Security Directory

R

Raasiku Vallavalitsus

raasikukalender.ee

0

Raasikukalender.ee is a local government-operated event calendar website serving the Raasiku municipality in Estonia. It provides categorized listings of cultural, sports, theater, music, and other community events targeted at residents and visitors. The website is designed to promote local events and facilitate community engagement through an accessible online platform. The business model is a public service information portal without commercial intent, focusing on local government communication and event promotion. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and uses modern JavaScript libraries like jQuery and Flatpickr for enhanced user experience. It employs Plausible Analytics, a privacy-conscious analytics tool, and loads resources from reputable CDNs. The site is hosted by Elkdata OÜ, an Estonian hosting provider, and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and deferred script loading. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained with a clear focus on community service. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and establishing a vulnerability disclosure process to enhance security posture and regulatory compliance.

V

Viimsi Hoolekandekeskus

viimsihoolekandekeskus.ee

0

Viimsi Hoolekandekeskus is a local Estonian social care center established in 2021, consolidating day centers and social services for the Viimsi municipality community. The website provides information about their services, events, and contact options primarily in Estonian. Technically, the site is built on WordPress with popular plugins for events and page building, hosted under a reputable Estonian registrar. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies are missing. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its local government/non-profit purpose.

V

Viimsi vald

viimsi.ee

0

Viimsi vald is the official local government authority for the Viimsi municipality in Estonia, providing a wide range of public services including administration, education, social care, culture, and environmental management. The website serves residents and businesses in the region with comprehensive information, news, and access to municipal services. The site is well-structured and professionally designed, reflecting its role as a government portal. Technically, the site is built on Drupal 9 CMS and integrates modern analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook SDK, while maintaining GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence suitable for a government entity, with clear contact information and consistent branding.

N

Novian Eesti OÜ

volis.ee

0

VOLIS is a specialized electronic meeting and voting platform serving Estonian local governments, enabling virtual meetings, electronic voting, and public participation in municipal decision-making. The platform is supported by the Estonian Association of Cities and Municipalities and developed by Novian Eesti OÜ. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its government audience. Technically, the site uses legacy JavaScript libraries and Grails-based server-side rendering, with moderate performance and basic mobile optimization. Security posture is strengthened by ISKE certification and audit references, but outdated libraries and lack of modern security headers present risks. Privacy compliance is partial, with no cookie consent mechanism and limited GDPR indicators. Overall, the site is trustworthy and credible but would benefit from technical and compliance improvements.

The website kaitsealad.ee is an official Estonian government-related portal managed by Keskkonnaamet (Environmental Board) providing comprehensive information about Estonia's protected areas. It serves as an educational and informational resource for the public, nature enthusiasts, landowners, and youth conservation groups. The site offers news, events, maps, and educational content related to nature conservation and sustainable tourism. Technically, the site is built on Drupal 10 CMS with modern frontend libraries and is hosted via Zone Media OÜ. It features a cookie consent mechanism compliant with EU regulations and uses Matomo for analytics. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. Contact information is clearly provided, enhancing trust and credibility. However, privacy policy and terms of service pages are not explicitly found, which is a gap in compliance. Overall, the site is professional, accessible, and trustworthy, supporting its government mission effectively.

The website kalmistud.ee serves as the official Estonian cemetery portal, providing information and e-services related to cemeteries, burial places, and related administrative functions. It targets Estonian residents, municipalities, and cemetery administrators, offering a centralized platform for searching burial information and managing burial plots. The site is operated by Spin TEK AS, a registrar and hosting provider consistent with the domain registration data. Technically, the site uses modern web technologies including JavaScript and CKEditor, with a responsive and accessible design. Security posture is moderate with HTTPS enabled and CSRF protection on forms, but lacks visible security headers and comprehensive privacy compliance documentation. Overall, the site is functional and trustworthy but would benefit from enhanced privacy policies and security disclosures.

The website keskkonnaamet.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to the site's content. This prevents extraction of meaningful business, contact, or policy information. The domain is registered since 2010 with a reputable Estonian registrar, indicating legitimacy and a stable presence. The site appears to be a government-related entity based on the domain and WHOIS data, but no explicit business details or descriptions are available in the accessible content. Technically, the site uses Cloudflare services for security and performance, but no CMS or frameworks are detectable from the challenge page. Security posture is partially observable due to HTTPS and Cloudflare protection, but no security headers or policies are visible. Privacy and cookie policies are not found, and no contact information is exposed. Overall, the site is protected by a strong WAF, but this limits external analysis and transparency.

Ida-Virumaa Omavalitsuste Liit is a regional government association serving the municipalities of Ida-Virumaa, Estonia. The website provides comprehensive information on governance, development strategies, programs, projects, education, public health, safety, culture, and visa-related matters. It targets local residents, government officials, and stakeholders interested in regional development. The organization operates as a small-sized government entity founded in 2010, with a clear focus on regional coordination and public service. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, Google reCAPTCHA, and Font Awesome. The site is hosted by Elkdata OÜ, consistent with the WHOIS data. The website is mobile-optimized and provides a good user experience, although some technical aspects like the use of an outdated jQuery version and lack of security headers indicate areas for improvement. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate automated abuse. However, the absence of security headers and outdated JavaScript libraries present potential vulnerabilities. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which could expose the organization to regulatory risks. Overall, the website is trustworthy and professional but would benefit from enhanced security practices and improved privacy compliance to align with modern standards and regulations.

