Security Directory

Meidron is a small Estonian company founded in 2011, offering IT support and consulting services, EU funding project management, and environmental consulting. The company targets businesses and organizations requiring specialized consulting and support services. The website is simple and functional, providing basic business information and contact details, including email, phone, and LinkedIn profile. The market position appears niche and regional with a focus on professional service delivery. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. Hosting appears to be on Oracle Cloud infrastructure. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. No CMS or frameworks are detected, indicating a custom or static site. From a security perspective, the domain is well-registered with a long history and transfer protection. However, the site lacks DNSSEC, visible HTTPS enforcement, and security headers. No privacy or cookie policies are present, and no consent mechanisms are implemented, indicating GDPR compliance gaps. The use of Google Analytics without cookie consent further impacts privacy compliance. No incident response or vulnerability disclosure information is provided. Overall, the website presents a moderate risk profile with good business credibility but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

M

Mediapark

singleton.ee

0

Mediapark is an established digital agency specializing in modern web development, mobile app creation for Android and iOS, UI/UX design, testing, and support services. With a domain age dating back to 1995 and a broad international presence including offices across Europe and Asia, Mediapark serves a diverse clientele including notable brands such as Red Bull and Vodafone Zambia. The company positions itself as a one-stop-shop for digital product development, targeting businesses seeking scalable and high-performance digital solutions. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized and demonstrates good design and navigation quality. Hosting and DNS services leverage Cloudflare, enhancing performance and security. However, DNSSEC is not enabled, and security headers are absent, indicating room for security improvements. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA v3 for form protection, but lacks published security policies and incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which could expose the company to regulatory risks. Contact information is available primarily via contact forms and office addresses, with no direct emails or phone numbers publicly listed. Overall, Mediapark presents a professional and credible digital presence with a mature business history and solid technical foundation. Strategic enhancements in privacy compliance, security headers, and DNS security would further strengthen their security posture and regulatory adherence.

S

Silma laseroperatsioon | KSA Silmakeskus

ksa.ee

0

KSA Silmakeskus is a specialized healthcare provider in Estonia focusing on eye laser surgery and related eye care services. The website presents a professional image with clear branding and a focus on delivering information about laser eye operations to potential patients. The business appears established since 2010, targeting individuals seeking vision correction without glasses or contact lenses. The site uses WordPress CMS with the Avada theme and integrates modern SEO and marketing tools to enhance visibility and user engagement. Technically, the site is well-structured, mobile-optimized, and employs GDPR-compliant cookie consent mechanisms, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is good, leveraging Cookiebot for consent management and linking to a comprehensive privacy policy. However, explicit contact information, terms of service, and security policies are not prominently available, which could be enhanced to improve trust and compliance. Overall, the site is trustworthy, professional, and well-positioned in its niche, with recommendations to bolster security policies and public contact channels for incident response.

K

KaminaKeskus

kaminakeskus.ee

0

KaminaKeskus is an established Estonian retailer specializing in fireplaces, stoves, ovens, sauna stoves, chimneys, and boilers, operating since 1997. The company offers a wide selection of heating appliances with a focus on quality, competitive pricing, and customer convenience including free home delivery. Their market position is strong within Estonia, supported by multiple physical stores and an active online presence. Technically, the website is built on WordPress with the Avada theme, utilizing modern SEO and multilingual plugins, and integrates Google Analytics and Facebook SDK for tracking. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers like CSP and HSTS, and is missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the site is professional and user-friendly but should improve privacy compliance and security policies to enhance trust and regulatory adherence.

M

MTÜ Eesti Sukeldujate Klubi

sukeldujad.ee

0

Eesti Sukeldujate Klubi is a small non-profit diving club based in Estonia, providing diving courses, trial dives, and organizing diving-related projects and events. The website serves as an informational portal for diving enthusiasts in Estonia, with a focus on community engagement and education. The club encourages support for its activities, such as purchasing a new bus, indicating active community involvement. Technically, the website is built on WordPress with common plugins like Events Manager, uses HTTPS, and includes social media integration with Facebook and Instagram. However, the site lacks advanced security headers and privacy compliance documentation, which are areas for improvement. The absence of explicit contact emails and phone numbers on the homepage limits direct communication channels. Overall, the site is functional with basic content and navigation but could benefit from enhanced security and privacy features to improve trust and compliance.

A

Aurightec

eolane.ee

0

Aurightec is a professional electronics manufacturing service provider based in Estonia, offering industrial services to support business partners in delivering cutting-edge electronic products. The company holds multiple ISO certifications, indicating a strong commitment to quality and safety standards. Their website is well-designed, SEO-optimized, and compliant with GDPR and cookie regulations, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and security features such as Google reCAPTCHA and cookie consent management. Security posture is solid with HTTPS and bot protection, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, Aurightec presents a trustworthy and professional business front with clear contact information and social media presence.

