Security Directory

A

Artis Zelmenis

artiszelmenis.lv

0

Artis Zelmenis operates a small Latvian-based business website offering a variety of services including web development, SEO, legal assistance, photography, advertising, and educational content. The site targets local SMEs, individuals, and students, providing multilingual content in English, Latvian, and Russian. The business appears niche-focused with a stable presence since 2012. Technically, the website uses standard JavaScript libraries and social media SDKs for Facebook, Twitter, VK, and Draugiem.lv, alongside Google Analytics for traffic monitoring. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. SEO is reasonably addressed with meta tags and multilingual support. Security posture is moderate but with notable gaps: no visible HTTPS enforcement, absence of security headers, and use of some HTTP resources that may cause mixed content issues. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is functional and professional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user safety.

Baltic Legal operates a specialized immigration and legal consultancy website focused on residence permits and immigration services in Latvia and the broader European Union. The company offers services including residence permits via real estate investment, business investment, and bank deposits, alongside legal assistance in corporate and immigration law. The website is well-structured, multilingual, and provides detailed information about immigration policies, visa requirements, and investment options. Technically, the site uses standard web technologies with Google Analytics and Tag Manager for tracking, but lacks advanced security headers and cookie consent mechanisms. The WHOIS data is fully redacted as per EURid policy, which is typical for .eu domains and does not raise immediate concerns. Overall, the site presents a professional image with moderate technical maturity and some room for security and privacy improvements.

L

Lumi Capital OÜ

lumimajas.lv

0

Lumi Majas, operated by Lumi Capital OÜ, is a regional real estate rental service specializing in long-term apartment and commercial space leasing primarily in Latvia, with partner sites in Estonia and Lithuania. The website provides detailed rental options, terms, and contact mechanisms targeting individuals seeking flexible and long-term housing solutions. The business model focuses on providing accessible rental properties with additional services to enhance tenant experience. Technically, the website is built on Joomla CMS with modern front-end frameworks and integrates Google reCAPTCHA and cookie consent mechanisms to ensure user privacy and security. The site demonstrates good digital maturity with multi-language support and social media integration. Security posture is solid with HTTPS enforcement and spam protection on forms, though it lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though improvements in security headers and transparency could enhance its posture further.

T

Telema AS

telema.lv

0

Telema AS is a technology company specializing in Electronic Data Interchange (EDI) and supply chain optimization solutions, targeting businesses seeking to automate and improve their trading document workflows. The company holds a strong regional presence in the Baltics with multilingual websites and certified partners, positioning itself as a reliable and trusted provider in its niche. The website demonstrates a mature digital infrastructure built on WordPress with modern front-end libraries and comprehensive marketing and analytics integrations. Security posture is robust, supported by ISO 27001 certification and HTTPS enforcement, with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well managed through Cookiebot and clear privacy policies. Overall, the website reflects a professional, trustworthy, and business-focused digital presence.

L

Luminor Bank AS

luminor.lv

0

Luminor Bank AS operates a comprehensive banking website targeting private individuals and businesses in Latvia, offering a wide range of financial services including loans, savings, insurance, and internet banking. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages. The technical infrastructure is based on Drupal CMS with modern JavaScript libraries and Google analytics tools integrated, alongside a robust cookie consent mechanism powered by OneTrust. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR adherence is evident. However, explicit incident response contact details and vulnerability disclosure mechanisms are not found, representing an area for improvement. Overall, the website reflects a mature digital presence suitable for a large financial institution with high trustworthiness and good user experience.

