Security Directory

P

PD Instore

neoinstore.com

0

NEO Retail Displayware is a specialized retail merchandising company offering innovative pegboard hardware and signage solutions under the patented neoPEGS™ brand. Their products target retail businesses seeking modern, customizable, and cost-effective displayware. The website is built on WordPress using WPBakery Page Builder and includes standard web technologies such as jQuery and FontAwesome. The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security practices.

F

Fromi GmbH

fromi.com

0

Fromi GmbH is an established German company specializing in the wholesale and distribution of cheese specialities and fine foods, with over 50 years of experience and an international reputation. The company targets cheese retailers, food service professionals, and gourmet consumers, offering a wide range of products and services including cheese selections, fine food offerings, and customer support. The website reflects a professional and consistent brand image with multilingual support and comprehensive product information. Technically, the site is built on WordPress with modern plugins and libraries, optimized for mobile and SEO, and includes cookie consent mechanisms. Security posture is strong with HTTPS, obfuscated emails, and no visible vulnerabilities, though security headers could be improved. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Strategic recommendations include enhancing security headers, publishing incident response policies, and clarifying domain registration details to improve trust and compliance.

M

Montibello – Skin

montibello.com

0

Montibello is a Spanish-based company specializing in hair care, facial, and body treatment products, targeting professionals in the beauty and aesthetics industry. The website provides product information, professional courses, and inspiration for hairdressers and aesthetic professionals, positioning itself as a reputable brand in the retail beauty sector. The digital presence is built on WordPress with WooCommerce, indicating a mature e-commerce platform with integrated marketing and analytics tools such as Google Tag Manager and Cookiebot for consent management. Security is enhanced by the Wordfence plugin, and HTTPS is enforced, reflecting a good security posture. However, the absence of publicly available WHOIS data raises concerns about domain registration transparency. Additionally, the lack of explicit privacy policy, terms of service, and contact information limits the website's compliance and trustworthiness from a privacy and regulatory perspective. Overall, the website is professionally designed and functional but would benefit from enhanced transparency and compliance documentation.

O

Olivia Garden

oliviagarden.eu

0

Olivia Garden is a professional hair styling tools brand offering products such as hair brushes, combs, and scissors. The website targets professional hair stylists and consumers interested in hair care innovations. The brand appears established with a consistent and professional online presence. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, Cookiebot for consent management, and reCAPTCHA for bot protection, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website is professional, trustworthy, and well-optimized, with room for improvement in transparency of security policies and contact information.

C

CrossCafe Pražírna

crosscafeprazirna.cz

0

CrossCafe Pražírna is a specialized coffee roasting company based in the Czech Republic, offering high-quality coffee products through both retail and wholesale channels. The company emphasizes craftsmanship and quality, operating its own roasting facility and maintaining a strong online presence with an e-commerce platform. Their product portfolio includes various coffee blends, capsules, teas, and merchandise, targeting coffee enthusiasts, cafes, offices, and restaurants. The website reflects a professional and consistent brand image with clear business information and active social media engagement. Technically, the website is built on the Shoptet e-commerce platform, utilizing modern web technologies such as jQuery, Google Tag Manager, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The site is mobile-optimized with good SEO and accessibility basics. Security practices include HTTPS enforcement and CSRF protection on forms, alongside a cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy are not explicitly present, and no incident response or vulnerability disclosure information is published. The absence of WHOIS data is a notable gap, limiting the ability to verify domain registration details and ownership, which slightly impacts trustworthiness. Despite this, the website content and business information appear legitimate and professionally maintained. Overall, the site demonstrates a solid digital maturity level with room for security enhancements and transparency improvements.

Birell.cz is the official website of Birell, a leading Czech non-alcoholic beer brand owned by Asahi CE & Europe Services s.r.o. The company has a strong market position in the Czech Republic, offering innovative non-alcoholic beers and radlers with a focus on flavor variety and health-conscious options. The website is built on WordPress with modern plugins and integrates Google Analytics via Google Tag Manager. It features a cookie consent mechanism compliant with GDPR and provides clear contact information including an email and physical address. However, the absence of a publicly accessible privacy policy page and missing WHOIS data limit full trust assessment. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and publishing a security policy. Overall, the website is professional, user-friendly, and well-branded, supporting the company's market leadership.

