Security Directory

Z

Zentiva Group, a.s.

zentiva.ee

0

Zentiva Group, a.s. operates as a multinational pharmaceutical company specializing in the manufacturing and distribution of generic medicines. The website zentiva.ee serves the Estonian market and is part of a broader network of country-specific Zentiva sites, indicating a strong regional presence in Europe and beyond. The company targets healthcare providers and consumers seeking quality generic pharmaceuticals. The business model focuses on pharmaceutical production and distribution with multiple subsidiaries across Europe and Asia.

E

Estonian Academy of Arts

artun.ee

0

The Estonian Academy of Arts is the sole public university in Estonia specializing in higher education across art, design, architecture, media, art history, and conservation-restoration. It holds a leading market position in the Estonian education sector, targeting students, academics, and professionals in creative fields. The website reflects a mature digital presence with comprehensive academic offerings, news, events, and multimedia content. Technically, the site is built on WordPress with modern integrations such as Google Analytics, Facebook Pixel, and Algolia search, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and formal security policies. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy and trustworthiness.

SUVA Type Foundry is an educational and creative platform affiliated with the Estonian Academy of Arts, showcasing fonts designed by students and faculty. The website serves as a repository and display for various font projects, targeting graphic designers, educators, and typography enthusiasts. The business model is primarily educational and creative, with a niche market position focused on academic and artistic font design. Technically, the website is built on WordPress 6.3.5, utilizing standard web technologies including JavaScript and CSS. Fonts are served as WOFF files hosted on the same domain. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO optimizations are basic. No advanced frameworks or third-party analytics/tracking tools are detected. From a security perspective, the site lacks visible security headers and privacy or cookie policies, indicating room for improvement in compliance and security posture. No forms or data collection mechanisms are present, reducing immediate risk exposure. The domain registration data aligns well with the website's academic affiliation, supporting legitimacy. Overall, the website is safe, professional, and trustworthy for its intended audience but would benefit from enhanced privacy compliance and security best practices to strengthen its posture and user trust.

B

Baking Bad OU

tezblock.io

0

TzKT is a specialized blockchain explorer and API provider focused on the Tezos blockchain ecosystem. Operated by Baking Bad OU, an Estonian company founded in 2019, it offers comprehensive blockchain data indexing and user-friendly interfaces for developers and blockchain users. The service is positioned as a niche player within the Tezos community, providing open-source tools and APIs to facilitate blockchain data access and analysis. Technically, the website employs modern frontend technologies such as Vue.js and Vuetify, delivering a responsive and well-structured user experience. Performance is moderate with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and explicit security policies. Privacy compliance is partial, with privacy and terms policies hosted on the parent site but no cookie consent mechanism despite use of tracking scripts. Overall, the site is professional, trustworthy, and focused on its target audience, but could improve in security transparency and privacy compliance.

B

Baking Bad OU

3route.io

0

3Route is a specialized decentralized exchange (DEX) aggregator operating on the Tezos blockchain, providing users with optimized token swap routes across multiple liquidity pools and DEX platforms. The company Baking Bad OU, based in Estonia, operates the platform which was established in 2022. The service targets cryptocurrency traders seeking better execution prices and minimal slippage without additional fees beyond network costs. The website demonstrates a modern technical infrastructure using Blazor and Tailwind CSS, with good mobile optimization and clear navigation. Social media integration and a publicly available audit report enhance trust and transparency. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the platform shows a good balance of technical maturity and business credibility with room for improvement in security and privacy practices.

B

Baking Bad OU

tzkt.io

0

TzKT.io is a specialized blockchain explorer and API provider focused on the Tezos blockchain. Operated by Baking Bad OU, an Estonian company founded in 2019, it offers comprehensive blockchain data, a user-friendly interface, and an open-source blockchain indexer. The platform targets developers, blockchain users, and the Tezos community, positioning itself as a niche service within the Tezos ecosystem. The business model revolves around providing free and open access to blockchain data and APIs, supporting the broader Tezos network and its users. Technically, the website employs modern frontend technologies including Vue.js and Vuetify, ensuring fast performance, excellent mobile optimization, and good accessibility. The site uses HTTPS and integrates Google Analytics and Google Tag Manager for user tracking. However, it lacks DNSSEC on its domain and does not implement cookie consent mechanisms, which are areas for improvement. The hosting provider is not explicitly identified beyond the registrar Gandi SAS. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks several security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic, with privacy and terms policies hosted on the parent Baking Bad developer site but no cookie consent or GDPR compliance indicators on the main site. Overall, TzKT.io presents a professional, trustworthy, and technically mature platform with some gaps in privacy compliance and security best practices. Strategic improvements in DNSSEC, cookie consent, and security policy transparency would enhance its security posture and compliance standing.