The website pmt.ee represents a small manufacturing company specializing in industrial machines and structures, offering engineering, manufacturing, and assembly services. The company appears established since 2010 and targets industrial clients requiring specialized manufacturing solutions. The website is built on WordPress with basic SEO optimization via Yoast SEO plugin and uses legacy JavaScript libraries such as jQuery 1.8.3. The technical infrastructure is moderate with room for modernization and improved mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and uses outdated libraries, which could expose the site to vulnerabilities. Privacy compliance is minimal with no visible privacy or cookie policies and no consent mechanisms. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the site is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

A

As Balsnack International Holding

balsnack.ee

0

Balsnack is an established Estonian snack food company founded in 2010, specializing in unique snack products such as potato waffles, popcorn, and breakfast cereals. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting both local consumers and export markets. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including jQuery and Google APIs, hosted by Elkdata OÜ, a local Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable and accessible site. Overall, the website demonstrates a medium-sized retail business with a solid online presence but could improve privacy compliance and security transparency.

E

Eedo & Partnerid OÜ

united-loggers.ee

0

United Loggers is a small Estonian company specializing in wood chip production, round timber material supply, and wood chipping services. The company operates a professionally designed website built on WordPress with the Astra theme, indicating a moderate level of digital maturity. The website includes a GDPR-compliant cookie consent mechanism and uses privacy-friendly Plausible Analytics for visitor tracking. However, it lacks explicit privacy policy, terms of service, and security policy pages, which are important for compliance and trust. Technically, the website uses modern web technologies and plugins but does not show advanced security headers or incident response information. The domain is well-established since 2010, registered to a local Estonian company consistent with the website's business focus. No signs of blocking or WAF interference were detected, allowing full content access. Security posture is adequate with HTTPS enforced and cookie consent implemented, but improvements are recommended in publishing security policies, adding security headers, and providing incident response contacts. Overall, the website is functional and professional but could enhance compliance and security transparency to improve trust and reduce risk.

R-Systems is an Estonian software development company specializing in hydrography and spatial data software solutions, founded in 1989. The company offers services including hydrographic survey software, spatial data processing, and sensor integration, targeting sectors such as military, air surveillance, logistics, and GIS. The website reflects a small, niche technology business with a long operational history but limited online presence and content depth. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. The site lacks modern frameworks or CMS and shows basic performance and SEO optimization. Mobile optimization and accessibility are minimal, indicating room for improvement in digital maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response details are provided, limiting transparency and trust. The use of Google Analytics without a consent mechanism further impacts privacy compliance. Overall, the website presents a moderate risk profile with no critical security issues detected but several compliance and usability gaps. Strategic improvements in privacy policies, security headers, mobile optimization, and contact transparency are recommended to enhance trust and compliance.

X

xChange AS

changeinvest.com

0

Change Invest operates as a fintech investment platform offering a unified app for investing in cryptocurrencies, trading stocks, indices, commodities, and CFDs with leverage. The company targets retail investors primarily within the European Economic Area, emphasizing low fees, fast deposits, and regulatory compliance under Estonian and Dutch authorities. The platform boasts over 125,000 verified users and a broad asset offering, positioning itself as a competitive player in the EU fintech market. Technically, the website is built on Webflow CMS and integrates modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Segment Analytics, and Adjust SDK. The site is mobile-optimized, fast-loading, and well-structured, providing an excellent user experience. However, some security best practices like explicit security headers are missing, and no incident response or vulnerability disclosure information is publicly available. From a security perspective, the platform enforces HTTPS, uses cold wallets for crypto custody, and provides public proof of reserves, indicating a mature security posture. Cookie consent mechanisms are implemented with opt-in features, supporting GDPR compliance. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data unavailability, which slightly reduces trustworthiness. Overall, Change Invest presents a professional, secure, and compliant fintech service with strong market positioning in the EU. Strategic improvements in transparency around security policies and WHOIS data would enhance trust and compliance further.

Media Menu International AS is a Swedish-Estonian digital media production studio specializing in online and mobile advertising assets including HTML5 banners, landing pages, email templates, web design, video production, and graphic design. Established in 2010, the company serves a global client base with a strong presence in Europe and the USA, supported by long-term partnerships and positive client testimonials. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap and Leaflet.js, ensuring good mobile optimization and user experience. However, the absence of privacy and cookie policies, security headers, and incident response information indicates areas for improvement in compliance and security posture. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security disclosures to align with best practices.