N

Novoročenky 2024 - Adam Grant

adamgrant.cz

0

The website www.adamgrant.cz represents a small Czech business specializing in luxury New Year greeting cards with a focus on high-quality graphic design and printing. The site is built on WordPress and uses common web technologies such as jQuery and Slick Carousel. The business targets customers seeking premium holiday cards and operates primarily in the retail sector within the Czech Republic. The website content is professionally presented with clear navigation and good mobile optimization, although some modern accessibility features are limited. Technically, the site enforces HTTPS and uses Google Analytics for visitor tracking. However, it lacks important security headers and uses an outdated version of jQuery, which could expose it to vulnerabilities. No privacy or cookie policies are present, indicating a gap in compliance with GDPR and other privacy regulations. Contact information is limited to a phone number and a contact page link, with no email addresses or social media profiles found. From a security perspective, the absence of WHOIS data is concerning and reduces the domain's trustworthiness. No signs of WAF or blocking mechanisms were detected, and the site content is fully accessible. The security posture is moderate but could be significantly improved by adding security headers, updating libraries, and implementing privacy policies. Overall, the site is functional and professional but requires enhancements in security and compliance to reduce risk and improve trust. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, updating outdated libraries, and verifying domain registration details to improve legitimacy. Enhancing incident response readiness and publishing security contact information would also strengthen the security culture and trustworthiness of the business.

J

JMP s.r.o.

valty.cz

0

VALTY.cz is a Czech Republic based retailer specializing in custom mattress systems combining flexible slatted frames and thinner mattresses tailored to individual needs. The company has a strong market presence with over 30 years of experience and multiple physical store locations. Their business model focuses on quality materials, expert advice, and made-to-measure products, targeting consumers seeking ergonomic and hygienic sleep solutions. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic with a cookie consent banner but no explicit privacy or terms pages. Overall, the site is professional and trustworthy with clear contact information and partner ecosystem.

J

JMP s.r.o.

toppery.cz

0

Toppery.cz is a Czech-based retailer and manufacturer specializing in mattress toppers, mattress protectors, travel mattresses, and mattress covers. The company operates both an e-commerce platform and four physical stores across major Czech cities, targeting consumers seeking enhanced sleep comfort and hygiene solutions. The website is professionally designed, localized in Czech, and provides detailed product information and contact details, supporting a medium-sized retail business model with a strong local presence. Technically, the website is built on WordPress 6.4.3 with Bootstrap and jQuery frameworks, integrating SEO best practices via Yoast SEO and leveraging Google Analytics and Tawk.to for analytics and customer engagement. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and does not publish a privacy policy or incident response information. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the business claims, indicating legitimacy. Overall, the security posture is adequate but could be enhanced with additional headers and compliance documentation. The overall risk is moderate with no critical issues detected. Strategic improvements in privacy compliance and security headers would strengthen trust and regulatory adherence, supporting continued growth and customer confidence.

J

JMP s.r.o.

rajpolstaru.cz

0

Ráj polštářů is a Czech Republic based retail and e-commerce business specializing in high-quality pillows and bedding products. The company operates an online shop complemented by four physical stores across major Czech cities, offering anatomical, classic, and children's pillows. Their business model focuses on providing quality materials, expert consultation, and custom bedding solutions, positioning them as a trusted local retailer with a solid market presence since 2015. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Yoast SEO, ensuring good SEO and mobile responsiveness. The site uses HTTPS and integrates Google Analytics and Tawk.to for analytics and customer support, respectively. Security posture is good with SSL and no visible vulnerabilities, though security headers and explicit policies are missing. Privacy compliance is basic with a cookie consent banner but no visible privacy or terms of service pages. Overall, the website is professional and trustworthy with room for improvement in privacy and security policy transparency.

J

JMP s.r.o.

rozkladacipostele.cz

0

JMP s.r.o. operates the website rozkladaci-postele.cz, specializing in the retail and e-commerce sale of folding beds and mattresses primarily targeting customers in the Czech Republic. The company maintains a medium-sized business with multiple physical stores and an online presence, offering a wide range of products with a focus on quality Czech manufacturing. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and various plugins for SEO, analytics, and live chat support. Security posture is solid with HTTPS enforced and no visible critical vulnerabilities, though security headers and formal policies are lacking. Privacy compliance is basic with a cookie consent banner but no published privacy or terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site is functional, trustworthy, and well-positioned in its niche.

