Security Directory

AERMEC Deutschland GmbH operates in the energy sector, likely focusing on HVAC solutions, serving customers and business partners primarily in Germany. The website is currently under construction and undergoing modernization, limiting available online services and content. The company provides direct contact channels via phone and email, indicating a traditional business communication approach. Technically, the website is simple, built with basic HTML and CSS without advanced frameworks or CMS. It is hosted on UI-DNS nameservers, suggesting a standard hosting environment. Mobile optimization and accessibility are basic, and SEO practices are minimal. No analytics or tracking technologies are detected, reflecting a low digital maturity level. From a security perspective, the site lacks visible security headers and cookie consent mechanisms. The email contact link is malformed, which could impact usability and security. HTTPS status is unknown but assumed necessary. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the security posture is basic with room for improvement. The overall risk is moderate due to limited content and security features. Strategic recommendations include implementing HTTPS, fixing contact link issues, adding security headers, and introducing privacy and cookie policies to improve compliance and trust.

A

AERMEC

aermec.fr

0

AERMEC is a well-established French company specializing in HVAC solutions, particularly terminal units and chillers. With over 55 years of experience and a strong market position, it serves diverse sectors including residential, commercial, industrial, and data centers. The website reflects a mature digital presence with detailed regional contacts and product information. Technically, the site uses Joomla CMS with modern front-end frameworks and includes standard security measures such as HTTPS and CAPTCHA-protected forms. However, there is room for improvement in security headers and explicit security policies. Privacy compliance is addressed with cookie consent and a privacy policy accessible via legal mentions. Overall, the site demonstrates good business credibility and technical implementation, suitable for its industry and audience.

I

Itula Oy

itula.fi

0

Itula Oy is a Finnish company specializing in energy-efficient heating and cooling systems, including innovative ceiling radiant panels and floor heating solutions. Established in 1999, Itula holds a strong market position as a pioneer in its sector within Finland, offering both products and expert consulting services from project planning to implementation. The company emphasizes energy efficiency and indoor climate quality, targeting business clients in construction, industrial, and residential markets. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating a mature digital presence. Security measures include HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though additional security headers and policies could enhance protection. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a credible and established business.

A

Aermec S.p.A.

aermec.com

0

Aermec S.p.A. is a well-established international company specializing in air conditioning solutions and green technologies. The company positions itself as a leading global brand with a broad international presence, supported by multiple subsidiaries across Europe, North America, and Latin America. The website reflects a professional corporate identity with multilingual support and clear business information, targeting international customers and partners in the energy and HVAC sectors. Technically, the website is built on WordPress with common plugins and libraries, offering a moderate performance and good mobile optimization. However, there is room for improvement in accessibility and security headers implementation. Security posture is adequate with HTTPS implied, but lacks explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible and functional but would benefit from enhanced security and privacy transparency.

R

Refrion

refrion.com

0

Refrion is a leading company specializing in industrial refrigeration and ventilated equipment for industrial use worldwide. As part of the LU-VE Group, it holds a strong market position in the energy and manufacturing sectors, offering a range of products including dry coolers, condensers, and batteries. The website reflects a professional B2B business model targeting industrial clients requiring advanced cooling solutions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates key marketing and analytics tools such as Google Analytics and Cookiebot for privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is well-structured, mobile-optimized, and SEO-friendly, supporting a good user experience and trustworthiness. The lack of WHOIS data for the subdomain is consistent with it being a subdomain of luvegroup.com, which aligns with the corporate structure. Strategic recommendations include enhancing security headers, expanding contact information visibility, and maintaining compliance with evolving privacy regulations.

N

NürnbergMesse GmbH

chillventa.de

0

Chillventa is a globally recognized exhibition specializing in refrigeration technology, organized by NürnbergMesse GmbH in Germany. The website serves as a comprehensive platform for industry experts, exhibitors, and visitors to connect, showcasing the latest innovations and providing detailed event information. The company holds a leading market position in the energy sector, particularly in refrigeration and related technologies. Technically, the website is built on modern frameworks such as Next.js and Sitecore CMS, hosted on Microsoft Azure infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR regulations.

E

Euroheat & Power

ehpcongress.org

0

Euroheat & Power operates the EHP Congress, the largest European event dedicated to district heating and cooling, focusing on the heating transition and decarbonisation. The event attracts over 450 participants, 80+ speakers, and 30+ exhibitors, providing industry insights, networking, and technology showcases. The website is well-branded and professionally designed, targeting industry professionals and stakeholders in the energy sector. Technically, the site is built on WordPress, uses modern JS libraries, and is hosted behind Cloudflare with HTTPS enabled, ensuring good performance and security. However, it lacks explicit privacy and cookie policies, and no security headers were detected, indicating room for improvement in privacy compliance and security hardening. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing incident response and vulnerability disclosure information to enhance trust and compliance.