S

Silberauto AS

silberauto.ee

0

Silberauto AS is an established Estonian parent company operating in the automotive and transportation sectors, with a focus on autonomous vehicle technology, vehicle construction, and automotive sales software. The company has a history dating back to 1993 and manages several subsidiaries specializing in various automotive-related fields. The website reflects a medium-sized enterprise with a clear business model centered on innovation in automotive technology and related services. Technically, the website is built on the Webflow platform, utilizing modern web technologies including jQuery and Weglot for multilingual support. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks some security headers and formal security policies. Privacy compliance is limited, with no privacy policy or cookie consent mechanism explicitly implemented. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

T

SEO Optimeerimine | Teie Ettevõte

taddy.ee

0

The website www.taddy.ee is a small Estonian SEO service provider specializing in both internal and external SEO optimization, competitor analysis, and targeted advertising. The business targets companies seeking to improve their search engine visibility and website traffic. The site presents clear service packages with pricing and showcases client examples, indicating a focused and professional approach. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics, with a responsive design and good navigation. However, there are gaps in privacy compliance, as no privacy or cookie policies are published, and contact information is limited to a web form without direct emails or phone numbers. Security posture is moderate with HTTPS enabled but lacking explicit security headers and vulnerability disclosures. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

T

Trumpit Solutions OÜ

iteraction.ee

0

Trumpit Solutions OÜ is an Estonian IT service provider specializing in comprehensive IT solutions for small and medium-sized enterprises. With over 16 years of experience, the company offers a broad range of services including IT support, software development, IT security, Microsoft 365 business solutions, website development, and cloud services. The company positions itself as a reliable and experienced IT partner in the Estonian market, supported by a strong local presence and positive customer testimonials. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, and is hosted behind Cloudflare DNS services. The site is well-optimized for SEO and mobile devices, with good design and user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are published. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website reflects a professional and credible business with room for improvement in privacy and security transparency.

P

Plakit OÜ

plakit.ee

0

Plakit OÜ is a small Estonian company specializing in software and platform testing services. The website presents basic information about the business, targeting clients seeking quality assurance for their software products. The site is built on the Wix platform, utilizing Wix's Thunderbolt framework and standard JavaScript libraries. While the technical infrastructure is modern and the site is mobile-optimized, the content is minimal and lacks comprehensive privacy, cookie, and terms of service policies. Security posture is adequate with HTTPS enabled and some cookie handling mechanisms, but lacks advanced security headers and incident response information. Overall, the website is functional but could benefit from enhanced privacy compliance and clearer contact details to improve trust and professionalism.

The website harno.ee is registered to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) and appears to be a government-related domain. However, the actual website content is inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. This prevents a full analysis of the website's offerings, policies, and user interface. The domain is relatively new, created in 2020, which aligns with possible recent governmental digital initiatives. Technically, the site uses Cloudflare for security and performance, but no DNSSEC is enabled, and no security headers are visible in the provided data. The lack of visible privacy, cookie, or terms of service policies, as well as absence of contact information, limits the assessment of compliance and user support. The site does not expose any forms or data collection fields beyond the captcha mechanism. From a security perspective, the use of Cloudflare's WAF and captcha indicates a proactive approach to mitigate automated threats and abuse. However, the absence of DNSSEC and security headers suggests room for improvement in hardening the domain's security posture. The lack of visible compliance documentation and contact channels is a concern for transparency and user trust. Overall, the site is legitimate and consistent with a government entity but currently inaccessible for detailed content and compliance evaluation. Strategic recommendations include enabling DNSSEC, publishing clear privacy and cookie policies, adding contact and incident response information, and implementing security headers to enhance trust and security.

B

Briti Eesti Kaubanduskoda

becc.ee

0

The British-Estonian Chamber of Commerce (Briti Eesti Kaubanduskoda) operates as a membership organization facilitating business connections and trade between Estonia and the United Kingdom. Established in 2010, it serves a niche market of businesses engaged in bilateral commerce, providing networking opportunities and member support. The website reflects a professional and consistent brand image with clear business focus and relevant content for its target audience. Technically, the website is built on WordPress with WooCommerce and BuddyPress plugins, leveraging modern web technologies such as jQuery, Google Analytics, and Google Tag Manager for analytics and user engagement tracking. The site is hosted under the domain registrar Zone Media OÜ, with a stable and long-standing domain registration since 2010. Performance and mobile optimization are adequate, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection, alongside a cookie consent mechanism compliant with GDPR principles. However, explicit security headers are not detected, and there is a lack of published security policies or incident response contacts. Privacy and terms of service pages are missing, representing compliance gaps. Overall, the website presents a trustworthy and credible business presence with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

A

Alarmeco

alarmeco.ee

0

Alarmeco is an Estonian company specializing in low-voltage, building automation, and security systems. Positioned as a domain expert, it offers modern technical solutions primarily targeting businesses and organizations within Estonia. The website reflects a professional and consistent brand image with clear contact information and relevant business descriptions. Technically, the site uses standard web technologies including Google Tag Manager for analytics, and it is well-optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

