Security Directory

S

Sigma Technology Group

sigmatechnology.com

0

Sigma Technology Group is a well-established global technology company founded in 1999, specializing in software and embedded systems development, IT infrastructure, cloud services, and digital transformation. The company targets businesses seeking advanced digital and engineering solutions, positioning itself as a trusted partner with a strong presence in Sweden and international offices. Their key services include software development, AI consulting, DevOps, cloud technology, and automotive solutions, supported by a professional and comprehensive online presence. Technically, the website is built on WordPress with modern JavaScript libraries and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no exposed sensitive data, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website reflects a high level of professionalism, trustworthiness, and business credibility.

Elva Sport is a local sports and culture organization serving the Elva municipality in Estonia. The website provides information about sports facilities, training, events, and community engagement, with a focus on children and youth sports as well as outdoor activities. The organization appears to be a public or non-profit entity, founded around 2019, with a clear local community focus. Technically, the website is built on WordPress using common plugins such as MonsterInsights for analytics and GDPR Cookie Compliance for privacy management. The site is moderately performant, mobile-optimized, and uses HTTPS with a good SSL configuration. Security practices are adequate but could be improved by adding security headers and explicit security policies. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy page in Estonian. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and serves its community purpose effectively.

V

Visit Elva

visitelva.com

0

Visit Elva operates as a regional tourism information portal focused on promoting the Elva area in Estonia. The website provides visitors with information on local attractions, events, accommodation, dining, and active leisure opportunities. It targets tourists and visitors seeking authentic experiences in the Elva region, positioning itself as a key resource for regional tourism promotion. The business model centers on providing curated content and event promotion to enhance visitor engagement and regional visibility. Technically, the website is built on WordPress using the Elementor page builder, leveraging modern web technologies such as jQuery, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. Hosting and domain registration are consistent with the business location and purpose. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks DNSSEC and advanced security headers, which could enhance its security posture. No explicit security policies or incident response contacts are published, indicating room for improvement in transparency and readiness. Overall, Visit Elva presents a professional and trustworthy online presence with solid content and technical foundations. Strategic enhancements in security policies, DNS security, and incident response disclosures would further strengthen its risk management and compliance posture.

E

Elva Kultuur

elvakultuur.ee

0

Elva Kultuur is a local government cultural portal serving the Elva municipality in Estonia. The website consolidates information about various cultural institutions and events within the municipality, targeting residents and visitors interested in cultural activities. It provides event calendars, news updates, and detailed pages for multiple cultural houses and centers. The site is positioned as an official source for cultural information in the region, supported by local government entities.

E

Elva valla haridus- ja kultuuriosakond

elvaraamatukogud.ee

0

Elva valla raamatukogud is a local government cultural and educational platform serving the Elva municipality in Estonia. The website provides information about local libraries, events, news, and instructions for using book lockers. It targets local residents and library users, operating as a public service to promote cultural engagement and library cooperation. The site is modest in scale, reflecting a small-sized government entity with a focus on community services. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Modernizr, and LazySizes for responsive images and feature detection. The site is hosted under the registrar Zone Media OÜ, with a domain age consistent with the business history. Performance is moderate with good mobile optimization and basic accessibility and SEO features. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and formal security policies. No privacy or cookie policies are present, which is a compliance gap especially under GDPR. The site uses Google Analytics for tracking without visible consent mechanisms. Contact information is limited to an official email and physical address, with no phone numbers or incident response contacts. Overall, the website is trustworthy and professionally maintained for its purpose but requires improvements in privacy compliance, security headers, and user data protection policies to enhance its security posture and regulatory adherence.

K

Kambja vald

kambja.ee

0

Kambja vald is a municipal government entity serving the Kambja region in Estonia, providing a broad range of public services, community news, and administrative information to its residents. The website serves as an official portal for local governance, social services, education, culture, and infrastructure-related information. It targets local residents and stakeholders, offering access to documents, contact details, and event calendars. The business model is typical for a government authority, focusing on service provision rather than commercial activities. Technically, the website is built on the Liferay CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and FontAwesome. It integrates third-party services like Google Analytics and Facebook SDK for analytics and social media functionalities. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technologies like jQuery are outdated, which could pose security risks. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. There is no evidence of advanced security headers or explicit security policies and incident response information publicly available. The use of outdated libraries and lack of visible security headers suggest room for improvement in security posture. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is a credible and professional government portal with good content quality and business credibility. Strategic recommendations include updating outdated libraries, implementing security headers, and publishing explicit security and incident response policies to enhance trust and compliance.

