Security Directory

The website rara.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, which blocks direct access to the site's content. This prevents extraction of business, contact, or policy information. The domain is registered with a legitimate Estonian registrar, Zone Media OÜ, and was created in 2021, indicating a relatively new but legitimate domain. The technical infrastructure relies heavily on Cloudflare services for security and performance. Due to the blocking, no privacy, cookie, or terms of service policies are visible, and no contact information or business details can be confirmed. The overall website quality and content presence cannot be assessed beyond the challenge page.

E

Eesti Kirjanduse Selts

raamatuaasta.ee

0

The website raamatuaasta.ee is a professionally designed cultural and educational platform dedicated to celebrating 500 years of Estonian books and language. It is supported by key Estonian governmental and cultural institutions and targets a broad audience including the general public, educators, students, and cultural enthusiasts. The site offers extensive event listings, exhibitions, and educational programs, reflecting a strong national cultural initiative. Technically, the site uses modern frameworks like SvelteKit, integrates Google Maps API for event locations, and is hosted with Cloudflare DNS, ensuring good performance and security basics. However, it lacks published privacy and cookie policies, which are critical for GDPR compliance. Security posture is solid with HTTPS but could be improved with additional security headers and incident response information. Overall, the site is trustworthy and credible, with a clear business model as a government-supported cultural project.

K

Knowledge Integration

k-int.com

0

Knowledge Integration is a UK-based software development company specializing in creating innovative solutions for complex problems, primarily serving cultural, educational, and heritage sectors. Their offerings include implementation, custom development, R&D, UX design, and support services. The company maintains a professional online presence with a well-structured website and a portfolio showcasing reputable clients. Technically, the website is built on WordPress with modern libraries and plugins, optimized for mobile and SEO, and includes privacy and cookie consent mechanisms indicating GDPR compliance. Security posture is generally good with HTTPS enforced, but lacks some HTTP security headers and formal security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the active business presence and contact information mitigate some risk. Overall, the website scores well in content quality, technical implementation, and business credibility but should address domain registration transparency and enhance security headers.

E

E-varamu

e-varamu.ee

0

E-varamu is a key Estonian cultural heritage digital platform that aggregates materials from multiple datasets and integrates with the Europeana digital library. It serves researchers and the general public interested in Estonian culture, operating as a non-profit government-related entity. The website is built on WordPress with modern plugins and technologies, offering good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not published. The domain registration data aligns well with the website's purpose, indicating legitimacy. Overall, the platform is professional, trustworthy, and technically sound.

E

E-kataloog ESTER

ester.ee

0

E-kataloog ESTER is a centralized digital catalog service aggregating the collections of major Estonian libraries. It serves as a key resource for library users including students, researchers, and the general public in Estonia, providing unified search capabilities and access to various library resources. The platform integrates institutional authentication via CAS and offers accessibility features for visually impaired users. Technically, the website employs standard web technologies such as JavaScript, jQuery, and Modernizr, and uses Google Analytics for user tracking. While the site is functional and professionally designed, it lacks visible privacy and cookie policies, which impacts its privacy compliance posture. Security-wise, HTTPS is implied, and session timeout mechanisms are implemented, but explicit security headers are missing. Overall, the site is a trusted educational resource but would benefit from enhanced privacy disclosures and security hardening.

The website riigiplaneering.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to the actual site content. As a result, no business, contact, or policy information is available for analysis. The domain is registered with Zone Media OÜ, an Estonian registrar, and was created recently in April 2023. The site uses Cloudflare services for security and analytics, but no further technical or content details can be extracted due to the access restriction. This limits the ability to assess the website's business model, technical infrastructure, or security posture comprehensively. The lack of visible privacy or cookie policies and contact information further limits compliance and trust evaluations.

T

Tallinna Vesi

tallinnavesi.ee

0

Tallinna Vesi is a well-established water utility company based in Estonia, primarily serving the Tallinn region with water supply and wastewater treatment services. The company demonstrates a strong market position supported by comprehensive service offerings including water purification, meter installation, and customer self-service portals. Their website reflects a professional digital presence with multilingual support and investor relations, indicating a mature business model focused on transparency and customer engagement. Technically, the site is built on WordPress with modern plugins and scripts, ensuring good performance and SEO optimization. Security posture is robust with HTTPS enforcement and ISO certifications, although improvements can be made in security headers and incident response transparency. Privacy compliance is mostly adequate but lacks a visible cookie consent mechanism, which should be addressed to fully comply with GDPR requirements. Overall, the website and domain data indicate a trustworthy and credible organization with a solid digital infrastructure.