P

PZU Kindlustus

pzu.ee

0

PZU Kindlustus operates as an established insurance provider in Estonia, offering a range of personal insurance products including vehicle, travel, home, and accident insurance. The website reflects a professional presence with consistent branding and a focus on serving private individuals. The business is supported by a domain registered since 2012 under ALMIC OÜ, an Estonian registrar, indicating a stable and legitimate operation. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager, Cookiebot for cookie consent, and Cloudflare for DNS and security, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement and reCAPTCHA integration, though explicit security policies and headers could be enhanced. Privacy compliance is partially addressed via cookie consent, but the absence of a clear privacy policy and terms of service pages represents a compliance gap. Overall, the site is functional and trustworthy but would benefit from improved transparency and security documentation.

R

Respo Haagised AS

respo.ee

0

Respo Haagised AS is a well-established Estonian company founded in 1990, specializing in the manufacturing and sale of trailers, accessories, and spare parts. It holds a market leader position in Estonia and is a significant player in the Baltic and Scandinavian regions. The company operates a modern e-commerce platform with multi-language support and offers innovative services such as 24/7 self-service trailer sales points. The website reflects a mature digital infrastructure built on Magento, integrating advanced tracking and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, user-friendly, and trustworthy, supporting the company's business credibility and market presence.

T

Tallinna Tehnikaülikool (TalTech)

gi.ee

0

Tallinna Tehnikaülikool's Geoloogia instituut is a reputable academic unit specializing in geology, mineral resources, and mining engineering. It serves as a key educational and research hub within Estonia, offering undergraduate, graduate, and doctoral programs, alongside active research groups and modern laboratories. The institute maintains a strong presence in the academic community through events, publications, and collaborations. Technically, the website employs modern frameworks such as Next.js and integrates multiple analytics and marketing tools while ensuring GDPR-compliant cookie consent. Security posture is strong with HTTPS enforcement and bot protection mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site reflects a professional, trustworthy, and well-maintained digital presence aligned with its institutional mission.

T

Tallinna Linnateater

linnateater.ee

0

Tallinna Linnateater operates as a cultural institution providing theatrical performances and related visitor services primarily to the Estonian audience. The website serves as an official portal for event information, ticket sales, and theatre news, positioning itself as a reputable and established player in the local media and cultural sector. The domain has been registered since 2010, indicating a stable presence in the market. The site content is professionally presented with good navigation and mobile optimization, supporting a positive user experience.

R

RTT AS

rtt.ee

0

RTT AS is an established Estonian company specializing in retail technology and office supplies, with over 28 years of experience. The company offers a broad range of products including cash registers, printers, copiers, and consumables, alongside installation, maintenance, and training services. Their market position is that of a trusted local provider catering primarily to business customers in Estonia. The website reflects a mature e-commerce platform built on WordPress and WooCommerce, featuring multilingual support and a comprehensive product catalog. Technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and CookieYes for consent management. Security posture is solid with HTTPS enforced and reCAPTCHA integration, although explicit security policies and incident response contacts are not published. Privacy compliance is supported by a detailed cookie consent mechanism, but lacks a visible privacy policy page. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in formal policy disclosures and security header implementation.

Advoco Konsultandid OÜ is a small Estonian company founded in 2010, providing professional and personalized accounting services primarily targeting small and medium-sized enterprises in Tallinn. The website reflects a clear business focus on flexible and reliable bookkeeping services, with content tailored to the local market. The company maintains a consistent brand presence and provides clear contact information, enhancing business credibility. Technically, the website is built on the Voog CMS platform, utilizing common web technologies such as jQuery and lazy loading scripts. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO is implemented at a basic level with appropriate meta tags and Open Graph data. From a security perspective, the site benefits from HTTPS encryption but lacks important security headers and formal security policies. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No forms or data collection mechanisms are detected on the homepage, reducing immediate data protection risks. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

Addenda OÜ is an Estonian-based professional training and consulting company established in 2010. The company offers a wide range of training courses, including construction, occupational safety, accounting, and legal topics, both in-person and via an e-learning platform called Addenda e-akadeemia. The website targets Estonian professionals and organizations seeking continuing education and compliance training. The business maintains a stable market position with a comprehensive course catalog and partnerships with local organizations. Technically, the website uses a custom CMS with legacy JavaScript libraries such as jQuery 1.11.1, and integrates common analytics and advertising tools like Google Analytics and Facebook Pixel. The site is mobile optimized and SEO friendly but lacks modern security headers and updated libraries. Security posture is moderate with HTTPS enabled but missing explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

F

Fort Aero

fort.aero

0

Fort Aero is a specialized aviation service provider focused on corporate jet management, sales, acquisition, maintenance, and charter services. Established since 1997, the company positions itself as a trusted and experienced player in the business aviation sector, primarily serving corporate jet owners and operators. The website reflects a professional and consistent brand image with comprehensive service descriptions and multiple contact channels. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and secure forms, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. WHOIS data is unavailable due to privacy protection, which is common for this business type but slightly reduces trust. Overall, Fort Aero presents a credible and professional online presence with room for improvement in privacy and security transparency.