J

Järva Valla Noorsootöökeskus

jarvanoored.ee

0

Järva Valla Noorsootöökeskus is a local government youth work center in Estonia, focused on providing youth services, activities, and community engagement within the Järva municipality. The website serves as an informational portal for youth centers, events, hobby education, and youth council activities. The organization appears to be a small public sector entity founded recently in 2022, with a clear local community focus. Technically, the website is built on WordPress using Elementor and common plugins, hosted by Zone Media OÜ. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No analytics or advertising scripts are detected, indicating minimal user tracking. Security posture is basic with HTTPS enabled but no security headers detected and no visible privacy or cookie policies, indicating compliance gaps with GDPR. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The site links to multiple partner organizations and government-related domains, enhancing trust. Overall, the website is functional and serves its purpose as a local youth center portal but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

J

Järva Vallaraamatukogu

jarvaraamat.ee

0

Järva Vallaraamatukogu operates as a public library service for the Järva County region in Estonia, providing residents with access to books, cultural events, and library services including a mobile library bus. The website serves as an informational portal with news, events, and user resources, targeting local community members and library patrons. The business model is government-funded public service, with a clear focus on community engagement and education. Technically, the website is built on WordPress using the Avada theme and incorporates modern web technologies such as Slider Revolution and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not detected and no explicit security or incident response policies are published. Overall, the site is trustworthy and professionally maintained, reflecting its public institution status.

Z

Zone Media OÜ

planeeringud.ee

0

The website planeeringud.ee serves as the official Estonian national repository for established planning documents, providing public access to planning data and downloadable files. It targets municipalities, planners, and the general public interested in regional planning information. The platform is built on modern Angular technology with Material Design components, ensuring a responsive and user-friendly interface. The site integrates Google Analytics for usage tracking but lacks visible privacy and cookie policies, indicating compliance gaps with GDPR requirements. Security posture is solid with HTTPS and a Content-Security-Policy header, though additional security headers and vulnerability disclosure mechanisms are absent. Overall, the site is professionally presented and trustworthy but would benefit from enhanced privacy compliance and security hardening.

S

Spordikoolituse ja -Teabe SA

spordiregister.ee

0

Eesti Spordiregister, operated by Spordikoolituse ja -Teabe SA under the Estonian Ministry of Culture, serves as the official national registry and information portal for sports organizations, schools, facilities, and coaches in Estonia. It provides comprehensive data services including statistics, data submission portals, and public access to sports-related information, targeting sports entities and the general public. The platform is well-positioned as a trusted governmental resource in the Estonian sports sector. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Highcharts, Leaflet, and other modern JavaScript libraries, ensuring a responsive and accessible user experience. The site is mobile-optimized and implements basic SEO and accessibility features. The infrastructure appears custom-built without reliance on popular CMS platforms, indicating tailored development for specific governmental needs. From a security perspective, the site enforces HTTPS and uses secure form inputs, but lacks some advanced security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or malware were detected, and cookie consent mechanisms are in place, supporting GDPR compliance. The WHOIS data aligns well with the website's governmental nature, reinforcing legitimacy. Overall, the website demonstrates a solid security posture and technical maturity suitable for its governmental role, with room for improvement in security header implementation and transparency around security policies. The business credibility is high given its official status and clear contact information.

R

Rakvere Spordikeskus

rakverespordikeskus.ee

0

Rakvere Spordikeskus is a well-established public sports center located in Rakvere, Estonia, founded in 2010. It serves as a key regional hub for sports facilities, events, and training programs targeting local residents, sports clubs, and event organizers. The website reflects a professional and community-focused organization with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although formal security policies and incident response information are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the site demonstrates a mature digital presence suitable for its public service role.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

0

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

S

Spin TEK AS

llr.ee

0

The website www.llr.ee operates as the national pet registry platform for Estonia, managed by Spin TEK AS. It serves municipalities, veterinarians, shelters, and pet owners by providing a centralized system for pet registration and data management. The site is primarily in Estonian with an English option, targeting local government entities and citizens. The business model is focused on providing a government-aligned service with partnerships across municipalities and veterinary services, positioning itself as an essential national infrastructure for pet management. Technically, the website uses standard web technologies including jQuery and Google Analytics, with HTTPS enforced. The site shows moderate performance and basic mobile optimization. SEO and accessibility are basic but functional. However, there is a lack of advanced security headers and no visible privacy or cookie policies, which indicates room for improvement in compliance and security posture. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data but lacks explicit security headers such as CSP and HSTS. No vulnerability disclosures or incident response contacts are published, and no forms are present on the homepage to analyze input security. The use of Google Analytics without a cookie consent mechanism suggests potential GDPR compliance gaps. Overall, the website is legitimate and consistent with its stated purpose and ownership. The risk level is moderate due to missing privacy and security best practices. Strategic improvements in security headers, privacy compliance, and transparency would enhance trust and reduce potential regulatory risks.