B

Baking Bad OU

dipdup.net

0

DipDup.io is a technology company specializing in blockchain indexing solutions and developer tools, primarily targeting Web3 developers and businesses building decentralized applications. The company offers a modular and extensible Web3 API platform, including the DipDup Framework for building custom indexers, prebuilt Verticals for blockchain data access, and an advanced GraphQL playground. Supported by the Baking Bad OU team and partners like the Tezos Foundation, DipDup positions itself as a state-of-the-art solution in the blockchain indexing ecosystem. Technically, the website is built on modern frameworks such as Nuxt.js and leverages Python, TimescaleDB, and GraphQL technologies. It is hosted with Cloudflare DNS and CDN services, ensuring fast performance and good mobile optimization. Security-wise, the site uses HTTPS and domain transfer protection but lacks DNSSEC and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a high level of professionalism and technical maturity but would benefit from publishing privacy and cookie policies and explicit contact information to enhance compliance and trust.

Koli-Lõks OÜ is a small Estonian technology company specializing in providing information about bulk and transactional email senders globally. Their services target email service providers, internet service providers, and social networks, focusing on email security and privacy analytics. The website presents basic but clear business information and contact details, though their products are still under development and offered on a limited basis. Technically, the website is simple, using basic HTML and CSS without advanced frameworks or CMS, and lacks modern security and privacy features such as security headers, privacy policies, or cookie consent mechanisms. Security posture is minimal with no published incident response or vulnerability disclosure information. Overall, the site is safe and professional but would benefit from enhanced security and compliance measures.

D

Dysnix

dysnix.com

0

Dysnix is a specialized technology company founded in 2019, providing advanced DevOps, MLOps, and blockchain infrastructure solutions primarily targeting seed+ and high-growth companies. The company positions itself as a trusted partner with over 50 client projects, offering a broad range of services including cloud adoption, managed Kubernetes, blockchain validator nodes, and AI-driven autoscaling. Their market presence is reinforced by multiple case studies, client testimonials, and partnerships with recognized industry players such as Google Cloud and Hacken. Technically, Dysnix leverages modern web technologies including Webflow CMS, Google Tag Manager, Hotjar, Microsoft Clarity, and advanced JavaScript libraries like Swiper.js and GSAP for animations. The website is fast, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Hosting appears to be via Webflow with Cloudflare DNS, ensuring good performance and security. From a security perspective, the site enforces HTTPS, uses domain transfer locks, and integrates with security-conscious partners. However, DNSSEC is not enabled, and there is no explicit security policy or incident response information publicly available. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. No critical vulnerabilities or exposed sensitive data were detected. Overall, Dysnix demonstrates a strong business and technical foundation with high professionalism and trustworthiness. Strategic recommendations include enabling DNSSEC, publishing a security policy and vulnerability disclosure, and enhancing incident response transparency to further strengthen security posture and client confidence.

R

RPC Fast

rpcfast.com

0

RPC Fast is a specialized technology company providing high-performance dedicated blockchain infrastructure and API services tailored for professional traders, DeFi projects, and dApp developers. Their market position is strong, emphasizing ultra-low latency, high availability, and expert support, supported by detailed case studies and client testimonials. The company operates primarily in Estonia and was founded in 2022, aligning with the domain registration data. Technically, the website is built on modern frameworks like Webflow and integrates multiple analytics and marketing tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, Auth0 authentication, and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

E

EstBAN

estban.ee

0

EstBAN is a well-established Estonian business angel network founded in 2012, focused on connecting startups with angel investors to facilitate funding, mentoring, and successful exits. The organization positions itself as a key player in the Baltic startup ecosystem, offering syndicates, events, and a strong investor community. The website reflects a professional and consistent brand image, targeting startups, investors, and partners with clear calls to action and relevant content. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and Google Analytics for insights. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks some security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the domain registration and hosting are consistent with the business profile, supporting legitimacy and trustworthiness.