H

Hansabuss AS

hansabuss.ee

0

Hansabuss AS is an established Estonian transportation company specializing in bus services including charter, line routes, employee transport, school transport, and city tours. With over 30 years of experience, the company positions itself as a reliable and caring bus partner in Estonia and neighboring regions. The website reflects a mature digital presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with modern plugins and SEO tools, offering a good user experience and mobile optimization. Security posture is strong with HTTPS, security headers, and spam protection on forms, though explicit security policies and incident response contacts are not published. Privacy compliance is basic with cookie consent mechanisms and privacy policy presence, but lacks detailed GDPR documentation or data protection officer contact. Overall, the website and domain registration data indicate a legitimate and professional business with moderate to high trustworthiness.

G

GDPR Register

gdprregister.eu

0

GDPR Register is a specialized technology company providing GDPR compliance software tools designed to streamline privacy management for organizations. The company offers a SaaS platform that supports data mapping, records of processing activities, data breach registers, contract lifecycle management, and reporting tools. Their market position is that of an established GDPR compliance software provider with a focus on privacy teams and Data Protection Officers, primarily serving clients in the EU and UK regions. The website demonstrates a mature digital presence with multilingual support and integration of modern marketing and analytics technologies. Technically, the website is built on WordPress using Elementor, with a modern tech stack including jQuery, FontAwesome, and Klaviyo for marketing automation. The site is well-optimized for SEO and mobile responsiveness, with good performance and accessibility features. Security posture is strong, with HTTPS enforced and multiple security headers present. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a publicly visible vulnerability disclosure policy and explicit incident response contact details. Overall, GDPR Register presents a professional, trustworthy, and secure online presence consistent with its business focus on data privacy compliance. The domain WHOIS data is privacy protected, which aligns with the nature of the business. The site integrates trusted client logos and provides comprehensive privacy and cookie policies, reinforcing its compliance credentials. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing incident response transparency, and improving accessibility compliance to further strengthen trust and security posture.

Z

Zone Media OÜ

depile.ee

0

Depile.ee is an established Estonian e-commerce website specializing in beauty, health, and wellness products. The site offers a wide range of branded products including hair care, nail care, body care, massage items, and related accessories. The business targets both consumers and professionals in the beauty sector, primarily serving the Estonian market. The company behind the domain is Zone Media OÜ, with a domain age dating back to 2010, indicating a mature online presence. Technically, the website is built on Magento 2, leveraging modern web technologies such as RequireJS, jQuery, and FontAwesome. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, with a clear navigation structure and responsive design. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and includes several security headers, contributing to a good security posture. Cookie consent is implemented with a detailed mechanism allowing users to manage preferences, which aligns with GDPR requirements. However, the absence of a publicly accessible privacy policy and terms of service pages represents a compliance gap. No critical vulnerabilities or exposed sensitive data were detected. Overall, Depile.ee presents a professional and trustworthy e-commerce platform with solid technical foundations and security practices. To enhance compliance and trust, it is recommended to publish comprehensive privacy and terms of service documents and improve accessibility features. Regular security audits and updates to third-party scripts will further strengthen the site's security posture.

B

Baltresto

baltresto.com

0

Baltresto is a specialized manufacturer and retailer of high-quality wooden and fiberglass hot tubs and outdoor saunas, operating primarily in the EU market since 2008. The company offers a broad product range including wood-fired hot tubs, fiberglass hot tubs, hot tub liners, and sauna accessories, targeting consumers and businesses seeking durable and affordable private garden spa solutions. Their market position is supported by direct manufacturing and a 15+ year history, with localized partner sites in multiple European countries enhancing regional reach. Technically, the website is built on a mature WordPress and WooCommerce platform, utilizing popular plugins such as WPBakery Page Builder and WP Rocket for performance optimization. The site integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Yandex Metrika, and Trustpilot reviews, reflecting a moderate to advanced digital maturity. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized domain changes. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No explicit security policies or incident response contacts are published, which could be enhanced to improve trust and compliance. Privacy compliance is basic with cookie consent implemented but no dedicated privacy policy page clearly identified. Overall, Baltresto presents a credible and professional online presence with solid business credibility and moderate security posture. Strategic improvements in security headers, DNSSEC, and privacy documentation would strengthen their security and compliance stance, supporting continued growth and customer trust.