R

Rebelcreations AG

epeeglobal.org

0

EPEE is a European industry association representing the refrigeration, air conditioning, and heat pump sectors. The organization focuses on policy advocacy, sustainable heating and cooling solutions, and industry representation. The website reflects an established presence with a domain registered since 2000 and hosted by OVH in Germany. Technically, the site is built on WordPress with modern libraries such as Bootstrap and jQuery, providing a good user experience and mobile optimization. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are detected, which may pose compliance risks. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the website is professional and credible but would benefit from enhanced privacy compliance and security best practices.

Belimo is a global market leader specializing in the development, manufacturing, and marketing of field devices for heating, ventilation, and air conditioning (HVAC) systems. Their core business revolves around actuators, control valves, and sensors, targeting professionals and companies in the HVAC sector. The website is professionally designed, localized in Finnish, and demonstrates a strong brand presence consistent with a large enterprise in the energy sector. Technically, the site uses Magnolia CMS, integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, and is hosted on a robust infrastructure likely leveraging Akamai CDN. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain is a notable gap, potentially impacting trust but not necessarily indicating illegitimacy. Overall, the site presents a credible and professional digital presence with room for improvement in privacy transparency and security disclosures.

C

Chiller Oy

chiller.eu

0

Chiller Oy is a Finnish company specializing in innovative cooling, heating, and energy solutions tailored to various applications. The company aims to provide thermal comfort and optimal indoor air quality, positioning itself as a specialized B2B provider in the energy sector. The website reflects a medium-sized enterprise with a professional digital presence, leveraging WordPress CMS and modern SEO and analytics tools. The technical infrastructure is sound, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and incident response transparency are recommended. Overall, the website presents a trustworthy and professional image consistent with its business claims.

F

FläktGroup

flaktgroup.com

0

FläktGroup is a company specializing in air technology systems aimed at maintaining clean and healthy indoor air for improved living and professional environments. The website presents a professional and consistent brand image, targeting businesses and professionals in need of air quality solutions. The company appears to be a large entity within the energy sector, offering B2B technology and manufacturing services related to HVAC and air systems. Technically, the website employs modern technologies such as React and .NET, integrates Google Tag Manager and Cookiebot for analytics and consent management, and is served over HTTPS with a valid SSL certificate. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content supports legitimacy. Privacy compliance is moderate, with a cookie banner present but no explicit privacy or terms of service pages detected. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

1

1Kelvin

kelvin.ee

0

1Kelvin is an Estonian-based company specializing in technical system planning, design, and installation with a strong focus on energy efficiency and related services. With over 20 years of experience, the company positions itself as a reliable partner for large and complex projects in Estonia, targeting primarily business clients requiring engineering and energy consultancy services. The website reflects a professional and consistent brand image, offering clear information about services and company expertise. Technically, the site is built on WordPress with modern front-end technologies and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and explicit incident response information. Privacy compliance is partially addressed with references to cookie and privacy policies but lacks an explicit consent mechanism. Overall, the site is trustworthy and credible with room for improvement in security and privacy transparency.

Airwave OÜ is a well-established Estonian company specializing in the import and wholesale of heating, ventilation, and air conditioning (HVAC) equipment, serving primarily the Baltic region and Finland since 1999. The company positions itself as one of the largest HVAC importers and wholesalers in the Baltics, offering a broad range of products including heat pumps, ventilation systems, and climate control devices. Their business model focuses on wholesale distribution supported by professional sales and after-sales services, catering to both commercial and residential customers. Technically, the website is built on the Odoo CMS platform, leveraging modern web technologies such as Bootstrap and FontAwesome for UI components. The site demonstrates good mobile optimization and SEO practices, with a clear navigation structure and professional design. Performance is moderate, and accessibility is basic but functional. The absence of advanced analytics or tracking scripts suggests a minimal user tracking approach. From a security perspective, the website enforces HTTPS with a valid SSL configuration and includes CSRF tokens in its scripts, indicating awareness of basic web security practices. However, it lacks several security headers and does not publicly disclose security policies or incident response procedures. There is no visible cookie consent mechanism, which may impact GDPR compliance. The presence of a privacy policy and terms of service pages indicates some level of compliance and transparency. Overall, Airwave OÜ's website reflects a credible and professional business with a solid market presence in the HVAC sector. Security posture is adequate but could be improved with enhanced headers, explicit policies, and cookie consent. The site is trustworthy with consistent WHOIS data and clear contact information. Strategic improvements in privacy compliance and security transparency would further strengthen their digital maturity and customer trust.