A

AMIT Baltic

amit.lv

0

AMIT Baltic operates as a software provider specializing in dealer management systems (DMS) for the automotive industry, primarily targeting auto dealers and related businesses in the Baltic region. Their flagship product, AutoMaster, is positioned as a trusted solution recommended by auto manufacturers and importers, serving a medium-sized market with a focus on resource management and process optimization. The website reflects a professional presence with clear branding and client endorsements from major automotive brands, indicating a solid market position. Technically, the website employs legacy technologies such as jQuery 1.8.2 and bxSlider, alongside Google Analytics for user tracking. While the site is accessible and moderately optimized for performance and SEO, mobile optimization and accessibility are basic. The absence of modern frameworks or CMS suggests a relatively simple technical infrastructure. Hosting and domain registration appear consistent and legitimate, with no blocking or WAF interference detected. From a security perspective, the site lacks visible security headers and uses an outdated JavaScript library, which could expose it to vulnerabilities. There is no evidence of HTTPS enforcement or advanced security policies. Privacy compliance is weak, with no privacy or cookie policies found, and no consent mechanisms for tracking, which poses regulatory risks under GDPR. Contact information is comprehensive and clearly presented, enhancing business credibility. Overall, the website scores moderately well but requires improvements in privacy compliance, security hardening, and modernization of its technical stack to reduce risks and enhance trustworthiness. Strategic recommendations include implementing privacy and cookie policies, upgrading JavaScript libraries, adding security headers, and enforcing HTTPS to strengthen the security posture and regulatory compliance.

B

Baltic Legal

baltic-legal.com

0

Baltic Legal is a specialized corporate law office providing company formation, legal, accounting, and immigration services focused on the Baltic states of Latvia, Estonia, and Lithuania. The company targets entrepreneurs and businesses seeking to establish operations in these countries, offering a one-stop solution for business registration, tax management, and residence permits through investment. The website content is professionally structured and provides detailed service descriptions, although it lacks explicit contact information and privacy policies. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, Font Awesome icons, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site is moderately optimized for mobile devices and SEO, but lacks advanced accessibility features and security headers. The absence of HTTPS status information and security headers suggests room for improvement in security posture. From a security perspective, the site does not expose sensitive data and uses no known vulnerable libraries. However, the lack of privacy and cookie policies, absence of contact details for incident response, and missing WHOIS registration data reduce trustworthiness and compliance with data protection regulations. The WHOIS query returned no registration data, which is inconsistent with the active website presence and raises concerns about domain legitimacy. Overall, Baltic Legal presents a credible business offering with good content quality and technical implementation but requires significant improvements in security, privacy compliance, and transparency to enhance trust and regulatory adherence.

U

UPRENT Ltd.

uprent.eu

0

UPRENT Ltd. is a regional provider specializing in pump rental, energy solutions, and construction equipment across Latvia, Estonia, Lithuania, and Poland. The company offers a broad range of rental equipment including pumps, excavators, generators, and trench support systems, complemented by specialist project services. Their market position is strong within the Baltic region and Poland, supported by a multilingual website and localized contact points. The business model focuses on equipment rental and sales with value-added specialist solutions for industrial and construction clients. Technically, the website is built on a modern WordPress platform with WooCommerce and WPBakery Page Builder, integrating Google Analytics and Tag Manager for tracking. The site is mobile-optimized with good SEO practices and structured data enhancing search visibility. Security measures include HTTPS, reCAPTCHA on forms, and nonce tokens, though explicit security headers and policies are absent. The security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of a published privacy policy and security incident response details indicates room for improvement in compliance and transparency. Cookie consent mechanisms are implemented, supporting GDPR compliance to some extent. Overall, UPRENT presents a professional and trustworthy online presence with comprehensive contact information and clear business focus. Strategic enhancements in privacy documentation, security policies, and accessibility would further strengthen their digital maturity and compliance standing.

N

Nordic Aviation

nordicavi.com

0

Nordic Aviation is a small aviation service provider specializing in aircraft wetlease (ACMI), damplease, charter, and consultancy services primarily targeting airlines and lessors. The company operates from Latvia and offers aircraft acquisition and consultancy to optimize airline performance. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and editor elements, indicating a moderate level of digital maturity. The site is moderately optimized for mobile devices and SEO but lacks advanced accessibility features and comprehensive privacy compliance. Security posture is basic with HTTPS usage implied but no visible security headers or incident response information. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the website provides basic business information but lacks critical compliance and security disclosures, suggesting a need for enhanced transparency and security controls.

H

Harbour Enterprise Group | Latvija, Lietuva, Igaunija

harbour.lv

0

The website www.harbour.lv is a small business site hosted on the Wix platform, targeting a Latvian audience. The site uses standard Wix technologies and integrates Google Analytics for visitor tracking. However, the site lacks comprehensive business information, privacy policies, and contact details, which limits its credibility and user trust. Technically, the site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Overall, the site presents a minimal digital footprint with room for significant improvements in privacy compliance, security, and business transparency.

