Security Directory

C

Culligan Estonia OU

culligan.ee

0

Culligan Estonia OU operates a professional website focused on providing high-quality water supply and filtration solutions to businesses and households in Estonia. The company positions itself as a trusted partner offering consultation, installation, maintenance, and product delivery services. The website reflects a regional market presence with consistent branding and clear business messaging. Technically, the site is built on WordPress using modern technologies such as Bootstrap, jQuery, and integrates analytics and marketing tools like Piwik PRO, Google Tag Manager, and OneTrust for cookie consent. Security posture is strong with HTTPS enforced and use of reCAPTCHA, though some security headers could be improved. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy page. Overall, the site is professional, trustworthy, and well-optimized for SEO and mobile use.

M

MTÜ Arengukoostöö Ümarlaud (AKÜ)

terveilm.ee

0

MTÜ Arengukoostöö Ümarlaud (AKÜ) is a small Estonian non-profit coalition representing NGOs engaged in development cooperation, global citizenship education, and sustainable development. The organization acts as a strategic partner and consultant to the Estonian Ministry of Foreign Affairs and provides workshops and consultancy services to private sector companies and the public. The website reflects a professional and consistent brand presence with good content quality and clear navigation, targeting Estonian NGOs and interested stakeholders. Technically, the site is built on WordPress with modern plugins and integrations, including multilingual support and social media connectivity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security or privacy policies. Overall, the site is trustworthy and well-positioned within its sector but would benefit from enhanced privacy compliance and security best practices.

R

Renault Trucks Eesti

renault-trucks.ee

0

Renault Trucks Eesti operates as a regional distributor and service provider for Renault Trucks in Estonia, offering a comprehensive range of transport solutions and commercial vehicles tailored to various sectors such as distribution, construction, and heavy haulage. The website reflects a professional and consistent brand presence aligned with the parent company Renault Trucks. Technically, the site is built on Drupal CMS and integrates modern marketing and analytics tools including Google Tag Manager, Matomo, HubSpot, and OneTrust for cookie consent, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforced and standard security headers present, although explicit security policies and incident response contacts are not published. Privacy compliance is strong with clear cookie consent mechanisms and GDPR-aligned privacy policies. Overall, the website is trustworthy, well-structured, and serves its target audience effectively.

E

Eesti Turvaettevõtete Liit

etel.ee

0

Eesti Turvaettevõtete Liit (ETEL) is an established Estonian security industry association and training center founded in 2017. The organization provides a range of services including industry information, training, and qualification for security professionals. Their website targets security companies, service purchasers, and specialists, positioning ETEL as a key national player in the security sector. The site content is professional and well-structured, supporting their role as an information hub and training provider. Technically, the website is built on the Voog CMS platform, leveraging modern JavaScript libraries and Google Analytics for tracking. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and public security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

Flix SE

flixbus.ee

0

Flix SE operates the www.flixbus.ee website, providing affordable bus travel services across Europe with a strong presence in Estonia and neighboring countries. The company offers extensive routes, a user-friendly booking platform, and value-added services such as onboard Wi-Fi and power outlets. The website is professionally designed, mobile-optimized, and supports multiple languages, reflecting a mature digital presence. Technically, the site leverages Drupal CMS, modern JavaScript frameworks, and integrates advanced analytics and consent management tools, ensuring a robust and scalable infrastructure. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, positioning Flix SE as a leading transportation service provider in the European market.

K

KIA AUTO AS

kia.ee

0

KIA AUTO AS operates as the official importer and distributor of Kia vehicles in the Baltic region, primarily serving Estonia. The company offers a broad range of Kia models including SUVs, electric vehicles, and passenger cars, supported by a network of 12 official dealerships across Estonia. The website reflects a professional automotive business with a focus on customer engagement through vehicle configuration and comparison tools. Technically, the site employs modern web technologies including Cookiebot for GDPR-compliant cookie management and Google Tag Manager for analytics and marketing. The site is mobile-optimized and presents a good user experience with clear navigation and branding consistency. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible advanced security headers and published security policies or incident response contacts. The extensive use of third-party tracking and advertising services indicates a high level of user data collection, balanced by transparent cookie consent dialogs. Overall, the website is legitimate, professionally maintained, and compliant with regional privacy regulations, though it could improve in explicit security policy disclosures and contact information availability.

