Security Directory

D

DBB GRUPP OÜ

dbbgrupp.ee

0

DBB GRUPP OÜ is an Estonian private company specializing in the production and wholesale distribution of professional skincare products and salon equipment, with a business history dating back to 2000. The company operates primarily in the European market, focusing on quality, customer-centric service, and training offerings. The website reflects a professional and consistent brand image, targeting skincare professionals and wholesale customers. Technically, the site is built on the Voog CMS platform, utilizing modern JavaScript libraries and Facebook integration, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is partially met with a GDPR page but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with room for improvement in security and privacy transparency.

S

Storit

storitgroup.com

0

Storit is a medium-sized Estonian company specializing in warehouse and storage solutions, including shelving, forklifts, and related equipment. The company operates a multilingual B2B e-commerce platform supported by project sales, rental, and maintenance services. The website reflects a professional market position with clear business offerings and customer support. Technically, the site is built on WordPress with WooCommerce and enhanced by multiple plugins for performance, multilingual support, and e-commerce functionality. Security posture is good with HTTPS, domain transfer protection, and cookie consent mechanisms, though DNSSEC is not enabled and no explicit security policy is published. Overall, the site is well-structured, user-friendly, and compliant with GDPR requirements.

V

Varvikas

varvikas.com

0

Varvikas is a small European-based manufacturer and wholesaler specializing in DIY craft supplies and hobby kits, including paintings by numbers, diamond mosaics, roomboxes, wooden constructors, and textile doll kits. The company operates a branded chain of stores across Europe and offers delivery services throughout the continent. Their target audience includes wholesale buyers, hobbyists, and retailers interested in creative and craft products. The business model focuses on wholesale and retail sales with multilingual support to cater to various European markets. Technically, the website is built on the Tilda CMS platform, utilizing jQuery and modern marketing tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Hosting and DNS services involve Cloudflare and Tucows Domains Inc., respectively, with HTTPS enabled ensuring secure communications. From a security perspective, the website employs HTTPS but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. The site collects user data via forms but does not provide clear privacy disclosures. No critical vulnerabilities or malicious indicators were detected. Overall, Varvikas presents a professional and trustworthy online presence for a small retail and wholesale business. Strategic improvements in privacy compliance and security hardening would enhance their risk posture and customer trust.

N

NOTO PRO

notopro.ee

0

NOTO PRO is a leading Estonian retailer specializing in bathroom finishing materials and sanitary ceramics, operating primarily through an e-commerce platform built on WordPress and WooCommerce. The website presents a professional and well-structured digital presence with a focus on product variety and customer experience. The company positions itself as the largest in its sector within Estonia, targeting consumers seeking modern and stylish bathroom solutions. The technical infrastructure leverages popular CMS and e-commerce technologies, enhanced with marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is solid with HTTPS enforced and basic security best practices observed, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website reflects a mature digital business with good market positioning and operational readiness.

O

Otto & Co OÜ

ottoco.ee

0

Otto & Co OÜ is a recently established (2023) Estonian business consulting firm specializing in supporting companies with international expansion across Europe, the Middle East, and Africa (EMEA). The company offers a comprehensive suite of services including consultations, networking, representation and distribution, accounting, and legal support tailored to facilitate seamless market entry and growth. The website reflects a professional and consistent brand image targeting businesses seeking strategic partnerships in EMEA markets. Technically, the site is built on WordPress with Elementor and related plugins, providing a modern and mobile-optimized user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but could improve in compliance and security transparency.

P

Partyfy OÜ

partyfy.eu

0

Partyfy.eu is an Estonian-based online platform specializing in booking European artists, bands, musicians, and venues for various events such as weddings and corporate parties. The platform offers a free listing for artists without exclusivity contracts, targeting event organizers and individuals seeking entertainment services across Europe. The website is built on Joomla CMS using the Gridbox website builder, integrating modern technologies such as Bootstrap, jQuery, Google Maps API, and Tidio chat for customer interaction. The technical infrastructure is moderately optimized for performance and mobile responsiveness, providing a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and CSRF tokens implemented; however, it lacks some security headers and explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. No security incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency to strengthen its risk posture and user confidence.

M

Mežāres A OU

me-wood.com

0

Mežāres A OU is a small manufacturing enterprise based in Estonia specializing in wooden packing and forest products such as firewood, wood fuel, and industrial wood. Founded in 2016, the company emphasizes waste-free production and sustainable use of natural resources. Their website is built on WordPress with WooCommerce, supporting multiple languages and integrating modern marketing and analytics tools. The digital infrastructure is moderately optimized for performance and mobile use, with caching and lazy loading implemented. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced DNS security and published security policies. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy image suitable for its target market.