S

Sportland

sportland.com

0

Sportland is a well-established retail company specializing in sporting goods and apparel, operating primarily in the Baltic states and Finland with a strong e-commerce presence offering worldwide delivery. The company has a significant market position as the largest sporting goods retailer in the Baltics, supported by over 50 physical stores and a modern online platform. The website leverages modern technologies including React-based PWA and Magento PWA Studio, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements can be made in DNSSEC and security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a professional and trustworthy business with good technical infrastructure.

S

Sajos & Portress

sajosportress.lv

0

Sajos & Portress is a Latvian retail business specializing in garage doors, door automation, and related home access products, prominently featuring Hormann brand promotions. The company targets local customers interested in home improvement and automotive accessories, leveraging event participation such as the Auto 2025 exhibition to enhance market presence. The website is built on the Mozello CMS platform, hosted via Amazon CloudFront CDN, and employs common JavaScript libraries including jQuery and Fancybox. It features a cookie consent mechanism and Google Analytics for user tracking, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible exposed sensitive data; however, the absence of security headers and a formal privacy policy page are notable gaps. The lack of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, which impacts overall business credibility. Strategic improvements in compliance documentation, security headers, and domain registration transparency are recommended to strengthen trust and security.

F

Footshop a.s.

footshop.lv

0

Footshop a.s. operates a professional e-commerce platform specializing in sneakers and streetwear, targeting consumers primarily in Latvia and broader European markets. The company offers a wide range of branded footwear and apparel, supported by physical retail locations and a loyalty program. The website is well-branded, with consistent design and clear navigation, supporting a positive user experience. Technically, the site uses modern web technologies including Google Tag Manager, Cookiebot for consent management, and Typekit fonts, built likely on PrestaShop CMS. Performance and mobile optimization are good, though accessibility features are basic. Security posture is strong with HTTPS enforced and cookie consent mechanisms, but could benefit from additional security headers and a published security policy. Privacy compliance is robust, with a comprehensive privacy policy and cookie consent banner. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the site is professional, secure, and compliant, supporting Footshop's market position as a leading sneaker retailer in the region.

T

toprent.lv

toprent.com

0

Toprent.lv operates as a regional car rental service primarily targeting customers in the Baltic states, including Latvia, Lithuania, and Estonia. The company offers an online platform for vehicle rentals with multilingual support, catering to both local and international clients. The website's content and structure reflect a professional and user-friendly approach, with clear navigation and relevant business information. The business model focuses on providing accessible car rental services with customer support and FAQ resources to enhance user experience. Technically, the website is built on WordPress with Bootstrap and jQuery frameworks, leveraging Cloudflare for DNS services. The site demonstrates moderate performance and good mobile optimization, with SEO best practices implemented through meta tags and structured data. The presence of Cookiebot for cookie consent and Google Analytics for traffic analysis indicates a mature digital infrastructure with attention to privacy compliance. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms with granular user controls. However, some standard security headers are missing, and there is no explicit security policy or incident response information publicly available. No critical vulnerabilities or exposed sensitive data were detected, suggesting a reasonable security posture but with room for improvement in header implementation and formal security documentation. Overall, Toprent.lv presents a credible and professional online presence with solid business credibility and compliance with GDPR requirements. Strategic recommendations include enhancing security headers, publishing a formal security policy, and establishing a vulnerability disclosure program to further strengthen trust and security maturity.

Squalio is an established IT service provider founded in 2013, specializing in IT infrastructure, cybersecurity, licensing, and AI solutions. The company targets a global business audience seeking comprehensive IT support and advanced technology services. Their market position is that of a specialized technology partner with a focus on cybersecurity and licensing excellence. The website demonstrates a professional digital presence using modern technologies such as Nuxt.js and Tailwind CSS, indicating a mature technical infrastructure. Hosting and DNS services leverage Cloudflare, enhancing performance and security. Security posture is adequate with HTTPS enabled and domain registration protections in place; however, there are gaps such as missing DNSSEC and security headers. Privacy compliance is weak due to the absence of privacy and cookie policies and lack of consent mechanisms. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

W

Widen legal

widen.legal

0

Widen legal is a professional legal services firm established in 2023, operating primarily in the Baltic region. The firm offers a broad range of legal expertise including dispute resolution, corporate law, employment law, tax, data protection, and compliance across multiple sectors such as finance, technology, healthcare, and real estate. The website reflects a modern, client-friendly approach with clear navigation and detailed team profiles, positioning Widen as a reputable regional legal provider. Technically, the website is built on WordPress with integrations such as Forminator for forms, TranslatePress for multilingual support, and Cloudflare for DNS and CDN services, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced, cookie consent mechanisms in place, and bot protection via Google reCAPTCHA, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent. Overall, the site demonstrates good business credibility and technical implementation, with room for enhanced security policies and incident response transparency.