C

Crowdin

crowdin.com

0

Crowdin is a well-established localization and translation management platform founded in 2008 and headquartered in Estonia. It serves teams and businesses by providing a comprehensive SaaS solution that integrates AI-powered translation, automated workflows, and extensive integrations with development and marketing tools. The platform is positioned as a leader in the localization technology market, offering services tailored for engineering, marketing, support, design, and translation teams. Crowdin's website reflects a mature digital infrastructure with fast performance, mobile optimization, and strong SEO practices. The use of modern analytics and monitoring tools such as Google Analytics, PostHog, and Sentry indicates a high level of digital maturity. Security posture is robust with HTTPS enforcement, security headers, CSRF protections, and Cloudflare bot management, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, Crowdin presents a trustworthy and professional online presence with strong business credibility and technical implementation.

S

Spribe OÜ

spribe.io

0

Spribe OÜ is a technology company specializing in the development of innovative, next-generation casino games for the iGaming industry. Their product portfolio includes popular games such as Aviator, which features provably fair cryptography technology to ensure transparency and trust. The company targets online casino operators and players, positioning itself as a pioneer in smart gaming solutions with a focus on engagement tools and promotional mechanics. The website reflects a professional and modern digital presence, hosted on Amazon Web Services and built using Angular framework, with integrated analytics and marketing tools. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR. Overall, Spribe demonstrates a credible and trustworthy business with active partnerships and regulatory licenses, suitable for the regulated online gambling market.

A

AJ Tooted

ajtooted.ee

0

AJ Tooted is a medium-sized Estonian company specializing in ergonomic and modern office and industrial furniture solutions, targeting businesses and institutions. The company emphasizes Scandinavian design, quality, and fast delivery, positioning itself as a trusted supplier in the Nordic and Baltic regions. The website reflects a professional e-commerce platform with a clear product catalog and regional partner sites. Technically, the site uses modern JavaScript frameworks, integrates consent-based tracking, and employs security best practices such as HTTPS and Content-Security-Policy headers. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is strong with no visible vulnerabilities, but incident response and vulnerability disclosure information are absent. Overall, the site is well-built, secure, and business credible, with room for improvement in privacy compliance documentation.

P

Phenomena International OÜ

nrich.ai

0

N.Rich is a mature, Estonia-based SaaS company specializing in account-based marketing platforms designed to align sales and marketing teams for measurable revenue impact. The platform offers core ABM capabilities including ICP account list building, intent data analytics, account-based advertising, and analytics, enhanced with AI-powered workflows and content generation. Recognized by Gartner in the 2024 Magic Quadrant, N.Rich serves over 250 GTM teams and is positioned as a trusted solution in the B2B marketing technology space. The website is professionally designed, mobile-optimized, and rich in content, including customer testimonials and partner logos, reflecting a strong market presence. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies and integrations such as Google Tag Manager, Facebook Pixel, and AWS hosting. Performance and SEO optimizations are good, with clear navigation and accessibility features. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is basic, with no explicit privacy or cookie policy pages found, but consent management is implemented via cookie banners and Google tag consent updates. Overall, the security posture is good but could be improved by publishing explicit privacy and security policies, enabling DNSSEC, and adding security headers. No WAF or blocking mechanisms were detected, allowing full content access. The domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing privacy transparency, publishing vulnerability disclosure policies, enabling DNSSEC, and strengthening security headers to improve trust and compliance.

M

Miele

miele.ee

0

Miele is a globally recognized premium brand specializing in home appliances and commercial equipment, offering high-quality products and services. The website targets both domestic consumers and professional users, providing product information, promotions, and service options. Technically, the site employs modern web technologies including JavaScript, Web Components, and is built on the OpenText CMS platform integrated with SAP Hybris commerce. The site is mobile-optimized with good SEO practices but lacks some accessibility features. Security posture is solid with HTTPS enabled and no exposed sensitive data, though explicit security headers and privacy policies are missing. Analytics is implemented via Google Tag Manager, indicating moderate user tracking. Overall, the website is professional and trustworthy but could improve privacy compliance and security transparency.

E

Eesti Sclerosis Multiplexi Ühingute Liit

smk.ee

0

Eesti Sclerosis Multiplexi Ühingute Liit is a small Estonian non-profit organization dedicated to supporting individuals affected by multiple sclerosis. The website serves as an informational and community platform primarily targeting patients, healthcare professionals, and supporters within Estonia. The organization was founded in 2010, consistent with the domain registration date, indicating a stable presence in its niche healthcare sector. The website uses WordPress with the Divi theme and integrates jQuery and Google Analytics for functionality and user tracking. While the site is well-designed and mobile-optimized, it lacks critical privacy and cookie policies, which impacts its compliance posture. Security-wise, HTTPS is enabled, but the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security practices to align with modern standards.