R

ROSSMANN

rossmann.cz

0

ROSSMANN.cz is the online presence of ROSSMANN, a large retail chain specializing in drugstore products in the Czech Republic. The website offers a broad assortment of quality goods at competitive prices, including current promotions, flyers, and customer contests. The site targets retail consumers in the Czech market and positions itself as a well-established player in the retail sector. Technically, the website employs modern JavaScript frameworks and libraries, including React components, Google Tag Manager, and Cookiebot for cookie consent management. The site is mobile-optimized and uses preloading techniques for fonts and images to enhance performance. Security-wise, HTTPS is enforced, and cookie consent is implemented, but no explicit security headers or privacy policy pages were detected in the provided content. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and branding suggest a legitimate business. Overall, the site demonstrates good digital maturity with room for improvement in security and privacy transparency.

C

CookTrade s.r.o.

cooktrade.cz

0

CookTrade s.r.o. operates a Czech e-commerce platform specializing in the retail of Tescoma kitchenware products. The company has a long-standing partnership with Tescoma and targets Czech domestic consumers seeking quality kitchen and household products. Their business model focuses on online sales supported by customer service and fast delivery. The website is built on PrestaShop and uses common web technologies such as jQuery and Bootstrap. While the site is functional and professionally designed, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security is generally good with HTTPS enforced, but the use of an outdated jQuery version and absence of security headers present some risks. Overall, the site is trustworthy and consistent with the business claims, but improvements in privacy compliance and security hardening are recommended.

H

HERVIS Österreich

hervis.cz

0

HERVIS Österreich operates a professional e-commerce platform specializing in sports apparel, shoes, and equipment targeted primarily at customers in Austria and neighboring regions. The website presents a consistent brand image with good content quality and clear navigation, supporting a positive user experience. Technically, the site leverages modern frameworks such as Angular and integrates marketing and identity management tools like Adobe Launch and Gigya, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and incident response information suggests room for improvement. The lack of WHOIS data limits domain trust verification, but the overall professionalism and content quality support a moderate to high trust level. Privacy and cookie policies are not explicitly found, which impacts compliance scoring. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing vulnerability disclosure information to strengthen security and trust further.

K

Království tianDe

kralovstvi-tiande.cz

0

Království tianDe operates a professional e-commerce website focused on selling tianDe cosmetics and health products inspired by traditional Chinese medicine. The site targets consumers interested in natural beauty and health products within the Czech Republic. The platform is technologically modern, leveraging React, Google Tag Manager, Microsoft Clarity, Klaviyo, and Sentry for analytics, marketing, and error monitoring. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, which should be addressed to improve business credibility. Overall, the website is functional, well-designed, and provides clear contact information, but could benefit from enhanced transparency and security documentation.

J

JMP s.r.o.

loznice.cz

0

JMP s.r.o. operates the website loznice.cz, specializing in the manufacture and retail of high-quality mattresses, beds, and bedroom furniture with a strong emphasis on Czech production and certification. The company targets consumers seeking quality sleep solutions and offers custom-made products supported by over 30 years of experience. The website features rich multimedia content, product categories, and multiple physical store locations with clear contact information. Technically, the website employs modern web technologies including Bootstrap, jQuery, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Heureka widgets. The site is mobile-optimized and provides a good user experience with clear navigation and structured data for SEO. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain reduces trust from a domain registration standpoint. The site lacks explicit security policies and incident response information, which could be improved to enhance compliance and user trust. Overall, the website presents a professional and trustworthy front for a medium-sized retail business in the Czech Republic, with recommendations to improve domain registration transparency, security headers, and published security policies to strengthen its security posture and compliance.