T

Tapa Valla Spordikeskus

tapasport.ee

0

Tapa Valla Spordikeskus is a municipal sports center in Lääne-Virumaa, Estonia, offering diverse sports facilities including swimming pools, gyms, health trails, and event hosting. The website serves local residents and sports enthusiasts with information on training, events, and additional services such as accommodation and seminar rooms. The business operates under a government sector model, founded in 2020, and maintains a consistent and professional online presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted by Virtuaal.com OÜ, and optimized for mobile devices with good performance and accessibility. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are missing, representing compliance gaps. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

O

Olevalmis.ee

olevalmis.ee

0

Olevalmis.ee is a government-affiliated Estonian crisis preparedness information portal operated under the auspices of the Estonian Rescue Board (Päästeamet). The website provides practical guidance on handling various crises, behavioral instructions, emergency contact information, and news updates relevant to public safety. It targets Estonian residents seeking reliable and official information on crisis readiness. The business model is informational and public service oriented, positioning itself as a trusted government resource in the emergency preparedness sector. Technically, the website is built on modern web technologies including Nuxt.js and Vue.js frameworks, leveraging Cloudinary for media delivery and Matomo for analytics. The site demonstrates good mobile optimization, accessibility at a basic level, and solid SEO practices. Performance is moderate with no critical technical issues detected. The infrastructure reflects a mature digital presence suitable for a government service. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes important security headers. No exposed sensitive data or vulnerable libraries were found. However, the site lacks explicit cookie consent mechanisms and does not publish dedicated security or incident response policies, which are areas for improvement. The WHOIS data confirms the domain's legitimacy and consistency with the website's government affiliation. Overall, Olevalmis.ee presents a trustworthy, professional, and well-maintained platform for crisis information in Estonia. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, enhancing accessibility, and adding vulnerability disclosure information to further strengthen trust and compliance.

L

Lääne-Viru Omavalitsuste Liit

virol.ee

0

Lääne-Viru Omavalitsuste Liit is a regional government association serving the municipalities of Lääne-Viru County, Estonia. The organization focuses on regional development, public health, safety, education, tourism, entrepreneurship, and cooperation among local governments. The website reflects a well-established entity with a domain registered since 2010, consistent with its government association status. The site targets local government officials, residents, and regional partners, providing information on programs, events, and strategic initiatives. Technically, the website is built on WordPress with modern plugins and technologies, including GDPR-compliant cookie consent and Google Analytics integration. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

The website id.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to actual site content. The domain is registered to Zone Media OÜ, an Estonian company, with a domain age of over a decade, indicating legitimacy. However, no business descriptions, contact information, or policy documents are accessible for analysis. The technical infrastructure relies on Cloudflare services for security and analytics, but the lack of DNSSEC and visible security headers limits the security posture assessment. Overall, the site appears to be a government or official digital identity service, but the current access restrictions prevent a full evaluation.

The website eesti.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct content access. This page serves as a security gate to verify visitors before allowing access to the actual site content. The domain is registered to Zone Media OÜ, an Estonian registrar, with a creation date in 2010, consistent with a mature government portal. However, no business or contact information, privacy policies, or terms of service are visible on the challenge page, limiting the ability to assess compliance and business details. The technical infrastructure relies on Cloudflare services for CDN and security, including the Turnstile captcha mechanism. The security posture is moderate given the use of HTTPS and Cloudflare protections, but lacks visible security headers and policies. Overall, the site cannot be fully analyzed due to access restrictions, resulting in a low AI score and limited insights.

H

Häirekeskus

112.ee

0

Häirekeskus is the official Estonian Emergency Response Center responsible for managing emergency calls and coordinating emergency services such as ambulance, police, and rescue. The website serves as a public information portal providing emergency contact numbers, career opportunities, and safety guidance. It targets Estonian residents and visitors requiring emergency assistance, positioning itself as a critical government agency in public safety. The site is well-branded and consistent with government standards, offering content primarily in Estonian with English and Russian alternatives. Technically, the website is built on modern web technologies including Nuxt.js and Vue.js, ensuring good mobile optimization, accessibility, and SEO. The site loads with moderate performance and includes security best practices such as HTTPS enforcement and security headers. No major vulnerabilities or exposed sensitive data were detected. However, explicit cookie consent mechanisms and security policy disclosures could be improved. The security posture is strong with excellent SSL configuration and standard security headers. The absence of a published incident response or vulnerability disclosure policy is noted but not critical. WHOIS data confirms the domain's legitimacy and consistency with the Estonian government entity. Overall, the website demonstrates a mature digital presence with a high level of trustworthiness and professionalism. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to enhance transparency and compliance. These improvements will further strengthen the site's security posture and user trust.

Kihnu.ee is the official website of the Kihnu Municipality Government in Estonia, serving as a comprehensive portal for local governance, community services, cultural events, and public information. The site targets residents, visitors, and local businesses, providing timely news, event calendars, and access to municipal resources. The business model is that of a governmental public service provider with a clear focus on community engagement and transparency. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It is hosted by Zone Media OÜ, an Estonian hosting provider, and employs HTTPS with a valid SSL certificate. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and basic accessibility features. From a security perspective, the site enforces HTTPS but lacks several security headers and uses an outdated version of jQuery, which could expose it to vulnerabilities. There is no visible cookie consent mechanism or published security policy, which are important for GDPR compliance. Contact information is clearly provided, but incident response and vulnerability disclosure details are absent. Overall, the website is trustworthy and professional, reflecting its governmental nature. However, improvements in security practices, privacy compliance, and technical modernization are recommended to enhance its security posture and user trust.