M

MTÜ Eesti Ämmaemandate Ühing

ammaemand.org

0

MTÜ Eesti Ämmaemandate Ühing is a national professional association in Estonia representing midwives and midwifery students. The organization focuses on promoting and developing midwifery as a profession, providing education, guidelines, and community support. The website is well-structured, professionally designed, and targets healthcare professionals and families in Estonia. Technically, the site is built on WordPress with modern plugins and themes, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain transfer protection, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, but no explicit incident response or security policy is published. Overall, the site is trustworthy and serves its niche effectively.

Edisoft Group OU operates as the largest EDI (Electronic Data Interchange) operator in the Baltic states, providing electronic document exchange services to over 2500 clients. Their website, primarily in Lithuanian, showcases a comprehensive portfolio of EDI-related services including integration solutions, B2B order systems, and international EDI connections. The company emphasizes automation and efficiency in commercial document exchange, targeting businesses in Lithuania, Latvia, Estonia, and beyond. The market position is strong within the Baltic region, supported by certifications such as PEPPOL and a significant volume of processed documents annually.

O

OB Holding 1 OÜ

olybet.eu

0

OlyBet is a licensed online gambling and sports betting platform operating primarily in Europe, with a strong focus on casino games, live casino, esports, and virtual sports. The company is part of the Olympic Entertainment Group ecosystem and holds multiple gambling licenses issued by the Estonian Tax and Customs Board. The website is professionally designed, mobile-optimized, and integrates numerous third-party services for analytics, marketing, and fraud prevention. Security measures include strict Content-Security-Policy headers, HTTPS enforcement, and multi-factor authentication options for users. Privacy compliance is evident with comprehensive privacy and cookie policies, though explicit security and incident response policies are not publicly disclosed. Overall, the platform demonstrates a mature digital infrastructure and a strong market position in the European online gambling sector.

The domain lin.ee is registered since 2014 under Zone Media OÜ, an Estonian registrar, indicating a legitimate registration with a stable history. However, the website content is currently inaccessible, returning a 404 Not Found error with no metadata, scripts, or visible content. This lack of accessible content severely limits the ability to assess the business operations, services, or user engagement. The technical infrastructure details are minimal, with no detected security headers or HTTPS information provided, suggesting potential gaps in security posture. The absence of privacy, cookie, or terms of service policies further indicates a lack of compliance readiness. Overall, the site appears inactive or under maintenance, resulting in a low trust and security score.

S

Stena Line

stenaline.ee

0

Stena Line is a well-established ferry transportation company operating in Northern Europe, providing passenger and freight ferry services across multiple countries including Estonia, Sweden, Germany, and the UK. The website offers comprehensive information about routes, vessels, and booking options, targeting travelers and freight customers. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, Cloudflare security services, and advanced marketing and analytics tools such as Adobe Analytics and Kameleoon. Security posture is strong with HTTPS, security headers, and bot protection mechanisms in place, though explicit security and incident response policies are not prominently published. Overall, the site is professional, secure, and compliant with GDPR, reflecting a mature digital presence for a large transportation enterprise.

V

Volkswagen

volkswagen.ee

0

Volkswagen Eesti operates as the official Estonian portal for Volkswagen, providing comprehensive information on vehicle models, electric and hybrid options, services, and customer support. The website reflects a mature digital presence with a modern tech stack including React and Adobe Experience Manager, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, CSP, and guard mechanisms to prevent unauthorized content loading. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, the site demonstrates high professionalism and trustworthiness aligned with Volkswagen's global brand standards.

B

Bosch Home

bosch-home.ee

0

Bosch Home Estonia operates as a localized website for the Bosch brand, focusing on high-quality, sustainable household appliances. The site targets Estonian consumers seeking reliable kitchen and home appliances, leveraging the global reputation of Bosch and its parent company BSH Hausgeräte GmbH. The business model centers on product showcasing and retail support, positioning itself as a trusted provider in the manufacturing and retail sectors. Technically, the website employs modern frameworks such as Next.js and React, with integration of Adobe Launch for analytics and ConsentManager for cookie consent, reflecting a mature digital infrastructure. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. Security posture is adequate with HTTPS and consent mechanisms in place, but lacks explicit security headers and published security policies. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional and trustworthy, though improvements in privacy and security documentation are recommended to enhance compliance and user trust.

