Security Directory

B

Baltic Rail AS

balticrail.com

0

Baltic Rail AS is a medium-sized transportation company specializing in container-train operations and intermodal rail services primarily in the Baltic Adriatic Rail Corridor. Established in 2008 and owned by the Rail World Group, it operates container terminals and warehousing facilities in Estonia and Poland, serving key locations such as Wroclaw, Katowice, Ostrava, and Koper. The company targets businesses requiring efficient rail freight and logistics solutions in Central and Eastern Europe. The website reflects a professional and consistent brand image with clear service offerings and active news updates, indicating ongoing operations and market presence. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and employs Google reCAPTCHA v3 for form security. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, some security best practices such as security headers are missing, and no privacy or cookie policies are published, which impacts compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a notable concern, as it conflicts with the business history claimed and may indicate domain registration issues. Overall, the site is trustworthy but would benefit from improved transparency and security documentation. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, adding a vulnerability disclosure policy, and resolving WHOIS registration inconsistencies to enhance trust and compliance.

L

Laomaailm

laomaailm.ee

0

Laomaailm is an established Estonian company specializing in warehouse and industrial storage solutions with over 30 years of market presence. The company offers a broad range of products including shelving, lifting equipment, industrial stairs, and rental services, targeting B2B customers in manufacturing and logistics sectors. The website reflects a mature business with consistent branding and multilingual support, indicating a focus on regional and international clients. Technically, the site is built on WordPress with WooCommerce and enhanced by popular plugins such as Yoast SEO and WPML for multilingual capabilities. The infrastructure includes Google Tag Manager and Analytics for tracking, and the site is secured with HTTPS and cookie consent mechanisms, demonstrating compliance with GDPR requirements. Security posture is solid but could be improved by adding explicit security headers and incident response information. Overall, the website is professional, user-friendly, and trustworthy, supporting the company's market position and business credibility.

The website rtk.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to the actual site content. This prevents extraction of meaningful business, security, or compliance information from the site. The domain is registered since 2012 with Zone Media OÜ, an Estonian registrar, indicating a stable and legitimate registration. The site uses Cloudflare services for security and performance, but no direct content or metadata is available for analysis. Due to the blocking, the technical maturity, security posture, and privacy compliance cannot be assessed accurately. The overall risk is elevated due to lack of accessible information, and further analysis requires bypassing the WAF challenge or direct access to the site.

E

eHost OÜ

ettevotja.ee

0

Aktiva.ee is an Estonian business information portal focused on supporting entrepreneurs at various stages including startups, operating companies, and those expanding internationally. The site provides practical guides, legal and accounting information, marketing advice, and resources to help businesses succeed. It targets Estonian-speaking entrepreneurs and small businesses, positioning itself as a trusted informational gateway in the local business ecosystem. The website is built on WordPress, uses modern web technologies including Google Analytics and reCAPTCHA, and is hosted with reputable providers including Cloudflare for DNS and eHost OÜ as registrar. The site is well-structured with clear navigation and good mobile optimization, though it lacks explicit privacy and cookie policies which impacts compliance. Security posture is solid with HTTPS and anti-bot measures, but could be improved with additional security headers and published policies. Overall, the site is a credible, small-scale business resource with room for enhanced privacy and security transparency.

L

Levstal Group

levstal.com

0

Levstal Group is a well-established Estonian company specializing in steel structures, metal engineering, and marine infrastructure services. With over three decades of experience, the company serves a broad European industrial client base, delivering high-quality fabrication and engineering solutions. Their business model focuses on B2B project-based contracts with a strong emphasis on quality and compliance, supported by multiple industry certifications. Technically, the website is built on WordPress with modern JavaScript libraries and analytics tools, demonstrating a mature digital presence with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Levstal Group presents a professional, trustworthy, and technically sound online presence aligned with their business operations.