I

Inspired UM

inspired.lv

0

Inspired UM is a Latvia-based media agency with nearly 20 years of experience specializing in media buying, planning, digital marketing, and creative production. The company targets businesses seeking comprehensive media solutions and positions itself as a trusted partner with long-term client relationships. The website is built on the Squarespace platform, leveraging modern web technologies and providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS and HSTS enabled, and a cookie consent mechanism is implemented, though explicit privacy and terms policies are missing. Social media integration is active, enhancing credibility. Overall, the site reflects a professional and established media agency with room for improvement in privacy compliance and contact transparency.

C

CV Market

cvmarket.lv

0

CV Market is a well-established Latvian online job portal serving both job seekers and employers. It offers a comprehensive platform for job listings, resume databases, and employer branding, positioning itself as a leading player in the Latvian employment market. The website is professionally designed with good content quality and clear navigation, targeting primarily the Latvian market. Technically, the site employs modern JavaScript libraries and integrates advanced marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Google Optimize, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and includes a Content Security Policy, although the policy is somewhat permissive and could be tightened to enhance protection. Privacy compliance is robust, featuring a cookie consent mechanism and detailed privacy policies aligned with GDPR requirements. Overall, the site demonstrates a strong business credibility and a good security posture, with room for improvement in security policy transparency and CSP configuration.

N

Nordtext

nordtext.com

0

Nordtext is a well-established language services provider specializing in technical and life sciences industries. Founded in 2006, the company offers a range of services including translation, desktop publishing, terminology management, interpreting, and technology solutions. Their market position is supported by ISO 17100:2015 certification, multiple industry awards, and a client base featuring notable companies such as Nordea and Fortum. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website employs a traditional jQuery-based stack with Google Tag Manager for analytics and a cookie consent mechanism that complies with GDPR requirements. Hosting and DNS services are provided via Cloudflare, enhancing performance and security, although DNSSEC is not enabled. The site is mobile optimized and SEO friendly, though some modernization opportunities exist. From a security perspective, the site uses HTTPS and enforces clientTransferProhibited status on the domain, indicating good domain security practices. However, there is no published security policy or incident response contact, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with a clear privacy policy and cookie consent banner. Overall, Nordtext presents a low-risk profile with strong business credibility and a solid security posture. Recommendations include enabling DNSSEC, adding security headers, and publishing a security policy and incident response information to further enhance trust and compliance.

B

BDO Latvia

bdo.lv

0

BDO Latvia is a professional services firm specializing in audit, tax, accounting, legal, and financial consulting services. As the official representative of the BDO Global network in Latvia, it benefits from a strong international presence with over 1700 offices worldwide. The website reflects a medium-sized enterprise targeting Latvian businesses and organizations seeking expert financial and consulting services. The content is well-structured, professionally presented, and consistent with the brand identity of BDO Global. Technically, the website employs modern web technologies including React and Kentico CMS, hosted likely on Microsoft Azure infrastructure. It integrates advanced analytics and telemetry tools such as Microsoft Application Insights and Google Analytics, with a robust cookie consent mechanism powered by Cookiebot ensuring GDPR compliance. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes multiple security headers to protect against common web vulnerabilities. No critical security issues or vulnerabilities were detected in the content. However, explicit security policies and incident response contact information are not published, representing an area for improvement. Overall, BDO Latvia's website presents a trustworthy and professional digital presence aligned with its business objectives. The domain registration data corroborates the legitimacy and consistency of the business claims. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party scripts to uphold security and privacy standards.