V

Vapista

vapista.ee

0

Vapista.ee is an Estonian e-commerce retailer specializing in alternative tobacco products including e-cigarettes, capsule systems, and nicotine pouches. The website targets adult consumers interested in tobacco alternatives and provides professional advice alongside product sales. The business appears to be a small-sized specialist retailer founded in 2017, with a consistent brand presence and a focused market position within Estonia. Technically, the site is built on the Magento platform, leveraging common web technologies such as jQuery, Prototype.js, and Bootstrap, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the domain registration is consistent and legitimate, with no suspicious WHOIS data. The site’s content is safe but categorized as questionable due to the nature of tobacco-related products, targeting mature audiences. Strategic improvements in security headers, privacy transparency, and contact information visibility would enhance trust and compliance.

E

Eleport

eleport.lv

0

Eleport operates as a rapidly growing network of electric vehicle charging stations primarily targeting sustainable travelers and EV owners. The company provides services including charging station locations, pricing, and travel guides, positioning itself as a key player in the energy and transportation sectors in Estonia. The website is built on a modern WordPress CMS with Elementor and integrates advanced marketing and analytics tools such as Google Analytics, Facebook Pixel, and Cookiebot for cookie consent management. The technical infrastructure is solid with HTTPS enabled and Azure DNS hosting, although DNSSEC is not enabled, which is a minor security gap. Security posture is generally good with domain transfer protection and cookie consent mechanisms, but lacks explicit security policies and vulnerability disclosures. Overall, the site is professional, well-branded, and trustworthy, though it would benefit from publishing privacy policies and enhancing security headers. No adult or questionable content is present, making it safe for general audiences.

W

Widen legal

rer.legal

0

Widen legal is a professional legal services firm established in 2023, operating primarily in the Baltic region (Estonia, Latvia, Lithuania). The company offers a broad range of legal services including corporate law, employment law, tax, public procurement, dispute resolution, and more. The firm positions itself as a client-friendly, fast, and optimized legal solutions provider, targeting businesses and individuals requiring legal expertise in multiple sectors. The website reflects a medium-sized firm with a strong regional presence and a comprehensive service portfolio. Technically, the website is built on WordPress CMS, utilizing modern plugins such as Forminator for forms and TranslatePress for multilingual support. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized and uses HTTPS with a valid SSL certificate. SEO and accessibility are adequately addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS but lacks DNSSEC and security headers, which are recommended for enhanced protection. Cookie consent is implemented via CookieYes, indicating some level of privacy compliance, though no explicit privacy policy or terms of service were found in the provided content. Contact information is comprehensive, including emails, phone numbers, and LinkedIn profiles for key personnel. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in security best practices and privacy documentation. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in security headers, DNSSEC, and privacy policy publication would enhance the firm's digital trust and compliance posture.

A

Association of Estonian Welders

aew.ee

0

The Association of Estonian Welders (AEW) operates as a specialized certification and inspection service provider focused on welders and welding operators in Estonia. Established in 2017, AEW holds recognized accreditation certificates and is a notified body under European regulations, positioning it as a trusted entity within the manufacturing and industrial certification sector. The website clearly communicates its core services, target audience, and maintains a professional online presence with consistent branding and comprehensive contact information. Technically, the site is built on WordPress with modern plugins such as Elementor and Slider Revolution, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, cookie consent management, and standard security headers, reflecting a mature security posture. Privacy compliance is well addressed with dedicated privacy and cookie policies, including GDPR-aligned consent mechanisms. Overall, AEW demonstrates a solid digital maturity appropriate for its business size and sector, with room for improvement in publishing explicit security policies and incident response contacts.

K

Kretel Kuusk

kretelkuusk.com

0

Kretel Kuusk is a small photography business based in Estonia, specializing in capturing emotions through photography services including school photos and personal bookings. The website serves as a portfolio showcasing recent photographic works and provides navigation to service offerings and contact booking pages. The business appears to be niche and locally focused with a consistent brand presence. Technically, the site is built on WordPress using the Inspiro theme and Elementor page builder, hosted by Bluehost Inc. It employs Google Analytics and MonsterInsights for visitor tracking. The website is moderately optimized for performance and mobile devices, with good SEO practices evident in meta tags and structured data. Security posture is basic with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No explicit contact emails or phone numbers are present, limiting direct communication channels. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

P

Pickups4x4

pickups4x4.eu

0

Pickups4x4.eu is a specialized e-commerce website focused on selling accessories and tuning parts for pickup trucks, targeting customers across the European Union. The business operates primarily in the transportation and retail sectors, offering a wide variety of products such as bed accessories, pipes, bars, and lights. The website supports multiple languages, enhancing accessibility for a diverse EU audience. Established in 2011, the company maintains a consistent brand presence with a professional website design and clear contact information.