E

EB THERM OÜ

ebtherm.ee

0

EB THERM OÜ is an established Estonian company founded in 1993 specializing in ventilation, heating, and climate control equipment sales, installation, maintenance, and consulting. The company targets residential and commercial customers seeking efficient and environmentally sustainable indoor climate solutions. Their website reflects a consistent brand presence with partner affiliations to Dantherm and Cotes, indicating a solid market position in the energy sector. Technically, the website is built on Drupal 7 with jQuery and integrates Google Analytics and Tag Manager for user tracking. The site is mobile-optimized and provides clear navigation and relevant content, though it lacks formal privacy and cookie policies. Security posture is moderate with HTTPS enabled and IP anonymization in analytics, but missing security headers and incident response information reduce overall security maturity. No blocking or WAF mechanisms were detected, allowing full content access and analysis.

S

S.F.P. Group OÜ

sfp.ee

0

S.F.P. Group OÜ is an Estonian company specializing in the sale and consulting of ventilation, heating, and cooling equipment for industrial, residential, and apartment buildings. The company collaborates with leading manufacturers to provide energy-efficient and technologically advanced HVAC solutions. Their website reflects a professional presence with a focus on local market needs and showcases references to notable projects. Technically, the website is built on WordPress using modern tools like Elementor and Astra theme, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking some advanced security headers and explicit privacy policies. Overall, the domain registration data supports the legitimacy and maturity of the business.

L

LCC PRODUKT OÜ

lccprodukt.ee

0

LCC PRODUKT OÜ is an Estonian company specializing in energy-efficient and modern ventilation solutions, including calculation, analysis, and distribution of ventilation equipment. Founded in 2012, the company positions itself as a professional partner to architects, designers, builders, and developers in Estonia, offering innovative European ventilation products and high-tech energy solutions. The website is built on WordPress with WooCommerce, featuring a modern and responsive design, integrated project search functionality, and active social media presence. Security posture is solid with HTTPS enabled and no exposed sensitive data, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site reflects a trustworthy and professional business with room for improvement in security and privacy transparency.

T

Tallinna Vesi

tallinnavesi.ee

0

Tallinna Vesi is a well-established water utility company based in Estonia, primarily serving the Tallinn region with water supply and wastewater treatment services. The company demonstrates a strong market position supported by comprehensive service offerings including water purification, meter installation, and customer self-service portals. Their website reflects a professional digital presence with multilingual support and investor relations, indicating a mature business model focused on transparency and customer engagement. Technically, the site is built on WordPress with modern plugins and scripts, ensuring good performance and SEO optimization. Security posture is robust with HTTPS enforcement and ISO certifications, although improvements can be made in security headers and incident response transparency. Privacy compliance is mostly adequate but lacks a visible cookie consent mechanism, which should be addressed to fully comply with GDPR requirements. Overall, the website and domain data indicate a trustworthy and credible organization with a solid digital infrastructure.

M

MTÜ Eesti Kütte- ja Ventilatsiooniinseneride Ühendus

ekvy.ee

0

MTÜ Eesti Kütte- ja Ventilatsiooniinseneride Ühendus (EKVÜ) is a well-established non-profit professional association in Estonia, founded in 2010, serving heating and ventilation specialists. The organization provides professional training, certification services, and collaborates with governmental and industry bodies. The website reflects a medium-sized organization with over 400 members and multiple industry partners, positioning itself as a key player in the Estonian energy sector. The site is professionally designed, mobile responsive, and uses Joomla CMS with modern frontend technologies.

E

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts

evkis.ee

0

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts (EVKIS) is a professional association for water supply and sanitation engineering specialists in Estonia. Established in 2010, it serves as a voluntary union providing membership services, training, news, and an online store to its members and the wider industry community. The website is well-structured and targets professionals in the environmental engineering sector, particularly those focused on water and sanitation technologies. The organization maintains partnerships with relevant industry bodies, enhancing its credibility and reach. Technically, the website is built on WordPress using popular plugins such as WooCommerce for e-commerce, Yoast SEO for search optimization, and Events Manager for event handling. The site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. The infrastructure supports HTTPS with valid SSL certificates, ensuring secure communications. The site is moderately performant and mobile-optimized, though accessibility features are basic. From a security perspective, the site employs Google reCAPTCHA v3 to protect forms from spam and abuse. However, it lacks several important security headers such as Content-Security-Policy and HSTS, which are recommended to enhance security posture. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance and transparency. Overall, EVKIS presents a trustworthy and professional online presence consistent with its role as an industry association. The main risks relate to privacy compliance gaps, notably the absence of privacy and cookie policies, and the lack of advanced security headers. Addressing these areas would strengthen the site's compliance and security posture, thereby enhancing trust among members and visitors.

E

Eesti Vee-ettevõtete Liit

evel.ee

0

Eesti Vee-ettevõtete Liit (EVEL) is a well-established voluntary association representing water companies and related entities in Estonia. Founded in 1995, it serves over 90% of the country's public water and sewerage service consumers through its 42 member water companies and 31 related companies. The organization provides coordination, information dissemination, training, and project participation services to its members, positioning itself as a key player in Estonia's water sector. The website reflects this focus with relevant content, partner links, and organizational information primarily in Estonian, targeting industry stakeholders and members.