DAN Communications is a Latvia-based medium-sized technology and telecommunications company specializing in radio communications and cybersecurity solutions. The company offers a range of products including Fortinet FortiGate security solutions, Motorola radio communication devices, and backup solutions such as NAKIVO. Their services include industry-specific solutions, training, and distribution, targeting businesses and organizations primarily in the Baltic region. The website reflects a professional and consistent brand presence with clear navigation and relevant content for their target audience. Technically, the website employs legacy technologies such as jQuery 1.11.0 alongside modern analytics tools like Google Analytics and Google Tag Manager. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. There is no detected CMS or hosting provider information. SEO is basic with meta keywords and viewport settings but no structured data or Open Graph tags. From a security perspective, the site uses HTTPS and includes no visible exposed sensitive data. However, the use of an outdated jQuery version introduces potential vulnerabilities. No security headers or explicit security policies are present, and no privacy or cookie policies are disclosed, indicating gaps in compliance and security transparency. Contact information is not explicitly provided in the HTML, limiting direct communication channels. Overall, the website is functional and professional but requires improvements in security practices, privacy compliance, and transparency to enhance trust and reduce risk. Strategic recommendations include updating third-party libraries, implementing security headers, publishing privacy and cookie policies, and providing clear contact channels for security incidents.

L

LATAKKO SIA

latakko.lv

0

Latakko is a well-established wholesale distributor of tires and auto wheels in the Baltic States, boasting 30 years of industry experience and operating as part of the Nordic Tire Group. The company offers a broad assortment of products including passenger car tyres, truck and bus tyres, agro and industrial tyres, motorcycle tyres, and wheels. Their business model emphasizes logistics efficiency and marketing support to partners, positioning them as a market leader in their region. The website reflects a professional and modern digital presence with multilingual support and rich multimedia content. Technically, the site is built on WordPress with WooCommerce and other modern web technologies, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and reCAPTCHA integration, though there is room for improvement in security headers and explicit incident response policies. Privacy compliance is basic with privacy and cookie policies present but lacking active consent mechanisms. Overall, the website and business demonstrate high credibility and trustworthiness.

The website simplika.com currently serves as a transitional landing page informing visitors that CVO Recruitment and Simplika have merged and rebranded as Grafton Latvia. The site content is minimal, primarily providing a bilingual message and a timed redirect to the new Grafton Latvia website. The business operates in the recruitment sector, targeting job seekers and partners in Latvia, with a history dating back to 2006. The domain is well aged and registered through a reputable registrar, Blacknight Internet Solutions Ltd., with standard domain security measures such as clientTransferProhibited status but lacks DNSSEC. Technically, the site is simple, using basic HTML and CSS without advanced frameworks or CMS, and shows moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks security headers and DNSSEC, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the site is functional as a redirect but requires enhancements in security, privacy compliance, and richer content to improve trust and user experience.

GRIFS AG is a Latvian security services company specializing in residential and business security solutions including technical security and alarm systems. The company targets customers in Latvia and has regional presence in Lithuania and Estonia through related domains. The website is built on WordPress with standard SEO and analytics tools, demonstrating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms implemented, but lacks advanced security headers and explicit security or incident response policies. Overall, the website is professional and trustworthy with room for improvement in security and compliance documentation.

Gencs Valters Law Firm is a small, regionally focused legal and tax consultancy firm operating primarily in the Baltic states of Latvia, Lithuania, and Estonia. The firm offers a broad range of services including corporate finance, company registration, tax services, immigration and residency, mergers and acquisitions, debt recovery, and intellectual property registrations such as patents and trademarks. The website content is professionally presented with a consistent brand image and clear navigation, targeting businesses and individuals seeking legal expertise in the Baltic region. The firm demonstrates trust through client references and social media presence. Technically, the website uses legacy technologies such as jQuery 1.7.2 and Google Analytics for tracking. The site lacks modern security headers and does not explicitly use HTTPS based on the provided base URL, which impacts its security posture. Mobile optimization and accessibility are basic but functional. SEO practices are present but could be improved. The site collects user emails via a contact form but lacks visible privacy or cookie policies, indicating compliance gaps with GDPR. From a security perspective, the absence of HTTPS and security headers, along with the use of outdated JavaScript libraries, presents vulnerabilities. No incident response or security policies are published. The WHOIS data is consistent with the business claims, registered through a Latvian registrar, supporting legitimacy. No WAF or blocking mechanisms are detected, and the site content is fully accessible. Overall, the website is credible and professional but requires significant improvements in security and privacy compliance to meet modern standards. Strategic enhancements in HTTPS deployment, security headers, updated libraries, and GDPR compliance will strengthen trust and reduce risk.