M

Mapri Ehitus OÜ

mapri.eu

0

Mapri Ehitus OÜ is a professional construction company operating primarily in Estonia, Latvia, and Lithuania, offering project-based main contracting, agricultural construction, and concrete works. The company positions itself as a reliable regional player with turnkey solutions and a focus on quality and client convenience. The website reflects a mature digital presence with multilingual support and clear service offerings. Technically, the site is built on WordPress with modern optimization plugins, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and privacy compliance mechanisms, though formal security policies and incident response contacts are absent. Overall, the business demonstrates credibility and professionalism with strong trust signals such as certifications and social media presence.

W

Woboton

woboton.com

0

Woboton is a specialized industrial robotics and digitalization solutions provider based in Estonia, operating as part of the Atemix Industrial Automation Group. The company focuses on integrating advanced robotics technologies such as cartesian, SCARA, articulated, delta robots, and cobots into manufacturing processes to increase productivity and profitability. Their business model includes direct sales, integration services, digital audits, and flexible financing options including Robot as a Service (RaaS). The website positions Woboton as a leader in Estonia's industrial automation market with strong partnerships with global robotics hardware and software providers.

H

HELMES

lv.helmes.com

0

Helmes is a well-established software development company specializing in custom software solutions, mobile app development, legacy modernization, data analytics, and cybersecurity services. With over 30 years of experience and more than 500 international clients including major organizations like Airbus, Telia, OECD, and CERN, Helmes positions itself as a trusted digital innovation partner. The company operates globally with 20 offices and 1,500 employees, emphasizing quality and long-term client relationships. Their website reflects a professional and comprehensive digital presence with strong branding and clear service offerings. Technically, the website is built on WordPress with a modern tech stack including Google Tag Manager and HubSpot integrations for analytics and marketing. The site is mobile-optimized, SEO-friendly, and supports multiple languages. Security-wise, Helmes holds ISO certifications (27001, 9001, 14001) and integrates security from the start of their development process. However, some security headers are missing, and no incident response or vulnerability disclosure information is publicly available. Overall, the website is secure, professional, and trustworthy, though the lack of WHOIS data transparency slightly reduces domain trust. The company demonstrates strong compliance with privacy regulations and provides clear contact information. Strategic improvements could include publishing incident response policies, enhancing security headers, and adding vulnerability disclosure mechanisms to further strengthen security posture and trust.

Riit Trading OÜ is a small Estonian company specializing in premium security and communication technology products, including videophone systems, doorbells, access control, signaling devices, medical panels, and industrial welding equipment. The company targets residential, small office, industrial, and medical sectors, positioning itself as a premium provider in the local market. The website is professionally designed, mobile-optimized, and provides clear product information and contact details. Technically, the site uses the Voog CMS platform with modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, alongside a cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, supporting the company's business credibility and customer trust.

M

MERCURY CREDIT OÜ

merc.lv

0

Mercury Credit is a small financial services company operating primarily in the Baltic region, offering secured loans against real estate and auto loans. The website is built on WordPress and uses common plugins such as Yoast SEO and Contact Form 7, indicating a standard CMS-based infrastructure. The company targets Russian, Estonian, and Latvian speaking customers, as reflected in the multilingual site structure and metadata. The business model focuses on niche secured lending services, positioning Mercury Credit as a regional lender with a modest online presence. Technically, the website employs a moderate technology stack with standard libraries like jQuery and jQuery UI, and includes SEO optimizations via Yoast. The site is HTTPS enabled but lacks advanced security headers, which suggests room for improvement in security hardening. Performance and mobile optimization are basic but functional. Cookie consent is implemented, but privacy and terms of service pages are not found, indicating incomplete compliance with privacy regulations. From a security perspective, the site shows no signs of WAF or blocking mechanisms and no visible vulnerabilities in the HTML content. However, the absence of security headers and privacy policies reduces the overall security posture. The WHOIS data could not be retrieved due to query limits, limiting the ability to verify domain registration legitimacy and age, which impacts trust assessment. Overall, Mercury Credit presents as a legitimate small financial lender with a basic but functional website. Key risks include incomplete privacy compliance and limited security hardening. Strategic improvements in security headers, privacy documentation, and contact transparency would enhance trust and compliance.

T

Triniti

triniti.lt

0

Triniti is a Pan-Baltic law firm offering comprehensive legal advisory services with a team of over 90 professionals. The firm targets business clients across the Baltic region, providing expertise in corporate law, intellectual property, mergers and acquisitions, and tax law. The website reflects a professional and consistent brand image, supported by structured data and SEO best practices. Technically, the site is built on WordPress and integrates modern tools such as Google Analytics, Cookiebot for consent management, and New Relic for performance monitoring. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security headers and incident response information are absent. Privacy compliance is supported by a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the site is trustworthy and well-positioned in its market segment.