The website ut.ee represents the University of Tartu, Estonia's premier educational institution, registered under the Ministry of Education and Research (Haridus- ja Teadusministeerium). The domain is well-established since 2010 and aligns with the official educational sector in Estonia. However, the current HTML content is a Cloudflare Turnstile CAPTCHA challenge page, indicating that access to the actual website content is blocked by a Web Application Firewall (WAF) for security verification. This limits the ability to analyze the site's full content, policies, and user interface. Technically, the site employs Cloudflare services for security and bot mitigation, which is a positive indicator of proactive security posture. However, no visible security headers or privacy-related policies are present in the challenge page HTML. The lack of accessible contact information, privacy policy, cookie policy, and terms of service reduces transparency and compliance visibility. The site does not expose any adult or explicit content and is safe for general audiences. From a security perspective, the use of Cloudflare WAF and Turnstile CAPTCHA is a strength, but the absence of visible security headers and compliance documentation is a weakness. The WHOIS data confirms the domain's legitimacy and consistency with the educational entity it represents. Overall, the site demonstrates a moderate trust level but suffers from limited content accessibility and transparency due to the WAF challenge. Strategic recommendations include improving transparency by publishing privacy and cookie policies, providing clear contact and incident response information, and enhancing security headers to strengthen the security posture. Addressing these will improve user trust, compliance, and overall website quality.

S

Schindler Eesti

schindler.ee

0

Schindler Eesti operates as a localized branch of the global Schindler Group, specializing in the manufacture, installation, and modernization of elevators, escalators, and moving walkways. The website targets building owners, property managers, and businesses in Estonia, offering a comprehensive range of vertical transportation solutions including passenger and freight elevators, digital media services, and CleanMobility innovations. The company holds a strong market position as a global leader with a professional and consistent brand presence in Estonia. Technically, the website is built on Adobe Experience Manager, leveraging Adobe's marketing and analytics platforms alongside HubSpot and OneTrust for consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security is robust with HTTPS and a strict Content Security Policy, though explicit security policies and vulnerability disclosures are absent. The security posture is strong, with no detected vulnerabilities or exposed sensitive data. However, the absence of a published privacy policy and terms of service slightly reduces privacy compliance scores. Contact information is available via a contact page but lacks direct emails or phone numbers in the HTML content. Overall, the website is trustworthy, professional, and secure, with room for improvement in transparency and direct contact details. Strategic recommendations include publishing comprehensive privacy and terms of service documents, adding explicit security and incident response policies, and enhancing direct contact information availability to improve user trust and compliance.

J

Jaguar Eesti

jaguar.ee

0

Jaguar Eesti operates as the official regional website for the Jaguar automotive brand in Estonia, targeting car buyers and enthusiasts interested in Jaguar vehicles and services. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js and integrates Google Tag Manager and Usercentrics for analytics and consent management, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses a consent management platform, but lacks explicit security headers and visible privacy or cookie policies, which are areas for improvement. Overall, the website is trustworthy and well-positioned in its market segment but would benefit from enhanced privacy compliance and security transparency.

S

SIA DEPO DIY

depo.ee

0

DEPO is a well-established retail chain operating primarily in the Baltic region, focusing on home improvement, garden, food, and related retail sectors. The company maintains a professional online presence with a multilingual WordPress-based website, offering both physical store information and online shopping options. The website is well-structured, with clear navigation and consistent branding, targeting a general consumer audience in Estonia and neighboring countries. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Maps API, supported by popular WordPress plugins such as WPBakery and Yoast SEO, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit incident response policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The site does not contain any adult or questionable content and maintains a good level of privacy compliance with GDPR considerations. Strategic recommendations include enhancing security headers, publishing security policies, and continuous monitoring of third-party scripts to maintain a strong security posture.

S

SK ID Solutions AS

skidsolutions.eu

0

SK ID Solutions AS is a well-established Estonian technology company specializing in secure e-identity and digital signing solutions since 2001. Their flagship services include Smart-ID, Mobile-ID, Authentigate, Timestamping, and Certificates, serving over 4 million users and more than 1000 businesses globally. The company holds significant trust indicators such as ISO 27001 certification, Qualified Trust Services Provider status, and active participation in European standardization bodies like ETSI. Technically, the website is built on WordPress with modern libraries and frameworks, optimized for mobile and SEO, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Overall, the website and business present a high level of professionalism and trustworthiness, with minor gaps in privacy consent mechanisms and explicit security policies.