V

VeronaLabs OÜ

veronalabs.com

0

VeronaLabs OÜ is an Estonia-based technology company specializing in WordPress solutions, including plugin and theme development. With over 15 years of experience and a user base exceeding 750,000 active users, the company offers privacy-focused analytics, SMS communication tools, and user feedback products. Their market position is strengthened by compliance with GDPR and a clear focus on privacy and user data protection. The website reflects a professional and consistent brand image targeting WordPress site owners and businesses seeking tailored web solutions. Technically, the website is built on WordPress with a modern tech stack including JavaScript libraries, Google Tag Manager, and analytics plugins. The site is mobile-optimized, SEO-friendly, and employs cookie consent mechanisms to comply with privacy regulations. However, some security best practices such as security headers and DNSSEC are not implemented, which could be improved to enhance security posture. From a security perspective, the site uses HTTPS and enforces domain transfer restrictions, indicating a good baseline security posture. Privacy policies and cookie consent are clearly presented, supporting GDPR compliance. No critical vulnerabilities or suspicious content were detected. However, the absence of a public security policy or incident response information suggests room for improvement in transparency and preparedness. Overall, VeronaLabs presents a trustworthy and professional online presence with strong privacy compliance and a solid technical foundation. Strategic enhancements in security headers, incident response disclosure, and vulnerability disclosure policies would further strengthen their security and compliance posture.

T

Taulab OÜ

mentorist.app

0

Mentorist is a small Estonian-based company operating a mobile app platform that delivers actionable summaries of bestselling business, leadership, and personal development books. The platform targets individuals seeking efficient learning and personal growth by providing concise, actionable content. The website is well-designed, mobile-optimized, and integrates modern analytics and marketing technologies such as Google Analytics and Facebook Pixel. Privacy and cookie policies are implemented with a consent mechanism, reflecting GDPR compliance. However, direct contact emails or phone numbers are not provided, which may limit direct user support visibility. The WHOIS data confirms the legitimacy and consistency of the business registration with the website claims. Overall, Mentorist presents a professional and trustworthy digital presence with a focus on educational content delivery.

B

Beamline Accelerator

beamline.fund

0

Beamline Accelerator is a cleantech startup accelerator based in Estonia, founded in 2020. It offers a 6-month acceleration program with investment opportunities up to €60,000, mentorship, and strategic connections primarily targeting early-stage cleantech startups in Europe, especially the Baltics and Nordics. The website presents a professional and consistent brand image with clear business focus and partnerships with reputable organizations such as the Environmental Investment Centre (KIK) and InnoEnergy. Technically, the site is built on the Tilda platform using modern web technologies and is mobile optimized with good SEO practices. However, it lacks visible privacy and cookie policies, security headers, and DNSSEC, which are areas for improvement. The domain registration data is consistent with the business profile, indicating legitimacy and appropriate domain age. Overall, the website is trustworthy and professional but could enhance its security posture and privacy compliance.

S

Sunly AS

sunly.ee

0

Sunly AS is a leading Estonian renewable energy company specializing in the production and distribution of clean energy through solar and wind parks. The company positions itself as a local energy provider focused on sustainability, energy security, and affordability for Estonian consumers and businesses. Their digital presence is modern, well-structured, and optimized for multiple languages, reflecting a mature digital infrastructure. The website employs contemporary technologies such as React, Tailwind CSS, and integrates advanced cookie consent management and analytics tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although a dedicated security policy and incident response contacts could enhance trust. Overall, Sunly demonstrates a high level of professionalism, compliance with GDPR, and a clear commitment to transparency and user privacy.

SeaStorm-Boat.com represents a small Estonian company, CERANOS INVEST OÜ, specializing in manufacturing and selling durable polyethylene boats using innovative rotational molding technology. The company targets boating enthusiasts and dealers worldwide, exporting to over 40 countries. The website is a professionally designed e-commerce platform built on WordPress with WooCommerce, integrating modern tools such as Slider Revolution and Revolut payment gateway. The site is mobile-optimized and SEO-friendly, providing rich content about products, exhibitions, and company information. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic with presence of privacy and cookie policies but no advanced GDPR indicators. Overall, the website is trustworthy and credible with clear contact information and social media presence.