Sigma Technology Origo is a Sweden-based technology consulting company specializing in connecting business-critical information sources to empower data-driven decision making and personalized experiences. The company offers a range of services including Aftersales Digital Twin, Workshop solutions, Diagnostics, Renderpoint/Topicpack, and a cloud-based CCMS platform called Studio. It operates as part of the Sigma Technology Group, a global technology consulting firm with a presence in multiple countries and owned by Danir AB. The website content is professional and clearly targets businesses seeking advanced technology and digital solutions. Technically, the website uses standard web technologies such as HTML5, CSS, and JavaScript with jQuery, and is moderately optimized for mobile and performance. Security posture is moderate with HTTPS assumed but lacking explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain is well-established and trustworthy, with no blocking or WAF detected.

I

Itula Oy

itula.fi

0

Itula Oy is a Finnish company specializing in energy-efficient heating and cooling systems, including innovative ceiling radiant panels and floor heating solutions. Established in 1999, Itula holds a strong market position as a pioneer in its sector within Finland, offering both products and expert consulting services from project planning to implementation. The company emphasizes energy efficiency and indoor climate quality, targeting business clients in construction, industrial, and residential markets. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating a mature digital presence. Security measures include HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though additional security headers and policies could enhance protection. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a credible and established business.

A

Aermec S.p.A.

aermec.com

0

Aermec S.p.A. is a well-established international company specializing in air conditioning solutions and green technologies. The company positions itself as a leading global brand with a broad international presence, supported by multiple subsidiaries across Europe, North America, and Latin America. The website reflects a professional corporate identity with multilingual support and clear business information, targeting international customers and partners in the energy and HVAC sectors. Technically, the website is built on WordPress with common plugins and libraries, offering a moderate performance and good mobile optimization. However, there is room for improvement in accessibility and security headers implementation. Security posture is adequate with HTTPS implied, but lacks explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible and functional but would benefit from enhanced security and privacy transparency.

R

Refrion

refrion.com

0

Refrion is a leading company specializing in industrial refrigeration and ventilated equipment for industrial use worldwide. As part of the LU-VE Group, it holds a strong market position in the energy and manufacturing sectors, offering a range of products including dry coolers, condensers, and batteries. The website reflects a professional B2B business model targeting industrial clients requiring advanced cooling solutions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates key marketing and analytics tools such as Google Analytics and Cookiebot for privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is well-structured, mobile-optimized, and SEO-friendly, supporting a good user experience and trustworthiness. The lack of WHOIS data for the subdomain is consistent with it being a subdomain of luvegroup.com, which aligns with the corporate structure. Strategic recommendations include enhancing security headers, expanding contact information visibility, and maintaining compliance with evolving privacy regulations.

SODECA is an international manufacturer specializing in industrial ventilation solutions, including smoke exhaust, tunnel ventilation, and pressurisation systems for staircases and evacuation routes. The company supports its product offerings with technical consulting and digital tools such as product selectors and CAD models, targeting industrial clients and engineering firms globally. The website is professionally designed, multilingual, and provides comprehensive product and corporate information, reflecting a mature business presence. Technically, the website employs modern frameworks like Bootstrap and FontAwesome, integrates Google Analytics for user insights, and implements a cookie consent mechanism aligned with GDPR requirements. The site is mobile-optimized and offers good SEO and accessibility features, although some security headers are missing. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site shows good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data for the domain is a notable concern, reducing trustworthiness and suggesting the need for further verification. Overall, SODECA presents a solid digital presence with good security and privacy compliance but should address WHOIS transparency and enhance security headers to improve trust and resilience.

Airvent Légtechnikai Zrt. is a well-established Hungarian manufacturer specializing in innovative ventilation and air handling products. Founded in 1999, the company offers a broad portfolio of HVAC-related products and services, including design support, customer service, and commissioning. Their market position is solid within Hungary and surrounding regions, targeting professional customers in industrial and residential ventilation sectors. The website reflects a mature digital presence with multilingual support and detailed product information. Technically, the site employs modern tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, with secure HTTPS and CSRF protections on forms. However, explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is strong, with clear cookie and privacy policies and consent mechanisms. Overall, the site is professional, secure, and trustworthy, supporting the company's credibility and business operations.

Rogue Fish Media operates as a digital real estate business specializing in the sale and leasing of premium domain names. The website presents a portfolio of high-value domains but lacks detailed business information, contact details, or compliance documentation. Technically, the site is built using Dynadot's website builder platform and includes common web technologies such as jQuery, FontAwesome, and Google Analytics. However, the use of an outdated jQuery version and absence of visible security headers or HTTPS status raise concerns about security maturity. The WHOIS data is notably absent, which undermines domain legitimacy and trust. Privacy and cookie policies are missing, indicating poor compliance with data protection regulations. Overall, the site provides basic content with moderate technical implementation but lacks critical security and compliance features.