V

Viru-Nigula vald

viru-nigula.ee

0

Viru-Nigula vald operates as a local government entity serving the Viru-Nigula municipality in Estonia. The website functions as an official portal providing residents and stakeholders with access to municipal news, events, services, and contact information. It maintains a clear market position as a trusted source of local government information and services. The site targets local residents, businesses, non-profit organizations, and visitors, offering a range of public services and community resources. The business model is focused on governmental public service and community engagement.

Väike-Maarja vald operates as a local government entity in Estonia, providing a broad range of municipal services including administration, social welfare, education, culture, and community engagement. The website serves as an official portal for residents and stakeholders, offering news, event information, contact details, and access to various public services. The site is well-structured and content-rich, targeting local residents, businesses, and visitors. Technically, the website is built on the Liferay CMS platform, leveraging modern web technologies such as jQuery, Bootstrap, Google Analytics, and Microsoft Clarity for analytics and user experience enhancement. The site is hosted by Telia Eesti AS and uses HTTPS with a good SSL configuration. Mobile optimization and navigation clarity are good, though accessibility features could be improved. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks several important security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain. Overall, the website presents a trustworthy and professional digital presence for the municipality but would benefit from enhanced security headers, privacy compliance improvements, and clearer security policies to strengthen its security posture and regulatory adherence.

T

Tapa Vallavalitsus

tapa.ee

0

Tapa Vallavalitsus operates as the official municipal government portal for Tapa vald in Estonia, providing residents, businesses, and visitors with comprehensive information on local governance, social services, urban planning, cultural events, and community resources. The website is well-structured with clear navigation and a focus on public service delivery, targeting local citizens and stakeholders. The business model is that of a governmental public service entity, with a medium-sized operational scope typical for a municipality.

R

Rakvere Vallavalitsus

rakverevald.ee

0

Rakvere Vallavalitsus operates as the local government authority for the Rakvere municipality in Estonia, providing a wide range of public services including administration, social welfare, education, culture, and infrastructure management. The website serves as an official portal for residents and stakeholders, offering comprehensive information and access to municipal resources. The organization holds a stable position as a government entity with a medium-sized operational scope focused on community services. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Google Fonts, Font Awesome, and Google Maps API. The site demonstrates moderate performance and good mobile optimization, with a structured navigation system and professional design. However, the use of an outdated jQuery version introduces potential security risks that should be addressed. From a security perspective, the site enforces HTTPS and includes standard security headers, contributing to a good baseline security posture. There is no evidence of exposed sensitive data or insecure forms. Nonetheless, the absence of a cookie consent mechanism and explicit security or incident response policies indicates gaps in privacy compliance and security transparency. The site does not appear to use advertising or tracking services, which aligns with its public sector nature. Overall, the website is trustworthy and professional, with strong business credibility as a government portal. Strategic improvements in updating libraries, enhancing privacy compliance, and publishing security policies would further strengthen its security posture and user trust.

Rakvere Linnavalitsus operates as the local government authority for the city of Rakvere, Estonia, providing a wide range of municipal services including public administration, social welfare, urban planning, crisis management, and cultural and sports activities. The website serves residents, visitors, and local businesses with comprehensive information and e-services. The organization maintains a medium-sized municipal operation with a well-structured digital presence. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized and features clear navigation and professional design. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some modern security headers and incident response contacts. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and legitimate, reflecting a stable municipal entity with room for improvements in privacy and security practices.

Vormsi.ee is the official local government and community information portal for Vormsi island, Estonia. The website provides current news, event calendars, administrative information, and local services primarily targeting residents and visitors of Vormsi. It is positioned as a trusted source of local information with a focus on community engagement and tourism. The site is multilingual, supporting Estonian, English, and Swedish languages, enhancing accessibility for diverse audiences. The business model is informational and governmental, with no evident commercial transactions. The domain is well-established since 2010, reinforcing its credibility and local presence. Technically, the website is built on WordPress CMS using a modern tech stack including PHP, jQuery, and popular plugins such as Yoast SEO and WPML for multilingual support. The site uses Google Tag Manager for analytics and employs a responsive design optimized for mobile devices. Performance is moderate with good SEO practices implemented. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration, but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There is no evidence of a published privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. No security.txt or vulnerability disclosure information is present. The site does not appear to be behind a WAF or security challenge, and no critical vulnerabilities were detected in the provided content. Overall, Vormsi.ee is a credible and professionally maintained government website with good content quality and technical implementation. To enhance security posture and compliance, it should publish privacy and cookie policies, implement security headers, and provide clear contact information for incident response. These improvements will strengthen user trust and regulatory compliance.

P

Põltsamaa vald

poltsamaa.ee

0

Põltsamaa vald operates a comprehensive local government website serving the residents of Põltsamaa municipality in Estonia. The site provides a broad range of services including news updates, contact information for municipal departments, public service details, event calendars, and project information. The website is positioned as an essential government portal facilitating communication and service delivery to its local community. The business model is focused on public service and community engagement, with a clear target audience of local residents and stakeholders. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, Font Awesome, and Google Fonts. It integrates external services like Facebook SDK and Google Analytics for social media and analytics purposes. The site demonstrates moderate performance and good mobile optimization, although some accessibility features could be improved. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the website enforces HTTPS and includes a cookie consent banner, indicating awareness of privacy compliance. However, the use of an outdated jQuery version introduces potential vulnerabilities, and the absence of explicit security headers reduces the overall security posture. No public security policies or incident response contacts are available, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and functional, serving its purpose as a government information portal effectively. Strategic improvements in updating third-party libraries, enhancing security headers, and publishing privacy and security policies would strengthen its security and compliance stance.