A

Astieks Komfort OÜ

astieks.com

0

Astieks Komfort OÜ operates a professional website focused on luxury home decoration, kitchen furniture, and interior design services primarily in Estonia. The company is an official dealer of SieMatic kitchens and has been active in the luxury furniture industry since 2005. Their business model combines retail of high-end furniture and accessories with design consultancy and project realization. The website is well-structured, multilingual, and provides clear contact channels including phone, email, and a contact form. Social media presence on Facebook and Instagram supports brand visibility. Technically, the website is built on WordPress using WooCommerce for e-commerce functionality and Elementor for page building. The tech stack includes modern libraries such as jQuery and Vue.js, and SEO is enhanced by Yoast SEO plugin. The site is mobile optimized and performs moderately well. However, some security best practices like enabling DNSSEC and security headers are missing. The domain is secured with HTTPS and has a clientTransferProhibited status, indicating good domain management. Security posture is adequate but could be improved by adding security headers and explicit incident response information. Privacy compliance is basic with GDPR and cookie policies present but lacking a consent mechanism. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professional, serving a niche luxury retail and design market. Recommendations include enhancing DNS security with DNSSEC, implementing security headers, adding cookie consent mechanisms, and publishing terms of service and security policies to improve compliance and trust.

M

Magnetmedia

magnet.lv

0

Magnetmedia is a well-established media agency network operating in the Baltic region, primarily Estonia and Latvia, with over 15 years of experience. The company focuses on providing personalized media planning and buying services to small and medium-sized enterprises, emphasizing client-specific needs and statistical approaches to media investment. The website reflects a professional and consistent brand image, with clear navigation and multilingual support. Technically, the site is built on WordPress with common plugins such as Yoast SEO, Contact Form 7, and WPML, and integrates Google Analytics and Google Ads for marketing and tracking purposes. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks published security policies and incident response contacts. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and business credible but would benefit from enhanced privacy and security transparency.

H

HRMNY

hrmny.team

0

HRMNY is a technology company founded in 2018, specializing in AI-based people intelligence solutions to help businesses build high-performing teams and make better hiring decisions. Their website presents a professional and modern digital presence built on Squarespace, integrating marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The company targets HR professionals, managers, and business leaders seeking data-driven insights into team dynamics and employee motivation. Security posture is strong with HTTPS and HSTS enabled, but the absence of privacy and cookie policies indicates compliance gaps. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the domain registration and website content are consistent and legitimate, positioning HRMNY as a credible player in the HR technology space.

K

Kominsur Kindlustusmaakler OÜ

kominsur.ee

0

Kominsur Kindlustusmaakler OÜ is an established independent insurance brokerage firm based in Estonia, operating since 2003. The company offers a broad range of insurance services including marine, transport, liability, cargo, personnel, and trade credit insurance, targeting corporate and private clients across Europe. Their market position is supported by a significant number of concluded contracts and a wide customer base spanning 26 countries. The website reflects a professional and consistent brand image with good content quality and clear navigation.

L

L'Oréal Paris

loreal-paris.ee

0

L'Oréal Paris Estonia operates as a regional website for the globally recognized L'Oréal S.A., offering a wide range of cosmetics, skincare, and haircare products. The site targets general consumers interested in beauty and personal care, providing product information and editorial content such as the Beauty Magazine. The business model is retail-focused with an e-commerce presence, supported by a strong brand reputation and consistent branding across digital assets. Technically, the website employs modern JavaScript frameworks like Vue.js, integrates Google Tag Manager for analytics, and uses OneTrust for cookie consent, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforced, security headers present, and no critical vulnerabilities detected. Privacy compliance is well addressed through visible cookie consent mechanisms and a comprehensive privacy policy, aligning with GDPR requirements. Overall, the website demonstrates high professionalism, trustworthiness, and technical competence, though it lacks explicit security policy and incident response disclosures.

Z

Zone Media OÜ

iseven.ee

0

The website is for a business growth agency operated by Zone Media OÜ, an Estonian company registered in 2018. The agency offers consulting services focused on business start-up, product packaging, and promotion. The site is built on the Tilda platform and uses modern web technologies including jQuery, Google Analytics, Google Tag Manager, TikTok Pixel, Facebook Pixel, and Intercom for customer engagement. The website is well-designed, mobile-optimized, and provides a contact form for inquiries. However, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security posture is decent with HTTPS enabled and no obvious vulnerabilities, but the absence of security headers is a gap. The domain registration is consistent and transparent, supporting the legitimacy of the business.