S

Siemens AG

c2comms.cloud

0

The website c2comms.cloud is a minimal placeholder or landing page associated with Siemens AG, a large multinational technology and industrial company headquartered in Germany. The domain is relatively new, registered in late 2022, and uses AWS infrastructure for DNS and real user monitoring. The site content is minimal with no visible business descriptions, contact information, or interactive elements. Footer links point to Siemens corporate legal and privacy pages, confirming corporate ownership. The technical infrastructure is modern but basic, with no CMS or advanced frameworks detected. Security posture is adequate with HTTPS and domain transfer protection but lacks DNSSEC and security headers. Privacy compliance is supported by links to comprehensive Siemens policies but lacks on-site consent mechanisms. Overall, the site appears legitimate but underdeveloped, likely serving as a technical or internal platform rather than a customer-facing portal.

G

Global Water Partnership Organisation Gwpo

gwpo-gwp.org

0

The Global Water Partnership Organisation (GWPO) operates as a global action network focused on advancing water governance and climate-resilient investments to promote sustainability and equity. The website presents basic information about the organization's mission and target audience, primarily stakeholders interested in water governance and climate resilience. The business model is that of a non-profit global network with a medium organizational size and a founding year indicated as 2025, which appears inconsistent with the organization's global positioning. Technically, the website is built using the Weblium platform, employing standard web technologies such as HTML5, CSS, and JavaScript. Hosting is provided by Loopia, with no advanced frameworks or analytics tools detected. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks DNSSEC and security headers, which are important for enhancing domain and web security. There is no visible security policy, incident response information, or vulnerability disclosure mechanisms. The WHOIS data raises concerns due to a domain creation date set in the future (2025), which is unusual and undermines trust in the domain's legitimacy. Overall, the website provides basic content and functionality but lacks critical privacy, security, and compliance features. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing privacy and cookie policies, and clarifying domain registration details to improve trustworthiness and compliance.

The website linnuriik.ee serves as an informational and promotional platform focused on birdwatching and nature tourism in Matsalu National Park, Estonia. It provides detailed descriptions of bird species, observation towers, hiking trails, and virtual tours, targeting nature enthusiasts and tourists interested in the region. The site is operated by the Foundation of Lääne County and funded by the European Regional Development Fund, indicating a regional public interest focus. Technically, the website is built on WordPress using a modern tech stack including popular plugins like Yoast SEO, WPBakery Page Builder, and Slider Revolution. The site is hosted under the registrar Zone Media OÜ, an Estonian entity, with HTTPS enabled and good SEO practices implemented. Mobile optimization and accessibility are adequate, though some improvements could be made. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks DNSSEC and important security headers, and does not publish explicit security or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. Overall, the website is a well-maintained regional informational resource with good business credibility but requires enhancements in privacy compliance and security best practices to improve trust and regulatory adherence.

V

Visit Haapsalu

visithaapsalu.com

0

Visit Haapsalu is a regional tourism promotion website focused on Haapsalu and Läänemaa in Estonia, targeting tourists including families, couples, and health seekers. The site provides comprehensive travel information, event listings, guided tours, and recommendations for accommodation and dining. It positions itself as a key regional tourism information portal with a consistent brand and active social media presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating Google Analytics for visitor tracking. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are missing and no explicit cookie consent mechanism is present. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional website content. Overall, the site is functional, informative, and trustworthy for visitors but would benefit from enhanced transparency and security practices.

E

Ettevõtlusnädal 2025

ettevotlusnadal.ee

0

Ettevõtlusnädal 2025 is a prominent Estonian nationwide entrepreneurship event organized annually by regional development centers to foster entrepreneurial spirit and support business startups. The website serves as an information hub for event programs, regional trainings, and inspirational content targeting entrepreneurs and aspiring business owners. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and security, including Google Tag Manager and reCAPTCHA. The site is well-optimized for mobile and SEO, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the site reflects a trustworthy and professional digital presence for a non-profit event organization.