M

MTÜ Eesti Kütte- ja Ventilatsiooniinseneride Ühendus

ekvy.ee

0

MTÜ Eesti Kütte- ja Ventilatsiooniinseneride Ühendus (EKVÜ) is a well-established non-profit professional association in Estonia, founded in 2010, serving heating and ventilation specialists. The organization provides professional training, certification services, and collaborates with governmental and industry bodies. The website reflects a medium-sized organization with over 400 members and multiple industry partners, positioning itself as a key player in the Estonian energy sector. The site is professionally designed, mobile responsive, and uses Joomla CMS with modern frontend technologies.

Eesti Ehitusinseneride Liit (EEL) is a non-profit voluntary association representing construction engineers in Estonia. Founded in 1991, it serves approximately 500 individual members and several collective members, providing professional membership services, certification, training, and information resources. The website positions EEL as a reputable and established professional body within the Estonian construction sector. Technically, the site is built on WordPress with common plugins and libraries, featuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers are absent and privacy compliance is minimal due to lack of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission, but could improve in privacy and security policy transparency.

V

Veeühing (GWP Estonia)

veeyhing.ee

0

Veeühing (GWP Estonia) is a voluntary association based in Estonia focused on water management and related environmental issues. It operates as part of the Global Water Partnership network, aiming to improve water management and protection globally. The organization hosts events such as seminars and conferences to engage stakeholders and disseminate knowledge. The website is professionally designed using WordPress and is actively maintained with regular event updates. The technical infrastructure is modern, leveraging standard WordPress plugins and libraries, and the site is served over HTTPS with no detected blocking or WAF interference. However, the site lacks explicit privacy and cookie policies, which impacts GDPR compliance and privacy posture. Contact information such as emails or phone numbers is not explicitly provided, which may affect user trust and communication. Overall, the website demonstrates a good level of professionalism and technical maturity but would benefit from enhanced privacy compliance and clearer contact channels.

M

MTÜ Maakondlikud Arenduskeskused

arenduskeskused.ee

0

MTÜ Maakondlikud Arenduskeskused operates as the largest nationwide network in Estonia providing consulting and training services to startups, active businesses, non-profits, and local governments. Their business model is based on publicly funded, free services aimed at fostering entrepreneurship and community development across all 15 Estonian counties. The website reflects a mature digital presence built on WordPress with modern plugins and SEO optimizations, supporting a good user experience and mobile responsiveness. Security posture is solid with HTTPS and standard best practices, though explicit security policies and headers could be improved. Privacy compliance is evident with a GDPR-aligned privacy policy and cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness with clear contact information and partner network links.

The website estlat.eu is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks access to any substantive content. As a result, no business information, contact details, or policy documents are available for analysis. The site appears to be protected by Cloudflare's security infrastructure, indicating an intent to prevent automated or malicious access. However, this also limits the ability to assess the site's business operations, technical maturity, or security posture beyond the presence of Cloudflare protections. The lack of accessible content and absence of privacy or cookie policies suggest the site is either under maintenance, restricted, or not publicly available at this time. From a security perspective, the use of Cloudflare's WAF and Turnstile challenge is a positive indicator of baseline protection, but no further security best practices or vulnerabilities can be evaluated. Overall, the site currently presents a high risk due to lack of transparency and accessibility, and further direct access or cooperation from the site owners would be necessary for a comprehensive assessment.

The website www.visitsaulkrasti.lv serves as an official regional tourism portal for Saulkrasti municipality in Latvia. It provides comprehensive visitor information including local attractions, events, accommodation options, dining, and useful tips for tourists. The site targets visitors and tourists interested in exploring the Saulkrasti region, positioning itself as a key local tourism information hub. The business model focuses on promoting local tourism services and events, supporting the hospitality and government sectors. The content is well-structured, visually appealing, and consistent with the brand identity of Saulkrasti tourism. Technically, the website is built on WordPress CMS and utilizes modern JavaScript libraries such as jQuery, Swiper.js for sliders, and Magnific Popup for galleries. It integrates Google Tag Manager and Google Analytics for tracking and marketing purposes. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the website enforces HTTPS with excellent SSL configuration. However, it lacks explicit security headers and does not provide a dedicated security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism, aligned with GDPR requirements. Contact information is transparent and professionally presented, enhancing business credibility. Overall, the website is trustworthy, professionally maintained, and serves its purpose effectively. Strategic improvements could include implementing additional security headers, publishing a security policy or incident response contact, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen the site's security posture and trustworthiness.

