Security Directory

T

Tervise Arengu Instituut

nutridata.ee

0

NutriData is a government-operated nutrition information system managed by the Estonian Health Development Institute (Tervise Arengu Instituut). It offers a suite of nutrition-related applications including diet analysis programs, food composition databases, product calculation tools, and nutrition survey software. The platform serves a broad audience ranging from individual users and healthcare professionals to food producers and researchers, positioning itself as an authoritative national resource for nutrition data and analysis in Estonia. The website is well-structured, content-rich, and provides comprehensive information about its services, training, and team members. Technically, the website is built as a modern Angular single-page application leveraging Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics and security. The site is mobile-optimized and uses standard web fonts and icons for a professional appearance. While the site uses HTTPS and some security best practices, it lacks certain HTTP security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. From a security perspective, the site demonstrates good practices such as encrypted connections and form protection via reCAPTCHA. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the domain's legitimacy and consistency with the official institution managing the site. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security transparency and incident readiness. Overall, NutriData presents a trustworthy, professional, and functional nutrition information platform with strong government backing. Strategic enhancements in privacy compliance, security headers, and incident response documentation would further strengthen its security posture and user trust.

N

Narko

narko.ee

0

The website www.narko.ee serves as a comprehensive informational and support platform focused on narcotics, risk reduction, and assistance options primarily targeting the Estonian population. It provides extensive educational content, community resources, and guidance for drug users, their relatives, and the broader community. The site is positioned as an authoritative resource, likely supported by government or non-profit entities, with a clear focus on public health and harm reduction. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO and GDPR compliance tools. It employs Google Analytics for user tracking and demonstrates good mobile responsiveness and SEO optimization. However, some technical debt is noted with the use of an older jQuery version, which could pose security risks. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR. While no critical vulnerabilities or exposed sensitive data were detected, the absence of a published security policy, incident response contacts, and security.txt file indicates room for improvement in transparency and readiness. Security headers are not explicitly confirmed, and updating libraries is recommended. Overall, the website presents a trustworthy and professional front with good content quality and compliance posture. Strategic enhancements in security policies, technical updates, and contact transparency would further strengthen its security posture and user trust.

H

Avaleht - Hiv

hiv.ee

0

The website hiv.ee serves as an informational and support portal focused on HIV awareness, prevention, testing, and living with HIV in Estonia. It targets Estonian-speaking individuals, including those living with HIV and at-risk populations, providing educational content, testing locations, and counseling resources. The site is positioned as a trusted health information source, likely operated or supported by public health entities or non-profit organizations. Technically, the site is built on WordPress, utilizing common libraries such as jQuery and Slick Carousel, and integrates marketing and analytics tools like Google Tag Manager, Google Analytics, and Facebook Pixel. The site is mobile-optimized with good navigation and content relevance. Security-wise, the site enforces HTTPS and uses cookie consent banners but lacks visible security headers and explicit privacy policies, which are areas for improvement. Overall, the site is functional, professional, and moderately secure, with room to enhance privacy compliance and security posture.

Z

Zone Media OÜ

alkoinfo.ee

0

Alkoinfo.ee is a well-established Estonian public health informational website focused on reducing alcohol consumption and providing support and education to individuals and their families. Operated by Zone Media OÜ and affiliated with the Estonian Health Development Institute (Tervise Arengu Instituut), it offers a range of services including educational content, self-assessment tests, and a Q&A advice section. The site targets Estonian and Russian speaking audiences concerned about alcohol use. Technically, the site is built on WordPress using the Understrap theme and integrates modern web technologies such as Google Analytics and Facebook Pixel for tracking. Security posture is good with HTTPS and CAPTCHA on forms, but lacks some security headers and explicit privacy and cookie policies. The domain is legitimate, registered since 2010, and consistent with the business identity.

V

Visionest Institute

invicta.ee

0

Visionest Institute is an Estonian education and training organization formed by the merger of Marketingi Instituut, Invicta, and Director. It offers a wide range of professional development programs, including corporate training, personal development plans, and a digital magazine. The company targets businesses and individual learners, focusing on leadership, marketing, sales, and export sectors. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, it is built on WordPress with WooCommerce and integrates advanced marketing and analytics tools such as Google Tag Manager, HubSpot, and Facebook Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are absent. Overall, the domain registration details align well with the business profile, indicating legitimacy and consistency.

N

Nullist OÜ

nullist.ee

0

Nullist OÜ operates a well-established Estonian online marketing education platform, offering practical training and courses for beginners and advanced learners. The company has a strong market presence with over 3000 business clients and targets entrepreneurs, social media managers, and marketing professionals. Their business model focuses on digital education through webinars, workshops, and masterclasses. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Plausible Analytics, ensuring GDPR compliance and user consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, fast, mobile-optimized, and trustworthy, reflecting a mature digital infrastructure and credible business operations.