T

Terviserajad

terviserajad.ee

0

Terviserajad is an established Estonian platform dedicated to promoting health trails and outdoor physical activities across the country. The website offers comprehensive information on trails, events, news, and seasonal campaigns to encourage community engagement and healthy lifestyles. It targets Estonian residents and visitors interested in fitness and nature exploration. The platform enjoys partnerships with major Estonian companies such as Merko, Eesti Energia, and Swedbank, enhancing its market position as a trusted national resource. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Analytics, Google reCAPTCHA v3, and Instagram Feed integration. The site is mobile-optimized with good SEO practices and uses HTTPS to secure communications. However, some security best practices like HTTP security headers are missing, and privacy compliance is incomplete due to the absence of privacy and cookie policies. From a security perspective, the site demonstrates a moderate security posture with encrypted connections and anti-spam measures but lacks published security policies and incident response contacts. No WAF or blocking mechanisms were detected, and no exposed sensitive data was found. The domain registration is consistent and long-standing, supporting the site's legitimacy. Overall, Terviserajad presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

A

AS Lahevesi

lahevesi.ee

0

AS Lahevesi is a municipal utility company founded in 2008, providing water supply, sewage, property management, cemetery services, and public space maintenance in Lääne-Harju municipality, Estonia. The company operates under contracts with the local government and serves residents and businesses in the region. The website is built on WordPress using Elementor and several plugins, featuring a professional design with clear navigation and mobile optimization. Security measures include HTTPS and Google reCAPTCHA on forms, though additional security headers and cookie consent mechanisms are recommended. The WHOIS data confirms the legitimacy of the company with consistent registration details. Overall, the website demonstrates a solid technical and business foundation with room for improvement in privacy compliance and security policies.

R

Raven OÜ

ravenou.ee

0

Raven OÜ is a small Estonian company specializing in water utility services, including water supply, water-saving advice, and infrastructure development. The company targets local residents and businesses in the Harju maakond region, providing essential water-related services and customer support. The website is professionally designed using Joomla CMS and offers clear navigation and relevant content focused on water conservation and service notifications. Technically, the website employs a standard Joomla stack with modern JavaScript and CSS assets. It is hosted by Elkdata OÜ, consistent with the domain registration data. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. No advanced analytics or tracking technologies are detected, indicating a privacy-conscious approach but also a lack of marketing sophistication. From a security perspective, the website uses HTTPS with a valid SSL configuration and includes CSRF tokens in scripts, which is positive. However, it lacks important security headers and does not publish privacy, cookie, or security policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, representing a compliance and security gap. Overall, the website is legitimate and trustworthy based on domain age and registration consistency. The main risks relate to privacy compliance and security best practices. Strategic improvements in these areas would enhance the company's digital maturity and user trust.

The website at smartecon.com currently presents an empty HTML body with no visible content, metadata, or interactive elements. The domain is registered since 2013 with a reputable registrar based in Denmark and uses Cloudflare DNS services, indicating a legitimate and stable domain registration. However, the lack of website content severely limits the ability to assess the company's business operations, services, or market positioning. The minimal technical footprint suggests the site may be under development or inactive. From a technical perspective, the site benefits from Cloudflare's infrastructure but lacks DNSSEC and security headers, which are recommended for enhanced security. No scripts, analytics, or tracking technologies are detected, indicating minimal digital maturity or possibly a placeholder site. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common data protection regulations such as GDPR. Security posture is basic with no visible vulnerabilities but also no advanced security measures implemented. The domain registration is consistent and transparent, supporting legitimacy, but the website's lack of content and compliance documentation presents a risk for trust and user engagement. Overall, the site scores low on content quality, privacy compliance, and business credibility, resulting in a low overall AI score. Strategic recommendations include developing comprehensive website content, implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and improving mobile and accessibility features to enhance user experience and compliance. These steps will improve trust, security posture, and business credibility significantly.

E

EasyMining

easymining.com

0

EasyMining is a company specializing in the development and implementation of sustainable industrial-scale processes aimed at creating true circularity, particularly in nutrient recycling. The website presents a professional and well-structured digital presence, targeting industrial stakeholders interested in sustainable resource management. The technical infrastructure leverages modern technologies including Episerver CMS, Microsoft Azure hosting, and advanced analytics tools such as Matomo, Piwik Pro, and Microsoft Application Insights, indicating a mature digital setup. Security measures are robust with HTTPS enforced and multiple security headers present, alongside a comprehensive cookie consent mechanism that aligns with GDPR requirements. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness, and no explicit contact or security policy information is provided on the site.