S

SK ID Solutions | International e-identity solutions since 2001

sk.ee

0

SK ID Solutions is a well-established technology company specializing in secure e-identity and digital signing solutions, operating internationally since 2001. Their key offerings include Smart-ID, Mobile-ID, Authentigate, Timestamping, and Certificates, serving over 4 million users and more than 1000 businesses globally. The company holds notable certifications and awards, including the Strongest in Estonia title and KPMG ISO certification, reinforcing their market credibility. Technically, the website is built on WordPress with modern libraries such as jQuery, Bootstrap, Flickity, and GSAP, providing a responsive and professional user experience. SEO is well implemented with Yoast SEO plugin, and the site is mobile-optimized. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses reputable libraries but lacks explicit security headers and visible incident response or vulnerability disclosure information. Privacy compliance is good with a comprehensive privacy policy and cookie policy, though no active cookie consent mechanism is detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, incident response transparency, and cookie consent would enhance their security posture and compliance.

S

SK ID Solutions

smart-id.com

0

Smart-ID, operated by SK ID Solutions, is a leading digital identity and authentication service provider primarily serving the Baltic region with expanding presence in Belgium, India, and Iceland. The company offers secure, multi-device authentication and qualified electronic signature services compliant with eIDAS and GDPR standards. The website demonstrates a mature digital infrastructure built on WordPress with modern plugins and SEO optimizations, providing a professional user experience with multilingual support. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. The absence of WHOIS domain registration data is a notable anomaly that requires further investigation to confirm domain legitimacy. Overall, the business is well-positioned in the digital identity market with strong trust indicators and client testimonials.

B

Bigbank Group

bigbank.eu

0

Bigbank Group operates as a financial institution specializing in banking services such as loans and deposits, targeting individuals and businesses in Europe. The website is professionally designed using modern frameworks like Nuxt.js and Bootstrap, with moderate performance and good mobile optimization. Security posture is limited based on the provided data, with no visible security headers or privacy policies, indicating room for improvement in compliance and security best practices. Overall, the website presents a credible business front but lacks visible privacy and security documentation, which are critical for trust and regulatory compliance.

B

Bigbank AS

bigbank.ee

0

Bigbank AS is a well-established Estonian bank specializing in loan products for both individuals and businesses, with a strong regional presence in the Baltic states and Finland. The company operates primarily through an online platform, offering personal and business loans, refinancing options, and related financial services. Their market position is that of a specialized lender with a focus on digital banking solutions. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with responsive design and good SEO practices, indicating a mature digital infrastructure. Security posture is strong, with HTTPS enforced, security headers present, and bot protection via hCaptcha, although explicit security policy documentation is absent. Overall, the website is professional, trustworthy, and compliant with GDPR, supported by clear privacy and cookie policies. The WHOIS data confirms legitimacy with consistent registrant information and domain age aligning with the company's history.

V

Väikelaenud

jti.ee

0

The website jti.ee operates as a loan comparison platform primarily targeting Estonian consumers seeking small loans. It aggregates loan offers from well-known banks and financial institutions, providing users with transparent information on interest rates, fees, and loan terms. The platform emphasizes quick approval, clear conditions, and competitive rates, positioning itself as a convenient online resource for loan seekers in Estonia. The business appears to be small-sized and newly established, with a focus on finance sector services. Technically, the site is built on WordPress using Elementor and Contact Form 7, with Cloudflare DNS for domain management. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is moderate, with HTTPS enabled but lacking advanced security headers. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data raises concerns due to a domain creation date set in the future, which may indicate data inconsistency or placeholder information. Overall, the site is functional and professional but requires improvements in privacy compliance and security hardening.

Bravoauto, operated by Inchcape, is a prominent used car dealership in Estonia, offering the largest indoor selection of used vehicles. The website targets Estonian customers interested in buying, selling, or ordering cars, providing multiple physical locations and contact options. The business model focuses on retail sales and buyback services, positioning itself as a market leader in the local automotive sector. Technically, the website is built on Umbraco CMS with modern frontend libraries such as jQuery, SwiperJS, and TailwindCSS, ensuring a responsive and user-friendly experience. The site integrates key marketing and analytics tools including Google Tag Manager and Facebook Pixel, alongside a GDPR-compliant cookie consent mechanism via Usercentrics. Security posture is solid with HTTPS and standard security headers, although explicit privacy and terms policies are missing, which could impact compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy documentation and SEO improvements.

MINI EE is the official website for MINI automotive brand in Estonia, offering new and used cars, financial services, and test drive scheduling. The site reflects a strong brand presence aligned with BMW Group, targeting car buyers and enthusiasts in Estonia. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS, lazy loading, and proprietary BMW frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and security headers, though privacy compliance is lacking due to missing explicit privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and contact transparency.