D

Dr. Oetker

oetker.cz

0

Dr. Oetker Czech Republic operates a well-designed and content-rich website focused on baking recipes, desserts, and product sales. The site targets home bakers and families, offering recipe inspiration and an e-commerce platform for purchasing products. The brand is well-established with over 100 years of history, reflected in consistent branding and professional content. Technically, the website uses modern frameworks such as Next.js and React, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent management, though explicit security headers and privacy policies are lacking. WHOIS data is missing, which reduces trustworthiness but the website's content and branding strongly suggest legitimacy. Overall, the site is professional and user-friendly but could improve transparency on privacy and security policies.

F

Funky Pigeon

funkypigeon.com

0

Funky Pigeon is a UK-based e-commerce retailer specializing in personalized greeting cards, gifts, and flowers. The company operates under the parent company WH Smith PLC, positioning itself as a significant player in the UK retail market for personalized gifting solutions. The website offers a broad range of products tailored for various occasions, targeting consumers seeking unique and personal gift options. Technically, the site is built using modern web technologies including React and Next.js, with integrations for customer data platforms and marketing analytics, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS, employs standard security headers, and provides comprehensive privacy and cookie policies with consent mechanisms, indicating a strong commitment to user data protection. However, the absence of WHOIS registration data is a notable anomaly, though the overall site professionalism and parent company association mitigate concerns. Strategic recommendations include publishing explicit security policies and incident response contacts, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security posture.

R

Rahva Raamat

rahvaraamat.ee

0

Rahvaraamat.ee is the leading Estonian bookstore chain offering a comprehensive selection of books and media products through both online and physical retail channels. The company is well-established with a domain age since 2010 and operates under Zone Media OÜ. Their website is built on modern technologies such as Next.js and React, providing a responsive and user-friendly experience. The integration of Cookiebot ensures GDPR compliance with a detailed cookie consent mechanism. Security posture is strong with HTTPS enforced and appropriate security headers in place, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates a mature digital presence with extensive analytics and advertising integrations, supporting a robust e-commerce business model.

P

POMPdeLUX FI Oy

pompdelux.com

0

POMPdeLUX FI Oy operates a professional e-commerce platform specializing in Scandinavian children's clothing, targeting parents and caregivers seeking quality kidswear. The company has established a solid market presence since its domain registration in 2011, offering seasonal collections through a well-branded and user-friendly Shopify-based website. The site demonstrates a mature digital infrastructure with integration of modern marketing and analytics tools such as Klaviyo and Facebook Pixel, ensuring effective customer engagement and data-driven marketing strategies. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although formal security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website reflects a trustworthy and professional retail business with room for improvement in explicit security transparency and incident readiness.

H

Huonekaluliike Masku

masku.com

0

Huonekaluliike Masku operates as a Finnish furniture retailer offering products both online and in physical stores. The website content is professionally designed with a modern CSS framework and is mobile optimized, targeting Finnish consumers interested in home furniture. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional appearance and consistent branding. The technical infrastructure suggests use of a headless CMS (Storyblok) and modern frontend technologies, but lacks visible analytics or tracking scripts in the provided content. Security posture is weak due to missing security headers, lack of privacy and cookie policies, and no explicit contact information for security or business inquiries. Overall, the website functions well for user experience but requires improvements in security, compliance, and transparency to enhance trust and reduce risk.

Sporditurg.ee operates as a localized Estonian online marketplace specializing in sports equipment and related goods. It provides a platform for both private individuals and legal entities to post free classified ads, targeting sports enthusiasts across Estonia. The website offers categorized listings by sport type, size, condition, and location, facilitating easy navigation for users. The business model is focused on community-driven listings with monetization likely through featured ads and advertising partnerships. The market position is niche and local, serving a specific segment within the retail industry.

PD Instore is a well-established retail design-to-build partner with over 80 years of industry experience, specializing in visual merchandising and instore environment solutions. The company targets retail brands seeking innovative and comprehensive brand experience services, offering design, build, and rollout capabilities. Their market position is strong, supported by a large team and a broad portfolio of well-known brand partnerships. Technically, the website is built on WordPress using Elementor, with modern JavaScript libraries and Google Analytics integration, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

K

Klarvinduer

klarvinduer.dk

0

Klarvinduer.dk is a Danish retail website specializing in custom-made windows and doors, offering high-quality products at factory prices with discounts up to 60%. The business targets both DIY consumers and professional customers, positioning itself competitively in the Nordic and European markets with sister sites in multiple countries. The website is built on modern web technologies including React and Next.js, with content managed via DatoCMS and cookie consent managed by Cookiebot. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or terms of service policies. Contact information is limited to a contact form without explicit emails or phone numbers. The domain registration is consistent with the business history and shows no suspicious patterns, supporting the legitimacy of the site.