B

Birdeye Capital

birdeyecapital.com

0

Birdeye Capital is a specialized alternative investment fund manager focusing on sustainable forestland investments. Established in 2013 and regulated by the Estonian Financial Supervision Authority, the company offers non-public, closed-ended funds tailored for institutional investors such as pension funds and family offices. Their business model emphasizes long-term sustainable growth and ESG compliance, positioning them as a trusted player in the Baltic investment market. Technically, the website is built on WordPress with modern plugins and libraries, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though lacking advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

C

Citadele

citadele.ee

0

Citadele is a well-established banking institution operating in Estonia, providing a broad range of retail banking services including loans, deposits, insurance, and payment solutions tailored to individual customers. The website reflects a mature digital presence with comprehensive content, including loan calculators and detailed product offerings, targeting private banking customers. The company maintains a consistent brand image and integrates social media and partner links effectively. Technically, the site uses modern JavaScript libraries such as jQuery and Bootstrap, and is likely powered by OctoberCMS, ensuring a responsive and user-friendly experience. Security is robust with HTTPS enforced, secure cookie consent mechanisms, and standard security headers, although explicit security policies and incident response information are not publicly available. Overall, the site demonstrates good compliance with privacy regulations and provides clear contact information, supporting a trustworthy user experience.

D

Diotech OÜ

diotech.ee

0

Diotech OÜ is an Estonian company specializing in smart energy solutions aimed at accelerating the transition to carbon-neutral electricity production and consumption. Their service portfolio includes lighting services, electrical construction and design, solar power plants, energy services, and operational and maintenance services. The company maintains a professional online presence with a well-structured website, active news updates, and clear service offerings, positioning itself as a reputable player in the Estonian energy sector. The website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and anti-spam measures in place, though formal security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website and business information reflect a trustworthy and credible organization with room for improvement in security transparency and accessibility.

S

Sustinere

sustinere.ee

0

Sustinere is a medium-sized ESG and sustainability advisory firm operating primarily in the Baltic region since 2016. The company offers a comprehensive suite of services including ESG strategy development, climate impact assessments, risk management, and digital solutions to support sustainability transformations. Their client base spans 11 sectors, indicating a broad market reach and trusted reputation. Technically, the website is built on WordPress with Elementor and Astra theme, leveraging modern web technologies and Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, but lacks explicit privacy and incident response policies. Overall, the website reflects a professional and credible business with room for improvement in privacy compliance and transparency.

H

HansaLaw

hansalaw.ee

0

HansaLaw is an internationally recognized legal and tax advisory firm with over 10 years of experience, operating primarily in the Baltic region with offices in Tallinn, Riga, and Vilnius. The firm offers comprehensive legal consulting and conflict resolution services tailored to clients seeking expert legal advice. The website is built on WordPress using the Avada theme, incorporating modern web technologies and third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, and Adform tracking. The site is well-designed, mobile-optimized, and provides clear navigation, although it lacks explicit privacy and cookie policies, which impacts its privacy compliance rating. Security posture is adequate with HTTPS enabled and good SSL configuration, but could be improved by enabling DNSSEC and adding security headers. No WAF or blocking mechanisms were detected, and the domain registration data is consistent with the business claims, supporting legitimacy.

Rentokil is a professional pest control service provider targeting residential and business customers in Estonia. The website presents localized content in Estonian, emphasizing expertise and comprehensive pest control solutions. The technical infrastructure includes modern web technologies and tracking tools such as Google Analytics and Google Tag Manager, hosted primarily on Rentokil's CDN. While the website design and content quality are good, there is a lack of visible privacy, cookie, and security policies, which impacts compliance and trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further verification. Overall, the security posture is moderate but could be improved by implementing security headers and explicit compliance documentation.

B

BNI Eesti

bni.ee

0

BNI Eesti operates as the Estonian chapter of BNI, the world's leading business referral organization established globally in 1985. The website serves business professionals and entrepreneurs in Estonia, providing networking, referral generation, and business training services. The domain has been registered since 2010, aligning with the organization's established presence. The site uses a proprietary CMS and is hosted behind Cloudflare, leveraging modern web technologies including jQuery, Google Analytics, and Facebook Pixel for analytics and marketing. The website is well-structured, mobile-optimized, and presents consistent branding aligned with the global BNI identity. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and detailed privacy/security policies are absent. Contact information is primarily via contact forms, with no direct emails or phone numbers visible. Overall, the site is professional, trustworthy, and serves its business networking purpose effectively.