P

Pärnumaa infovärav

parnumaa.ee

0

Pärnumaa.ee is a well-established regional information portal serving the Pärnumaa county in Estonia. It provides comprehensive information for residents and visitors including news, job listings, educational resources, real estate offers, and business environment insights. The website is professionally designed using WordPress with Elementor and Yoast SEO plugins, ensuring good content management and search engine optimization. The site is bilingual with Estonian as the primary language and English as an alternate option. Technically, the site employs modern web technologies and integrates analytics and marketing tools such as Google Tag Manager, Hotjar, and Facebook Pixel, while maintaining GDPR compliance through a robust cookie consent mechanism.

A

AS Äripäev

ituudised.ee

0

ITuudised is a leading Estonian news portal focused on the ICT sector, operated by AS Äripäev. It provides comprehensive news, success stories, lessons, results, and plans related to the Estonian IT industry, supplemented by IT training and technology-themed radio shows. The portal targets IT professionals, business leaders, and technology enthusiasts in Estonia, positioning itself as a key information source in the local technology media landscape. Technically, the website leverages modern web technologies including React and Next.js, ensuring a responsive and well-structured user experience. The site is well-optimized for SEO and mobile devices, with a professional design and clear navigation. Security-wise, the site enforces HTTPS, includes essential security headers, and avoids exposing sensitive data, reflecting a mature security posture. However, explicit security policies and incident response contacts are not publicly available, indicating room for improvement in transparency. Overall, the website demonstrates strong business credibility and privacy compliance, with clear contact information and GDPR-aligned policies. The domain registration details align well with the business identity, reinforcing trustworthiness.

A

AS Äripäev

aripaev.ee

0

AS Äripäev operates a leading Estonian business media platform providing comprehensive economic and business news, analysis, and multimedia content. The website targets business professionals and investors, offering subscription-based access to premium content including PRO packages and investor-specific services. The company is part of the Nordic media conglomerate Bonnier Group, reinforcing its market position and credibility. Technically, the site is built on modern web technologies including React and Next.js, delivering a responsive and accessible user experience with good SEO practices. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response details are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a mature digital presence with high trustworthiness and professional content delivery.

A

AS Äripäev

bestmarketing.ee

0

Best Marketing is a leading Estonian marketing news portal and event organizer, operated by AS Äripäev. The website delivers comprehensive marketing, advertising, and communication industry news, targeting marketing professionals in Estonia. It offers subscription-based content, podcasts, videos, and organizes marketing conferences, positioning itself as a key media player in the Estonian marketing sector. The site is well-branded, professionally designed, and maintains consistent content quality. Technically, the site is built on modern frameworks such as Next.js and React, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, security headers, and consent management in place, although no explicit security policy or incident response information is published. Privacy and cookie policies are present and GDPR compliant. Contact information is clearly provided, enhancing business credibility. Overall, the site demonstrates a mature digital presence with a solid foundation for content delivery and user engagement.

Z

Zone Media OÜ

digioskused.ee

0

Digioskused.ee is an Estonian educational platform offering free AI and digital skills training, developed in partnership with Google and Estonian government agencies. The website serves individuals and businesses aiming to enhance their digital competencies through practical, accessible online courses. The platform leverages modern web technologies including WordPress, jQuery, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers are missing. The domain registration is consistent with the business purpose and geographic location, supporting legitimacy. Overall, the site presents a professional and trustworthy digital presence with good content quality and user experience.

M

Motor Agency

motoragency.eu

0

Motor Agency is a specialized exhibition design and production company focused on museums, expos, and showrooms. They integrate multimedia and virtual reality technologies to create immersive educational and entertainment experiences. Their market position is that of a niche service provider with recognized awards and partnerships in the cultural sector. The website reflects a professional and consistent brand image targeting cultural institutions and educational organizations primarily in Estonia and Europe. Technically, the site uses Concrete CMS with modern frameworks like Bootstrap 5 and includes multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile optimized and has good SEO practices but lacks visible privacy and cookie policies, which is a compliance gap. Security posture is decent with HTTPS enforced but missing security headers and formal security policies. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

E

Eesti kaevandusmuuseum

kaevandusmuuseum.ee

0

Eesti Kaevandusmuuseum is a specialized museum and adventure tourism business located in Estonia, offering unique underground mining experiences, safaris, educational programs, and event hosting. The website is professionally designed using WordPress with WooCommerce and booking plugins, supporting multiple languages and providing rich content about their services and events. The technical infrastructure is modern and includes integration with Google Tag Manager and Facebook SDK for marketing and analytics, although Google Analytics is not fully configured. Security posture is solid with HTTPS enforced and cookie consent implemented, but could be improved with additional security headers and explicit incident response policies. Overall, the website reflects a credible and trustworthy business with a good digital presence.