ProPXLS is a small-scale business with an online presence focused on simplicity and direct contact. The website content is minimal, providing only basic contact information without detailed business descriptions or service offerings. The technical infrastructure relies on legacy technologies such as jQuery 1.8 and Google Analytics for user tracking, indicating a need for modernization. Security posture is moderate but impacted by the use of outdated libraries and lack of security headers. Privacy compliance is poor due to absence of privacy and cookie policies, and no GDPR compliance indicators are present. Overall, the website is functional but lacks comprehensive content, security best practices, and compliance measures.

The American Chamber of Commerce in Estonia (AmCham Estonia) is a well-established non-profit organization founded in 2010 that serves as a key platform for business professionals and investors from 25 countries to foster a competitive business climate in Estonia. The organization offers membership-based services including advocacy, networking, events, and business visibility. The website reflects a professional and consistent brand image with comprehensive content about membership, events, and partners. Technically, the site is built on WordPress with Elementor and uses modern web technologies, providing good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response policies are absent. Privacy compliance is partial, with a clear privacy policy but lacking cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

N

Nordic Hunting Club

nordichuntingclub.com

0

Nordic Hunting Club is a specialized outfitter offering guided hunting experiences in Estonia, focusing on big game and migratory birds. The company positions itself as a high-quality service provider with over 15 years of experience, targeting hunters interested in trophy hunting in Northern Europe. The website is professionally designed using WordPress and the Avada theme, with SEO optimized via Yoast plugin and enriched with structured data. The technical infrastructure includes modern JavaScript libraries and analytics tools, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is missing, raising concerns about domain legitimacy and registration consistency. Overall, the site is functional and professional but requires improvements in privacy compliance and domain registration transparency.

Stimscape OÜ is a small specialized service provider operating primarily in Estonia and Finland, offering digital imaging technician (DIT) services and technical solutions for film and TV production sets and studios. Their key offerings include on-set data management, LTO archiving, and IT solutions tailored to the media production industry. The website presents a professional image with clear navigation, client logos, and references to notable film and TV projects, positioning the company as a niche technical partner in the media sector. Technically, the website uses a basic but functional technology stack including jQuery, Google Fonts, Font Awesome, and Google Analytics for user tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. No CMS or hosting provider details are evident. SEO is basic with meta keywords and description present but no advanced structured data or Open Graph tags. From a security perspective, the site lacks critical security headers and does not provide privacy or cookie policies, which impacts GDPR compliance. No forms or user input fields reduce attack surface, but the absence of incident response contacts and security policies indicates a low maturity in security governance. The WHOIS data aligns well with the business claims, showing a consistent registrant in Estonia, supporting domain legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security posture, and more comprehensive contact and policy disclosures to increase trust and reduce risk.

R

Register OÜ

ir.ee

0

Register OÜ operates the Inforegister website, a platform providing credit ratings, beneficial ownership information, financial forecasts, and business risk assessments primarily targeting Estonian businesses and individuals. The company positions itself as a trusted local provider of business and financial data services, leveraging a subscription-based model to deliver valuable insights. The website supports multiple languages and offers a user-friendly search interface to access company and individual data. Technically, the site is built on WordPress with modern integrations such as Google Site Kit for analytics and OAuth for authentication, indicating a moderate level of digital maturity. The site is mobile-optimized and employs HTTPS with a valid SSL certificate, ensuring secure communications. Security posture is solid with cookie consent mechanisms and no visible vulnerabilities, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website demonstrates a professional and trustworthy online presence with good compliance to privacy regulations and a clear business focus.

H

Hedgehog OÜ

hedgehog.ee

0

Hedgehog OÜ is a specialized Estonian electronics engineering bureau established in 2011, focusing on economical and reliable system design, prototyping, and manufacturing. Their expertise spans analog and digital circuit design, PCB layout, and embedded software development, serving startups, IT, and electronics companies as well as academic institutions. The website reflects a professional and consistent brand image with detailed team contacts and service descriptions. Technically, the site uses a CMS (Voog), jQuery, Google reCAPTCHA for form security, and Facebook SDK for social integration. While HTTPS is enabled and forms are protected with reCAPTCHA, the site lacks explicit privacy and cookie policies and security headers, which are areas for improvement. WHOIS data confirms domain legitimacy and consistency with the business history and location. Overall, the site is functional, trustworthy, and professionally presented but could enhance compliance and security posture.

E

Elkdata OÜ

remedyway.ee

0

Wiru Mill operates an e-commerce website specializing in organic and specialty food products such as specialty breads, organic olive oil, and buckwheat products. The business is relatively new, established in 2023, and targets consumers interested in healthy and organic food options. The website is built on WordPress with WooCommerce, leveraging common plugins and Google services for analytics and advertising. The technical infrastructure is standard for small to medium e-commerce sites, hosted by Elkdata OÜ, which is also the domain registrar, indicating consistency and legitimacy. Security measures include HTTPS and Google reCAPTCHA, but lack advanced security headers and explicit privacy or cookie policies. The absence of contact information and compliance documents reduces trust and privacy compliance scores.