Järva vald operates as a local government authority in Estonia, providing a wide range of public services including social welfare, education, cultural activities, infrastructure management, and environmental oversight. The website serves as a comprehensive portal for residents, businesses, and visitors, offering detailed information and access to municipal resources. The site is well-structured with clear navigation and extensive content primarily in Estonian, targeting local stakeholders. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Google Analytics, and Font Awesome. While the site is mobile-optimized and uses HTTPS, some technologies like jQuery 1.10.2 are outdated, which may introduce security risks. Performance is moderate, and SEO and accessibility are adequately addressed. From a security perspective, the website enforces HTTPS and includes some security best practices such as the use of security tokens in forms. However, it lacks several modern security headers and uses an outdated JavaScript library. Privacy compliance is partially met with a comprehensive privacy policy and data protection officer information, but no visible cookie consent mechanism is present. Incident response and security policies are not explicitly published. Overall, the website is trustworthy and professional, reflecting its governmental nature. The main risks relate to outdated libraries and incomplete privacy compliance. Strategic improvements in security headers, library updates, and privacy mechanisms would enhance the site's security posture and regulatory adherence.

S

Sillamäe linn

sillamae.ee

0

Sillamäe linn is the official municipal government website for the city of Sillamäe in Estonia. The site provides comprehensive information about the city's history, governance, social services, cultural events, and economic development initiatives. It serves residents, visitors, and businesses with a broad range of public service information and community engagement tools. The website is built on the Liferay CMS platform, featuring a responsive design suitable for desktop and mobile users. It integrates common web technologies such as jQuery, Bootstrap, and Font Awesome, and uses Google Analytics for visitor tracking. The site enforces HTTPS and includes a cookie consent banner, demonstrating awareness of privacy regulations such as GDPR. However, some technical aspects like the use of an outdated jQuery version and absence of security headers indicate areas for security improvement. Contact information is clearly presented, and the WHOIS data confirms the domain's legitimacy as a government entity. Overall, the website is professional and trustworthy but would benefit from technical and security enhancements.

N

Narva-Jõesuu Linnavalitsus

narva-joesuu.ee

0

Narva-Jõesuu Linnavalitsus operates as the local government authority for the city of Narva-Jõesuu in Estonia, providing essential municipal services, governance information, and community engagement through its official website. The site targets local residents, businesses, and visitors, offering news, event calendars, contact details, and public service forms. The business model is typical of a government entity, funded by public resources and focused on transparency and service delivery. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. The infrastructure is stable and moderately performant, with good mobile optimization and basic accessibility features. The site is hosted under the domain registered by Zone Media OÜ, a known registrar and hosting provider, with a domain age consistent with a mature municipal website. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks several security headers and does not provide explicit privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are evident, indicating room for improvement in security governance. Overall, the website is professional and trustworthy, serving its governmental purpose effectively. The main risks relate to privacy compliance and security best practices, which should be addressed to enhance user trust and regulatory adherence.

K

Kohtla-Järve Linnavalitsus

kohtla-jarve.ee

0

Kohtla-Järve Linnavalitsus is the official municipal government of Kohtla-Järve city in Estonia, providing a comprehensive digital portal for residents, businesses, and visitors. The website offers extensive information on local governance, social and health services, urban planning, cultural activities, and e-services, positioning itself as a central hub for community engagement and public administration. The target audience primarily includes local citizens and stakeholders seeking municipal information and services. Technically, the website is built on the Liferay CMS platform, utilizing established web technologies such as jQuery, Bootstrap, and Font Awesome. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks visible advanced security headers and explicit security or incident response policies. The use of an outdated jQuery version may pose minor risks. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security maturity. Overall, the website is professional, trustworthy, and well-aligned with its governmental function. Strategic enhancements in security headers, incident response documentation, and modernization of libraries would strengthen its security posture and compliance standing.

Jõhvi vallavalitsus operates as the official municipal government for the Jõhvi region in Estonia, providing a wide range of public services including governance, social welfare, education, cultural events, urban planning, and community engagement. The website serves as a comprehensive portal for residents and stakeholders to access information, participate in local initiatives, and stay informed about municipal activities. The target audience primarily consists of local residents, businesses, and visitors seeking official information and services. Technically, the website is built on the Liferay CMS platform, utilizing JavaScript, jQuery, Bootstrap, and Font Awesome for UI components and styling. It employs HTTPS for secure communication and integrates Google Analytics for visitor tracking. The site demonstrates good mobile responsiveness and clear navigation, although some technical debt is evident with the use of an outdated jQuery version, which could pose security risks. From a security perspective, the site benefits from HTTPS encryption and a cookie consent mechanism indicating GDPR awareness. However, it lacks visible security headers and explicit security or incident response policies. The absence of a vulnerability disclosure policy and the use of outdated libraries suggest areas for improvement. No critical vulnerabilities or blocking mechanisms were detected, and contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and functional, serving its governmental role effectively. Strategic improvements in updating libraries, implementing security headers, and publishing comprehensive security policies would enhance its security posture and compliance standing.