Z

Zone Media OÜ

teletorn.ee

0

Tallinna Teletorn is a prominent Estonian tourism and hospitality business operating the highest open viewing platform in Northern Europe. The website presents a professional and engaging digital presence, offering ticket sales, event hosting, educational programs, and restaurant services. The company targets tourists, families, and educational groups, positioning itself as a key cultural landmark in Tallinn. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and social media integration, delivering a good user experience with responsive design and multimedia content. Security posture is solid with HTTPS, cookie consent, and anti-spam measures, though explicit security policies and headers could be improved. Overall, the business demonstrates credibility and digital maturity with room for enhanced privacy compliance and security transparency.

T

Tallinna Loomaaed

tallinnzoo.ee

0

Tallinna Loomaaed operates as a well-established public zoo in Estonia, offering extensive animal collections, educational programs, and conservation efforts. The website reflects a mature digital presence with multilingual support, clear navigation, and comprehensive content targeting families, educators, and conservationists. Technically, the site is built on WordPress with WooCommerce for ticketing, integrating modern analytics and marketing tools while maintaining good performance and accessibility standards. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate organization.

E

Eesti Tervisemuuseum

tervishoiumuuseum.ee

0

Eesti Tervisemuuseum is a small, non-profit educational museum based in Tallinn, Estonia, focused on health and the human body. The museum offers a variety of services including exhibitions, educational programs, workshops, event hosting, and a podcast. It targets a broad audience including children, families, and adults interested in health education. The website is professionally designed with consistent branding and rich content, supporting multiple languages (Estonian, Russian, English). The museum maintains a clear online presence with social media channels and provides accessible contact information. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies and SEO best practices. The hosting and domain registration are consistent with the museum's Estonian identity.

E

Eesti Ajaloomuuseum SA

ajaloomuuseum.ee

0

Eesti Ajaloomuuseum SA operates as a leading historical museum in Estonia, providing cultural and educational services through multiple exhibition venues including the Film Museum, Theatre and Music Museum, Great Guild Hall, and Maarjamäe Castle. The website targets museum visitors, families, and cultural tourists, offering detailed information on exhibitions, events, and visitor planning. The business model is public/governmental, focusing on cultural preservation and education with a medium organizational size and established presence since 2010. Technically, the website is built on the Voog CMS platform, hosted by Zone Media OÜ, and employs modern web standards with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though improvements in security policies and vulnerability disclosure would enhance trust further.

S

SA Eesti Meremuuseum

meremuuseum.ee

0

Eesti Meremuuseum is a well-established maritime museum organization in Estonia, operating multiple museum sites and offering a range of cultural, educational, and research services related to maritime heritage. The website reflects a professional and consistent brand presence, targeting museum visitors, educators, researchers, and maritime enthusiasts. The business model is that of a government or non-profit cultural institution with a medium organizational size and a history dating back to at least 2010. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses performance optimization tools such as WP Rocket. It integrates Google Analytics and Tag Manager for analytics and tracking, and employs Google reCAPTCHA for form security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, with clear contact information provided. Overall, the website is trustworthy, well-structured, and provides a good user experience.

A

Anvol

anvol.ee

0

Anvol is a well-established Estonian company specializing in the wholesale distribution and retail of toys, games, and trend products across the Baltic and Nordic regions. With over 30 years of experience and a large portfolio of more than 400 brands, Anvol serves a broad client base including retailers and consumers. The company operates both wholesale and retail channels, including a franchise model and online presence. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for marketing insights. The site is mobile-optimized and professionally designed, supporting multiple languages for regional markets. Security posture is solid with HTTPS and Cloudflare DNS, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business appears credible and trustworthy with consistent WHOIS data and domain registration.

U

UÜ Granaat

granaat.ee

0

UÜ Granaat is a small Estonian technology company specializing in creating sales-enhancing websites and e-commerce stores on the Voog platform. Established in 2010, the company leverages over 15 years of experience to deliver tailored web solutions aimed at helping small businesses achieve their goals. Their market position is strengthened by their official partnership with Voog and a strong portfolio of satisfied clients, as evidenced by numerous positive testimonials. Technically, the website is built using modern frameworks such as Next.js and React, styled with Tailwind CSS, and optimized for fast performance and excellent mobile responsiveness. Hosting and domain registration are consistent and managed by Elkdata OÜ, further supporting the company's legitimacy. The site integrates Google Analytics via Google Tag Manager and uses Calendly for scheduling client calls. From a security perspective, the site enforces HTTPS and employs secure form handling, but lacks explicit security headers and published security policies. Privacy compliance is limited due to the absence of privacy and cookie policies, which presents a compliance risk under GDPR. No critical vulnerabilities or exposed sensitive data were detected. Overall, UÜ Granaat presents a professional and trustworthy web presence with solid technical foundations and business credibility. However, to enhance compliance and security posture, the company should publish privacy and cookie policies, implement consent mechanisms, and add recommended security headers.