A

AD Baltic

adbaltic.lv

0

AD Baltic is a regional wholesale distributor specializing in automotive spare parts and service equipment across the Baltic states and Belarus. The company operates as a partner of AD International, targeting wholesale buyers and automotive service providers. Their website presents a professional and consistent brand image with clear navigation and relevant content primarily in Latvian. The technical infrastructure includes legacy JavaScript libraries and Cloudflare DNS services, indicating moderate digital maturity. Security posture is adequate but could be improved by updating outdated libraries and implementing security headers. Privacy compliance is addressed with visible cookie consent and a privacy policy, though terms of service and incident response policies are absent. Overall, the website is functional and trustworthy with room for technical and security enhancements.

B

Balcia Insurance SE

balcia.com

0

Balcia Insurance SE is an InsurTech company operating primarily in the Baltic region and parts of Europe, offering insurance products tailored to lifestyle needs. The company maintains multiple regional offices with localized contact information and domains, indicating a solid regional presence. The website is professionally designed with good mobile optimization and uses modern web technologies such as Google Fonts and Cookiebot for cookie consent management. Security-wise, the site employs a cookie consent mechanism but lacks explicit security policies or incident response contacts. The domain is registered since 2016 with GoDaddy and shows no suspicious registration patterns. Overall, the website is functional, professional, and trustworthy but could improve transparency by publishing privacy and security policies.

Korso is a medium-sized retail and hospitality business operating a shopping center in Jūrmala, Latvia, offering retail shops, events, cinema, and food services. The website serves as an informational and navigational platform for visitors and customers, featuring links to partner services such as Star Cinema and Korso Brīnumi Jūrmala. The technical infrastructure is based on OctoberCMS with common JavaScript libraries and Google Analytics for tracking. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS usage but missing critical security headers and no visible privacy or cookie policies, indicating compliance gaps. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

F

Firmas.lv

firmas.lv

0

Firmas.lv is a well-established Latvian business information portal providing consolidated legal and factual company data sourced from official registries since 1992. It serves businesses and professionals seeking comprehensive company information and analytics to support business decisions. The website demonstrates a mature technical infrastructure using modern frontend technologies such as Bootstrap, jQuery, and Font Awesome, with responsive design and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is evident with a cookie consent banner and a dedicated privacy policy page. Overall, Firmas.lv presents a professional and trustworthy digital presence aligned with its business objectives.

N

NS King

nsking.lv

0

NS King operates as an e-commerce retailer specializing in footwear and accessories for women, men, and children primarily targeting the Latvian market. The website is built on Magento 2, leveraging modern web technologies and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel to optimize customer engagement and sales. The business model focuses on online retail with features like customer accounts, wishlists, and product comparisons enhancing user experience. The company maintains a consistent brand presence with a professional website design and clear navigation.

V

Virši

virsi.lv

0

Virši is a well-established Latvian company specializing in energy retail, including fuel and electricity supply, with additional services such as electric vehicle charging and convenience store offerings. The company has a strong regional presence and a diversified business model targeting private individuals and businesses. Their website reflects a mature digital infrastructure with modern technologies and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates professionalism and compliance with GDPR, supported by comprehensive cookie and privacy policies. The company maintains active engagement through multiple social media channels, enhancing trust and customer interaction.

The website eapavi.lv is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) blocking the visitor's access. The landing page is a Cloudflare security challenge page indicating that the visitor triggered security rules, resulting in a block. Due to this, no actual business content, contact information, or policies are available for analysis. The domain is active and uses Cloudflare name servers, suggesting some level of security infrastructure, but no further business or technical details can be extracted. The lack of accessible content severely limits the ability to assess the website's technical maturity, security posture, or compliance status.

W

Weekend Eesti OÜ

weekend.lv

0

Weekend.lv is a well-established online and physical retail business specializing in footwear, apparel, and accessories primarily serving the Latvian market with regional presence in the Baltic states. The company offers a broad selection of shoes and related products, supported by multiple physical stores and a robust e-commerce platform built on Magento with a modern React-based frontend (ScandiPWA). The website integrates advanced monitoring and analytics tools such as New Relic and Google Tag Manager, alongside live chat support via Sinch, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and monitoring in place, though there is room for improvement in security headers and explicit privacy and cookie policy disclosures. Overall, Weekend.lv demonstrates strong business credibility and technical maturity, with recommendations to enhance privacy compliance and security transparency to further build customer trust.