A

Alutaguse vald

alutagusevald.ee

0

Alutaguse vald operates as a local government entity in Estonia, providing a broad range of public services including social welfare, environmental management, urban planning, and cultural activities. The website serves as an information portal for residents and stakeholders, offering detailed navigation to various municipal services and administrative resources. The business model is typical of a public sector organization focused on community service and governance. The website is positioned as an official government resource with a clear focus on transparency and accessibility to local information. Technically, the website is built on the Liferay CMS platform, utilizing standard web technologies such as jQuery, Google Fonts, and Font Awesome. It integrates Google Tag Manager for analytics and tracking purposes. The site demonstrates moderate performance and good mobile optimization, with a structured and consistent design. SEO and accessibility are adequately addressed, though accessibility could be improved further. From a security perspective, the website enforces HTTPS and implements several security headers, indicating a good baseline security posture. There are no visible vulnerabilities or exposed sensitive data. However, the absence of an explicit cookie consent mechanism and published security or incident response policies suggests room for improvement in compliance and transparency. No WAF or blocking mechanisms were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration with the website's government affiliation. Overall, the website presents a trustworthy and professional front for the Alutaguse vald municipality, with solid technical and security foundations. Strategic enhancements in privacy compliance, accessibility, and security policy transparency would further strengthen its position and user trust.

V

Viimsi vald

viimsivald.ee

0

Viimsi vald is the official municipal government entity for the Viimsi region in Estonia, providing a broad range of public services including planning, social welfare, education, culture, and infrastructure management. The website serves as a comprehensive portal for residents and stakeholders, offering news, event information, service guides, and contact details. It maintains a strong local government presence with clear communication channels and social media integration. Technically, the website is built on Drupal 9 CMS, leveraging modern JavaScript libraries and analytics tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Hosting and domain registration are consistent with a reputable Estonian registrar, Elkdata OÜ, supporting the site's legitimacy. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and some recommended security headers, which could be improved to strengthen its security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, Viimsi vald's website is a trustworthy, well-structured government portal with good content quality and technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance its robustness and user trust.

Raasiku Vallavalitsus operates as the local government authority for Raasiku vald in Estonia, providing a broad range of public services including social welfare, education, environmental management, and urban planning. The website serves as an information hub for residents and stakeholders, offering news, contact details, e-services, and detailed sectoral information. The organization holds a stable market position as a small-sized governmental entity with a domain age consistent with its operational history since 2010. Technically, the website is built on the Liferay CMS platform, utilizing standard web technologies such as JavaScript, jQuery, Bootstrap, and Google Fonts. It is hosted under a reputable registrar, Telia Eesti AS, and employs HTTPS with a cookie consent mechanism, indicating a moderate level of digital maturity. Mobile optimization and SEO practices are adequately implemented, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, but lacks visible advanced security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The use of Google Analytics introduces moderate user tracking, balanced by privacy compliance measures including a privacy policy and cookie policy. Overall, the website presents a trustworthy and professional digital presence for a local government entity. Strategic recommendations include enhancing security headers, publishing incident response information, updating libraries regularly, and improving accessibility compliance to further strengthen the security posture and user trust.

Maardu Linnavalitsus operates as the municipal government portal for the city of Maardu, Estonia, providing residents and visitors with information about city services, news, events, and contact details. The website serves as an essential communication channel for local government functions and citizen engagement. It targets local residents, visitors, and stakeholders seeking municipal information and services. The business model is that of a government entity offering public services and information dissemination.

Lääne-Harju vald operates as a local government entity in Estonia, providing a wide range of public services including administration, social and health care, education, culture, environmental management, and transportation. The website serves as an official portal for residents, businesses, and visitors to access information, news, events, and e-services. It reflects a medium-sized municipality with a population of approximately 13,816 as of mid-2025. The site is well-structured with clear navigation and content relevant to its audience. Technically, the website is built on the Liferay Portal CMS platform, utilizing technologies such as jQuery, Bootstrap, Font Awesome, and Google Fonts. It is hosted by Telia Eesti AS, a reputable Estonian hosting provider. The site is mobile-optimized and includes basic accessibility features. Performance is moderate, with room for improvement in modernizing some libraries and enhancing accessibility. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, indicating awareness of privacy regulations. However, it lacks explicit security headers and dedicated security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. Google Analytics is used for user tracking, with moderate privacy compliance. Overall, the website demonstrates a solid business credibility and technical foundation suitable for a government portal. Strategic recommendations include enhancing security headers, updating legacy libraries, adding explicit security and incident response policies, and improving accessibility compliance to strengthen trust and resilience.

K

Kuusalu vallavalitsus

kuusalu.ee

0

Kuusalu vallavalitsus is the official local government authority for the Kuusalu municipality in Estonia, providing a wide range of public services including governance, social welfare, education, culture, environment, and crisis preparedness. The website serves residents, local businesses, and visitors by offering comprehensive information and access to municipal services. The site is built on the Liferay CMS platform and uses common web technologies such as jQuery, Bootstrap, and Font Awesome, with tracking enabled via Google Analytics and Google Tag Manager. The website is mobile optimized and presents a professional and consistent brand image aligned with government standards. Security-wise, the site enforces HTTPS but lacks visible security headers and uses an outdated jQuery version, which could pose vulnerabilities. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Overall, the website is functional and credible but would benefit from security and compliance improvements.