S

Sviby

sviby.com

0

Sviby is an Estonian-based event ticketing platform that focuses on providing tickets and gift cards for cultural and entertainment events such as music, theater, festivals, and family activities. The platform targets event attendees and organizers, offering a streamlined online experience for purchasing and managing event tickets. The website demonstrates a consistent brand presence and clear communication channels, including phone and email support, as well as active social media engagement. Technically, the site leverages modern JavaScript frameworks like Vue.js and jQuery, ensuring a responsive and user-friendly interface. Advertising and analytics integrations are standard, with Google Analytics and Facebook Pixel employed for user tracking and marketing purposes. Security posture is adequate with HTTPS enforced and domain transfer protection enabled, though DNSSEC is not implemented and security headers are missing, representing areas for improvement. Privacy compliance is basic but present, with accessible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

Z

Zone Media OÜ

webmail.ee

0

Zone Webmail is a secure and reliable email service operated by Zone Media OÜ, an established Estonian technology company specializing in web hosting and email services. The website targets Zone.ee customers and general users seeking fast and secure webmail access. The platform uses modern web technologies including Vue.js and Vuetify, providing a responsive and user-friendly interface. The technical infrastructure appears solid with HTTPS enforced and no visible security vulnerabilities in the provided content. However, the site lacks visible cookie consent mechanisms and explicit security or incident response policies on the login page. Overall, the website demonstrates a good balance of professionalism, security, and usability, suitable for its target audience.

The website 'Ukraina heaks!' serves as a simple informational landing page aimed at supporting humanitarian aid for Ukraine. It primarily provides direct links to two Estonian non-profit organizations focused on refugee and crisis support: Eesti Pagulasabi (Estonian Refugee Council) and Mondo. The site does not host any transactional or interactive features but acts as a conduit to trusted aid organizations. The domain is registered through a reputable Estonian registrar and has been active since 2014, lending credibility to its legitimacy. From a technical perspective, the website is minimalistic, built with basic HTML and CSS, and optimized for mobile devices. There is no evidence of advanced frameworks, CMS platforms, or analytics tools. The site loads quickly and is accessible without restrictions or security challenges. However, it lacks modern security headers and does not provide privacy or cookie policies, which are important for compliance and user trust. Security posture is basic with no detected vulnerabilities or malicious content, but the absence of security headers and privacy compliance documentation represents areas for improvement. No contact information or incident response details are provided, limiting transparency and user support options. Overall, the website is low risk, safe for general audiences, and fulfills a narrow but clear purpose. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing contact or incident response information to enhance trust and compliance.

Z

Zone Media LLC

zonecloud.ee

0

ZoneCloud is a cloud storage and file synchronization service operated by Zone Media LLC, an Estonian technology company founded in 2013. The platform offers web-based access alongside desktop and mobile clients for file syncing, targeting general users and businesses requiring cloud storage solutions. The website is functional and uses a variety of modern JavaScript libraries and frameworks, indicating a moderate level of technical maturity. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The domain registration data aligns well with the business identity, supporting legitimacy. Overall, the security posture is moderate but could be improved by enabling DNSSEC, adding security headers, and publishing privacy-related policies.

C

Cargo Bus

cargobus.ee

0

Cargo Bus is a transportation and logistics company operating primarily in Estonia, offering parcel delivery, bus ticket sales, and terminal services. The company has an established online presence with a website built on WordPress using the Astra theme and Elementor page builder, indicating a moderate level of digital maturity. The website is multilingual, supporting Estonian, English, and Russian languages, targeting a broad audience within the region. Technically, the site uses HTTPS and Cloudflare DNS, but lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and trust. No contact emails or phone numbers are explicitly visible, which may impact user trust and support accessibility. The domain is registered since 2010 under Zone Media OÜ, consistent with the business's regional focus and legitimacy. Overall, the website is professionally designed with good navigation and content relevance but could improve in privacy compliance and security posture.

L

Lux Express

luxexpress.eu

0

Lux Express is a prominent transportation company operating primarily in the Baltic region and neighboring countries, offering intercity and international bus travel services. The company targets general travelers seeking comfortable and reliable bus transportation, supported by a modern digital presence with multilingual support. Their website reflects a strong market position with key services including ticket sales, corporate programs, and charter services. Technically, the site is built on modern frameworks such as React and Next.js, hosted on DigitalOcean infrastructure, and integrates marketing and analytics tools like Google Tag Manager and Exponea. Security posture is robust with HTTPS enforcement and multiple security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. Overall, the website is professional, trustworthy, and provides a positive user experience with good performance and mobile optimization.

M

msonic Baltic OÜ

msonic.ee

0

msonic Baltic OÜ is a specialized distributor and retailer of internationally recognized professional audio brands, serving the Baltic region with a focus on studio and live sound equipment. The company operates a professionally designed website that showcases a broad portfolio of audio technology products and educational content, targeting audio professionals and enthusiasts. The business is well-positioned regionally with a clear market niche and a small company size founded in 2016. Technically, the website leverages modern web technologies including Google Analytics, Facebook Pixel, and the Flockler CMS platform. It is hosted by Zone Media OÜ, an Estonian registrar and hosting provider, ensuring good performance and mobile optimization. However, the site lacks some advanced security headers and explicit privacy and cookie policies, which are important for compliance and user trust. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but it does not publish security or incident response policies, nor does it provide a vulnerability disclosure mechanism. Tracking technologies are used without visible consent mechanisms, indicating a gap in privacy compliance. The domain registration data is consistent and supports the legitimacy of the business. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen user trust and regulatory adherence.