V

Valkas novada pašvaldība

valka.lv

0

Valkas novada pašvaldība operates as the official local government authority for the Valkas novads region in Latvia. The website serves as a comprehensive portal offering residents, businesses, and visitors access to municipal services, news, administrative information, and community resources. It is well-positioned as a trusted source of local government information with a clear focus on public service delivery. Technically, the website is built on the Drupal CMS platform, leveraging modern web technologies such as Bootstrap and jQuery for responsive design and user experience. The site is mobile-optimized and includes accessibility features, ensuring broad usability. Google Analytics is integrated with privacy-conscious settings to monitor traffic without compromising user privacy. From a security perspective, the site enforces HTTPS, employs standard security headers, and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy and incident response information, which could enhance transparency and preparedness. Overall, Valkas novada pašvaldība's website demonstrates a solid digital presence with good content quality, technical implementation, and security posture. Strategic improvements in security transparency and incident response communication would further strengthen its trustworthiness and compliance.

S

Smiltenes novada pašvaldība

smiltenesnovads.lv

0

Smiltenes novada pašvaldība is the official local government authority for Smiltene Municipality in Latvia. The website serves as a comprehensive portal providing residents and stakeholders with access to municipal services, administrative information, social and cultural resources, and community news. The site is well-structured with clear navigation and covers a broad range of local government functions including education, social services, culture, tourism, and public safety. The target audience primarily consists of local residents and businesses seeking municipal information and services. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies such as Bootstrap for responsive design and Google services like reCAPTCHA and Analytics for security and user behavior insights. The site demonstrates good mobile optimization and accessibility features, ensuring usability across devices. Performance is moderate, with proper meta tags and SEO considerations implemented. From a security perspective, the website enforces HTTPS and includes several security headers to protect against common web vulnerabilities. The use of Google reCAPTCHA on forms helps mitigate automated abuse. However, the site lacks a publicly accessible privacy policy and terms of service, which are important for GDPR compliance and user trust. No explicit incident response or vulnerability disclosure information is provided, which could be improved to enhance security posture. Overall, the website is a credible and professional government portal with strong business credibility and technical implementation. The main areas for improvement include publishing comprehensive privacy and terms policies, enhancing transparency around data protection and incident response, and expanding direct contact information. These steps would strengthen compliance and user trust while maintaining a secure and user-friendly digital presence.

V

Visit Tartu

visittartu.com

0

Visit Tartu operates as the official tourism portal for Tartu and Southern Estonia, providing comprehensive travel information, event promotion, and business-to-business services such as MICE and conference venues. The website targets tourists, event organizers, and business visitors, positioning itself as a key regional tourism authority. The business is well-established with a domain age dating back to 2005, reflecting a mature presence in the hospitality sector. Technically, the site leverages WordPress with Elementor and WP Rocket for performance optimization, and integrates social media and multimedia content effectively. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the site is professional, user-friendly, and trustworthy, though improvements in security headers and privacy documentation are recommended.

V

Vidzemes plānošanas reģions

vidzeme.lv

0

Vidzemes plānošanas reģions is a Latvian regional government institution focused on development and planning within the Vidzeme region. The organization actively collaborates with European partners on international projects to foster business growth and innovation. The website serves as an informational portal for stakeholders and the public, providing access to regional data and project information. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and cookie compliance, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing formal security and privacy policies. Overall, the site is professional and trustworthy, aligned with its government function.

I

Itero – Digitālā marketinga aģentūra

itero.lv

0

The website www.itero.lv appears to be a small business site hosted on WordPress with minimal content and limited digital maturity. The site lacks essential legal documents such as privacy policy, cookie policy, and terms of service, which are critical for compliance and user trust. Contact information and social media presence are not evident, reducing accessibility and credibility. Technically, the site uses standard web technologies but lacks advanced security headers and optimization features. The security posture is basic with no visible incident response or vulnerability disclosure mechanisms. Overall, the site presents a low-risk profile but requires significant improvements in compliance, security, and content quality to enhance trust and professionalism.