R

Ragn-Sells Group

ragnsells.com

0

Ragn-Sells Group is an environmental services company specializing in waste management and recycling solutions. The website presents a professional and well-structured digital presence, targeting businesses and organizations interested in sustainable environmental practices. The company leverages modern technologies including Episerver CMS and Microsoft Azure hosting, supported by advanced analytics tools such as Matomo, Piwik Pro, and Microsoft Application Insights. The website demonstrates good mobile optimization and accessibility features, enhancing user experience across devices. Security posture is strong with HTTPS enforced and detailed cookie consent mechanisms, although explicit security headers and incident response policies are not publicly visible. The absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, but the overall digital footprint and linked domains support the authenticity of the business. Strategic recommendations include enhancing transparency with published security policies, adding contact information, and improving security headers to further strengthen trust and compliance.

R

Ragn-Sells

ragnsells.se

0

Ragn-Sells is a well-established Swedish environmental company specializing in waste collection, treatment, detoxification, and recycling services for businesses, organizations, and households across Sweden. The website presents a professional and consistent brand image with clear messaging targeting its core audience in the environmental services sector. Technically, the site leverages modern cloud infrastructure on Microsoft Azure, uses Episerver CMS, and integrates advanced analytics and monitoring tools such as Matomo (Piwik Pro), Microsoft Application Insights, and New Relic. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and clear privacy policy references, indicating adherence to GDPR requirements. Security posture is generally strong with HTTPS enforced and secure analytics platforms in use; however, explicit security headers are not detected, and no visible contact information or security policies are provided, which could be improved. WHOIS data for the www subdomain is missing, likely due to querying the subdomain rather than the root domain, but this does not detract significantly from the overall legitimacy of the business. Overall, the website is professional, secure, and compliant, with room for enhancements in transparency and security header implementation.

C

Cambridge EnerTech

cambridgeenertech.com

0

Cambridge EnerTech is a specialized conference and exposition provider focused on the energy storage industry, consolidating multiple legacy conferences into a unified portfolio. The company targets energy storage professionals and industry leaders, offering educational forums and networking opportunities globally. The website reflects a professional and consistent brand presence aligned with its parent company, Cambridge Innovation Institute. Technically, the site is built on the Sitefinity CMS platform with modern JavaScript libraries and tracking tools, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks some security headers and explicit incident response information. The absence of WHOIS registration data for the domain introduces some legitimacy concerns, but the professional content and parent company association mitigate this risk. Overall, the site is credible and well-positioned in its niche, with room for security and compliance enhancements.

E

Elfag

elfag.no

0

Elfag is a Norwegian electrical service provider targeting both private and business customers. The company offers a range of electrical services including smart home solutions, electrical safety checks, and electric vehicle charging installations. The website positions Elfag as a trusted local electrician chain with a 5-year warranty and partnerships with reputable Norwegian companies such as Lampehuset and Huseiernes landsforbund. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO and Google Analytics. The site is well-structured, mobile-optimized, and uses HTTPS with a valid SSL certificate, indicating a good security baseline. However, explicit security headers and detailed security policies are not present. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, though more comprehensive GDPR documentation could improve compliance. Overall, the website demonstrates a professional and trustworthy online presence with moderate technical sophistication and a solid security posture.

E

Energex OÜ

energex.ee

0

Energex OÜ is an Estonian consulting company specializing in energy audits, digitalization, sustainability, and funding support services. Established in 2015, the company serves over 250 organizations across private and public sectors, positioning itself as a trusted partner in the energy sector. Their key offerings include energy and resource audits, green audits, digitalization roadmaps, funding application assistance, procurement management, and ESG analyses. The website reflects a professional and consistent brand image with comprehensive service descriptions and client trust indicators such as certifications and client logos. Technically, the website is built on WordPress with performance optimizations via WP Rocket and integrates Google Analytics and Tag Manager for analytics. Cookie consent is managed through CookieYes, ensuring compliance with privacy regulations. The site is mobile-optimized, fast-loading, and SEO-friendly, demonstrating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs some security headers, though there is room for improvement in publishing explicit security policies and incident response information. No critical vulnerabilities or blocking mechanisms were detected, indicating a solid security posture. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, Energex presents a credible, professional, and trustworthy online presence with strong business credibility and good technical implementation. Strategic recommendations include enhancing security transparency and formalizing vulnerability disclosure mechanisms to further strengthen trust and compliance.

O

Ouman Group

oumangroup.com

0

Ouman Group is a Finnish-based company specializing in innovative HVAC products and building automation solutions. Their offerings include OEM thermostats, programmable controllers, wireless sensors, and cloud-based solutions aimed at optimizing energy efficiency and comfort in residential and commercial buildings. The company targets OEM partners, contractors, housing companies, and municipalities, positioning itself as a leader in sustainable building technology. Technically, the website is built on Webflow CMS and integrates modern analytics and marketing tools such as Google Tag Manager, HubSpot, and Leadfeeder, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and privacy compliance, though the absence of explicit security headers and a published security policy indicates room for improvement. The missing WHOIS registration data is a notable concern for domain legitimacy, but the professional website content and certifications mitigate some risk. Overall, Ouman presents a credible and professional online presence with a focus on innovation and sustainability in the energy sector.