A

AS Eesti Raudtee

evr.ee

0

AS Eesti Raudtee is a state-owned enterprise responsible for the management, maintenance, and administration of Estonia's railway infrastructure. The company plays a critical role in ensuring smooth, efficient, and safe railway operations across the country. Their website reflects a professional and consistent brand image, targeting a broad audience including business clients, passengers, and potential employees. The site offers key services such as infrastructure information, project updates, job vacancies, and customer portals. Technically, the website is built on Joomla CMS with modern frontend technologies and integrates Google Analytics and Adform for analytics and advertising, all managed with a robust cookie consent mechanism. Security-wise, the site enforces HTTPS, uses bot protection cookies, and shows no signs of exposed sensitive data or vulnerabilities. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the website is well-structured, performant, and trustworthy, supporting the company's position as a key national transportation infrastructure operator.

A

AS G4S Eesti

g4s.ee

0

AS G4S Eesti is a leading security services provider in Estonia, operating as part of the international G4S group. The company specializes in a broad range of security solutions including home security, video surveillance, manned guarding, fire safety, event security, and training services. Their website reflects a mature and professional organization with a strong market position and a comprehensive service portfolio targeting both private individuals and business clients. The company has been established since 2010, with a consistent domain registration and a clear digital presence. Technically, the website is built on modern frameworks such as Next.js and React, with a CMS likely based on Strapi, hosted on reliable infrastructure including AWS and Ultradns. The site is well-optimized for mobile devices, SEO, and accessibility, providing a positive user experience. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and integrates trusted third-party services like LiveChat and Cookiebot. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a high level of professionalism, security awareness, and compliance with privacy regulations such as GDPR.

C

COMBICON OÜ

combicon.ee

0

COMBICON OÜ is a small Estonian company specializing in the design, construction, and development of production, warehouse, and commercial buildings, including additions and real estate acquisition assistance. The company targets local businesses and individuals seeking construction and real estate services, positioning itself as a professional local player with a clear focus on project-based services. The website is professionally designed, mobile-optimized, and uses modern web technologies including Voog CMS, Google Analytics, and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy but could improve transparency and compliance.

V

Viru Elektrikaubandus

ve.ee

0

Viru Elektrikaubandus is an established Estonian company specializing in the sale of electrical goods, operating both online and through four physical stores across Estonia. The company targets business clients and retail customers seeking quality electrical products. Their website is built on the nopCommerce platform, indicating a mature e-commerce infrastructure. The site employs modern technologies including Google Tag Manager, Facebook Pixel, and Cookiebot for analytics and compliance. Security measures such as HTTPS and reCAPTCHA are implemented, contributing to a solid security posture. However, explicit privacy policy and terms of service pages are not detected in the provided content, which may affect compliance and user trust. Overall, the website presents a professional and trustworthy front with room for improvement in privacy transparency and contact information visibility.

L

LandCredit AS

landcredit.ee

0

LandCredit AS is an Estonian financial services company specializing in loans secured by agricultural and forestry land. Their website targets farmers, forestry businesses, and renewable energy project developers, offering flexible loan products with faster processing times than traditional banks. The company positions itself as a niche lender contributing to rural development in Estonia. Technically, the website is built on WordPress with Elementor, leveraging modern analytics and marketing tools such as Google Analytics, Hotjar, and CookieYes for GDPR compliance. The site is well-structured, mobile-optimized, and provides clear contact channels and customer testimonials, enhancing trust and user experience. Security posture is solid with HTTPS and secure form handling, though improvements are recommended in publishing explicit security policies and incident response contacts. Overall, the website demonstrates a mature digital presence with good compliance and business credibility.

C

Casa de Baile

tantsukeskus.ee

0

Casa de Baile is Estonia's largest and most recognized salsa school based in Tallinn, offering salsa, bachata, kizomba, and other Latin American social dance courses primarily targeting beginners and dance enthusiasts. The website reflects a well-established business with a domain age since 2010, consistent with its market presence. The technical infrastructure uses modern web technologies including jQuery, Vue.js, Bootstrap, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and incident response information are missing. Overall, the website demonstrates a solid business credibility and compliance with GDPR through privacy and cookie policies. Strategic improvements in security headers and incident response readiness would enhance the security maturity further.

N

Nord Property Ltd

nordproperty.com

0

Nord Property Ltd is a medium-sized real estate company based in Estonia, specializing in international real estate services including brokering, property management, consulting, appraisal, investment counseling, and development sales. The company targets property buyers, sellers, and investors primarily in Estonia and Spain, offering multilingual support and a professional service portfolio. The website is well-structured with clear navigation and relevant content, supporting a good user experience and moderate mobile optimization. Technically, the site uses common analytics and tracking tools such as Google Analytics and Google Tag Manager, along with Google Maps API for location services. However, no CMS or hosting provider details were identified, and performance is moderate.