M

MIXD meediaagentuur

mixd.ee

0

MIXD meediaagentuur is a small Estonian digital marketing agency specializing in digital media solutions, SEO, and conversion rate optimization to help brands grow sales and meet profit goals. The company presents a professional and well-structured website built on WordPress, leveraging modern SEO and analytics tools such as Rank Math and Google Tag Manager. The technical infrastructure is solid with HTTPS enabled and asynchronous loading of scripts, though performance is moderate and accessibility is basic. Security posture is generally good with no exposed sensitive data, but lacks advanced security headers and incident response mechanisms. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security practices.

H

häk agency

hak.ee

0

häk agency is a strategic design and digital agency based in Estonia, founded in 2018. The company offers comprehensive services including branding, web environments, and advertising, serving over 500 satisfied clients. Their market position is strong, supported by client testimonials, awards, and certifications that enhance their credibility. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with modern tools such as Gravity Forms, Google Tag Manager, and Facebook Pixel, indicating a robust infrastructure. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the website and business demonstrate high professionalism and trustworthiness, with minor recommendations to enhance security headers and publish security policies.

M

Milrem Robotics

milrem.com

0

Milrem Robotics is a leading global provider of autonomous unmanned ground vehicles (UGVs) specializing in combat-ready robotic solutions that enhance military operational effectiveness and tactical advantages. Established in 2013 and headquartered in Estonia, the company has expanded its footprint with offices across Europe, the UAE, and the USA, serving 19 customer countries. Their product portfolio includes multi-mission UGVs such as THeMIS, VECTOR, HAVOC, and Type-X, supported by advanced autonomy kits and participation in key EU defense projects. The website reflects a professional and modern digital presence with comprehensive content tailored to defense and military audiences. Technically, the website is built on WordPress with modern SEO and user experience optimizations, including mobile responsiveness and accessibility considerations. It employs standard security measures such as HTTPS, Google reCAPTCHA, and GDPR-compliant cookie consent mechanisms. However, there is room for improvement in security headers and explicit security policy disclosures. Analytics usage is moderate, primarily via Google Analytics through Google Tag Manager, with privacy compliance well addressed. The security posture is solid with no visible vulnerabilities or exposed sensitive data, but lacks dedicated incident response or vulnerability disclosure information. WHOIS data confirms domain legitimacy and consistency with the company's history and operations. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, supporting Milrem Robotics' position as a reputable defense technology provider.

M

Milrem Robotics

milremrobotics.com

0

Milrem Robotics is a leading global provider of autonomous unmanned ground vehicles, specializing in combat-ready robotic solutions that enhance military operational effectiveness and troop safety. Established in 2013 and headquartered in Estonia, the company has expanded its footprint with offices across Europe, the UAE, and the USA. Their product portfolio includes multi-mission UGVs like THeMIS, VECTOR, HAVOC, and Type-X, supported by advanced autonomy integration kits. The company actively participates in European defense projects, reinforcing its market leadership and innovation capabilities. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Fluent Forms, ensuring good SEO, accessibility, and user experience. The site is mobile-optimized and uses Google reCAPTCHA to secure forms. Cookie consent mechanisms and comprehensive privacy policies demonstrate strong privacy compliance. Performance is moderate with room for optimization. Security posture is solid with HTTPS enforced, clientTransferProhibited domain status, and use of reCAPTCHA. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting areas for improvement. No incident response or security policy information is publicly available, which could be enhanced to build trust. Overall, Milrem Robotics presents a professional, trustworthy, and technically sound online presence aligned with its business stature. Strategic recommendations include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen their security and compliance posture.

T

Tervise Arengu Instituut

tai.ee

0

Tervise Arengu Instituut (TAI) is a leading Estonian national research and development institution focused on public health, disease prevention, and health promotion. The website reflects a well-established government-affiliated organization with a strong market position in healthcare research and public health services. It offers extensive resources including research publications, statistics, training events, and health registries, targeting health professionals, policymakers, and the general public. The site is professionally designed, content-rich, and well-structured, supporting multiple languages with a focus on Estonian.