T

Tritech OÜ

tritech.ee

0

Tritech OÜ is a small Estonian manufacturing company specializing in mechanical engineering and CNC machining services, established in 2012. The company offers a range of services including mechanical engineering design, CNC turning and milling, product assembly, and customized mechanical solutions. Their target audience is industrial companies seeking high-quality machined parts and assembly services. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, using modern tools such as Google Analytics and Facebook Pixel for marketing and tracking. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and formal security policies. Overall, the security posture is solid but could be improved by adding cookie consent mechanisms, security policies, and vulnerability disclosure information. The domain registration is consistent with the business claims, enhancing trustworthiness. Strategic recommendations include enhancing privacy compliance and security transparency to further build customer trust and regulatory adherence.

Stratum Traffic Engineering GmbH is a specialized consulting company in the Intelligent Transport Systems (ITS) and traffic engineering sector, offering services such as traffic analysis, road safety, project management, and business development for ITS SMEs. The company targets organizations seeking expertise in traffic audits, modeling, and tolling systems, positioning itself as a niche ITS SME with international market development capabilities. The website reflects a professional and consistent brand image with clear service offerings and contact information, supported by social media presence on Facebook and LinkedIn. Technically, the site is built on WordPress using popular plugins and themes, delivering moderate performance and good mobile optimization. However, the site lacks advanced security headers and explicit privacy or cookie policies, which are critical for compliance and trust. The domain registration is consistent and transparent, with no privacy protection, supporting the legitimacy of the business. Overall, the website is functional and credible but requires improvements in privacy compliance and security posture to enhance trust and regulatory adherence.

G

Goal Marketing OÜ

goal.ee

0

Goal Marketing OÜ is a well-established Estonian digital marketing agency founded in 2010. The company specializes in social media content creation, strategic marketing campaigns on Meta and Google platforms, and offers training services including Chat GPT and GA4. Their website reflects a professional service provider targeting businesses seeking comprehensive digital marketing solutions. The agency maintains a consistent brand presence with detailed team profiles and client logos, indicating a credible market position within Estonia. Technically, the website is built on WordPress using popular plugins and themes, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and captcha-protected forms, but lacks advanced security headers and explicit privacy policies. Cookie consent is implemented via CookieYes, supporting GDPR compliance to some extent. Overall, the domain registration data aligns with the business claims, reinforcing legitimacy. Strategic improvements in privacy documentation and security headers would enhance compliance and trust.

S

SA Tallinna Lauluväljak

lauluvaljak.ee

0

Tallinna Lauluväljak is a well-established event venue and cultural site in Tallinn, Estonia, operating since 2010. The organization offers rental services for event spaces, furniture, and equipment, alongside visitor services such as a visitor center and park attractions. The website is professionally designed using Drupal CMS, with integration of modern analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized and provides clear navigation and relevant content for event organizers and visitors. Security posture is solid with HTTPS enabled and no visible sensitive data exposure, though security headers are not explicitly detected. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms and terms of service. Contact information is clearly provided, enhancing business credibility.

S

SmartCap

smartcap.ee

0

SmartCap is a state-owned Estonian fund manager established in 2011, operating under a license from the Estonian Financial Supervision Authority. It focuses on cornerstone investments in venture capital, green technology, and defence sectors to foster innovation and economic growth in Estonia. The company is a subsidiary of Foundation KredEx and targets private fund managers and innovative companies within Estonia. The website reflects a professional and consistent brand image with comprehensive content about its funds and investment focus. Technically, the site is built on WordPress with modern performance optimizations and cookie consent management, ensuring good user experience and compliance with privacy regulations. Security posture is strong with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

K

Kahjurite Tõrje

kt.ee

0

Kahjurite Tõrje is a small Estonian pest control service provider specializing in fast and effective pest control solutions including gel treatments for insects such as wasps, cockroaches, and ants. The company has an established online presence with a professionally designed WordPress website optimized for SEO and mobile devices. The website content is relevant and clearly structured, targeting local Estonian customers seeking pest control services. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics and reCAPTCHA for security and analytics purposes. However, the absence of privacy and cookie policies indicates a gap in compliance with GDPR and general privacy best practices. Security posture is moderate with HTTPS enforced and reCAPTCHA implemented, but lacks important security headers and explicit incident response information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