M

Mazda

mazda.ee

0

Mazda Estonia operates an official regional website providing comprehensive information about Mazda vehicles, including models, pricing, and promotions. The site targets Estonian consumers interested in purchasing Mazda cars, offering services such as vehicle configuration, test drive booking, and dealer location. The website demonstrates a good level of digital maturity with modern technologies like Google Tag Manager and Usercentrics for cookie consent, ensuring compliance with GDPR. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Overall, the site reflects a professional and trustworthy brand presence in the automotive sector.

L

Land Rover Eesti

landrover.ee

0

Land Rover Eesti operates as the official regional website for the Land Rover brand in Estonia, focusing on luxury SUVs and 4x4 vehicles such as Range Rover, Discovery, and Defender. The site targets affluent customers interested in premium automotive products, providing detailed vehicle information and brand experience. The business is positioned as a key player in the transportation sector within Estonia, backed by the global Jaguar Land Rover parent company. Technically, the website leverages modern JavaScript frameworks (Nuxt.js/Vue.js), CDN delivery, and integrates Google Tag Manager and Usercentrics for analytics and consent management, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and consent mechanisms in place, but lacks explicit security headers and visible privacy or terms of service documentation, which are areas for improvement. Overall, the site is professional, trustworthy, and well-branded, with moderate tracking and analytics usage. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and adding clear contact information for incident response to improve compliance and trust.

BMW Motorrad Estonia operates as a regional portal for the BMW Motorrad brand, offering comprehensive information on motorcycles, accessories, events, and brand stories tailored for the Estonian market. The website reflects a premium brand image consistent with BMW Group's global standards, targeting motorcycle enthusiasts and potential buyers in Estonia. The business model focuses on retail sales, brand experience, and customer engagement through digital channels including an online store and event promotions. Technically, the site is built on Adobe Experience Manager, leveraging modern JavaScript frameworks, Adobe Analytics, and Akamai CDN for performance and scalability. The site is well-optimized for mobile and accessibility, with strong SEO practices and structured data enhancing search visibility. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though explicit privacy and security policies are not found, indicating room for compliance improvement. Overall, the domain registration and WHOIS data align with BMW Group's legitimacy and market presence, supporting high trustworthiness. Strategic recommendations include publishing clear privacy and terms of service pages, enhancing incident response transparency, and adding vulnerability disclosure mechanisms to strengthen compliance and user trust.

M

My Tree Global OÜ

goplant.me

0

GoPlant is a small Estonian-based green technology startup focused on urban environmental improvement through a tree crowdfunding platform. The company enables users worldwide to donate for tree planting in various cities, calculate their carbon footprint, and participate in volunteer activities. The website demonstrates a moderate level of digital maturity, utilizing modern frontend technologies such as Bootstrap, jQuery, and slick carousels, and integrates analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks important security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business credibility is supported by consistent branding, contact information, and social media presence. Strategic improvements in privacy disclosures and security policies are recommended to enhance trust and compliance.

I

Inchcape Motors Eesti

inchcape.ee

0

Inchcape Estonia operates as a prominent automotive dealership and service provider specializing in premium and mainstream vehicle brands such as BMW, Ford, Land Rover, Mazda, MINI, and BYD. The company offers a comprehensive range of services including new and used car sales, vehicle servicing, financing, insurance, and spare parts ordering. Their market position is strong within Estonia, supported by official partnerships with leading automotive brands and a broad service portfolio targeting both consumers and businesses. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs modern web technologies including Bootstrap 5, jQuery, FontAwesome, and integrates advanced analytics and monitoring tools such as Google Analytics, Microsoft Application Insights, and Site24x7 RUM. Cookie consent is managed through Usercentrics CMP, indicating compliance with GDPR requirements. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO optimization. From a security perspective, the website enforces HTTPS and uses secure form validation with CAPTCHA tokens. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the business claims, showing consistent registrant information and domain legitimacy. Overall, Inchcape Estonia's digital presence is professional and trustworthy with a solid security posture and compliance framework. Strategic enhancements in security headers, incident response transparency, and accessibility would further strengthen their online security and user trust.

F

ford.ee

ford.ee

0

Ford.ee is the official Estonian website for Ford vehicles and services, operated by ALMIC OÜ under the Inchcape group. The site offers comprehensive information on Ford's vehicle models including electric and commercial vehicles, promotions, and service booking options. The website targets Estonian consumers and businesses interested in Ford's automotive offerings. Technically, the site employs modern JavaScript frameworks and libraries such as Turbo Rails, Stimulus, and Mapbox GL JS, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and privacy consent mechanisms implemented, though explicit security policies and incident response contacts are not found. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, reflecting a well-established business presence in Estonia.