J

JNG Investments Ltd.

oil.jungent.eu

0

Jungent is a well-established sales and distribution company operating in the Baltic region since 1991. It specializes in FMCG, lubricants, and foodservice products, serving a broad B2B customer base including retail outlets and HORECA clients. The company owns several subsidiaries in logistics and food industry sectors, demonstrating a diversified business model and strong regional presence. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on the Voog CMS platform using modern web technologies including Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized with good navigation and content quality. However, there is room for improvement in security practices, particularly the implementation of security headers and explicit privacy and cookie policies. From a security perspective, the site uses HTTPS and does not expose sensitive data, but lacks visible security headers and formal incident response or vulnerability disclosure information. The WHOIS data is unavailable due to privacy protection, which is common and justified for this business type. Overall, the site presents a moderate security posture with good business credibility. The overall risk assessment is moderate with recommendations to enhance privacy compliance, security headers, and incident response transparency to strengthen trust and security culture. The company’s digital maturity is solid but can benefit from modernization in security and privacy practices.

J

Javer

javer.lv

0

Javer.ee is an established e-commerce website specializing in footwear retail, primarily targeting Latvian-speaking customers with multi-language support. The brand emphasizes its European cultural heritage and offers a variety of shoe collections. The website is built on the PrestaShop platform, integrating modern marketing and analytics tools such as Facebook Pixel and Google Analytics. It demonstrates good technical implementation with HTTPS, cookie consent, and GDPR compliance. However, it lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. Overall, the site is professional, secure, and user-friendly, serving a niche retail market effectively.

S

Sportland Eesti AS

sportlandmagazine.com

0

Sportland Magazine is a leading Estonian lifestyle and sports online magazine operated by Sportland Eesti AS, a medium-sized retail and media company established in 2010. The website offers a rich variety of sports news, lifestyle articles, event coverage, and product recommendations targeted primarily at Estonian sports enthusiasts and lifestyle readers. The company maintains a consistent brand presence with active social media channels and a well-structured website optimized for SEO and mobile devices. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools such as Google Tag Manager and Facebook Pixel, hosted behind Cloudflare DNS services. Security posture is good with HTTPS enforced and no exposed sensitive data, though improvements like implementing a Content-Security-Policy header and publishing a security.txt file are recommended. Privacy compliance is adequate with a comprehensive privacy policy in Estonian, but lacks a cookie consent mechanism and explicit GDPR compliance indicators. Overall, the website is professional, trustworthy, and well-positioned in its market segment.

B

BTR

btr.eu

0

BTR operates a professional website offering all-inclusive semi trailer rental and sales services across Europe, targeting businesses seeking efficient logistics solutions. The company has over 20 years of experience and a diverse rental fleet, positioning itself as a reliable player in the European transportation sector. The website is built on WordPress with modern technologies such as Elementor and Kadence theme, and integrates Google Tag Manager and Analytics for tracking. Security posture is strong with HTTPS and security headers properly configured, though privacy compliance could be improved by adding explicit cookie consent and GDPR statements. Contact is primarily via web forms, with no explicit email or phone contacts found. Overall, the website is professional, well-structured, and trustworthy, but could enhance privacy and contact transparency.

C

CINAMON

cinamonkino.com

0

CINAMON is a regional cinema ticketing platform primarily serving the Baltic region, offering multilingual support for Estonian, Latvian, Lithuanian, Russian, and English speakers. The website provides cinema ticket sales and movie showtimes, targeting cinema goers in these countries. The business appears to be medium-sized, founded in 2014, and operates in the hospitality sector. Technically, the site uses modern JavaScript frameworks such as Vue.js and Nuxt.js, with integration of popular analytics and marketing tools including Google Analytics, Microsoft Clarity, and Facebook SDK. The hosting is managed via Zone Media DNS servers, and the site uses HTTPS with a clientTransferProhibited domain status, indicating a reasonable security baseline. However, there is no evidence of DNSSEC or advanced security headers, and no published privacy or cookie policies, which are critical for GDPR compliance and user trust. Contact information and incident response details are not found, limiting transparency. Overall, the website is functional and professionally designed but lacks some key compliance and security disclosures.

D

Dive Group

dive-group.com

0

Dive Group is a medium-sized company founded in 2012, specializing in mystery shopping and customer experience consulting primarily serving retail and other business sectors. The company positions itself as a trusted partner for businesses aiming to strengthen customer loyalty and increase sales through professional evaluation services. Their website is built on WordPress using the Avada theme, incorporating modern marketing and analytics tools such as Google Tag Manager and Microsoft Clarity. The site demonstrates good GDPR compliance with a comprehensive privacy policy and cookie consent mechanism. Security posture is adequate with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the website is professional, accessible, and trustworthy, with no signs of malicious content or blocking mechanisms.