N

Natuzzi SpA

natuzzi.com

0

Natuzzi SpA is a globally recognized furniture brand specializing in the design and retail of sofas, chairs, tables, beds, and other home furnishings. The company targets consumers seeking premium and harmonious home decor solutions, positioning itself as a leader in the retail furniture industry. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored for an international audience. Technically, the site leverages modern technologies including React, Google Tag Manager, and Cookiebot for compliance and analytics, ensuring a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published, representing an area for improvement. The WHOIS data is notably missing or unavailable, which introduces some uncertainty about domain registration transparency, but the overall website and brand presence strongly indicate legitimacy. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and enhancing domain registration transparency to bolster trust and compliance.

W

Wiru õlu

wiru.ee

0

Wiru õlu is a small Estonian craft beer brand with a professionally designed WordPress website launched in December 2023. The site focuses on presenting the brand's artisanal beer products with rich descriptive content targeting beer enthusiasts. The technical infrastructure is modern, leveraging WordPress CMS, jQuery, and popular plugins such as Contact Form 7 and All in One SEO, hosted likely by Zone Media OÜ in Estonia. The website is accessible, mobile-optimized, and SEO-friendly with structured data implemented. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site demonstrates a good baseline for a new small business but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

O

Orkla Eesti AS

kalev.eu

0

Kalev is a prominent Estonian confectionery brand operating under Orkla Eesti AS, offering a wide range of chocolates and sweets through retail stores and e-commerce. The website showcases the brand's rich history, product offerings, sustainability initiatives, and retail locations, targeting consumers in Estonia. Technically, the site is built on WordPress with modern plugins and technologies, optimized for SEO and mobile use. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though formal security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

S

Sandman Group

sandman.ee

0

Sandman Group is a well-established wholesale distributor of consumer electronics in the Baltic region, founded in 1992 and operating the largest warehouse for home appliances in the Baltics. The company serves a broad range of partners including distributors, retail chains, and independent resellers, offering logistics, retail partnerships, and after-sales services. Their market position is strong within Estonia and the wider Baltic states. Technically, the website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, but lacks published security policies and comprehensive privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

F

Forlle'd

forlle-d.com

0

Forlle'd appears to be a skincare brand with a website built on modern JavaScript frameworks such as Nuxt.js and Vue.js. The site includes product showcases and professional/scientific content related to skincare. The technical infrastructure is moderately modern with Google Analytics and Tag Manager integrated for tracking. However, the website lacks critical privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The domain is well-established, registered since 2004 with a reputable registrar, indicating business stability. Security posture is weak due to missing headers and lack of explicit security policies. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

E

Emerante

emerante.ee

0

Emerante is a small Estonian retail and service company specializing in home interior furnishings, offering full services from project planning to installation and furniture maintenance. The website reflects a local market focus with a professional and consistent brand presence. Technically, the site is built on WordPress with WooCommerce, leveraging modern libraries and frameworks such as Bootstrap, jQuery, and Owl Carousel. The site is mobile-optimized and uses SSL with good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms pages. Overall, the site is trustworthy and functional but could improve transparency and security documentation.

K

Kingivabrik OÜ

kingivabrik.ee

0

Kingivabrik OÜ operates a professional e-commerce website specializing in promotional and corporate gifts, offering a wide range of branded merchandise including writing instruments, souvenirs, gift sets, drinkware, textiles, and sweets. The company targets businesses and organizations looking for customized logo products to enhance brand visibility and employee recognition. With over 13 years of experience and a strong client base exceeding 10,000 companies, Kingivabrik holds a solid position in the Estonian retail market for promotional goods. The website is built on a WordPress platform using WooCommerce, enhanced by the Avia Framework and various plugins for e-commerce functionality, multilingual support, and marketing integrations. The technical infrastructure includes modern tracking and analytics tools such as Google Analytics and Facebook Pixel, alongside a live chat widget for customer support. The site demonstrates good mobile optimization, SEO practices, and user experience design, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and employs Google reCaptcha on its contact form to mitigate spam. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are clearly accessible. However, the site lacks explicit security headers and published security or incident response policies, which could be enhanced to strengthen its security posture. Overall, Kingivabrik's website reflects a trustworthy and professional business with a good balance of content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and transparency around security policies would further enhance its risk profile and customer trust.