T

Tartumaa Omavalitsuste Liit

tartumaa.ee

0

Tartumaa Omavalitsuste Liit is a regional governmental association representing municipalities in Tartu County, Estonia. The organization focuses on local governance, regional cooperation, education, welfare, culture, and strategic development. Their website serves as an information hub for residents, officials, and partners, providing news, event updates, and resources relevant to the county's municipalities. The association operates as a non-profit entity with a clear regional focus and a small organizational size. Technically, the website is built on the Voog CMS platform and utilizes modern web technologies including jQuery, Vue.js, Axios, Google Fonts, and Google Maps API. The site is mobile-optimized with a clear navigation structure and moderate performance. Security measures include HTTPS enforcement and Google reCAPTCHA integration on the contact form, though additional security headers and policies could enhance the security posture. From a security perspective, the site shows good baseline practices but lacks comprehensive privacy and cookie policies, as well as vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's governmental nature, supporting legitimacy and trustworthiness. Overall, the website is professional, trustworthy, and serves its intended audience effectively. However, improvements in privacy compliance and security hardening are recommended to align with best practices and regulatory requirements.

The website tartu2024.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha to verify visitors as human. This indicates a strong security posture at the perimeter but prevents content analysis. The domain is registered since 2018 with Telia Eesti AS, a reputable Estonian registrar, consistent with the domain's country context. No business, contact, or policy information is visible on the landing page, limiting insights into the organization's operations or compliance status. The technical infrastructure leverages Cloudflare's security and analytics services, but no CMS or other technologies are detectable due to blocked content. Overall, the site appears to be protected but lacks publicly accessible content for detailed evaluation.

S

Solo Build It!

sitesell.com

0

Solo Build It! (SBI!) is an online platform focused on enabling solopreneurs to build profitable online businesses rather than just websites or blogs. The platform targets individual entrepreneurs seeking comprehensive tools and guidance to establish and grow their online presence. The website is professionally designed with good SEO and mobile optimization, leveraging modern web technologies and third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity. However, the absence of WHOIS registration data and domain ownership details introduces uncertainty regarding domain legitimacy. Security posture is weak due to lack of visible security headers and absence of explicit privacy or cookie policies, which also impacts privacy compliance. Overall, the site presents a moderate risk profile with room for improvement in transparency and security.

V

Veinitee.ee

veinitee.ee

0

Veinitee.ee is a small Estonian hospitality business focused on promoting local wineries and wine tourism through a collaborative network of producers. The website serves as a portal to explore various wine routes and wineries across Estonia, targeting wine enthusiasts and tourists. The business is relatively new, founded in 2022, and leverages modern web technologies including WordPress with the Divi theme and Yoast SEO for content management and search optimization. The site integrates Google Tag Manager and Analytics for visitor tracking but lacks visible privacy and cookie policies, which impacts compliance. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but could be improved with enhanced security headers and incident response information. Overall, the website is professionally designed with good content relevance and navigation, though privacy compliance and explicit contact details could be enhanced to improve trust and regulatory adherence.

W

Discover the beauty of vineyards and indulge in exquisite wine experiences with WineTourism.com. Plan your perfect winery adventure today! | Winetourism.com

winetourism.com

0

WineTourism.com is an online platform dedicated to providing information and planning tools for wine tourism enthusiasts. The website offers resources to discover local wineries, learn about wine regions, and plan winery adventures. It targets wine lovers and travelers interested in wine experiences, positioning itself as a niche hospitality service provider. The platform uses modern web technologies including Google Tag Manager, Google Analytics, and Font Awesome, ensuring a visually appealing and moderately optimized user experience. Mobile responsiveness and SEO practices are adequately implemented, contributing to good content accessibility and navigation. Security posture is moderate with HTTPS enabled and cookie consent mechanisms in place; however, the absence of security headers and explicit privacy policies indicates room for improvement. The lack of WHOIS registration data raises concerns about domain legitimacy and business credibility, which impacts overall trust. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact and incident response information to improve compliance and user trust.

P

Peace and Sport

april6.org

0

April6.org is a professionally designed website representing the International Day of Sport for Development and Peace, an initiative by the non-profit organization Peace and Sport based in Monaco. The site serves as a platform to promote awareness, mobilize organizations and individuals, and share impactful stories related to sport's role in peacebuilding and sustainable development. It features multilingual support, partner endorsements, and calls to action including donations and toolkit downloads. Technically, the site is built on WordPress using the Divi theme, integrates Google Analytics for tracking, and uses Mailjet for newsletter subscriptions. The website is well-structured with good SEO practices and mobile optimization, though it lacks explicit privacy and cookie policies, which impacts privacy compliance scoring. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but security headers are not explicitly detected. WHOIS data is unavailable due to privacy protection or query failure, which limits domain trust transparency but is not uncommon for non-profit organizations. Overall, the site is credible, functional, and serves its advocacy purpose effectively.

The website www.isca-web.org currently presents only minimal placeholder content with no meaningful information, metadata, or business details. The lack of WHOIS data and absence of security or privacy policies indicate a very low digital maturity and poor trustworthiness. There is no evidence of active business operations or user engagement features. Technically, the site lacks HTTPS and security headers, which exposes it to security risks and reduces user confidence. Overall, the site appears inactive or under construction, with critical gaps in security, compliance, and business transparency.