U

URRAM

lugeja.ee

0

URRAM is a specialized Estonian library portal that provides users with access to a wide range of library catalogs, articles, and library information. It integrates with national authentication services such as ID-card, Mobile-ID, and Smart-ID, enabling secure user login and management of library services like reservations and loans. The platform targets library users across Estonia, including students, researchers, and the general public, positioning itself as a key national resource in the education and public service sectors. Technically, the website employs a modern frontend stack including Bootstrap 4.4.1, jQuery 3.4.1, and various Bootstrap extensions for UI components and date pickers. It uses Google Analytics for user tracking but lacks visible cookie consent mechanisms. The site is mobile responsive and offers a good user experience with clear navigation and search functionalities. However, some technical improvements are recommended, such as updating JavaScript libraries and enhancing accessibility. From a security perspective, the site enforces HTTPS and uses secure national eID authentication methods, which are strong trust signals. However, the absence of security headers and the use of an outdated jQuery version present potential vulnerabilities. The lack of explicit privacy and cookie policies also indicates compliance gaps with GDPR requirements. Overall, URRAM is a moderately mature digital platform with a solid business credibility in the Estonian library ecosystem. Strategic improvements in privacy compliance, security headers, and library technology updates would enhance its security posture and user trust.

M

Meelis Lilbok, Deltmar OÜ

raamatukogud.ee

0

The website www.raamatukogud.ee offers a specialized real-time service that tracks library borrowings across Estonia, providing live updates on checkouts, returns, and renewals. It targets library users and professionals interested in library activity data, positioning itself as a niche information service within the Estonian education sector. The business is operated by Deltmar OÜ, with clear branding and consistent content focused on library statistics and mapping. Technically, the site employs a modern JavaScript stack including jQuery, Google Maps API, Google Charts, and integrates social media and analytics tools. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is legitimate and trustworthy but would benefit from enhanced compliance and security practices.

W

Webware

webware.ee

0

Webware OÜ is an established Estonian technology company specializing in comprehensive and flexible information and document management solutions through its flagship platform, WebDesktop. With over 23 years of experience, Webware serves a broad client base including major organizations in Estonia and Northern Europe, positioning itself as a market leader in the info management sector. The company offers a range of services including software analysis, development, hosting, training, and workflow and risk management, targeting both private and public sector organizations. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support.

A

AS Tallink Grupp

tallink.com

0

AS Tallink Grupp operates the Tallink Silja Line ferry and cruise services across the Baltic Sea, connecting major cities such as Helsinki, Stockholm, Tallinn, Turku, and the Åland Islands. The company offers passenger transportation, cargo services, onboard entertainment, tax-free shopping, and hotel accommodations, positioning itself as a leading maritime transport provider in the Baltic region. The website reflects a mature digital presence with a modern tech stack based on Next.js and React, delivering fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. The absence of WHOIS data reduces domain registration transparency but does not detract significantly from the overall trustworthiness given the professional branding and extensive external references. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

O

OÜ Kultuurinet

kultuurikava.ee

0

Kultuurikava.ee is an Estonian cultural event listing platform operated by OÜ Kultuurinet, established in 2012. It serves as a guide to cultural happenings in Estonia, targeting local residents and visitors interested in arts and events. The platform offers event search and filtering capabilities and maintains a consistent brand presence with a professional website design. The business operates in the media sector with a niche focus on cultural events. Technically, the website leverages modern web technologies including React, Font Awesome, Leaflet.js for mapping, and integrates analytics tools such as Google Analytics and Facebook SDK. The hosting is provided by Zone Media OÜ, a known Estonian hosting provider. The site is mobile-optimized with good user experience and basic SEO and accessibility features. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism despite using tracking scripts, which indicates room for improvement in privacy compliance and security best practices. No critical vulnerabilities or suspicious indicators were found. Overall, Kultuurikava.ee presents a moderate risk profile with good business credibility and technical implementation. Strategic improvements in privacy compliance and security headers would enhance trust and regulatory adherence.

E

eLMEK Accounting OÜ

elmek.ee

0

eLMEK Accounting OÜ is a small Estonian accounting and payroll service provider established in 2017. The company positions itself as a friendly and expert partner for businesses needing accounting and payroll advice and services. It has received recognition as one of the fastest growing accounting firms in Estonia and awards for female entrepreneurship, indicating a positive market presence and growth trajectory. The website clearly communicates its key services and team members, targeting Estonian businesses seeking professional financial services. Technically, the website is built on WordPress using the Enfold theme, enhanced with Yoast SEO and jQuery-based components like Owl Carousel. It employs Google Tag Manager for analytics and tracking, and the site is hosted by Zone Media OÜ, consistent with the Estonian locale. The site is mobile-optimized and SEO-friendly, with good performance and accessibility basics. From a security perspective, the site uses HTTPS with strong SSL configuration and implements a cookie consent mechanism compliant with GDPR principles. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The site collects user data via a contact form with required fields and uses cookies and session storage for user experience and tracking. Overall, the website presents a professional and trustworthy front for a small accounting firm with good technical implementation and moderate privacy compliance. Strategic improvements include publishing a privacy policy, security policy, and incident response information, enhancing security headers, and improving accessibility features to strengthen compliance and trust.