J

Jõelähtme Vallavalitsus

joelahtme.ee

0

Jõelähtme Vallavalitsus operates as the official municipal government portal for the Jõelähtme vald region in Estonia, providing residents and stakeholders with comprehensive information on local governance, services, events, and community resources. The website serves as a critical communication channel for the municipality, offering structured navigation and regularly updated news content. The target audience includes local residents, businesses, visitors, and public sector partners. The business model is that of a governmental public service provider with a focus on transparency and community engagement. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, Font Awesome, and Google Fonts. It integrates social media via Facebook and uses Google Tag Manager for analytics. The site is hosted likely by Telia Eesti AS, consistent with the domain registrar information. The website demonstrates good mobile optimization and moderate performance, though some technologies like jQuery are outdated. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are important for compliance and security hardening. No vulnerability disclosure or incident response policies are published, representing an area for improvement. Overall, the security posture is solid but could benefit from enhanced compliance and transparency. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing cookie consent, adding security headers, updating legacy libraries, and publishing security policies to enhance compliance and user trust.

A

Anija vald

anija.ee

0

Anija.ee is the official website of Anija vald, a local government entity in Estonia. The site serves as a comprehensive portal for municipal information, including news, services, contacts, and community resources. It targets residents and stakeholders within the Anija vald municipality, providing essential public service information and facilitating communication between the government and its constituents. The website is well-structured with clear navigation and a consistent branding approach, reflecting its role as a trusted government resource. Technically, the website is built on WordPress CMS, utilizing modern plugins such as Max Mega Menu, Complianz GDPR Cookie Consent, and Carousel Block. It employs jQuery and FontAwesome for enhanced UI/UX. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. The presence of Google Tag Manager indicates usage of analytics and tracking, balanced with a GDPR-compliant cookie consent mechanism. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms a consistent and legitimate domain registration aligned with the website's governmental purpose. Overall, Anija.ee presents a secure, compliant, and professionally maintained digital presence for the Anija vald municipality. Strategic recommendations include enhancing security headers, adding explicit incident response contacts, and maintaining regular updates to CMS and plugins to sustain security and compliance.

The website sotsiaalkindlustusamet.ee appears to represent a government entity in Estonia, likely related to social security or social insurance services. However, the actual website content is inaccessible due to a Cloudflare Turnstile CAPTCHA challenge page, which blocks automated access and prevents content retrieval. This limits the ability to analyze the website's business description, policies, or contact information. The domain is well-established, created in 2010, and registered through a legitimate Estonian registrar, indicating a trustworthy origin. Technically, the website leverages Cloudflare's security and performance services, including Turnstile CAPTCHA and Cloudflare Insights for analytics. Due to the blocking, no detailed security headers or privacy compliance mechanisms are visible. The lack of visible privacy, cookie, or terms of service policies and absence of contact information on the landing page further limit the assessment. From a security perspective, the use of Cloudflare provides a strong protective layer, but the inability to access the actual content or policies restricts a full evaluation. No vulnerabilities or exposed sensitive data were detected, but this is due to lack of access rather than confirmed absence. Overall, the site demonstrates a basic security posture through WAF usage but lacks visible compliance documentation. The overall risk assessment is moderate due to the blocking mechanism preventing full analysis. Strategic recommendations include enabling access beyond the CAPTCHA for legitimate users and security analysts, publishing clear privacy and cookie policies, and providing accessible contact information to improve transparency and trust.

O

Oikeusministeriö/Oikeushallinnon tietotekniikkakeskus

demokratia.fi

0

Demokratia.fi is an official Finnish government web portal managed by the Ministry of Justice, providing citizens with comprehensive information and tools to participate in democratic processes locally, nationally, and at the EU level. The site aggregates links to various government-maintained participation platforms and legislative tracking services, targeting Finnish citizens interested in civic engagement. Technically, the site is built on WordPress with modern JavaScript libraries and uses Matomo analytics configured for privacy. Security posture is solid with HTTPS and no exposed sensitive data, though DNSSEC and additional security headers could enhance protection. Privacy compliance is good with a clear privacy policy, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professionally maintained, and serves as a key government resource for democratic participation.

D

Digi- ja väestötietovirasto

avoindata.fi

0

The website avoindata.fi serves as the official Finnish government open data portal managed by Digi- ja väestötietovirasto. It consolidates all open data published in Finland, providing datasets, APIs, producer information, and showcases of applications leveraging open data. The portal targets developers, public sector entities, and citizens interested in accessing and utilizing open data. Its business model is that of a public service, offering free and centralized access to government data resources. Technically, the site is built on Drupal 10 with Bootstrap and FontAwesome for UI components, and it integrates Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Hosting appears to be government-managed with external analytics hosted on suomi.matomo.cloud. From a security perspective, the site enforces HTTPS and employs secure form handling with CSRF tokens. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is limited to email and contact forms, with no phone or physical address listed. Overall, avoindata.fi is a trustworthy, well-maintained government portal with good technical and privacy standards. Strategic improvements include publishing a security policy, adding security headers, and providing incident response contacts to enhance transparency and security posture.