E

Eurochild AISBL

eurochild.org

0

Eurochild AISBL operates as the largest network of organizations and individuals dedicated to child rights advocacy across Europe. Founded in 2003 and headquartered in Belgium, Eurochild focuses on influencing policies, building civil society capacity, and facilitating knowledge exchange underpinned by the UN Convention on the Rights of the Child. The website reflects a mature digital presence with a WordPress CMS, modern front-end libraries, and a moderate performance profile. Security posture is strong with HTTPS enforced, reCAPTCHA integration, and GDPR-compliant cookie consent, though improvements are recommended in DNSSEC and security headers. Overall, the organization demonstrates high legitimacy and trustworthiness with consistent WHOIS data and active social media engagement.

E

European University Sports Association

eusa.eu

0

The European University Sports Association (EUSA) is a well-established non-profit organization dedicated to promoting and organizing university sports across Europe. The website reflects a professional and comprehensive platform showcasing their events, projects, partnerships, and media presence. Their market position is strong, supported by numerous official partnerships with European institutions and sports federations. The target audience includes European universities, student athletes, and sports organizations. The business model revolves around organizing championships, games, and educational projects, supported by sponsorships and partnerships. Technically, the website is built on the Lytee CMS platform, utilizing modern JavaScript libraries such as Slick Slider and lazy loading for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured data. The presence of Google and Microsoft site verification tags indicates attention to search engine indexing and webmaster tools. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, there is a lack of explicit security policies, incident response information, and security headers which could enhance the security posture. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is privacy-protected as per EURid policies, which is justified for this type of organization. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include publishing security and incident response policies, adding security headers, and providing a vulnerability disclosure channel to further strengthen trust and security maturity.

C

CoreIT

coreit.se

0

CoreIT is a Swedish IT company providing a comprehensive range of IT services targeting businesses and organizations. The website is built on a modern WordPress platform using Elementor, indicating a moderate level of digital maturity. The site features good design quality, mobile responsiveness, and SEO optimization, supporting a positive user experience. However, the absence of WHOIS data for the exact domain queried limits the ability to fully verify domain legitimacy and business registration details. Security posture is moderate with no visible advanced security headers or policies, and privacy compliance is weak due to missing privacy and cookie policies. Tracking technologies such as Facebook Pixel and LinkedIn Insight are used, indicating moderate user tracking. Overall, the website presents a professional front but would benefit from enhanced transparency and security practices.

S

Streamify AB

streamify.io

0

Streamify AB operates a specialized live shopping platform designed to enhance e-commerce customer engagement and conversion rates through live video streaming technology. The company targets online retailers and brands seeking to leverage interactive live shopping experiences. Founded in 2017 and based in Sweden, Streamify has established a solid market presence with notable clients and a comprehensive SaaS offering that includes mobile recording apps, product synchronization, replay capabilities, and integrated analytics. Technically, the website employs modern web technologies including Google Tag Manager, HubSpot, and LinkedIn Insight tags, with a focus on performance and mobile optimization. The platform uses HTTPS and implements cookie consent mechanisms, reflecting a good level of privacy compliance. However, explicit security headers and published security policies are absent, indicating room for improvement in security transparency. From a security perspective, the site demonstrates a mature posture with secure forms and encrypted connections but lacks published incident response or vulnerability disclosure information. The absence of public WHOIS data due to privacy protection is common for commercial SaaS businesses and does not detract from the site's legitimacy. Overall, Streamify presents a professional, trustworthy digital presence with moderate technical sophistication and good privacy practices. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and expanding direct contact information to improve trust and compliance. These steps will strengthen the company's security posture and customer confidence while supporting continued growth in the competitive live shopping market.

C

Cleverec AB

cleverec.se

0

Cleverec AB operates a specialized SaaS platform called Cleverservice, designed to streamline referee assignments, digital receipts, payments, and tax reporting for sports associations primarily in Sweden. The company has an established market presence since 2014, focusing on a niche segment with tailored services for associations and referees. The website is built on WordPress with the Divi theme, incorporating modern web technologies and analytics tools such as Google Analytics and Google Tag Manager. The site demonstrates good content quality, clear navigation, and mobile optimization, supporting a positive user experience. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements such as enabling DNSSEC and additional security headers are recommended. Privacy compliance is well addressed with a dedicated GDPR page and cookie policy. Overall, the website reflects a professional and trustworthy digital presence aligned with the company's business objectives.