K

Kysk

kysk.ee

0

SA Kodanikuühiskonna Sihtkapital (KÜSK) operates as a key non-profit organization in Estonia dedicated to supporting civil society, social innovation, and community development. Established in 2010, it provides grant funding and resources to NGOs and community initiatives, positioning itself as a central actor in Estonia's non-profit sector. The website reflects a professional and consistent brand presence with multilingual support and rich media content to engage its audience. Technically, the site is built on WordPress with a modern tech stack including SEO and analytics tools, delivering a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS and some best practices, though it lacks explicit security policies and vulnerability disclosures. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is trustworthy and credible, with room for improvement in transparency and security documentation.

H

Hestia Hotel Group

hestiahotels.com

0

Hestia Hotel Group is a regional hospitality business operating multiple hotels and apartments across Baltic cities including Tallinn, Riga, Haapsalu, and Pärnu. Their offerings range from comfort and superior hotels to spa and old town accommodations, targeting travelers seeking quality lodging and leisure experiences in these locations. The website is professionally designed using WordPress and WooCommerce, integrating modern web technologies and providing a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit security policies are missing. WHOIS data is unavailable, which slightly reduces transparency but the overall business credibility remains high based on website content and contact information. The site uses analytics and marketing tools responsibly with GDPR compliance. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further improve trust and security maturity.

A

ACE Logistics Estonia AS

ace.ee

0

ACE Logistics Estonia AS is a medium-sized logistics company based in Estonia, specializing in multimodal transportation services including road, air, sea, and rail transport, as well as warehousing and customs clearance. The company operates primarily in the Baltic region and Europe, with subsidiaries in Latvia, Lithuania, and Ukraine, and is part of the ACE Logistics Group. The website reflects a professional and consistent brand image, supported by ISO 9001 and ISO 14001 certifications, indicating a commitment to quality and environmental management. The target audience includes businesses requiring comprehensive logistics solutions across multiple transport modes. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Slider Revolution, and it employs SEO best practices and cookie consent mechanisms to comply with GDPR. Security posture is generally good with HTTPS enforced and no visible critical vulnerabilities, though some plugins may require updates to mitigate known risks. Privacy compliance is strong, with clear privacy and cookie policies and consent management. Overall, the website presents a trustworthy and professional digital presence aligned with the company's business operations and market positioning.

Advokaadibüroo RASK is a leading Estonian law firm established in 2012, offering a broad range of professional legal services across multiple sectors including energy, transport, technology, healthcare, government, real estate, and finance. The firm targets Estonian businesses and individuals seeking tailored legal advice and support. Their market position is strong within Estonia, supported by a professional website showcasing detailed service areas, client case studies, and a well-presented team of partners and lawyers. The business model focuses on providing expert legal consultancy and representation.

A

Aitan Eestit MTÜ

aitaneestit.ee

0

Aitan Eestit MTÜ is a small Estonian non-profit organization founded in 2020, focused on charitable activities that connect donors with those in need. The organization primarily engages young people to collect donations and spread their message, aiming to improve social welfare in Estonia. The website reflects this mission with clear calls to action for donations and partnership, supported by a modern WordPress infrastructure using Elementor and GiveWP plugins. The site is multilingual, supporting Estonian, English, and Russian languages, enhancing accessibility for diverse audiences. Technically, the website is built on a robust WordPress platform with SEO optimization via Yoast and integrates Google Analytics for visitor tracking. The site uses HTTPS with a valid SSL certificate, ensuring secure data transmission. However, it lacks advanced security headers and DNSSEC, which could be improved to enhance security posture. The donation forms collect essential contact information such as email and phone numbers, but no explicit privacy or cookie policies are present, indicating a gap in GDPR compliance. From a security perspective, the site demonstrates basic best practices like HTTPS and nonce tokens in forms but misses critical elements like security headers and documented incident response or vulnerability disclosure policies. The WHOIS data is transparent and consistent with the organization's founding date and domain usage, supporting legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening. Strategically, the organization should prioritize implementing comprehensive privacy and cookie policies, enable DNSSEC, and add security headers to improve trust and compliance. Enhancing transparency around data protection and incident response will further strengthen their security culture and stakeholder confidence.

M

Ma Armastan Aidata

armastanaidata.ee

0

Ma Armastan Aidata is a well-established Estonian donation platform founded in 2008, operating in partnership with Swedbank and Heateo Sihtasutus. It aggregates trustworthy Estonian charitable organizations and facilitates donations through secure login methods including national ID card, Mobile-ID, and bank links. The platform offers categorized projects for donations and maintains active communication channels including news and social media. Technically, the website uses a modern tech stack with jQuery, Bootstrap, Tailwind CSS, and integrates cookie consent and reCAPTCHA for privacy and security. Security posture is strong with HTTPS, secure login, and cookie consent, though it lacks published security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a medium-sized non-profit sector audience in Estonia.