M

Maksekeskus AS

maksekeskus.ee

0

Maksekeskus AS is a leading payment service provider in the Baltic region, offering a comprehensive suite of payment and delivery solutions tailored for e-commerce merchants and retail businesses. Founded in 2010, the company provides services including bank payments, card payments, mobile wallet integrations like Apple Pay and Google Pay, buy now pay later options, payment terminals, and integrated delivery services with major carriers. Their market position is strong, supported by a large client base and positive customer testimonials. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and various plugins for enhanced functionality and user experience. Hosting is supported by Amazon AWS infrastructure, ensuring reliability and scalability. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a professional digital presence. From a security perspective, the site enforces HTTPS and employs GDPR-compliant cookie consent mechanisms. While explicit security headers are not fully confirmed, best practices are generally observed. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, reinforcing legitimacy and trustworthiness. Overall, Maksekeskus presents a secure, professional, and user-friendly platform with strong business credibility. Strategic improvements in explicit security header implementation and publishing a formal security policy could further enhance their security posture.

P

Parcely

parcely.app

0

Parcely is a specialized e-commerce service provider offering a Shopify app that integrates multiple European parcel locker and pick-up point services such as Omniva, DPD, Venipak, and others. The company targets Shopify store owners seeking to enhance their delivery options with user-friendly pick-up location selection. The website is built on WordPress with modern SEO and analytics tools, reflecting a moderate to good level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks explicit security policies and headers. Privacy compliance is minimal due to absence of privacy and cookie policies. Overall, Parcely presents a professional and trustworthy business with room for improvement in privacy and security transparency.

Z

Zone Media OÜ

babytrio.ee

0

Babytrio.ee is an established Estonian e-commerce retailer specializing in baby products such as strollers, car seats, nursery furniture, feeding accessories, and toys. The website is built on the Magento 2 platform, leveraging modern frontend technologies including RequireJS, jQuery, and Knockout.js, and integrates marketing and analytics tools like Google Analytics, Hotjar, and Facebook Pixel. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and reCAPTCHA implemented, though some security headers are missing and privacy policy documentation is absent. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

E

Eurobra

eurobra.org

0

Eurobra is a small Estonian-based e-commerce business specializing in high-quality women's lingerie and shapewear. The company positions itself as a European-quality lingerie manufacturer and retailer, targeting women seeking comfort, style, and elegance. The website is built on the Shopify platform, leveraging modern web technologies and third-party integrations such as Judge.me for customer reviews and hCaptcha for form security. The site demonstrates good design quality, mobile optimization, and SEO practices, providing a professional user experience. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, Eurobra presents a trustworthy and professional online presence suitable for its market niche.

M

Mulgi Tare OÜ

mulgitare.ee

0

Mulgi Tare OÜ is a recently established Estonian construction company specializing in general construction solutions, custom sheet metal works, and renovation services primarily serving the Mulgimaa region. The company emphasizes quality, personalized service, and durable results, targeting homeowners and construction project clients. Their website reflects a professional and modern digital presence built on WordPress with WooCommerce and multiple SEO and security plugins. Security posture is solid with HTTPS, anti-spam, and CAPTCHA protections, though privacy and cookie policies are missing, representing compliance gaps. Contact information is comprehensive, including emails, phone numbers, physical address, and a contact form. Partnerships with local financial and construction firms enhance credibility. Overall, the company presents a trustworthy and professional image with room for improvement in privacy compliance and security policy transparency.

B

BalticLinguaAlliance OÜ

gettranslation.io

0

Gettranslation.io is a professional multilingual translation and localization service provider operating under BalticLinguaAlliance OÜ, based in Estonia. The company offers a broad range of services including professional translation, enterprise solutions, developer tools with APIs, website localization, video subtitling, software localization, and official sworn translations. Their client base includes major global companies, positioning them as a reputable player in the technology-driven language services market. The website is built on a modern Angular framework with extensive use of analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements can be made by enabling DNSSEC and publishing explicit security and privacy policies. Overall, the site is professional, well-branded, and trustworthy, with a comprehensive cookie consent mechanism and strong partner endorsements.