The website err.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha to verify human visitors. This indicates a strong security posture at the perimeter, but it also prevents direct content analysis. The domain is registered to Zone Media OÜ, an Estonian media company, with a domain age of over a decade, suggesting an established presence. However, no business descriptions, contact information, or policies are visible on the landing page due to the access restriction. The technical infrastructure leverages Cloudflare's security and performance services, but no CMS or additional frameworks are detectable. Security headers and SSL configuration details are not visible in the provided content. Overall, the site is protected but lacks publicly accessible information for deeper analysis.

The website sysb.ee currently presents no visible content, metadata, or interactive elements, indicating it is either a placeholder or under construction. The domain is registered since 2017 under ALMIC OÜ, an Estonian registrar, which suggests a legitimate registration but minimal digital presence. The lack of content and technical implementation severely limits the ability to assess business operations or market positioning. Technically, the site lacks HTTPS, security headers, and any form of privacy or cookie policies, indicating a very low digital maturity and security posture. No contact information or incident response channels are available, which further reduces trust and compliance with data protection regulations. Overall, the site poses a low risk but also offers no meaningful engagement or business credibility at this time.

Z

Zone Media OÜ

zone.ee

0

Zone.ee is a well-established Estonian technology company specializing in domain registration, web hosting, and cloud server services. The company targets both individual and business customers, offering a comprehensive suite of internet infrastructure solutions. Their market position is strong within Estonia, supported by professional branding and a user-friendly website. The technical infrastructure is modern, leveraging WordPress CMS with SEO optimizations and integrations such as Google Tag Manager and Trustpilot for reputation management. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR regulations, reflecting a mature digital presence.

C

CV-Online värbamisteenused

varbamisteenused.ee

0

CV-Online värbamisteenused is a professional recruitment and personnel search service provider operating primarily in Estonia. The company leverages a large candidate network and the largest job posting distribution channels in Estonia to offer flexible recruitment solutions tailored to various business needs. Their key services include pre-selection recruitment, targeted search recruitment, and full-cycle recruitment solutions, supported by experienced specialists. The website reflects a strong market position with a focus on delivering comprehensive recruitment services to employers of all sizes and sectors. Technically, the website is built on a modern WordPress platform using Elementor for page building and Yoast SEO for search engine optimization. It integrates Cookiebot for cookie consent management and employs Google Analytics and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized and demonstrates good performance and accessibility standards, although some security headers are missing. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is consistent with the website's business claims, indicating a trustworthy domain registration. Overall, the website presents a professional and credible business front with good technical implementation and moderate privacy compliance. Strategic improvements in security headers, privacy policy publication, and incident response transparency would enhance the security posture and compliance standing.

A

Alma Career Estonia OÜ

otsintood.ee

0

Otsintööd.ee is Estonia's largest job portal aggregating job offers from multiple Estonian job boards and channels. It serves both job seekers and employers by providing a platform to search for jobs, post job offers, and manage applications. The website supports multiple languages including Estonian, Russian, and English, enhancing accessibility for a diverse audience. The business operates under Alma Career Estonia OÜ, a registered company in Estonia, and is part of the Alma Career family, indicating a strong market presence in the Baltic region. Key services include job listings aggregation, employer job posting, user registration with social media login options, and email job alerts.

C

CV-Online Estonia

cv.ee

0

CV.ee is a leading Estonian job portal operated by Zone Media OÜ, established in 2010. The platform offers a comprehensive range of job listings, CV database access, and employer services, targeting job seekers and employers primarily in Estonia. The website demonstrates a mature digital presence with modern technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. Security is well addressed with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not published. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, CV.ee presents a trustworthy and professional online service with a high level of business credibility and technical maturity.

P

Plausible Analytics

plausible.io

0

Plausible Analytics is a privacy-focused web analytics company offering a lightweight, open-source alternative to Google Analytics. Founded in 2018 and based in Estonia, the company targets startups, agencies, creators, and ecommerce SaaS businesses with a subscription-based SaaS model and self-hosting options. Their platform emphasizes simplicity, privacy compliance, and performance, serving over 15,000 paying subscribers with a real-time, cookie-free analytics solution hosted in the EU. Technically, the website is built using Jekyll, Alpine.js, and modern web standards, hosted on European infrastructure (bunny.net). The site is fast, mobile-optimized, and SEO-friendly, with a clean and professional design. The company maintains transparency through open-source code on GitHub and clear privacy policies. Security-wise, the site enforces HTTPS, uses clientTransferProhibited domain status, and avoids tracking cookies, aligning with privacy best practices. However, DNSSEC is not enabled, and no explicit security.txt or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected. Overall, Plausible Analytics presents a trustworthy, professional, and privacy-compliant web presence with strong business credibility and technical maturity. Strategic improvements could include enabling DNSSEC, publishing a vulnerability disclosure policy, and enhancing security header implementation.