N

NORDWOOD

nordwood.ee

0

NORDWOOD is a collaborative brand representing four wood industry companies based in Estonia, focusing on wood sawing, processing, and sales. The website provides basic information about the company, its products, employment opportunities, and certifications. The business targets customers and potential employees interested in the wood manufacturing sector. The domain is well-established since 2013 and registered with a reputable Estonian registrar, supporting the legitimacy of the business. Technically, the website is built on WordPress and uses common technologies such as jQuery and Google Fonts. It employs the Wordfence security plugin and has HTTPS enabled, indicating a baseline security posture. However, the site lacks advanced security headers and proper configuration of analytics tools. The website is moderately optimized for mobile and performance but has room for improvement in SEO and accessibility. From a security perspective, the site shows basic good practices like HTTPS and Wordfence usage but lacks visible privacy and cookie policies, security headers, and incident response information. No forms or contact emails were found, which limits user engagement and transparency. The absence of privacy compliance elements is a notable gap given GDPR requirements. Overall, the website is functional and moderately professional but requires enhancements in privacy compliance, security headers, and user contact options to improve trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, adding security headers, properly configuring analytics, and providing clear contact and incident response information.

P

Pinest AS

pinest.ee

0

Pinest AS is an Estonian manufacturing company founded in 2005 specializing in finger-jointed and laminated wood components. The company emphasizes flexibility in raw materials and production to serve large and medium-sized industrial clients, primarily using domestic pine wood. Their production facility is located in Himmaste village, Põlvamaa. The website reflects a professional and consistent brand presence with clear business and contact information, supported by recognized certifications such as FSC and PEFC. Technically, the site is built on WordPress with modern libraries and tools, including Google Analytics and Tag Manager for tracking, and uses SEO best practices via Yoast. Security posture is generally good with HTTPS enabled and secure forms, though some improvements are needed in script handling and security headers. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is trustworthy and well-positioned in its market segment.

E

Estonian Plywood AS

estply.com

0

Estonian Plywood AS (ESTPLY) is a medium-sized manufacturing company specializing in the production of Nordic birch plywood in large sizes. Founded in 2018 and part of the Lemeks Group, ESTPLY operates one of the most modern plywood factories in the Baltics and Scandinavia, located in Estonia. The company targets European industrial clients and resellers, supplying plywood for trailers, furniture, packaging, and construction. ESTPLY emphasizes sustainability by utilizing local wood resources and environmentally friendly production processes. The website is built on WordPress with common plugins and uses Google Analytics for visitor tracking. While the site is well-designed and mobile-optimized, it lacks explicit privacy and cookie policies, which impacts privacy compliance scoring. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Contact information is clearly provided, enhancing business credibility.

P

Palmako AS

palmako.com

0

Palmako AS is a well-established Estonian manufacturing company specializing in wood processing products such as garden log cabins, glulam timber, machine-rounded timber, pre-fabricated houses, and premium wood pellets. It operates under the Lemeks Group umbrella and exports the majority of its production globally, serving environmentally conscious customers. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility features. It integrates modern analytics and cookie compliance tools, reflecting a mature digital presence. Security posture is solid with HTTPS and secure forms, though some security headers and policies could be improved. The absence of WHOIS registration details slightly impacts trust but is mitigated by comprehensive business information and certifications. Overall, Palmako AS presents a credible and professional online presence with room for enhanced security transparency.

P

Placet Group OÜ

smsmoney.ee

0

Smsraha.ee is a well-established Estonian financial services website operated by Placet Group OÜ, offering a variety of lending products including credit lines, credit cards, consumer loans, and business loans. The company has been active since 2009 and positions itself as a reliable and modern partner for both private and business clients in Estonia. The website is professionally designed with clear navigation and multi-language support, providing detailed product information and customer testimonials to build trust. Technically, the site uses modern JavaScript libraries and Google analytics tools, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and standard security headers present, although no dedicated security or incident response policies are published. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site demonstrates a mature digital presence with a solid business credibility and trustworthy domain registration.

P

Placet Group OÜ

placetgroup.com

0

Placet Group OÜ is a financial services company established in 2005, specializing in secured and unsecured loans, credit cards, and related financial products. Operating primarily in Estonia and Lithuania, with additional brands in Poland, the company serves private individuals and legal entities, emphasizing fast, convenient, and reliable financing solutions. Their market position is supported by a broad customer base and multiple subsidiaries, with a focus on individual customer approach and quality service. Technically, the website employs a modern JavaScript stack including jQuery, Google Analytics, and various carousel libraries, hosted under a domain registered since 2010. The site is mobile optimized and presents a professional design with clear navigation. However, some accessibility features are basic, and no CMS or advanced frameworks are detected. From a security perspective, the site uses HTTPS and Google reCAPTCHA on its contact form, but lacks DNSSEC, security headers, and published security or privacy policies. The WHOIS data is consistent with the business claims, indicating legitimacy. No WAF or blocking mechanisms are detected, allowing full content access. Overall, the website demonstrates a moderate to good security posture and business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