Meriton Energy Services operates as an Australian energy retailer focused on providing fairer energy costs and simplified contracts primarily targeting residential customers, including Meriton apartment residents. The company emphasizes transparent pricing, no lock-in contracts, and Australian-based customer support, positioning itself as a customer-friendly alternative in the Australian energy market. The website is professionally designed with clear calls to action and multiple contact forms to facilitate customer engagement. Technically, the site uses a mix of legacy and modern web technologies, including Google Analytics and reCAPTCHA for security and tracking. However, the use of an outdated jQuery version presents a potential security risk. Security posture is generally good with HTTPS enforced and spam protection on forms, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration and DNS setup are consistent with a legitimate Australian business, enhancing trustworthiness.

Power-Plaza.com is an online portal operated by Kumera Corporation, specializing in gearboxes and spare parts for industrial customers, primarily in the energy sector. The platform offers a comprehensive gearbox configurator, access to catalogues and documentation, and additional services such as remote monitoring and customer group management. The business model is B2B e-commerce and service-oriented, targeting industrial clients requiring specialized gearbox solutions. The company is established with a domain age of over 20 years, indicating a mature market presence. Technically, the website leverages modern web technologies including Blazor WebAssembly and Telerik UI components, hosted behind Cloudflare DNS services. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO optimizations are basic. Telemetry via Microsoft Application Insights is present but disabled, reflecting a cautious approach to user data collection. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks DNSSEC, security headers, and formal privacy or cookie policies, which are important for compliance and defense-in-depth. No incident response or vulnerability disclosure information is provided, representing an area for improvement. The absence of WAF or blocking mechanisms indicates open accessibility. Overall, the website is professionally designed and credible, with a solid business foundation. Key recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing incident response and vulnerability disclosure details to enhance trust and compliance.

R

RENTA PUMPS

uprent.lt

0

RENTA PUMPS operates as a leading equipment rental and sales company specializing in pumps and pumping systems across the Baltic region. The company offers a broad range of rental equipment including pumps, electrical generators, trench shoring systems, and related accessories, targeting construction, industrial, and infrastructure sectors. Their market position is strong within Lithuania and neighboring countries, supported by localized contact points and multilingual website presence. Technically, the website is built on WordPress with WooCommerce and WPBakery, integrating modern analytics and bot protection tools such as Google Tag Manager and reCAPTCHA. Security posture is solid with HTTPS enforced and no exposed sensitive data, although improvements in security headers and incident response policies are recommended. Overall, the website is professional, content-rich, and compliant with GDPR cookie and privacy policies, reflecting a mature digital presence for a medium-sized enterprise.

Strantum OÜ is a small Estonian company providing essential municipal services such as water supply, heating energy, and maintenance for the Harku vald community. The company operates with a clear local focus, serving residents and property owners with utility and infrastructure services. The website reflects this local service orientation with content in Estonian and clear contact information. Technically, the site uses legacy JavaScript libraries and Cloudflare DNS/CDN services, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but outdated libraries and lack of explicit security policies present moderate risks. Overall, the domain registration and website content are consistent and legitimate, supporting a trustworthy business presence.

G

G4S Eesti AS

nublu.ee

0

Nublu.ee is the official website for Nublu, a smart smoke and carbon monoxide detector product offered by G4S Eesti AS. The product uniquely combines traditional smoke detection with remote alerting capabilities and emergency service notification, targeting homeowners and families in Estonia concerned about fire and gas safety. The website content is professionally presented in Estonian with clear navigation and mobile optimization, reflecting a medium-sized business with a solid market position in the energy and security sector. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and Cookiebot for consent management, with backend indications of Laravel framework usage. Security posture is good with HTTPS enforced and CSRF protections, though explicit security policies and incident response contacts are not published. Privacy compliance is supported by a comprehensive cookie consent mechanism, but a formal privacy policy page is not clearly found. Overall, the website demonstrates a mature digital presence with extensive tracking and advertising integrations, aligned with business credibility and trustworthiness.

H

Harju Elekter Oy

harjuelekter.fi

0

Harju Elekter Oy is a leading Finnish company specializing in electrical and automation technology solutions, serving industrial, energy, and transportation sectors. The company offers a broad range of services including electrical system manufacturing, transformer production, electrical contracting, and electric vehicle charging solutions. Their market position is strong within Finland and internationally, supported by a reputable parent company, Harju Elekter Group. The website reflects a professional and consistent brand image with comprehensive content tailored to B2B clients. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Cookiebot for compliance. The infrastructure is stable with good mobile optimization, SEO practices, and moderate performance. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and use of Google reCAPTCHA, though some security headers could be improved. Overall, the security posture is mature with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR adherence. The domain registration details are consistent and transparent, reinforcing trustworthiness. Strategically, the company should enhance security headers, publish explicit security policies, and maintain regular updates to sustain their strong security and compliance stance.