V

Varsego Sverige AB

varsego.se

0

Varsego Sverige AB is a well-established Swedish wholesale distributor specializing in ice cream, beverages, confectionery, protein products, fast food, and bakery items. Operating since 2009, the company serves wholesale customers across 22 localities in Sweden, offering a broad portfolio of market-leading brands such as GB Glace. Their business model focuses on providing local service and delivery with an online ordering platform that supports customer convenience and operational efficiency. The website reflects a mature digital presence with good content quality, clear navigation, and mobile optimization. Technically, the website is built on modern frameworks including ASP.NET Core and Litium CMS, leveraging Cloudflare for DNS and security services. The site integrates Google Tag Manager and CookieTractor for analytics and cookie consent management, respectively. Performance is moderate with good SEO and basic accessibility features. Security posture is strong with HTTPS enforced, security headers present, and anti-forgery protections in place, although DNSSEC is not enabled. Privacy compliance is well addressed with visible privacy and cookie policies, GDPR compliance indicators, and consent mechanisms. Contact information is clearly presented, enhancing business credibility. However, the site lacks explicit security or incident response policies and does not publish a vulnerability disclosure or security.txt file, which could improve transparency and trust. Overall, Varsego.se demonstrates a professional, secure, and compliant online presence suitable for its wholesale business. Strategic improvements in DNS security and explicit security policy publication are recommended to further enhance trust and resilience.

Riga Hockey Cup is a youth ice hockey tournament organizer based in Latvia, providing a platform for various age groups to compete in a well-structured European championship. The website offers multilingual support and comprehensive event information, targeting youth hockey teams, coaches, and fans. The digital infrastructure leverages common web technologies such as jQuery, Fancybox, and social media integrations, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers and explicit incident response policies are absent. Privacy compliance is basic with a privacy policy and cookie consent implemented, reflecting GDPR awareness. The absence of WHOIS data limits domain legitimacy verification, but the site appears professional and trustworthy overall.

Cuper.se is a Swedish online platform serving as the country's largest and most comprehensive cup register for sports tournaments, primarily targeting sports clubs and event organizers. The service offers free registration of cups, tournaments, and series, enhancing visibility for organizers both within the platform and via search engines. The website is operated by CoreIT, a Swedish technology company, and integrates with partner services such as CupOnline for tournament administration and live result reporting. The platform holds a strong market position within its niche in Sweden, supported by a domain with a long history dating back to 2005. Technically, the website is custom-built, leveraging modern web technologies such as Material Icons, Google Fonts, and JavaScript libraries including Modernizr. The site is mobile-optimized with good navigation and SEO practices, though it lacks a CMS and some advanced accessibility features. Performance is moderate, and the site uses Google Tag Manager and Google Analytics for user tracking, with a cookie consent mechanism in place to comply with GDPR requirements. From a security perspective, the site uses HTTPS but lacks DNSSEC and advanced security headers, which could be improved to enhance DNS and web security. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and Terms of Service pages indicates room for maturity in security governance and compliance documentation. Overall, Cuper.se presents a trustworthy and functional service with a solid business foundation and technical implementation. Strategic improvements in security policies, DNS security, and compliance documentation would further strengthen its risk posture and user trust.

S

SiteSpeakAI

sitespeak.ai

0

SiteSpeakAI is a technology startup founded in 2023 that offers an AI-powered customer support chatbot builder. Their platform enables businesses to create custom-trained GPT-like AI agents that can be deployed across multiple platforms including websites, Slack, Telegram, and Discord to reduce support tickets and improve user experience. The company positions itself as an innovative provider in the AI customer support automation market, targeting businesses seeking to automate and enhance their customer service operations. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates analytics via PostHog and New Relic, and uses Cloudflare for DNS services, indicating a mature and performant digital infrastructure. Security-wise, the site enforces HTTPS and uses domain transfer protection, but lacks visible security policies, privacy and cookie policies, and incident response information, which are areas for improvement. Overall, the website is professional and functional but would benefit from enhanced transparency and compliance documentation to improve trust and privacy posture.

Y

Young Reporters for the Environment

yre.global

0

Young Reporters for the Environment (YRE) is a well-established international non-profit program operated by the Foundation for Environmental Education, focused on empowering youth aged 11-25 to investigate and report on environmental issues globally. The website serves as a platform for education, competitions, and community engagement, leveraging multimedia content and social media channels to reach its audience. Technically, the site is built on Squarespace with integrations such as Google Analytics and YouTube embeds, providing a modern and responsive user experience. Security posture is strong with HTTPS and HSTS enabled, though additional security headers could enhance protection. Privacy compliance is evident with clear GDPR and cookie policies including consent mechanisms. Overall, the site demonstrates a professional and trustworthy presence consistent with its non-profit mission.

