, and hospitality offerings of South Estonia. The site targets tourists, families, pet owners, and tourism professionals, providing rich content about local attractions, events, and accommodations. The business operates as a regional destination marketing organization with a focus on enhancing visitor experience and promoting local culture and nature. Technically, the website is built on WordPress, leveraging modern tools such as Gravity Forms, Rank Math SEO, Hotjar, and Google Analytics. The site is hosted on a provider associated with the domain's nameservers and employs HTTPS with a good SSL configuration. Security posture is solid with cookie consent mechanisms and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is partial, with a detailed cookie consent banner but no explicit privacy policy or terms of service found. Overall, the website is professional, well-branded, and trustworthy, with room for improvement in privacy and security documentation.

V

Visit Jõgeva | Avasta Jõgevamaa

visitjogeva.com

0

Visit Jõgeva is a regional tourism website dedicated to promoting the Jõgevamaa region in Estonia. It provides comprehensive information on local events, attractions, accommodation, food, active holidays, and local products, targeting tourists and visitors interested in exploring this area. The website is multilingual, supporting Estonian, English, German, Finnish, and Latvian languages, enhancing accessibility for international visitors. The business model focuses on informational and promotional services to boost regional tourism.

H

Haridus- ja Teadusministeerium (EENet)

progetiiger.ee

0

ProgeTiigri.ee is an official educational platform managed by the Estonian Ministry of Education and Research, providing a curated collection of over 100 educational tools and materials focused on programming, robotics, 3D design, and multimedia for teachers and educators. The website serves as a resource hub to support teaching activities with filtering capabilities to find suitable materials. The platform targets primarily educators in Estonia and operates as a government-backed educational resource. Technically, the website employs modern web technologies including Vue.js, jQuery, and the Foundation CSS framework, with integration of Google Analytics and Google Tag Manager for user tracking and analytics. The site is mobile optimized and accessible, with a moderate performance profile. Hosting appears to be managed by a government or educational network provider, ensuring stable infrastructure. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, alongside a cookie consent mechanism compliant with GDPR principles. However, it lacks several security headers that could enhance protection against common web threats. No privacy policy or terms of service pages were found, which represents a compliance gap. No explicit contact information or incident response channels are provided, limiting user support and security communication. Overall, the website is trustworthy and professionally maintained, with strong legitimacy due to government ownership and consistent domain registration. The main risks relate to missing formal privacy and security documentation and absence of security headers. Strategic improvements in these areas would enhance compliance and security posture.

M

MTÜ Eesti Pagulasabi

pagulasabi.ee

0

Eesti Pagulasabi is a well-established Estonian non-profit humanitarian organization founded in 2011, dedicated to supporting refugees and displaced persons both in Estonia and internationally. The organization provides a broad range of services including humanitarian aid, social and economic wellbeing programs, mental health support, and integration assistance. Their website reflects a professional and consistent brand presence with comprehensive content and multiple language support, targeting refugees, donors, volunteers, and partners. The donation infrastructure is robust, offering multiple payment options and detailed forms to facilitate contributions. Technically, the website is built on Drupal 9, leveraging modern analytics and consent management tools, and is hosted by a reputable Estonian registrar and hosting provider. Security posture is good with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policy documentation. Overall, the website is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

T

Tallinn City Tourist Office & Convention Bureau

visittallinn.ee

0

Visit Tallinn is the official tourism portal managed by the Tallinn City Tourist Office & Convention Bureau, providing comprehensive information about the city's attractions, events, public transport, and dining options. The website targets tourists and visitors seeking practical and up-to-date travel information about Tallinn, Estonia. It holds a strong market position as the official city guide and tourism authority, supported by consistent branding and good content quality. Technically, the website employs modern web technologies including Vue.js and Bootstrap, with integrations for analytics and tracking such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site demonstrates good mobile optimization and moderate performance, reflecting a mature digital infrastructure. Hosting and domain registration are consistent and stable, managed by Spin TEK AS since 2014. From a security perspective, the website uses HTTPS with good SSL configuration and includes several security-related HTTP headers. However, it lacks visible privacy and cookie policies, consent mechanisms, and incident response contact information, which are critical for GDPR compliance and user trust. No significant vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and transparency measures to improve user trust and regulatory adherence.

S

SA Harju Ettevõtlus- ja Arenduskeskus

heak.ee

0

SA Harju Ettevõtlus- ja Arenduskeskus (HEAK) is a regional non-profit foundation based in Estonia focused on supporting local development through consulting, training, and partnership initiatives. The organization targets entrepreneurs, civic associations, and tourism sector participants, offering free advisory services and organizing events to foster regional growth. The website reflects a stable and professional presence with clear business objectives and a consistent brand identity. Technically, the site is built on WordPress with common plugins for event management, multilingual support, and analytics integration, demonstrating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though improvements could be made by adding security headers and formal incident response contacts. Overall, the website is trustworthy and well-maintained, supporting the organization's mission effectively.

E

Eesti Planeerijate Ühing

planeerijad.ee

0

Eesti Planeerijate Ühing is a professional non-profit association focused on spatial planning practices in Estonia. The organization provides certification for spatial planners, organizes events such as seminars and webinars, and engages in knowledge dissemination and international cooperation. The website is well-structured, professionally designed, and regularly updated with relevant news and events, reflecting an active and credible organization within its sector. Technically, the website is built on WordPress with modern plugins including Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. The site uses HTTPS with an excellent SSL configuration, but lacks some advanced security headers and explicit privacy and cookie policies, which are areas for improvement. No blocking or WAF mechanisms interfere with content accessibility. Security posture is solid with HTTPS and no exposed sensitive data, but the absence of published incident response or vulnerability disclosure policies and security.txt reduces transparency. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Business credibility is high given the consistent domain registration, professional content, and clear organizational purpose. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security transparency to align with best practices and regulatory requirements.

M

MTÜ Eesti Keskkonnamõju Hindajate Ühing

eaia.eu

0

MTÜ Eesti Keskkonnamõju Hindajate Ühing (KeMÜ) is a small Estonian non-profit organization founded in 2012 that unites professionals and interested parties in the field of environmental impact assessment. The website serves as an information hub and membership portal, offering news, organizational details, and contact avenues primarily through structured navigation and login forms. The organization targets environmental impact assessors and stakeholders within Estonia, positioning itself as a niche entity in the environmental non-profit sector. Technically, the website is built on Joomla CMS with Yootheme templates, leveraging common web technologies such as jQuery and Widgetkit. It integrates Google Analytics and Facebook Pixel for user tracking and marketing insights. The site is mobile-optimized and features a moderate performance profile. Security measures include HTTPS enforcement and CSRF tokens in forms, but it lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, the site demonstrates a good baseline posture with encrypted communications and secure login forms. However, the absence of privacy and cookie policies, as well as missing security headers, represents compliance and security gaps. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the website is professionally designed and functional for its purpose but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.