S

Snowball Consulting

snowballconsulting.ee

0

Snowball Consulting is a specialized consulting firm focused on the HoReCa sector in Estonia and the Baltic region. They provide expert services to restaurants and cafes aimed at increasing profitability, optimizing menus, creating loyalty programs, and reducing costs associated with delivery platforms. The company leverages over 10 years of industry experience and strong ties to delivery platforms such as Wolt and Bolt. Their market position is that of a niche expert with proven client success stories and a personalized approach to business growth. Technically, the website is built on the Webflow platform, utilizing modern web technologies including Google Tag Manager, Google Analytics, and LinkedIn Insight for marketing and analytics. The site is mobile-optimized with good SEO practices and structured data for enhanced search engine visibility. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks comprehensive security headers and a published security policy or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The site uses tracking technologies responsibly but could improve transparency and user control. Overall, the website presents a professional and trustworthy business with a solid digital presence. The main risks relate to privacy compliance and security best practices, which can be addressed to enhance trust and regulatory adherence. No critical vulnerabilities or blocking mechanisms were detected, allowing full content access and analysis.

N

Norrakas OÜ

norrakas.ee

0

Norrakas OÜ is a small Estonian company specializing in heating mats designed to prevent slip and fall injuries caused by snow and ice. They are the exclusive reseller of the Scandinavian IsFritt brand in Estonia and Latvia, offering customized heating solutions for outdoor surfaces such as steps, ramps, and walkways. The company targets homeowners, businesses, and public organizations seeking safe and maintenance-free winter access solutions. Their market position is strengthened by exclusive distribution rights and memberships in local commerce chambers. Technically, the website is built on a modern WordPress platform using WooCommerce and Elementor, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and updated software, though some security headers and explicit policies could be improved. Privacy compliance is basic with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the company's business claims.

K

Kolo Books

kolobooks.eu

0

Kolo Books is a small Ukrainian bookshop located in Tartu, Estonia, serving the local Ukrainian community and book buyers interested in Ukrainian literature. The website is built using the Weblium platform and presents a clean, professional design with good mobile optimization and clear navigation. However, the site lacks critical privacy and cookie policies, contact information, and security headers, which impacts its overall security posture and privacy compliance. No advanced analytics or advertising tools are detected, indicating a minimal tracking footprint. The domain registration via Namecheap, Inc appears consistent and legitimate for a small local business. Strategic improvements in security and compliance documentation are recommended to enhance trust and regulatory adherence.

A

AS Glassense

glassense.com

0

Glassense is a medium-sized Estonian company specializing in manufacturing and supplying energy-efficient glass solutions for buildings across Europe. Founded in 2022, the company operates three production sites and offers a comprehensive range of products including facade glass, window glass, interior glass, and related services such as heat treatment, laminating, digital printing, and insulated glass units. The company positions itself as a market leader in glass expertise for energy-efficient buildings, targeting construction professionals and sustainability-focused organizations. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site is built on WordPress with modern plugins and SEO tools, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Analytics and tracking tools like Google Analytics and Facebook Pixel are used without visible consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

M

MultiCharge OÜ

vool.com

0

VOOL, operated by MultiCharge OÜ, is an Estonian-based company specializing in electric vehicle (EV) charging solutions. Their offerings include smart EV chargers, load management controllers, and comprehensive software platforms designed for homes, offices, fleets, and public charging. The company positions itself as a reliable and cost-effective one-stop shop for EV charging, emphasizing quality, aesthetics, and energy efficiency. Their market presence is supported by EU Horizon 2020 funding and notable clients such as Omniva and Europcar. The website is professionally designed, multilingual, and provides clear pathways for customers and resellers.

E

Eleport

eleport.com

0

Eleport is a company operating a rapidly growing network of electric vehicle (EV) charging stations, primarily targeting sustainable travelers and EV owners. The business is positioned in the energy and transportation sectors, with a focus on providing convenient and flexible EV charging solutions. Their website offers information on charging station locations, pricing, and user guides, supporting their service-oriented business model. Founded in 2016 and based in Estonia, Eleport presents itself as a medium-sized enterprise with a consistent and professional online presence. Technically, the website is built on WordPress using Elementor and Jet Engine plugins, hosted likely on Microsoft Azure infrastructure as indicated by Azure DNS servers. The site employs modern web technologies including Google Tag Manager and Facebook Pixel for analytics and marketing, alongside Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. From a security perspective, the site uses HTTPS with a strong SSL configuration and enforces client transfer prohibition on the domain. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. The site lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms, which are areas for improvement. Cookie consent is implemented effectively, indicating good privacy compliance, though no explicit privacy policy or terms of service were found in the analyzed content. Overall, Eleport's website is professional, trustworthy, and technically sound, with moderate tracking and advertising practices typical for commercial sites. The absence of some compliance documents and security headers slightly reduces the security posture score. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and security policies, and implementing a vulnerability disclosure program to enhance trust and compliance.