P

Peetri Talutehnika OÜ

lumag-baltic.eu

0

Lumag Machinery Baltic, operated by Peetri Talutehnika OÜ, is a small Estonian company specializing in the sale of powerful wood preparation, construction, and gardening machinery. The company targets professional and private customers in the Baltic region, offering a broad range of equipment including wood splitters, saws, snow blowers, and mini dumpers. The website is built on WordPress with WooCommerce, leveraging modern technologies such as Bootstrap and FontAwesome for a professional and responsive user experience. While the site is well-structured and content-rich, it lacks comprehensive privacy and cookie policies, which impacts GDPR compliance. Security posture is generally good with HTTPS enforced, but the absence of security headers and incident response information suggests room for improvement. Overall, the domain registration appears legitimate and consistent with the business claims, supporting a moderate to high trust level.

S

Stebby

stebby.eu

0

Stebby is a health and wellness platform targeting the Baltic region, offering a wide range of services to help users live healthier lives. The company positions itself as the largest platform in this sector within the Baltics, focusing on ease of use and comprehensive wellness options. The website is professionally designed, mobile-optimized, and integrates multiple third-party services for analytics and marketing, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and a robust cookie consent mechanism via Cookiebot, but lacks published privacy and security policies, which are important for compliance and trust. No critical vulnerabilities or suspicious elements were detected, and WHOIS data aligns well with the business profile, indicating legitimacy. Strategic improvements include publishing privacy and terms policies, enhancing security headers, and providing clear contact and incident response information.

H

Hansavest

hansavest.com

0

Hansavest is an Estonian company specializing in workforce services primarily for industrial and manufacturing enterprises. With over 15 years of experience as a labor agency, the company offers comprehensive labor solutions including staffing, training, and recruitment services. The website is professionally designed using WordPress with the Avada theme, featuring good mobile optimization and clear navigation tailored to its target audience in Estonia. The technical infrastructure includes modern tracking and marketing tools such as Google Tag Manager and Facebook Pixel, although Google Analytics is not fully configured. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, indicating room for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website presents a moderate risk profile with no critical security issues detected, but could benefit from enhanced transparency and security practices.

T

TV3 Group

tv3group.eu

0

TV3 Group is a leading media company in the Baltic region, operating a broad portfolio of free and subscription-based TV channels, radio stations, digital platforms, and advertising services. Owned by Providence Equity Partners, it holds dominant market positions in Estonia, Latvia, and Lithuania, serving a wide general audience with diverse media content. The website reflects a professional digital presence built on WordPress, with good SEO and mobile optimization, but lacks visible privacy and cookie policies which are important for compliance. Security posture is solid with HTTPS and no obvious vulnerabilities, though security headers are missing and incident response information is not provided. Overall, the site is trustworthy and well-branded, supporting the company's market leadership claims.

K

KBM Pharma OÜ

gelorevoice.lv

0

KBM Pharma OÜ operates the website gelorevoice.lv, promoting and selling GeloRevoice® lozenges designed to soothe throat irritation and aid voice recovery. The company targets individuals experiencing throat discomfort and markets its product primarily through online pharmacy channels. The website content is well-structured, informative, and consistent with the healthcare sector, reflecting a small-sized business based in Estonia. Technically, the website employs legacy JavaScript libraries such as jQuery 1.7.2 and jQuery UI 1.8.20, alongside Google Analytics for user tracking. While the site is accessible and functional, the use of outdated libraries and absence of modern security headers indicate technical debt and potential security risks. The website lacks visible privacy and cookie policies, which impacts compliance with data protection regulations. From a security perspective, the site does not exhibit blocking or WAF challenges, but the outdated JavaScript and missing security headers reduce its security posture. No forms are present on the homepage, minimizing immediate data collection risks. The absence of WHOIS data due to query limits limits domain registration transparency, but the contact information and business details on the site support legitimacy. Overall, the website presents a moderate risk profile with room for improvement in security practices, privacy compliance, and technical modernization. Strategic enhancements in these areas will strengthen trust and regulatory adherence.

B

BioBag Baltic OÜ

cleanliving.lv

0

BioBag Baltic OÜ operates a professional e-commerce website specializing in biodegradable and compostable waste bags produced in Estonia. The company holds recognized certifications such as EN 13432 and TÜV Austria, positioning itself as a leading brand in the compostable waste bag market across multiple countries. The website targets both household consumers and large kitchens or industrial clients, offering a broad product range and solutions for bio-waste collection. Technically, the site is built on WordPress with WooCommerce, integrating modern analytics and marketing tools like Google Analytics, Facebook Pixel, and Mailchimp. The infrastructure is hosted by Elkdata OÜ, with a domain registered since 2015, indicating a mature online presence. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive policies and consent banners. Overall, the website demonstrates good digital maturity, professional design, and trustworthy business practices.