F

Foundation for Environmental Education

leaf.global

0

The website www.leaf.global represents the Learning about Ecosystems and Forests (LEAF) programme, operated by the Foundation for Environmental Education, a registered non-profit organization focused on environmental education. LEAF promotes outdoor learning and ecosystem restoration education globally, with implementation in 28 countries and recognition by HundrED’s Global Collection 2024. The site provides educational resources, campaigns, and online courses via the FEE Academy platform. Technically, the site is built on Squarespace, uses modern web technologies, and integrates Google Analytics and Stripe for analytics and payment processing. Security posture is strong with HTTPS and HSTS enabled, no exposed sensitive data, and secure forms. Privacy compliance is well addressed with GDPR-compliant cookie and privacy policies. However, WHOIS data is unavailable due to privacy protection, which is justified for this non-profit entity. Overall, the site is professional, trustworthy, and well-maintained, serving a global educational mission.

F

Foundation for Environmental Education

ecoschools.global

0

Eco-Schools is a globally recognized environmental education programme operated by the Foundation for Environmental Education, engaging millions of students across over 100 countries. The website serves as a comprehensive resource hub offering educational materials, news, events, and online courses to support sustainability education. Technically, the site is built on Squarespace, leveraging modern web technologies and analytics tools, providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS and HSTS enabled, though additional security headers could enhance protection. Privacy compliance is well addressed with clear GDPR and cookie policies. The absence of WHOIS data limits domain trust verification but does not detract significantly from the overall legitimacy given the organization's established reputation and transparent content.

F

Foundation for Environmental Education

blueflag.global

0

Blue Flag is a globally recognized eco-label program operated by the Foundation for Environmental Education, a registered non-profit organization based in Denmark and England. The website serves as an informational and educational platform promoting sustainable tourism, environmental education, and certification of beaches, marinas, and boats. The organization maintains a strong market position as a leader in voluntary environmental awards with a global network of partners and national operators. Technically, the website is built on Squarespace, leveraging modern web technologies and ensuring secure HTTPS connections with HSTS enabled. Privacy and cookie policies are comprehensive and GDPR compliant, though terms of service and incident response contacts are absent. Social media presence and sustainability policy documents enhance trust and transparency. Overall, the site demonstrates good content quality, technical implementation, and security posture, suitable for its non-profit mission and audience.

T

Tervise Paradiis

terviseparadiis.ee

0

Tervise Paradiis is a well-established 4-star spa hotel and water center located in Pärnu, Estonia, offering a comprehensive range of leisure and wellness services including accommodation, water park facilities, sports complex, bowling, and dining options. The business targets spa and wellness tourists, families, and leisure travelers, positioning itself as a leading hospitality provider in the region. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress CMS, leveraging modern SEO tools and cookie consent management, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks some advanced security headers and published security policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in privacy compliance and security transparency would enhance trust and compliance.

The website ronangelo.com is currently inaccessible due to a Cloudflare security block page preventing content access. As a result, no direct business information, contact details, or policies are available for analysis. The domain is registered since 2012 with Cloudflare, Inc. as the registrar, indicating a mature and legitimate registration. However, the lack of accessible content severely limits the ability to assess the company's business model, services, or market position. The technical infrastructure includes Cloudflare protection, but no further details on hosting or CMS are available. Security posture cannot be fully evaluated due to the block, but the presence of Cloudflare WAF suggests some level of protection. Overall, the site is currently not analyzable beyond domain registration data, and the security block significantly reduces the confidence in content and compliance assessments.

Talsu Kultūras centrs is a local cultural institution based in Talsi, Latvia, focused on organizing and promoting cultural events, exhibitions, and community activities. The website serves as an information hub for upcoming events and cultural programs, targeting residents and visitors interested in local culture and amateur arts. The business model is that of a public cultural center, supporting cultural policy implementation and community engagement. Technically, the website is built on WordPress 6.8.1 with common plugins and uses Google Tag Manager for analytics. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and no visible privacy or cookie policies, which impacts compliance and user trust. WHOIS data could not be retrieved, limiting domain legitimacy verification. Overall, the site is functional and informative but would benefit from enhanced security and privacy compliance measures.

T

Trinidad Wiseman OÜ

twn.ee

0

Trinidad Wiseman OÜ is an Estonian technology company specializing in human-centered digital services including software development, business analytics, machine learning, user experience design, accessibility audits, and training. The company holds a strong market position with over 20 years of experience, more than 140 specialists, and a significant number of successful public sector projects. Their business model focuses on service delivery to public and private sector clients, emphasizing professionalism, autonomy, and user-centric solutions. Technically, the website is built on Drupal 10 with modern frontend technologies and integrates Cookiebot for privacy compliance. The site is well-optimized for mobile and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, although explicit security policies and incident response information are not published. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements, supporting the company's credible market presence.