S

SIA Transact Pro

transactpro.eu

0

SIA Transact Pro is a licensed electronic money institution based in Latvia, operating since 2004. It provides comprehensive payment services including card issuing, payment processing, and gateway services primarily targeting corporate clients and merchants. The company is a principal member of major payment networks such as Visa and Mastercard and is affiliated with Transact Bank N.A. The website reflects a mature business with clear service offerings and regulatory compliance. Technically, the site uses modern analytics and security tools, including Google Tag Manager, Google Analytics, and reCAPTCHA, and enforces HTTPS with PCI DSS Level 1 compliance. However, it lacks publicly available privacy and security policies, incident response contacts, and vulnerability disclosure mechanisms, which are important for transparency and trust in the financial sector. Overall, the website is professional, secure, and trustworthy, with room for improvement in privacy compliance and security communication.

S

SIA Transact Pro

transactpro.lv

0

SIA Transact Pro is a Latvia-based licensed electronic money institution established in 2004, providing comprehensive payment services including card issuing, payment processing, and gateway services. It holds principal memberships with Visa and Mastercard and operates under the supervision of the Bank of Latvia. The company targets corporate clients, e-commerce businesses, and financial institutions, offering tailored payment solutions and card products such as debit, credit, prepaid, gift, loyalty, and virtual cards. The business is affiliated with Transact Bank N.A., enhancing its banking and financial service capabilities. Technically, the website employs modern JavaScript libraries and integrates Google Tag Manager, Google Analytics, and Yandex Metrica for analytics and user tracking. The site is mobile-optimized with good navigation and professional design. Security measures include HTTPS enforcement, PCI level 1 compliance claims, and use of Google reCAPTCHA for form protection. However, explicit security policies and incident response information are not published, representing an area for improvement. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is moderate due to the presence of a cookie policy and consent mechanism but lacks a dedicated privacy policy page. Contact information is clearly provided with multiple channels including phone, email, and physical address. Overall, the website and business demonstrate high trustworthiness and professionalism. Strategically, the company should focus on publishing comprehensive privacy and security policies, enhancing accessibility, and formalizing incident response and vulnerability disclosure processes to strengthen compliance and customer trust.

P

PetCity

petcity.lv

0

PetCity is a leading Latvian retailer specializing in pet products and veterinary services, operating both online and through multiple physical stores and clinics. The website reflects a mature e-commerce platform with a clear focus on pet owners, offering a wide range of products and services including veterinary clinics and loyalty programs. The technical infrastructure is based on Magento with integrations such as Google Tag Manager, Hotjar, and Google Translate, indicating a modern and user-friendly digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in explicit security policies and headers. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

S

SIA Baltic Agro

balticagro.lv

0

Baltic Agro is a Latvian agricultural company specializing in supplying seeds, fertilizers, plant protection products, animal feed, and grain processing equipment. The company targets farmers and agricultural businesses within Latvia, positioning itself as a key regional supplier with a broad portfolio of agricultural products and services. The website content is well-structured, providing relevant business information and news updates, with a focus on agricultural solutions and market prices. Technically, the website employs common web technologies including jQuery, Google Analytics, Facebook Pixel, and Hotjar for analytics and user behavior tracking. The site is served over HTTPS with good SSL configuration, though explicit security headers are not detected. Privacy compliance is basic but present, with a cookie consent banner and a privacy policy page in Latvian. Contact information is limited to social media links, with no direct emails or phone numbers visible on the homepage. The WHOIS data aligns well with the website's business claims, indicating a legitimate and consistent domain registration. Overall, the website demonstrates a moderate to good level of digital maturity and security posture, suitable for its business context.