T

Traveller Tours OÜ

freetour.traveller.ee

0

Traveller Tours OÜ is a reputable small-sized tour operator based in Estonia, specializing in guided tours and day trips around Tallinn and other Baltic destinations. The company offers a variety of services including walking, bike, shore excursion, and transfer tours, targeting tourists seeking authentic local experiences. The website is well-structured, professionally designed, and rich in content including extensive customer reviews and detailed tour descriptions. Technically, the site employs modern JavaScript libraries and tracking tools, ensuring a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

N

Nord Connect

nordconnect.com

0

Nord Connect is a telecommunications service provider based in Estonia, offering a full range of communications services that blend classic telephony traditions with modern telephony technologies. The website is currently in a 'coming soon' state but provides essential contact information and a form for customer inquiries. The company appears to be a small-sized entity with a domain age dating back to 2013, indicating an established presence in the market. Technically, the website is built on WordPress using Elementor and WPForms, with a moderate performance profile and basic mobile optimization. The site lacks advanced SEO and accessibility features but maintains a clean and functional design. Security posture is moderate with HTTPS enabled but missing important security headers and DNSSEC, which are recommended for enhanced protection. From a security and compliance perspective, the site lacks privacy and cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The contact information is transparent and consistent with the WHOIS data, supporting business credibility. Overall, the site is safe with no adult or questionable content detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and improving SEO and accessibility to enhance user experience and compliance.

A

ADAMLIGHTS

adamlights.lv

0

ADAMLIGHTS is an established Estonian company specializing in Christmas lighting and decoration solutions since 1999. The company offers a range of catalog products and custom design services for indoor and outdoor spaces, including installation and maintenance. Their market position is supported by participation in major trade fairs and a professional online presence with multilingual support. The website is built on WordPress with modern plugins and tracking technologies, reflecting a moderate to good level of digital maturity. Security posture is adequate with HTTPS and anti-spam measures, though lacking explicit security headers and privacy policies. Overall, the site is professional and trustworthy, but could improve compliance and security transparency.

Ithal-Kraanad AS is an established Estonian company specializing in crane lifting services, operating since 1995. The company serves a broad client base including construction firms, ports, and industrial and agricultural enterprises, offering crane capacities ranging from 20 to 200 tons, with special orders up to 500 tons. The website reflects a focused business model targeting the transportation and heavy lifting sector within Estonia, emphasizing precision and reliability in their services. Technically, the website is built on WordPress with Elementor, indicating a modern and maintainable infrastructure. The site is mobile-optimized and presents a professional design with clear navigation, although some SEO and accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and formal policies. Privacy compliance is minimal, with no visible privacy or cookie policies, which is a gap for GDPR adherence. Overall, the website is trustworthy and professional, but could improve in privacy and security transparency.

B

BaltCap

baltcap.com

0

BaltCap is a leading private equity and venture capital firm operating primarily in the Baltic states of Estonia, Latvia, and Lithuania. The company focuses on investing in small and medium enterprises with a strategy encompassing buyout, growth, and infrastructure funds. BaltCap positions itself as the largest and most experienced private equity investor in the region, emphasizing building business champions and sustainable growth. The website reflects a mature and professional business with comprehensive portfolio details, recent news updates, and testimonials from key stakeholders. Technically, the website is built on WordPress using the Enfold theme, leveraging modern JavaScript libraries such as jQuery and Owl Carousel for UI components. It integrates Google Analytics and Google Tag Manager for analytics and tracking, and employs cookie consent mechanisms indicating GDPR compliance. The site is mobile-optimized with good SEO practices and structured data enhancing search visibility. From a security perspective, the site uses HTTPS with a strong SSL configuration. While no explicit HTTP security headers were detected in the provided data, best practices such as opening external links with noopener and a cookie consent banner are implemented. No vulnerabilities or exposed sensitive data were found in the HTML content. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration transparency. Overall, BaltCap's website demonstrates a high level of professionalism, content quality, and technical maturity. The main risk lies in the missing WHOIS data, which should be investigated further to ensure domain ownership legitimacy. Strategic recommendations include enhancing security headers, publishing incident response policies, and adding a security.txt file to improve vulnerability disclosure transparency.

M

Mediapark

mediapark.com

0

Mediapark is a well-established digital agency specializing in modern web development, native mobile applications for Android and iOS, UX/UI design, and digital strategy services. Founded in 1995 and headquartered in Estonia with multiple international offices, the company serves a broad business audience seeking comprehensive digital solutions. Their portfolio includes notable clients such as Red Bull and Vodafone Zambia, indicating a strong market position and credibility in the technology sector. The website reflects a professional and consistent brand image with excellent design and user experience.