Blend IT

blendit.eu

0

Blend IT is a small technology company specializing in providing remote software development teams primarily located in the Philippines and Estonia. Their business model focuses on outsourcing long-term software professionals to clients globally, emphasizing flexible team structures and direct client-to-developer communication. The company positions itself as a niche provider addressing talent shortages through remote work solutions. Technically, the website is built on WordPress with modern front-end technologies such as Bootstrap and jQuery, and it integrates Google Analytics for user tracking. The site is mobile optimized and uses SEO best practices including structured data and meta tags. Security-wise, the site enforces HTTPS and employs basic anti-spam measures in its contact form but lacks published security policies or incident response information. Privacy compliance is limited due to the absence of privacy and cookie policies. Overall, the website is professional and credible but would benefit from enhanced privacy and security disclosures.

M

Miltton

miltton.ee

0

Miltton is an established consultancy firm founded in 2007, specializing in business, communications, and design consultancy services. The company targets organizations seeking impactful change through strategic insights, creative communications, and design thinking. Their market position is strengthened by a diverse team and international presence with subsidiaries or related sites in Europe, Finland, Sweden, Ukraine, and the USA. The website reflects a professional and modern digital presence, leveraging WordPress CMS with advanced SEO and analytics integrations such as Yoast SEO, Google Tag Manager, and Matomo. Cookie consent mechanisms and a comprehensive privacy policy demonstrate GDPR compliance and a commitment to user privacy. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

Eesti Lauatenniseliit

lauatennis.ee

0

Eesti Lauatenniseliit is the official Estonian Table Tennis Federation, serving as the national governing body for table tennis in Estonia. The website provides comprehensive information on competitions, clubs, youth sports, rankings, rules, and contact details, targeting players, clubs, and enthusiasts within the Estonian table tennis community. The business model is that of a non-profit sports federation focused on organizational and informational services. Technically, the website is built on WordPress using the Elementor page builder and OceanWP theme, incorporating modern JavaScript libraries such as jQuery, Swiper.js, and Tippy.js. The site is mobile-optimized with good navigation and content quality, though performance is moderate. Analytics are handled via plausible.io, indicating a privacy-conscious approach but lacking explicit cookie consent mechanisms. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and incident response contacts. No privacy or cookie policies are present, representing compliance gaps. The WHOIS data is consistent with the website's identity, showing legitimate registration without privacy protection, appropriate for a public sports federation. Overall, the site is professional and trustworthy but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

K

KUUKUUP OÜ

digipurk.ee

0

Digipurk is a small Estonian company specializing in robotics, automation, and Internet of Things services, combined with educational offerings such as programming courses and workshops for children and adults. The company also operates an e-commerce store selling robotics and electronics components. Their market position is that of a niche local provider focused on technology education and hobbyist products. The website is built on WordPress with WooCommerce, featuring modern technologies like Google reCAPTCHA v3 and Leaflet.js for maps. The site is well-structured, mobile-optimized, and uses HTTPS with no detected blocking or WAF challenges. Security practices include bot protection and no visible sensitive data exposure, though security headers are not explicitly present. Privacy compliance is partial, with a privacy policy but no cookie consent mechanism. Overall, the site demonstrates good business credibility and technical maturity for a small technology education and retail business.

O

OÜ Keskkonnaprojekt

keskkonnaprojekt.ee

0

OÜ Keskkonnaprojekt is an Estonian engineering and consulting company specializing in comprehensive design and project management services for buildings, infrastructure, and environmental facilities. The company serves primarily public sector clients and private enterprises within Estonia, offering integrated solutions from initial concept through technical execution. Their website reflects a professional and consistent brand presence with clear service offerings and client references. Technically, the website is built on WordPress with common plugins such as WPML for multilingual support and uses standard JavaScript libraries like jQuery and Flexslider. The site is HTTPS secured and moderately optimized for performance and mobile devices, though accessibility and SEO could be improved. Analytics are implemented via Google Analytics and WP Statistics, but no cookie consent or privacy policies are evident. From a security perspective, the site benefits from HTTPS and lacks visible vulnerabilities or exposed sensitive data. However, it lacks security headers and formal security policies such as incident response or vulnerability disclosure mechanisms. The WHOIS data aligns well with the business identity, supporting legitimacy and trustworthiness. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