S

Servaali Oy

servaali.com

0

Servaali Oy is a well-established Finnish company specializing in the import and distribution of quality alcoholic and non-alcoholic beverages. Operating since 1995 and owned by Olvi Oyj, it holds a strong market position as one of Finland's leading alcohol importers. The website reflects this with clear branding, product categories, and a professional presentation targeting HoReCa professionals and consumers interested in premium drinks. Technically, the site is built on WordPress with modern frameworks such as Bootstrap and jQuery, and it employs Cloudflare DNS and Google Analytics for performance and tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

C

C&C EE OÜ (endine iDeal Group AS)

ideal.ee

0

iDeal (operated by C&C EE OÜ) is Estonia's largest reseller and service partner for Apple products, offering a comprehensive range of Apple devices and accessories through both e-commerce and physical stores. The company targets consumers, students, and business clients with services including device sales, repairs, trade-in programs, and financing options. The website demonstrates a mature digital infrastructure built on Magento with modern JavaScript frameworks and integrates multiple marketing and analytics tools. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

AS Eesti Pagar is a well-established Estonian bakery company founded in 2010, specializing in a wide range of bread, pastry, and frozen bakery products. The company serves retail consumers and export markets, positioning itself as a key player in the Estonian bakery sector. Their website reflects a professional and consistent brand image with clear product categorization and marketing efforts. Technically, the website is built on WordPress using modern frameworks and libraries such as Foundation, jQuery, and Slick Slider, with integrated marketing and analytics tools including Google Analytics, Facebook Pixel, and Mailchimp. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS with a cookie consent mechanism compliant with GDPR, but lacks explicit security policies and some security headers. WHOIS data confirms the domain's legitimacy and long-term presence, matching the business profile. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and incident response readiness.

V

Vincent Holding OÜ

vholding.ee

0

Vincent Holding OÜ is a sales and distribution company specializing in consumer products such as Batiste dry shampoo, Moxie tampons, Andmetics, Foreo, and Purederm masks. The company positions itself as a major player in the retail sector within Estonia. The website is built using the Wix platform, leveraging Wix Thunderbolt and standard web technologies including JavaScript and Webpack. The technical infrastructure is modern and supports mobile optimization, though performance is moderate. Security posture is adequate with HTTPS enabled and some cookie handling mechanisms, but lacks comprehensive security headers and policies. Privacy compliance is minimal with no visible privacy or cookie policies, and no contact information is provided on the site, which limits user trust and regulatory compliance. Overall, the website is functional and professionally designed but requires improvements in privacy, security policies, and contact transparency to enhance trust and compliance.

K

KaminaKeskus

kaminakeskus.ee

0

KaminaKeskus is an established Estonian retailer specializing in fireplaces, stoves, ovens, sauna stoves, chimneys, and boilers, operating since 1997. The company offers a wide selection of heating appliances with a focus on quality, competitive pricing, and customer convenience including free home delivery. Their market position is strong within Estonia, supported by multiple physical stores and an active online presence. Technically, the website is built on WordPress with the Avada theme, utilizing modern SEO and multilingual plugins, and integrates Google Analytics and Facebook SDK for tracking. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers like CSP and HSTS, and is missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the site is professional and user-friendly but should improve privacy compliance and security policies to enhance trust and regulatory adherence.