H

Harju Elekter

harjuelekter.se

0

Harju Elekter Sverige is a medium-sized business specializing in electrical distribution and electrification solutions, serving energy companies, industrial sectors, infrastructure projects, and large properties primarily in Sweden and the Nordic-Baltic region. The company is part of the larger Harju Elekter group headquartered in Estonia, with a well-established market presence since 2010. Their website reflects a professional and consistent brand image, showcasing key services such as prefabricated distribution stations, transformers, SCADA systems, and fiber cabinets. Technically, the site is built on WordPress using the Avada theme and incorporates modern SEO and marketing tools, including Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS enforced and reCAPTCHA protecting forms, though improvements like DNSSEC and security headers are recommended. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a solid business credibility and digital maturity appropriate for its sector and size.

L

Linde

linde.com

0

Linde is a leading global industrial gases and engineering company focused on making customers more successful while supporting sustainability and decarbonization efforts. Their website presents a professional and comprehensive overview of their expertise in industrial gases, clean energy solutions including hydrogen technologies, and corporate governance. The company targets industrial and energy sectors with a B2B business model and positions itself as a market leader in its industry. Technically, the website employs modern analytics and monitoring tools such as Google Tag Manager and Microsoft Application Insights, and implements a cookie consent mechanism indicating awareness of privacy compliance. However, the absence of a visible privacy policy and terms of service, as well as missing WHOIS domain registration data, raises concerns about transparency and domain legitimacy. Security posture is moderate with HTTPS implied but lacking explicit security headers and vulnerability disclosure information. Overall, the website is well designed, mobile optimized, and user-friendly, but improvements in security transparency and domain registration clarity are recommended.

M

Mineflow

mineflow.ai

0

Mineflow is a newly founded AI-driven mineral exploration startup focused on transforming exploration site data into accurate 3D and 2D models of mineral deposits such as gold and copper. The company targets mining professionals and geologists with a SaaS platform leveraging advanced AI technologies. The website is built using modern web technologies including React and Next.js, providing a good user experience with responsive design and clear navigation. Analytics are implemented via PostHog, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks DNSSEC and security headers, and no privacy or cookie policies are published, which are critical for compliance and trust. The domain is privacy protected and very new, consistent with a startup profile. Overall, the website is professional but would benefit from enhanced privacy compliance and security hardening.

D

Dili

dili.ai

0

Dili.ai is a specialized technology company offering a SaaS platform and full-service solutions for prevailing wage and apprenticeship compliance, primarily targeting energy projects. The company positions itself as a leading compliance solution, supported by reputable investors such as Allianz and Y Combinator. Their platform integrates real-time wage validation, automated tracking, and audit-ready reporting to simplify compliance and reduce penalties. The website is professionally designed using modern Webflow technology, with good mobile optimization and clear navigation. However, direct contact information is limited to a contact form, and no phone numbers or emails are publicly listed. Privacy and terms of service pages exist, but cookie consent mechanisms and explicit security policies are absent.

E

ELEKTROTRANS a.s.

elektrotrans.cz

0

ELEKTROTRANS a.s. is a well-established Czech company specializing in electricity transmission and distribution services, including design, construction, diagnostics, and maintenance of high voltage lines. As a member of the VINCI Energies Group under the Omexom brand, it leverages international expertise and resources, positioning itself as a market leader in the Czech Republic's energy sector. The website reflects a professional digital presence with good content quality, clear navigation, and GDPR-compliant privacy and cookie policies. Technically, the site uses WordPress with modern plugins like Yoast SEO and Matomo analytics, indicating a moderate to good digital maturity. Security posture is strong with HTTPS enforced and privacy-friendly analytics, though additional security headers and explicit incident response information could enhance trust. The absence of WHOIS data limits domain trust assessment, but overall, the site appears legitimate and professionally managed.

S

SeaTech Consortium

seatech2020.eu

0

SeaTech Consortium is a research-focused organization funded by Horizon 2020, dedicated to developing innovative ship engine and propulsion technologies aimed at improving fuel efficiency and reducing emissions in the maritime sector. The consortium targets stakeholders in the maritime, energy, and transportation industries, positioning itself as a specialized innovator in short-sea ship dual-fuel engine retrofits and bio-mimetic wing propulsion systems. The website reflects a professional and consistent brand image with clear messaging about its mission and funded projects. Technically, the website is built on WordPress using the OceanWP theme and Elementor page builder, incorporating modern web technologies such as jQuery and Wistia for video content. SEO is enhanced through Yoast SEO plugin, and cookie consent is managed via OneTrust, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation. From a security perspective, the site uses HTTPS with anonymized IP tracking in Google Analytics and implements cookie consent mechanisms. However, it lacks explicit security headers, published security policies, and incident response contacts, which are areas for improvement. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a moderate to good security posture and business credibility but would benefit from enhanced privacy compliance documentation and explicit security policies to strengthen trust and regulatory adherence.