V

Viatris SIA

aizcietejums.lv

0

The website aizcietejums.lv serves as an informational and promotional platform for Duphalac, a pharmaceutical laxative product marketed by Viatris SIA in Latvia. It provides comprehensive educational content on constipation causes, symptoms, treatment options, and detailed dosage guidelines. The site targets individuals experiencing constipation, including children, adults, and pregnant women, positioning itself as a trusted source for product and health information. The business model focuses on product awareness and directing users to partner pharmacies for purchase. Technically, the site employs a traditional web stack with HTML5, CSS, JavaScript, and libraries such as jQuery 1.11.1, JWPlayer, and BxSlider for UI components. Google Tag Manager is integrated for analytics and marketing purposes. The site is mobile optimized with good SEO practices and moderate performance. However, some libraries are outdated, and accessibility features are basic. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks visible security headers and explicit security policies. No forms collecting personal data are present, reducing immediate risk exposure. Privacy and cookie policies are provided as PDFs hosted on Viatris assets, indicating GDPR compliance. No incident response or vulnerability disclosure information is found, suggesting room for improvement in transparency and security maturity. Overall, the website is professional, trustworthy, and well-branded, with consistent content quality and clear navigation. The absence of direct contact information and security policies slightly limits user trust and compliance visibility. The domain registration aligns well with the business entity, supporting legitimacy. Strategic enhancements in security headers, incident response transparency, and updated technical components would strengthen the site's security posture and compliance standing.

H

HOPSAA SIA

fotofiniss.lv

0

Fotofinišs, operated by HOPSAA SIA, is a Latvian small business specializing in sports event timing, results processing, and photo finish services, primarily serving cycling, running, and other sports communities. The website presents a professional and consistent brand image with clear contact details and a focus on event results and scheduling. Technically, the site uses October CMS with a modern tech stack including jQuery, Bootstrap, and various plugins, and it is served over HTTPS with Google Analytics integrated for user tracking. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and privacy policies are lacking. The absence of WHOIS data limits domain legitimacy verification, but the business information on the site appears consistent and credible. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

Inbank is a Latvian financial institution focused on providing digital banking services such as loans and deposits to retail customers. The website is professionally designed and leverages modern web technologies including Nuxt.js and integration with Dokobit for secure digital authentication. The technical infrastructure appears solid with HTTPS enforced and use of reputable external libraries and APIs. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information and WHOIS data, limits the ability to fully assess compliance and legitimacy. Security posture is generally good but could be improved by implementing security headers and publishing incident response information. Overall, the website presents a credible banking service but would benefit from enhanced transparency and compliance documentation.

D

DPD

dpd.lv

0

DPD Latvija operates as a key parcel delivery and logistics provider in Latvia, serving both private individuals and business clients. The website reflects a mature digital presence with localized content, multiple language support, and integration with the broader DPD group ecosystem. The company offers a range of services including parcel shipping, pickup networks, contactless delivery, and e-commerce logistics solutions, positioning itself as a leading player in the Latvian transportation sector. Technically, the website is built on WordPress with Bootstrap and jQuery, leveraging custom plugins tailored for DPD's operational needs. The site demonstrates good mobile optimization, SEO practices, and user experience design. Analytics and marketing tools such as Google Tag Manager and TagCommander are implemented with consent mechanisms, indicating attention to privacy compliance. From a security perspective, the site enforces HTTPS and employs secure form handling with nonce tokens. While explicit security headers are not detected, no critical vulnerabilities or exposed sensitive data were found. Privacy policies and cookie consent banners are present and comprehensive, supporting GDPR compliance. However, incident response and vulnerability disclosure information are absent, representing an area for improvement. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. The missing WHOIS data for the exact subdomain is due to querying a subdomain rather than the main domain, which is well-known and reputable. Strategic recommendations include enhancing security headers, publishing incident response details, and improving accessibility features to further strengthen the security posture and compliance.

B

Biedrība "ParSirdi.lv"

parsirdi.lv

0

ParSirdi.lv is a Latvian non-profit patient association dedicated to heart and cardiovascular health. It serves patients, their relatives, and supporters by providing comprehensive information, advocacy, and support services. The website is professionally designed using WordPress and integrates SEO best practices with Yoast SEO plugin and social media presence on Facebook and Twitter. The technical infrastructure includes modern JavaScript libraries and tracking tools such as Google Analytics and Facebook SDK, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and no visible exposed sensitive data; however, the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data due to query limits restricts full domain legitimacy verification, but the website content and structure suggest a legitimate and focused non-profit entity. Overall, the site presents a good user experience with relevant content but requires enhancements in privacy compliance and security transparency.