P

Private Financial Services

pfser.com

0

Private Financial Services (PFSER) is an established international consulting company founded in 1998, specializing in corporate services including company registration and ongoing corporate support worldwide. The company positions itself as a trusted provider for international business clients, leveraging its long-standing market presence and expertise. The website is professionally designed, primarily in Russian, with clear branding and consistent messaging targeting corporate clients seeking financial and legal consulting services. Technically, the site is built on WordPress with a modern technology stack including jQuery, Google Tag Manager, and Cookiebot for compliance. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, but lacks explicit security policy and incident response documentation. Overall, the site is safe, professional, and trustworthy, with extensive use of analytics and advertising networks to support marketing efforts.

Raja K.T. OÜ is a well-established Estonian company specializing in wood chip production primarily for energy and industrial clients such as boiler houses, cogeneration plants, and furniture manufacturers. Founded in 1993, the company has grown to become one of the largest wood chip producers in Estonia, offering services including forestry management and wood residue collection. The website reflects a professional and consistent brand image, with clear business information and multilingual support. Technically, the site is built on WordPress with Elementor and integrates modern tools such as Google Tag Manager and GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS, security headers, and reCAPTCHA implemented, though explicit security policies and incident response information are not published. Overall, the site is trustworthy and well-maintained, supporting the company's market position effectively.

I

InteriorStore.eu

interiorstore.eu

0

InteriorStore.eu is an Estonian-based e-commerce retailer specializing in home interior and furnishing products, including furniture, lighting, wallpapers, paints, mirrors, textiles, and accessories. The website targets consumers interested in comprehensive interior solutions and offers a broad product catalog with pricing and financing options. The business appears to be small-sized and founded around 2017, with a consistent brand presence and professional online storefront. Technically, the website is built on WordPress with WooCommerce, utilizing modern plugins such as WPBakery Page Builder, Slider Revolution, and multilingual support via WPML. It integrates Google Analytics and Facebook Pixel for marketing and tracking purposes. The site is served over HTTPS with a good SSL configuration, though some security headers are not explicitly detected. Performance and mobile optimization are good, with a clear navigation structure and SEO best practices implemented. From a security perspective, the site follows basic best practices including HTTPS and reCAPTCHA usage, but lacks explicit security policies, vulnerability disclosure, and comprehensive privacy and cookie policies. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business location and domain age, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

Biston OÜ operates as a wholesale distributor specializing in sanitary technology and bathroom furniture, with a strong presence in Estonia and regional offices in Riga and Vilnius. The company offers a diverse product range from well-known manufacturers and develops its own brand, Aqualine, focusing on quality and design. The website reflects a professional and consistent brand image targeting professional resellers and installers in the sanitary sector. Technically, the site is built on the Voog CMS platform, leveraging modern web technologies such as jQuery and Google Fonts, and includes features like a product search and cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is addressed with a privacy policy and cookie banner, aligning with GDPR requirements. Overall, the website is trustworthy, well-structured, and serves its business purpose effectively.

Monger Baltic OÜ is a small Estonian retail and distribution company founded in 2009, specializing in health and sports lifestyle brands across the Baltic region. The company operates an e-commerce website offering a range of innovative and quality products from partner brands such as KT Tape, Sportique, Zensah, and Cool’n Tape. Their business model focuses on online sales combined with brand representation and customer delivery services, targeting consumers interested in health and sports products. The website supports multiple languages, enhancing accessibility for regional customers. Technically, the website is built on WordPress with integration of Google Tag Manager and Plausible Analytics for tracking. Payment options include Paysera, Paypal, credit cards, and bank transfers, indicating a mature e-commerce setup. The site is mobile optimized with good SEO practices, though some accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers and a cookie consent mechanism. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy policies are comprehensive and GDPR compliant, but incident response and security policies are not published. Overall, the security posture is solid but could be enhanced with additional headers and formal policies. The overall risk assessment is low, with a trustworthy domain registration consistent with the business claims. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and maintaining regular security audits to enhance compliance and trust. The website presents a professional and credible online presence suitable for its business scope.

E

Elkdata OÜ

levislatvia.lv

0

Bestbrand.ee is an e-commerce website specializing in Levi’s® branded apparel and accessories, primarily targeting customers in Latvia and the Baltic region. The site offers a localized shopping experience with multiple language options and a structured product catalog. The business is registered under Elkdata OÜ, an Estonian company, with domain registration dating back to 2013, indicating an established presence in the market. The website uses Magento as its e-commerce platform, enhanced with search and carousel features for improved user experience. While the site is professionally designed and mobile-optimized, it lacks visible privacy and cookie policies, which are critical for GDPR compliance. Security-wise, the site uses HTTPS but does not implement advanced security headers, and no explicit contact or incident response information is provided.