D

Digistep OÜ

arvutid.ee

0

Digistep OÜ is an Estonian small business specializing in computer sales, rental, and maintenance services. The company holds an official partnership with HP for sales and warranty services, positioning itself as a trusted local provider with both e-commerce and physical store presence. Their offerings include a broad range of IT hardware, repair services, wholesale options, and custom protective films for devices. The website is primarily in Estonian and targets local consumers and businesses seeking reliable IT solutions. Technically, the site is built on WordPress with a custom theme, uses HTTPS with good SSL configuration, and loads moderate performance assets including Google Fonts. However, mobile optimization and accessibility are basic, and no advanced frameworks or analytics tools are detected. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks security headers and published security policies. Privacy compliance is limited, with no cookie consent mechanism and only basic privacy and terms pages. Business credibility is supported by clear contact information, official partnerships, and detailed product listings. Overall, the site is functional and professional but could improve in privacy compliance and security transparency.

Viipekeeletõlkide OÜ is a small Estonian company specializing in sign language interpreting services. The website serves as a basic informational platform with navigation to various sections such as services, pricing, and contact details. The company appears to target individuals and organizations in Estonia requiring sign language interpretation. The domain is mature, registered since 2010, and hosted by Edicy OÜ, a known Estonian registrar and hosting provider. Technically, the website is built on the Voog CMS platform and uses common JavaScript libraries such as jQuery and LazyLoad. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. However, the content is minimal and lacks comprehensive textual information or rich media. From a security perspective, the site uses HTTPS (implied by the URL), but no explicit security headers or policies are detected in the HTML content. There are no privacy or cookie policies, nor any incident response or security contact information, indicating gaps in compliance and security posture. No forms are present that collect user data, reducing some risk but also limiting user engagement. Overall, the website is functional but basic, with moderate business credibility but low privacy and security compliance. Strategic improvements in privacy policies, security headers, and incident response readiness are recommended to enhance trust and compliance.

IITEE OÜ is an Estonian IT service provider specializing in professional IT solutions for companies, particularly those in the manufacturing sector. Founded in 2006, the company offers IT maintenance, hosting services with high availability, and Office 365 business-class email solutions. Their business model focuses on providing reliable and efficient IT support to improve operational efficiency for their clients. The website reflects a small but professional company with clear contact information and a focus on B2B services. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, Owl Carousel, and Google Fonts. Google Analytics and Google Tag Manager are employed for user tracking and marketing insights. The site is mobile responsive and well-structured, though accessibility features are basic. Hosting appears to be managed by Elkdata OÜ, consistent with the WHOIS data. From a security perspective, the website uses HTTPS and avoids exposing sensitive data. However, no explicit security headers were detected, and there is a lack of privacy and cookie policies, which impacts GDPR compliance. No vulnerability disclosure or incident response information is provided. The security posture is moderate but could be improved by implementing standard security headers and formal policies. Overall, the website is professional and trustworthy with a solid business foundation. The main risks relate to privacy compliance and security best practices, which should be addressed to enhance trust and regulatory adherence.

W

Wiru õlu

wiru.ee

0

Wiru õlu is a small Estonian craft beer brand with a professionally designed WordPress website launched in December 2023. The site focuses on presenting the brand's artisanal beer products with rich descriptive content targeting beer enthusiasts. The technical infrastructure is modern, leveraging WordPress CMS, jQuery, and popular plugins such as Contact Form 7 and All in One SEO, hosted likely by Zone Media OÜ in Estonia. The website is accessible, mobile-optimized, and SEO-friendly with structured data implemented. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site demonstrates a good baseline for a new small business but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

HeiVäl OÜ, operating as HeiVäl Consulting, is a small Estonian management consulting firm established in 1993. The company specializes in strategic planning, quality management, market research, export planning, and stakeholder satisfaction surveys, serving both private and public sector clients. The website reflects a professional but basic digital presence with content primarily in Estonian and options for English, Finnish, and Russian languages. The technical infrastructure is based on WordPress CMS with legacy JavaScript libraries and Google Analytics for tracking. Security posture is moderate but weakened by outdated libraries and lack of security headers. Privacy compliance is poor due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility.