The website urn.fi is operated by the National Library of Finland, part of the University of Helsinki, providing a specialized URN resolver service. It serves a niche academic and governmental audience requiring persistent resource identification within Finland. The domain is well-established since 2007, reflecting a stable and authoritative service. The website content is minimal, focusing on basic instructions and links related to URN resolution, with no interactive or commercial elements. Technically, the site uses Cloudflare DNS services but lacks advanced web technologies, CMS, or modern frameworks. The site is accessible without WAF or security challenges but does not implement common security headers or privacy policies. Performance and mobile optimization are basic, reflecting the site's simple informational nature. From a security perspective, the site benefits from a legitimate domain registration and consistent WHOIS data but lacks visible security best practices such as HTTPS enforcement details, security headers, or privacy compliance mechanisms. No vulnerabilities or tracking technologies were detected, indicating a low-risk profile but also a lack of proactive security measures. Overall, urn.fi is a trustworthy, government-affiliated academic service with a low complexity web presence. Strategic improvements in security headers, privacy policies, and mobile accessibility would enhance its compliance and user trust without altering its core function.

V

Valtiovarainministeriö

rahanpesu.fi

0

Rahanpesu.fi is an official Finnish government website maintained by the Ministry of Finance (Valtiovarainministeriö) that provides comprehensive information and resources on preventing money laundering and terrorist financing. The site serves as a central informational hub for government officials, obligated entities, and the general public interested in anti-money laundering compliance and awareness. It offers news updates, guidance, and contact points for reporting suspicious activities, positioning itself as a trusted and authoritative source in Finland's regulatory landscape. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript libraries including jQuery, React, and Alloy UI components. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Hosting appears to be managed by Finnish government infrastructure, ensuring reliability and security. Performance is moderate with a well-structured navigation system and clear content presentation. From a security perspective, the site enforces HTTPS with excellent SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. While no explicit security headers were detected in the provided data, the site avoids exposing sensitive information and follows best practices for external link handling and analytics tracking. The absence of a published security policy or vulnerability disclosure page suggests room for improvement in transparency and incident response readiness. Overall, the domain registration data aligns perfectly with the website's governmental purpose, showing a long-standing registration since 2005 under the Finnish Ministry of Finance. No suspicious patterns or privacy protection obfuscations are present, reinforcing the site's legitimacy. The website scores well across content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and authoritative resource in its domain.

V

Valtion tieto- ja viestintätekniikkakeskus Valtori

valtori.fi

0

Valtori is a Finnish government agency under the Ministry of Finance that provides ICT services to the Finnish state administration. The organization focuses on delivering sector-independent ICT services that meet high security and preparedness requirements. The website reflects a professional government entity with clear branding, multilingual support, and a focus on service information and news updates. The technical infrastructure is based on modern web technologies including Liferay CMS, React, and jQuery, hosted likely on Finnish infrastructure with Sonera/Elisa nameservers. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not prominently published. Overall, the domain registration data aligns well with the website content, confirming legitimacy and transparency.

Y

Ympäristöministeriö

ym.fi

0

Ympäristöministeriö is the Finnish Ministry of the Environment, responsible for environmental policy, climate action, nature conservation, housing, and sustainable development in Finland. The website serves as an authoritative portal providing information, news, and resources to Finnish citizens, government officials, and international partners. It reflects the ministry's role in shaping and implementing environmental legislation and policies. The site is well-structured, multilingual, and professionally designed, supporting accessibility and user engagement. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript libraries including React and Clay UI components. It employs HTTPS with good SSL configuration and includes accessibility and SEO best practices. The site is hosted likely on Finnish government infrastructure, ensuring reliability and compliance with national standards. From a security perspective, the site demonstrates strong posture with HTTPS enforcement, absence of exposed sensitive data, and use of secure coding practices. However, explicit security headers like Content-Security-Policy could be enhanced, and the site currently lacks a public security policy or incident response page. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the website is a trustworthy and professional government portal with a solid technical foundation and good security hygiene. Strategic improvements in security transparency and incident response readiness would further strengthen its posture.

M

Maa- ja metsätalousministeriö

mmm.fi

0

The website https://mmm.fi/etusivu represents the Finnish Ministry of Agriculture and Forestry, a government entity responsible for agriculture, forestry, food production, rural development, fisheries, and related environmental policies. The site serves as an authoritative source of information, policy updates, and public communications targeted primarily at Finnish citizens, stakeholders in agriculture and forestry sectors, and policymakers. The business model is that of a government ministry providing regulatory and informational services without commercial intent. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript libraries including React and Clay UI components. The infrastructure is hosted by Valtori, the Finnish Government ICT service provider, ensuring a secure and stable environment. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate rather than fast. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. Security headers are likely present though not explicitly visible in the HTML. No vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policies, incident response information, and a security.txt file, which are recommended for enhanced transparency and security posture. Overall, the website is trustworthy, professionally maintained, and consistent with its role as a government ministry portal. The WHOIS data confirms legitimate ownership and long domain history. Strategic recommendations include implementing DNSSEC, publishing security and incident response policies, and adding a security.txt file to facilitate vulnerability disclosures.