H

Hauser's Jewelers

hausersjewelers.com

0

Hauser's Jewelers is a long-established retail and e-commerce business specializing in high-end jewelry and watches, with a heritage dating back to 1898. The website serves as a professional online storefront built on the Shopify platform, showcasing various jewelry collections and brands. The business targets consumers seeking luxury jewelry and watch products, offering both sales and repair services. The site demonstrates consistent branding and good content quality, reflecting its market position as a reputable jeweler. Technically, the website leverages modern web technologies including Shopify's Expression theme, web fonts, and JavaScript libraries. It is hosted on Shopify's infrastructure with Network Solutions as the domain registrar. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Performance is moderate, with standard Shopify CDN usage. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. Contact information is limited to contact forms without explicit emails or phone numbers. No vulnerability disclosure or incident response information is provided. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security header implementation to improve its security posture and regulatory adherence.

A

As Balsnack International Holding

balsnack.ee

0

Balsnack is an established Estonian snack food company founded in 2010, specializing in unique snack products such as potato waffles, popcorn, and breakfast cereals. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting both local consumers and export markets. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including jQuery and Google APIs, hosted by Elkdata OÜ, a local Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable and accessible site. Overall, the website demonstrates a medium-sized retail business with a solid online presence but could improve privacy compliance and security transparency.

A

Analyse²

analyse2.com

0

Analyse² is a B2B company providing advanced retail analytics solutions tailored for FMCG brands and retailers. Their offerings include trade promotion insights and optimization, category analytics, and assortment planning, aimed at driving demand-driven growth and profitability. The company positions itself as a trusted partner to over 100 leading FMCG brands, showcasing logos of notable clients such as Essity, Paulig, Orkla, Fazer, Unilever, and Arla. The website is professionally designed with a clear focus on the retail sector, emphasizing shopper-centric analytics solutions.

P

Pepe Jeans London

pepejeans.com

0

Pepe Jeans London is a well-established fashion retail brand offering a wide range of apparel and accessories for women, men, and children. The website serves as an official e-commerce platform targeting international consumers interested in contemporary fashion trends. The brand maintains a consistent and professional online presence with active social media channels and a clear focus on retail sales. Technically, the website is built on Salesforce Commerce Cloud, leveraging modern JavaScript libraries such as jQuery, and integrates multiple third-party services for marketing, analytics, and payment processing, including Monetate, Cookiebot, FullStory, Global-e, and PayPal. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced further. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The WHOIS data is privacy protected, which is typical for commercial retail domains, and no suspicious indicators were found. Overall, the website presents a solid digital infrastructure with moderate to good security posture and privacy compliance, suitable for its business model and market position.

R

RTT AS

rtt.ee

0

RTT AS is an established Estonian company specializing in retail technology and office supplies, with over 28 years of experience. The company offers a broad range of products including cash registers, printers, copiers, and consumables, alongside installation, maintenance, and training services. Their market position is that of a trusted local provider catering primarily to business customers in Estonia. The website reflects a mature e-commerce platform built on WordPress and WooCommerce, featuring multilingual support and a comprehensive product catalog. Technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and CookieYes for consent management. Security posture is solid with HTTPS enforced and reCAPTCHA integration, although explicit security policies and incident response contacts are not published. Privacy compliance is supported by a detailed cookie consent mechanism, but lacks a visible privacy policy page. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in formal policy disclosures and security header implementation.

Z

Zone Media OÜ

depile.ee

0

Depile.ee is an established Estonian e-commerce website specializing in beauty, health, and wellness products. The site offers a wide range of branded products including hair care, nail care, body care, massage items, and related accessories. The business targets both consumers and professionals in the beauty sector, primarily serving the Estonian market. The company behind the domain is Zone Media OÜ, with a domain age dating back to 2010, indicating a mature online presence. Technically, the website is built on Magento 2, leveraging modern web technologies such as RequireJS, jQuery, and FontAwesome. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, with a clear navigation structure and responsive design. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and includes several security headers, contributing to a good security posture. Cookie consent is implemented with a detailed mechanism allowing users to manage preferences, which aligns with GDPR requirements. However, the absence of a publicly accessible privacy policy and terms of service pages represents a compliance gap. No critical vulnerabilities or exposed sensitive data were detected. Overall, Depile.ee presents a professional and trustworthy e-commerce platform with solid technical foundations and security practices. To enhance compliance and trust, it is recommended to publish comprehensive privacy and terms of service documents and improve accessibility features. Regular security audits and updates to third-party scripts will further strengthen the site's security posture.