O

Outline Reklaam

outline.ee

0

Outline Reklaam is an established Estonian marketing and advertising agency with over 20 years of experience. They offer a comprehensive suite of services including graphic design, internet solutions, photography, 3D, video marketing, and website development. Their business model focuses on in-house content creation and serving a diverse client base, as evidenced by their portfolio and testimonials. Technically, the website is built on WordPress using the Avada theme and integrates common plugins such as Contact Form 7 and MonsterInsights for analytics. The site is moderately optimized for performance and mobile devices, with basic accessibility features. Security posture is adequate with HTTPS enabled and reCAPTCHA on forms, but lacks visible security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency.

O

Orkla Eesti AS

kalev.eu

0

Kalev is a prominent Estonian confectionery brand operating under Orkla Eesti AS, offering a wide range of chocolates and sweets through retail stores and e-commerce. The website showcases the brand's rich history, product offerings, sustainability initiatives, and retail locations, targeting consumers in Estonia. Technically, the site is built on WordPress with modern plugins and technologies, optimized for SEO and mobile use. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though formal security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

M

MAINOR

mainor.ee

0

MAINOR is an established Estonian corporate group with a 50-year history, operating primarily in environment, education, healthcare, and energy sectors. The company acts as a parent entity to multiple subsidiaries and is involved in significant development projects including Estonia's third largest economic city. The website is professionally designed, multilingual, and built on WordPress with modern frontend technologies. It includes SEO optimizations and a cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit security policies are absent. Privacy compliance is supported by a privacy policy and cookie consent, but lacks detailed data protection officer or incident response information. Overall, the site is trustworthy and credible, with room for improvement in security best practices and transparency.

M

MM Grupp

upi.ee

0

MM Grupp is an Estonian capital-based investment company focusing on broad cross-sector investments aimed at societal development. Established in 2010, it manages a portfolio of over 130 companies and reports significant turnover and employee numbers, positioning itself as a large player in the Estonian investment landscape. The website reflects a professional and consistent brand image with good content quality and clear business messaging. Technically, the site uses the Voog CMS platform, includes modern technologies like jQuery and Google Tag Manager, and is hosted by a reputable Estonian provider. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and professional but could improve transparency and security practices.

MTÜ Eesti Kvaliteediühing is a non-profit organization based in Estonia focused on uniting organizations and individuals dedicated to development and quality improvement. The website serves as a platform for sharing news, events, and international quality-related activities, targeting quality professionals and organizations. The business model centers on membership and community engagement within the quality sector. The organization appears established with a domain age consistent with its founding year of 2018 and maintains a moderate market position within Estonia's quality community. Technically, the website is built on WordPress 6.5.5 using the Avada theme and integrates popular plugins such as Yoast SEO and CleanTalk anti-spam. It employs modern web technologies including jQuery and Font Awesome, and uses Google Analytics for visitor tracking. The site is served over HTTPS, indicating a secure transport layer, and shows moderate performance and good mobile optimization. SEO practices are implemented with meta tags and structured data, although accessibility features are basic. From a security perspective, the site benefits from HTTPS and anti-spam measures but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy and cookie policies are absent, which is a compliance gap, especially under GDPR. Incident response and vulnerability disclosure mechanisms are not evident, limiting transparency in security management. Overall, the website demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and security policy transparency. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, and publishing incident response contacts to strengthen trust and compliance.