M

MyFitness spordiklubi

myfitness.ee

0

MyFitness spordiklubi is Estonia's largest fitness club chain, operating 18 clubs nationwide and offering gym access, group training, personal training, and online training services. The website is professionally designed using WordPress with modern plugins such as Elementor and WooCommerce, reflecting a mature digital infrastructure. Privacy compliance is well implemented with a comprehensive cookie consent mechanism and a detailed privacy policy in Estonian. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit terms of service and security policy pages, and no direct contact information is found in the HTML content. Overall, the site is trustworthy, well-branded, and serves a general audience interested in fitness and wellness.

The website kassa.cc is registered to THE KASSA INC. OÜ, an Estonian company founded in 2016. The domain is moderately aged and the WHOIS data is transparent and consistent with the registrant's country and organization. However, the website content is minimal and consists primarily of a redirect script with no visible business information, contact details, or user-facing content. The site appears to be protected or managed via Cloudflare, which may be blocking direct content access or redirecting visitors. There are no privacy, cookie, or terms of service policies present, and no forms or interactive elements are detected. The technical infrastructure shows use of Cloudflare DNS but lacks visible security headers or HTTPS enforcement in the HTML content.

A

Almic OÜ

almic.ee

0

Almic OÜ is an established Estonian IT company providing a broad range of IT services including software and hardware development, server hosting, domain registration, and IT support since 2002. The company maintains strong partnerships with major technology vendors such as Microsoft, ESET, Dell, Cisco, and Fortinet, positioning itself as a trusted local IT service provider. Their website reflects a professional and consistent brand image targeting businesses and organizations requiring reliable IT solutions. The technical infrastructure of the website is modern and incorporates essential technologies such as JavaScript, Google Analytics, and Usercentrics for consent management. The site is mobile responsive and optimized for SEO, offering a good user experience. However, no CMS or hosting provider details were explicitly detected. Performance is moderate with room for improvement in accessibility features. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and published security policies. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and compliance. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, with a security posture that is adequate but improvable. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and enhancing accessibility to strengthen the security and compliance posture further.

S

Startup Wise Guys

startupwiseguys.com

0

Startup Wise Guys is a well-established startup accelerator and venture capital fund originating from Estonia, active since 2012. They specialize in supporting passionate B2B startup founders through mentorship, funding, and access to a global network. The company holds a strong market position in the CEE and CIS regions with over 45 programs and a community spanning more than 60 countries. Technically, the website is built on WordPress with Elementor and uses modern web technologies including jQuery and Google Tag Manager. SEO practices are well implemented, and the site is mobile optimized with good performance. Security posture is solid with HTTPS enforced and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers and vulnerability disclosures. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is professional and trustworthy, but should enhance privacy and security transparency to improve compliance and user trust.

The website pmo.ee currently presents an empty HTML page with no visible content, metadata, or interactive elements. The domain is registered since 2011 with Zone Media OÜ, a known Estonian registrar and hosting provider. Due to the lack of content, no business description, services, or contact information can be derived from the site. The technical infrastructure appears minimal, with no detectable CMS, scripts, or security headers. The absence of HTTPS or security best practices indicates a low security posture. No privacy, cookie, or terms of service policies are present, which raises compliance concerns. Overall, the site is accessible but non-functional, limiting any meaningful analysis or user engagement.

V

Viatris

viatris.ee

0

Viatris Estonia is a regional website for Viatris, a global healthcare company formed in 2020 by the merger of Mylan and Pfizer's Upjohn unit. The company focuses on manufacturing and marketing a broad portfolio of pharmaceutical products across multiple therapeutic areas. The website targets healthcare professionals, patients, and partners in Estonia, providing localized content, contact information, and links to corporate resources. The business model centers on pharmaceutical production and distribution with a strong emphasis on corporate social responsibility and global healthcare access. Technically, the website is built on the Sitecore CMS platform and employs a modern JavaScript technology stack including jQuery and Google Tag Manager for analytics and marketing. The site is mobile optimized, accessible, and SEO friendly, with clear navigation and professional design. Cookie consent and privacy policies are implemented in compliance with GDPR requirements. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the site demonstrates a mature digital presence with room for improvement in security transparency. The overall risk is low with no critical issues detected. Strategic recommendations include enhancing security headers, publishing a security policy and incident response information, and implementing a vulnerability disclosure program to further strengthen trust and compliance.