B

Baltresto

baltresto.com

0

Baltresto is a specialized manufacturer and retailer of high-quality wooden and fiberglass hot tubs and outdoor saunas, operating primarily in the EU market since 2008. The company offers a broad product range including wood-fired hot tubs, fiberglass hot tubs, hot tub liners, and sauna accessories, targeting consumers and businesses seeking durable and affordable private garden spa solutions. Their market position is supported by direct manufacturing and a 15+ year history, with localized partner sites in multiple European countries enhancing regional reach. Technically, the website is built on a mature WordPress and WooCommerce platform, utilizing popular plugins such as WPBakery Page Builder and WP Rocket for performance optimization. The site integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Yandex Metrika, and Trustpilot reviews, reflecting a moderate to advanced digital maturity. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized domain changes. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No explicit security policies or incident response contacts are published, which could be enhanced to improve trust and compliance. Privacy compliance is basic with cookie consent implemented but no dedicated privacy policy page clearly identified. Overall, Baltresto presents a credible and professional online presence with solid business credibility and moderate security posture. Strategic improvements in security headers, DNSSEC, and privacy documentation would strengthen their security and compliance stance, supporting continued growth and customer trust.

V

Valio

valio.fi

0

Valio is a leading Finnish dairy and food company recognized for its innovation in the food sector. The website serves as a comprehensive platform showcasing their products, recipes, and corporate information targeted primarily at Finnish consumers. The company maintains a strong market position as an innovative food producer with a large operational scale. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager, complemented by a cookie consent mechanism via OneTrust and an AI-powered chatbot from Boost.ai. The site demonstrates good mobile optimization, accessibility, and performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, although explicit security policies and incident response information are not publicly found. Overall, the website reflects a professional and trustworthy digital presence aligned with the company's business identity.

F

Fairown

fairown.com

0

Fairown operates a buyback and credit system aimed at consumers who want to resell or dispose of products easily. The company positions itself as a niche retail service provider offering convenience and choice to customers. The website is built on the Wix platform, leveraging Wix Thunderbolt and standard web technologies, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and uses HTTPS with some JavaScript security hardening. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Additionally, the lack of privacy, cookie, and terms of service policies indicates gaps in compliance and transparency. Overall, while the business model and website content are clear and professional, the security and compliance posture require improvement to enhance trust and regulatory adherence.

K

Kõnelev Trumm OÜ

eksootika.ee

0

The website eksootika.ee represents a small Estonian e-commerce business named Kõnelev Trumm OÜ, specializing in exotic goods sourced from various Asian countries such as India, Indonesia, Thailand, and Nepal. The site offers a range of products including ethnic musical instruments, semi-precious stones, incense, clothing, and jewelry. The business targets consumers interested in unique Asian cultural products and operates primarily through an online store with additional wholesale options. The website is built on the Voog CMS platform, leveraging Voog's e-commerce capabilities, and integrates modern JavaScript libraries and Google Analytics for tracking and marketing purposes. Hosting is provided by Zone Media OÜ, consistent with the domain registration data.

W

Wine Library

winelibrary.com

0

Wine Library is a well-established online retailer specializing in wines, spirits, beer, and gourmet products. Founded in 1997, it has built a strong market presence in the United States with a medium-sized operation focused on e-commerce. The website offers a rich user experience with curated wine selections, expert ratings, wine clubs, and educational content, targeting wine enthusiasts and consumers seeking quality alcoholic beverages online. The business model centers on direct online sales complemented by subscription wine clubs and marketing via email and social media channels. Technically, the website leverages a modern technology stack including Ruby on Rails, Google Analytics, Facebook Pixel, and Cloudflare DNS/CDN services. The site is mobile-optimized with good SEO practices and uses several third-party marketing and analytics tools. Performance is moderate, with room for improvement in accessibility and some technical SEO aspects. From a security perspective, the site enforces HTTPS, uses CSRF tokens, and implements secure forms. However, it lacks DNSSEC, explicit security headers, and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, Wine Library presents a credible, professional, and secure online retail platform with minor gaps in privacy compliance and security transparency. Strategic improvements in cookie consent, security headers, and incident response disclosure would enhance trust and compliance.