S

Sandman Group

sandman.ee

0

Sandman Group is a well-established wholesale distributor of consumer electronics in the Baltic region, founded in 1992 and operating the largest warehouse for home appliances in the Baltics. The company serves a broad range of partners including distributors, retail chains, and independent resellers, offering logistics, retail partnerships, and after-sales services. Their market position is strong within Estonia and the wider Baltic states. Technically, the website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, but lacks published security policies and comprehensive privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

T

Thulema

thulema.ee

0

Thulema is a well-established Estonian company specializing in the manufacturing and retail of ergonomic and modern office and public furniture. The company positions itself as a leading brand in Estonia, emphasizing human-friendly materials and innovative Nordic design. Their website reflects a medium-sized business with a clear focus on sustainability, as evidenced by their published carbon footprint report. The target audience includes businesses and institutions seeking quality workplace solutions. Technically, the website is built on WordPress with modern plugins and tracking tools, offering a good user experience and SEO optimization. Security posture is solid with HTTPS and nonce usage, though lacking some advanced security headers and explicit security policies. Privacy compliance is basic, with no visible cookie consent mechanism or GDPR-specific disclosures. Overall, the website is professional, trustworthy, and aligned with the company's business claims.

A

AKU Collective OÜ

aku.co

0

AKU Collective OÜ is a small, established design studio based in Tallinn, Estonia, specializing in branding, strategy, and creative solutions across various media. Founded in 2012, the company serves clients in culture, government, music, and other sectors, with a strong portfolio and multiple design awards. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress, uses modern JavaScript libraries like jQuery, and integrates Google Analytics and Tag Manager for tracking. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is privacy protected but legitimate, with no suspicious patterns.

E

Ellex Raidla Advokaadiburoo OU

raidlaellex.ee

0

Ellex is a leading Baltic law firm with over 30 years of experience and a team of 250+ professionals, offering a wide range of legal services across multiple sectors including banking, energy, technology, real estate, and healthcare. The firm operates regionally with offices in Estonia, Latvia, and Lithuania, and holds international recognition and awards. The website is built on WordPress with modern SEO and analytics tools, featuring a comprehensive cookie consent mechanism and multi-language support. Security posture is strong with HTTPS enforcement and domain transfer protection, though some security headers could be improved and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

KV.EE is a leading Estonian real estate portal offering a wide range of property listings including apartments, houses, land, and commercial spaces for sale and rent. The website targets Estonian property buyers, sellers, and renters, positioning itself as the first and foremost real estate portal in Estonia. The business model revolves around providing an online marketplace and listing service for real estate, supported by RSS feeds and categorized property types. Technically, the site employs standard web technologies such as HTML5, CSS3, JavaScript, and uses popular fonts and icon libraries. The design is professional and mobile-optimized, providing a good user experience and clear navigation. However, the site lacks visible advanced frameworks or CMS identification and shows moderate performance.

E

Eesti Kirjandusmuuseum

kirmus.ee

0

Eesti Kirjandusmuuseum is a well-established Estonian national scientific and cultural institution focused on managing important archives related to cultural history and folklore. The website serves a diverse audience including researchers, students, cultural enthusiasts, and the general public by providing access to archives, scientific projects, educational programs, exhibitions, and an online store. The institution holds a strong market position as a central cultural memory organization in Estonia. Technically, the website is built on Drupal 8 with modern libraries and tools, offering good mobile optimization, accessibility, and SEO. Security posture is solid with HTTPS and anonymized analytics, though security headers and explicit security policies could be improved. Overall, the site is professional, trustworthy, and content-rich, supporting the institution's mission effectively.

M

Mellow

mellow.ee

0

Mellow is a small creative company based in Estonia specializing in video production, photography, animation, visual effects, and graphic design. The website presents a minimalistic portfolio and contact information, targeting clients seeking creative media services. The business appears to be a small niche player with a straightforward service offering and a modest online presence. Technically, the website is built with basic HTML and CSS without any detected CMS or advanced frameworks. Hosting is provided by Zone Media OÜ, an Estonian registrar and hosting provider. The site lacks HTTPS on some assets, and no security headers or modern web technologies are detected. Mobile optimization and accessibility are basic, and SEO features are minimal. From a security perspective, the site shows limited maturity. There is no evidence of privacy or cookie policies, no incident response or security policies, and no vulnerability disclosure mechanisms. The absence of HTTPS on all content and lack of security headers represent notable risks. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website scores moderately low on security and privacy compliance but maintains basic business credibility and content relevance. Strategic improvements in security posture, privacy compliance, and technical modernization are recommended to enhance trust and user experience.