M

Mediahouse

mediahouse.ee

0

Mediahouse is an established Estonian media and advertising agency founded in 2010, specializing in data-driven digital marketing solutions across Meta and Google channels. The company targets businesses seeking comprehensive media strategies and measurable brand growth. Their website reflects a professional and consistent brand presence with a portfolio of notable clients and recent projects. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Matomo. Security posture is solid with HTTPS and reCAPTCHA implemented, though lacking some security headers and published policies. Privacy compliance is minimal with no visible privacy or cookie policies, which is a key area for improvement. Overall, the website is well-designed, user-friendly, and trustworthy, supporting the company's market position as a reliable media partner.

The website cvok.ee is an established Estonian job portal operated by Zone Media OÜ since 2010. It offers job postings, CV database services, and recruitment-related offerings targeting job seekers and employers in Estonia. The platform includes additional services such as accounting and CV expert advice, positioning itself as a comprehensive employment resource in the local market. The site content is primarily in English with options for Estonian and Russian, catering to a diverse audience. Technically, the site uses legacy HTML and JavaScript technologies, including an outdated jQuery version, and integrates Google Analytics for traffic monitoring. The design and user experience are basic, with limited mobile optimization and accessibility features. Security posture is moderate; HTTPS is implied but no advanced security headers or cookie consent mechanisms are present. The WHOIS data confirms a consistent and legitimate domain registration with no privacy protection, enhancing trust. Overall, the site is functional but would benefit from modernization and improved security and privacy compliance.

E

Eliko Location Technologies OU

eliko.ee

0

Eliko Location Technologies OU is a technology company specializing in next-generation location tracking solutions based on ultra-wideband (UWB) technology. Their website presents a mature and professional digital presence, highlighting their RTLS products, case studies with reputable clients such as Bosch, and a strong emphasis on accuracy, reliability, and tailored solutions for industrial and immersive applications. The company targets machine builders, enterprise software providers, and manufacturing operations, positioning itself as a trusted provider with over 200 companies relying on their technology. Technically, the website is built on WordPress and leverages modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA for security and analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, with comprehensive SEO metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and implements a cookie consent mechanism, demonstrating awareness of privacy and security best practices. However, explicit privacy policies, terms of service, and security policies are not found, representing areas for improvement. DNSSEC is not enabled, which could enhance DNS security. Overall, the security posture is good but could be strengthened with more explicit documentation and technical controls. The domain WHOIS data aligns well with the website content, showing consistent registrant information and appropriate domain age, supporting the legitimacy of the business. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Strategically, Eliko is well-positioned in the RTLS market with a solid technical foundation and trusted customer base. Enhancing transparency around privacy, security policies, and incident response would further strengthen trust and compliance posture.

O

OÜ KINO MAASTIKUARHITEKTID

kinoline.ee

0

OÜ KINO MAASTIKUARHITEKTID is a small Estonian landscape architecture firm specializing in the design of public spaces, parks, and urban landscapes that blend modern design with sustainable thinking. The company presents a professional online portfolio showcasing recent projects and maintains active social media channels to engage with clients and the public. The website is built on a modern WordPress platform using Elementor and Jet plugins, optimized for mobile devices and SEO. Security posture is solid with HTTPS enabled and a comprehensive cookie consent mechanism in place, though additional security headers could enhance protection. The domain registration is transparent and consistent with the business's Estonian location and timeline. Overall, the website reflects a credible, professional business with good digital maturity and compliance with privacy regulations.

A

abmcloud

abmcloud.com

0

ABM Cloud is a technology company specializing in cloud-based business software solutions focused on supply chain optimization, logistics, and retail management. The company offers a suite of SaaS products designed to automate and improve business processes for manufacturers, distributors, and retailers across multiple countries. With projects completed in 32 countries and over 500 clients, ABM Cloud holds a solid market position in the business automation sector. The website is built on WordPress and integrates multiple modern analytics and marketing tools such as HubSpot, Google Tag Manager, Hotjar, Microsoft Clarity, and Facebook Pixel, indicating a mature digital infrastructure. The site is well-structured with good SEO practices and mobile optimization, although accessibility features are basic. The technical stack and hosting appear reliable, with domain registration consistent with the company's claimed history. Security posture is moderate; HTTPS is enforced, and domain transfer protections are in place, but DNSSEC is not enabled and security headers are missing. No explicit security or incident response policies are published, and privacy compliance is limited by the absence of a privacy policy page. The site uses extensive tracking and data collection via forms and third-party scripts, which may raise privacy concerns. Overall, ABM Cloud presents a professional and credible business front with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen trust and reduce risk exposure.