The website ilmateenistus.ee is currently inaccessible due to a Cloudflare Turnstile security challenge that blocks automated access and requires human verification. This prevents retrieval of actual website content, including business descriptions, policies, and contact information. The domain is registered since 2013 with an Estonian registrar, indicating a stable and legitimate presence. The technical infrastructure relies on Cloudflare services for security and performance. Due to the blocking, no privacy, cookie, or terms of service policies are detectable, and no contact or business details are accessible. The security posture is strong in terms of WAF protection but limits content visibility for analysis. Overall, the site’s risk assessment is limited by lack of accessible data, and the AI score is capped low due to blocking.

F

Fibes

eatfibes.com

0

Fibes is a small Estonian e-commerce business specializing in functional fruit purees rich in dietary fibers, targeting active individuals seeking digestive health support. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party integrations for customer reviews, analytics, and marketing. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and domain transfer lock, though improvements such as enabling DNSSEC and publishing comprehensive privacy and terms policies are recommended. Overall, the business appears legitimate and digitally mature for its size and market niche.

K

Keep.eu

keep.eu

0

Keep.eu is a specialized platform providing aggregated information on Interreg and IPA-IPA cross-border projects, partners, and programmes. It serves governmental and non-profit organizations involved in cross-border cooperation by consolidating operational and financial data in one accessible location. The website leverages a WordPress CMS with modern JavaScript libraries and integrates Google services such as Maps and Analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks comprehensive privacy and security policies, which are critical for compliance and trust. Overall, the platform is functional and professionally presented but would benefit from enhanced transparency and security documentation.

S

Sport For One Humanity

sportforonehumanity.org

0

Sport For One Humanity is a non-profit initiative launched in 2022 by Turkish Airlines with support from the United Nations Alliance of Civilizations (UNAOC). The initiative focuses on empowering grassroots organizations that use sport as a tool for peace, development, and social inclusion. The website presents a professional and consistent brand image, highlighting capacity-building, mentorship, and visibility services for civil society organizations worldwide. Technically, the site is built on WordPress using the Divi theme and several plugins, hosted on Quadranet servers, and secured with HTTPS. However, it lacks published privacy and cookie policies, security headers, and explicit contact information, which are important for compliance and trust. No WAF or blocking mechanisms were detected, and the site content is fully accessible.

U

United Nations Alliance of Civilizations (UNAOC) in partnership with BMW Group

interculturalleaders.org

0

InterculturalLeaders.org is a non-profit digital platform established in 2013 as a partnership between the United Nations Alliance of Civilizations (UNAOC) and the BMW Group. It serves as a skills and knowledge-sharing hub for civil society organizations and young leaders focused on intercultural dialogue and addressing cross-cultural tensions. The platform offers networking, training, mentorship, and funding opportunities to its community, positioning itself as a niche but credible player in the non-profit sector dedicated to peacebuilding and social inclusion. Technically, the website is built on WordPress 5.1.19 and leverages common web technologies such as jQuery, Bootstrap, Font Awesome, and Google reCAPTCHA for form security. Hosting is managed via Quadranet, and the site enforces HTTPS with a Content Security Policy header. While the site is mobile-optimized and has a professional design, some accessibility and SEO features are basic. Analytics usage includes Google Analytics and Facebook SDK, indicating moderate user tracking without explicit cookie consent mechanisms. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and CAPTCHA on forms but lacks advanced security headers and DNSSEC. No exposed sensitive data or vulnerabilities were detected in the HTML content. The WHOIS data shows privacy protection typical for non-profit organizations, with domain age consistent with the business history, supporting legitimacy. Overall, the website is a credible and professionally maintained platform with moderate technical maturity and security posture. However, it lacks explicit privacy and cookie policies, which impacts privacy compliance scores. Strategic improvements in security headers, privacy disclosures, and cookie consent would enhance trust and compliance.

T

The Intercultural Innovation Hub

interculturalinnovation.org

0

The Intercultural Innovation Hub is a non-profit initiative established in 2011, operating as a partnership between UNAOC and the BMW Group. It focuses on supporting innovative grassroots projects that promote intercultural dialogue and cooperation globally. The website presents a professional and consistent brand image with good content quality targeting changemakers and organizations interested in social innovation. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and Facebook Pixel, hosted on Quadranet servers. Mobile optimization and SEO practices are well implemented, though accessibility is basic. Security posture is moderate with HTTPS enabled and domain protection in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security disclosures.