E

e-Governance Academy

egovconference.ee

0

The e-Governance Conference 2025 website represents a well-established global event organized by the e-Governance Academy and supported by Estonian government entities. It targets digital governance leaders and practitioners worldwide, showcasing Estonia's leadership in digital transformation. The site is content-rich, professionally designed, and features high-profile speakers and partners, reinforcing its market position as a leading digital governance conference. Technically, the site uses WordPress with Elementor, integrates Vimeo for video content, and employs modern web technologies, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and secure content embedding, though it lacks some security headers and formal policies. Privacy compliance is a notable gap, with no visible privacy or cookie policies, which should be addressed to meet GDPR requirements. Overall, the site is trustworthy and credible, but improvements in privacy and security transparency are recommended.

The website ttja.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page that blocks access to actual content. As a result, no direct business information, policies, or contact details are available for analysis. The domain is registered with Zone Media OÜ since 2018, indicating a stable registration history consistent with an Estonian entity. The technical infrastructure includes Cloudflare security and analytics services, but no further technical or security details can be assessed due to content blocking. The security posture cannot be fully evaluated, and no privacy or compliance policies are visible. Overall, the site appears legitimate based on WHOIS data but lacks accessible content for a comprehensive assessment.

The website aki.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered to Elkdata OÜ, an Estonian company, with a domain age of over a decade, indicating a stable registration history. However, due to the blocking mechanism, no business descriptions, contact information, or policy documents are available for review. The site leverages Cloudflare's security and analytics services, but no further technical or content details can be assessed. This limits the ability to evaluate the website's digital maturity or security posture comprehensively. From a security perspective, the presence of Cloudflare's challenge indicates an active defense against automated threats, but the lack of visible security headers or policies in the accessible content prevents a full security assessment. The WHOIS data suggests legitimacy and consistency with the domain's country of registration. Overall, the site appears to be protected by modern security infrastructure but lacks publicly accessible information for deeper analysis. Given the current state, the website's risk assessment is limited by the lack of accessible content. Strategic recommendations focus on enabling access for legitimate users and publishing essential compliance and contact information to improve trust and transparency.

V

Virumaa Muuseumid

virumaamuuseumid.ee

0

Virumaa Muuseumid is a regional museum network based in Estonia, focusing on cultural heritage and historical exhibitions in the Virumaa region. The website serves as an informational platform showcasing various museums such as Rakvere linnus and Palmse mõis, targeting visitors interested in history and culture. The organization appears to be a small-sized entity, likely government or non-profit, founded recently in 2022. The site is multilingual, supporting Estonian, English, Russian, and Finnish, enhancing accessibility for diverse audiences. Technically, the website is built on WordPress, utilizing common plugins like All in One SEO, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is hosted by Zone Media OÜ, a known Estonian hosting provider. Performance and mobile optimization are good, with accessibility features implemented, including an accessibility toolbar. SEO practices are solid with proper meta tags and structured data. Security posture is adequate with HTTPS enabled and use of reCAPTCHA for forms. However, some security headers are missing, and DNSSEC is not enabled, which could be improved. Privacy compliance is strong, with a clear privacy policy, cookie consent banner, and GDPR adherence. Contact information is limited to a phone number and contact forms, with no public emails found. Overall, the website is professional, trustworthy, and serves its purpose well. Recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance.

E

Eesti Üliõpilaskondade Liit

isic.ee

0

ISIC Eesti is the official Estonian representative of the internationally recognized ISIC student and teacher card brand, operated by Eesti Üliõpilaskondade Liit since 1993. The website provides detailed information about ISIC cards, discounts, and partnerships with educational institutions and businesses. It targets students, teachers, and youth in Estonia, offering card issuance and related services. The site is built on a modern WordPress platform using Elementor and The7 theme, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response policies are absent. Privacy compliance is limited due to missing privacy and cookie policies. Contact information is clearly presented, including email, phone, and physical address, alongside active social media channels.

A

ALMIC OÜ

creditreports.ee

0

The website creditreports.ee represents the Estonian branch of Dun & Bradstreet, a globally recognized business information provider. It offers credit reports, AAA credit ratings, and marketing packages primarily targeting businesses seeking reliable financial and credit data. The site is professionally designed, multilingual, and integrates key services such as Google Tag Manager and reCAPTCHA for enhanced user experience and security. The technical infrastructure is based on Drupal 7 with modern tracking and consent management tools, indicating a mature but slightly dated platform. Security posture is solid with HTTPS enforcement and bot protection, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a credible and trustworthy business presence in the finance sector within Estonia.