O

Olympic Entertainment Group AS

olybetsportsbar.com

0

Olybet Sportsbar is a hospitality business operating sports bars in Estonia, Latvia, and Lithuania under the parent company Olympic Entertainment Group AS. The website provides visitors with options to select their country-specific sports bar location. The business targets adult customers interested in sports bar entertainment and hospitality services. Technically, the website is built on WordPress using Elementor and employs Cookiebot for GDPR-compliant cookie consent management. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though some security headers and DNSSEC are missing. No critical vulnerabilities or blocking mechanisms were detected. Privacy policy is comprehensive and GDPR compliant, but no terms of service or incident response information is available. Overall, the website is professional and trustworthy, suitable for its hospitality business purpose.

K

Kõrtsiblogi

moku.ee

0

Kõrtsiblogi is a hospitality-focused blog and media platform primarily serving the Estonian and Latvian bar culture communities. The website shares stories, event news, and merchandise related to Möku bars, positioning itself as a niche local content provider with a small but engaged audience. The business operates on a content publishing model supplemented by merchandise sales, targeting mature audiences interested in nightlife and bar culture. Technically, the site is built on WordPress with WooCommerce and Jetpack plugins, hosted on WordPress.com infrastructure. It employs modern SEO practices including JSON-LD structured data and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in security and privacy compliance to better align with EU regulations.

Enefit AS is a leading Estonian energy company specializing in electric vehicle charging solutions, including public fast charging networks, home chargers, and business charging infrastructure. The company leverages modern digital technologies and provides professional installation and consulting services, positioning itself as a market leader in the energy and transport sectors in Estonia. The website reflects a mature digital presence with clear branding and comprehensive service offerings. Technically, the site uses modern frameworks such as React and Next.js, integrates advanced analytics and marketing tools, and implements strong security measures including HTTPS and security headers. Privacy compliance is well addressed with a detailed cookie consent mechanism and accessible privacy policies. Overall, the security posture is strong, though the site could benefit from publishing dedicated security policies and incident response information. The domain registration data aligns well with the company's identity, supporting high legitimacy and trust. The website is safe for general audiences and does not contain any adult or questionable content.

S

Sa Kasvad

sakasvad.ee

0

Sa Kasvad is a small Estonian e-commerce business specializing in children's clothing, offering a variety of apparel for girls and boys across different seasons and age groups. The website is built on WordPress using WooCommerce and Elementor, indicating a modern and flexible technical infrastructure. The company maintains an active social media presence on Facebook, Instagram, and TikTok, which supports its marketing and customer engagement efforts. The domain registration is recent but consistent with the business profile and location in Estonia. Security posture is adequate with HTTPS enabled and Cloudflare DNS usage, but lacks some important security headers and privacy compliance elements such as cookie consent and privacy policy pages. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices to improve compliance and trust.

N

Nordic Hiker

nordic-hiker.eu

0

Nordic Hiker is a small Estonian company specializing in the manufacturing and rental of unique teardrop-style campers, targeting outdoor enthusiasts and travelers. The website is professionally designed using WordPress with WooCommerce and Elementor, supporting multilingual content in Estonian and English. The business model focuses on camper sales and rentals, positioning itself in a niche market segment with a clear brand identity. Technically, the site employs modern web technologies and SEO best practices, though performance is moderate and accessibility is basic. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks comprehensive security headers and explicit privacy or cookie policies. Overall, the site is functional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

F

Fairytale

fairytale.lv

0

Fairytale SPA is a small hospitality business offering romantic spa and glamping experiences in the Sigulda region, Latvia. The website is professionally designed using WordPress with Elementor and WooCommerce, providing booking forms and gift card sales. The technical infrastructure is modern and includes analytics tools such as Google Analytics and Microsoft Clarity. Security posture is good with HTTPS enabled, but lacks explicit security policies and cookie consent mechanisms, indicating partial GDPR compliance. The domain is newly registered in 2025, consistent with the business launch timeline. Overall, the website presents a trustworthy and professional image with room for improvement in privacy and security transparency.