B

Baltic Industrial OÜ

balticindustrial.com

0

Baltic Industrial OÜ is an established service provider in the Baltic region specializing in repair, diagnostics, and maintenance solutions primarily for the energy sector. With over 20 years of experience and a professional team, the company positions itself as a trusted partner for businesses requiring comprehensive industrial maintenance services. The website reflects this positioning with clear business descriptions and a professional design, targeting companies in need of industrial repair and maintenance in Estonia and neighboring countries. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Hosting details are not explicitly disclosed, but DNS servers suggest regional hosting providers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, it lacks DNSSEC and important security headers, and no explicit security or incident response policies are published. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which could pose compliance risks under GDPR. Overall, Baltic Industrial demonstrates a solid business and technical foundation but should prioritize enhancing privacy compliance and security best practices to reduce risk and improve trustworthiness. Strategic improvements in these areas will strengthen their digital maturity and regulatory adherence.

D

Diotech OÜ

diotech.ee

0

Diotech OÜ is an Estonian company specializing in smart energy solutions aimed at accelerating the transition to carbon-neutral electricity production and consumption. Their service portfolio includes lighting services, electrical construction and design, solar power plants, energy services, and operational and maintenance services. The company maintains a professional online presence with a well-structured website, active news updates, and clear service offerings, positioning itself as a reputable player in the Estonian energy sector. The website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and anti-spam measures in place, though formal security policies and incident response contacts are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website and business information reflect a trustworthy and credible organization with room for improvement in security transparency and accessibility.

E

Efore

efore.com

0

Efore is a company specializing in automated battery cell manufacturing and energy storage solutions, targeting industrial, telecom, and energy sectors. Their website presents a professional image with clear navigation and modern design, leveraging WordPress and Elementor technologies. The company emphasizes customized battery solutions and sustainability. Technically, the site is well-structured with SEO optimization and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit security policies. Privacy compliance is limited, with no clear privacy or terms of service pages, though a cookie consent mechanism is present. WHOIS data is missing, which raises concerns about domain registration legitimacy. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

M

MAINOR

mainor.ee

0

MAINOR is an established Estonian corporate group with a 50-year history, operating primarily in environment, education, healthcare, and energy sectors. The company acts as a parent entity to multiple subsidiaries and is involved in significant development projects including Estonia's third largest economic city. The website is professionally designed, multilingual, and built on WordPress with modern frontend technologies. It includes SEO optimizations and a cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit security policies are absent. Privacy compliance is supported by a privacy policy and cookie consent, but lacks detailed data protection officer or incident response information. Overall, the site is trustworthy and credible, with room for improvement in security best practices and transparency.

N

North Star

northstarshipping.co.uk

0

North Star is a UK-based marine infrastructure support company specializing in offshore energy sectors including renewables and conventional energy. The company offers a range of services such as offshore wind support vessels, emergency response, platform supply, patrol and research, and rescue and maintenance. Their market position is that of an established medium-sized player with decades of marine experience and a modern fleet. The website is professionally designed, mobile-optimized, and provides comprehensive compliance and contact information, indicating a mature digital presence. Technically, the website is built on Webflow CMS, leveraging modern web fonts, analytics, and consent management tools. Performance and accessibility are rated highly, with fast loading times and good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data reveals a domain registration anomaly: the domain www.northstarshipping.co.uk is reported as unregistered due to naming rules violation by Nominet UK. Despite this, the website content is accessible and professional, suggesting the domain may be a subdomain or alias. This discrepancy lowers the domain legitimacy score and warrants caution. Overall, North Star's website demonstrates a solid business and technical foundation with good security and privacy compliance. Strategic recommendations include enhancing security headers, clarifying domain registration status, and adding incident response information to further strengthen trust and compliance.

Enefit Green is a leading renewable energy producer in the Baltic Sea region, specializing in wind and solar energy production across Estonia, Latvia, Lithuania, Poland, and Finland. The company operates a substantial portfolio of wind parks, solar power plants, and other renewable energy assets, positioning itself as the largest wind energy producer in the Baltics. Their business model focuses on sustainable energy production and regional energy independence, supported by significant recent investments and growth. Technically, the website is built on modern frameworks like React and Next.js, hosted with Cloudflare DNS and CDN services, ensuring fast performance and mobile optimization. The site implements strong privacy and cookie consent mechanisms, reflecting good GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a dedicated security policy, and providing incident response contacts to further strengthen trust and compliance.

H

Harju Elekter AS

harjuelekter.ee

0

Harju Elekter AS is a well-established Estonian industrial group specializing in the design, manufacture, and installation of electrical distribution equipment for energy, industrial, and infrastructure sectors. The company has a strong market position supported by multiple awards and contracts with major entities such as Eesti Energia and CERN. Their website reflects a mature digital presence built on WordPress with modern plugins and frameworks, offering good SEO and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website and business demonstrate high professionalism and trustworthiness.