W

Warmeston OÜ

warmeston.lv

0

Warmeston OÜ is an Estonian wood pellet manufacturer with a solid market presence and a history dating back to 2013. The company emphasizes process quality, innovative technology, and long-term partnerships. Their website reflects a professional business focus targeting partners and customers in the biomass energy sector. Technically, the site is built on WordPress with standard SEO and analytics tools, hosted likely with Microsoft Online DNS services. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. No forms or direct data collection mechanisms are present on the homepage, reducing immediate data protection risks. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

V

Vesmaco

vesmaco.eu

0

Vesmaco is a medium-sized manufacturing and engineering company based in Estonia, specializing in composite solutions for wastewater treatment, construction, industry, and agriculture. Established in 2000, the company offers a broad range of products including storage tanks, stormwater treatment systems, pumping stations, and corrosion-resistant piping. Their market presence extends across multiple European countries, supported by partnerships with several specialized brands. The website reflects a professional business model focused on B2B clients in construction and industrial sectors. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and performance optimization, indicating a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. Overall, the website is well-structured, trustworthy, and compliant with basic privacy standards, but could improve transparency on privacy and security policies.

G

Garden Pearls

gardenpearls.eu

0

Garden Pearls is a small tourism promotion website highlighting 76 beautiful gardens and parks located in Estonia and Latvia. The site provides visitors with maps, event calendars, and gardener recommendations to enhance tourism experiences in the region. The business model focuses on regional tourism promotion, targeting general audiences interested in nature and garden visits. The website was first published in 2019 and uses WordPress with Elementor and Yoast SEO plugins to manage content and SEO optimization. The technical infrastructure is modern and includes responsive design and basic accessibility features, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and privacy policies. The absence of contact information and privacy compliance documents limits business credibility and user trust. Overall, the site is safe, professional, and serves its niche well but would benefit from enhanced privacy and security practices.

E

Exmet Grupp

exmet.ee

0

Exmet Grupp is an established Estonian manufacturing group specializing in supplying steel and metal products along with raw material processing services to the industrial sector. The company has a solid market position supported by a domain registered since 2011 and a professional website targeting B2B clients in the manufacturing industry. The website is built on a modern WordPress platform using Elementor and Yoast SEO, indicating a mature digital presence. Cookie consent is managed via Cookiebot, reflecting good privacy awareness, although no explicit privacy policy or terms of service were found in the analyzed content. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but could be improved by adding security headers and publishing security policies. Overall, the website is professional, well-structured, and trustworthy, serving its target audience effectively.

C

Cargoson OÜ

cargoson.com

0

Cargoson OÜ operates a professional B2B transport management software platform targeting manufacturers, wholesalers, and retailers primarily in Europe. The company offers a multi-carrier shipping solution that integrates with various ERP and eCommerce platforms, providing shipment tracking, freight rate management, and CO2 emission calculations. The website is well-designed, mobile-optimized, and rich in content, including customer testimonials and industry awards, positioning Cargoson as a reputable player in the transportation software market. Technically, the site uses modern web technologies and analytics tools such as New Relic, Microsoft Clarity, and Google Tag Manager, ensuring good performance and user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are absent. The missing WHOIS data for the domain reduces trust slightly, warranting verification of domain registration status. Overall, Cargoson presents a credible and professional digital presence with room for enhanced transparency in security disclosures.

B

Baltic Ice Advisors SIA

ice-advisor.com

0

Baltic Ice Advisors SIA is a specialized maritime service provider offering expert ice navigation advisory and pilotage services primarily in the Baltic Sea, Northern Sea Route, Canadian Polar waters, and Arctic Ocean. The company targets international shipowners and charterers requiring safe and efficient navigation in icy waters. Their team consists of highly experienced ice-advisors, many holding Polar Advanced Certificates, ensuring professional and reliable service delivery. The company maintains a niche market position with a focus on safety, expertise, and customer satisfaction. Technically, the website is built on WordPress using popular plugins such as Yoast SEO and WPBakery Page Builder. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices evident. However, there is room for improvement in accessibility and security hardening, particularly in implementing security headers and DNSSEC. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, the absence of DNSSEC and security headers reduces the overall security posture. No privacy or cookie policies are present, which is a compliance gap. The website does not appear to use analytics or tracking scripts, indicating minimal user tracking. Overall, the website is professional and trustworthy with clear business information and contact channels. Strategic recommendations include adding privacy and cookie policies, enhancing security headers, enabling DNSSEC, and improving accessibility features to strengthen compliance and security posture.