E

Eesti Põllumajandus-Kaubanduskoda

epkk.ee

0

Eesti Põllumajandus-Kaubanduskoda (EPKK) is a well-established Estonian organization founded in 2010, serving as a key chamber representing agricultural producers, food processors, forestry, and land management enterprises. The website provides comprehensive information about the organization's advocacy efforts, events, vocational qualifications, and market information services. The target audience primarily consists of Estonian agricultural and related sector stakeholders. The business model is non-profit and focused on supporting stable development and fair competition within the agricultural sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Modern Events Calendar, ensuring good SEO and event management capabilities. The site is hosted by a reputable Estonian registrar and uses HTTPS, providing a secure browsing experience. However, there are gaps in privacy compliance, notably the absence of privacy and cookie policies and consent mechanisms. Security posture is moderate with HTTPS and secure forms but lacks advanced security headers and published security policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

B

Baltic Sea Culinary Routes

balticseaculinary.com

0

Baltic Sea Culinary Routes is a regional cultural project website dedicated to promoting the culinary heritage and traditions of countries surrounding the Baltic Sea. The site offers rich content including country-specific culinary descriptions, recipes, chef testimonials, and project documentation aimed at strengthening regional identity and supporting rural vitality through culinary tourism. The target audience includes tourists, culinary enthusiasts, chefs, and cultural stakeholders interested in Baltic Sea cuisine. Technically, the website employs a traditional tech stack with jQuery 1.8.1, jQuery UI, and several JavaScript libraries for UI components and sliders. The site is mobile responsive and has a clear navigation structure, but uses outdated JavaScript libraries that pose security risks. SEO and accessibility are basic but functional. No CMS or hosting provider details are explicitly detected. From a security perspective, the site uses HTTPS and has domain transfer protections, but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. The use of outdated jQuery versions introduces potential vulnerabilities. No privacy or cookie policies are present, indicating compliance gaps with GDPR. No contact emails or incident response information is provided, limiting transparency and user trust. Overall, the website is functional and content-rich with moderate business credibility but has notable security and privacy compliance shortcomings. Strategic improvements in security headers, library updates, and privacy policy implementation are recommended to enhance trust and compliance.

Eesti Toidutee is a well-established platform dedicated to promoting Estonian local food culture and tourism. It connects food producers, restaurants, and consumers by offering curated food routes, event information, and educational workshops. The website targets consumers interested in authentic Estonian food experiences, tourists, and local food businesses. It holds a recognized position in the local hospitality and tourism sector, emphasizing regional food specialties and seasonal offerings. Technically, the website employs a traditional tech stack with jQuery and jQuery UI libraries, Google Analytics, and Google Tag Manager for tracking. While the site is mobile-optimized and offers good user experience with clear navigation and rich content, it uses outdated JavaScript libraries that pose potential security risks. The site lacks modern security headers and explicit privacy or cookie policies, indicating areas for compliance improvement. From a security perspective, HTTPS is enabled, and no sensitive data is exposed in the HTML. However, the absence of security headers and use of outdated libraries reduce the overall security posture. There is no visible incident response or security policy information, which could impact trustworthiness. The WHOIS data aligns well with the website's Estonian focus, showing consistent and transparent registration details. Overall, the website is functional, content-rich, and professionally presented but requires enhancements in privacy compliance and security best practices to improve trust and reduce risk. Strategic updates to technology and policy transparency will strengthen its position as a trusted promoter of Estonian local food culture.

S

SA Jõgevamaa Arendus- ja Ettevõtluskeskus

kultuuritee.ee

0

Kultuuritee.ee is a regional cultural tourism website managed by SA Jõgevamaa Arendus- ja Ettevõtluskeskus, promoting the cultural heritage and tourism opportunities in the Jõgevamaa region of Estonia. The site provides information about cultural routes, events, maps, and local attractions, targeting tourists and cultural visitors interested in exploring Estonian history and culture. The business model is non-profit and focused on regional development and cultural promotion. Technically, the website is built on WordPress with common plugins like Yoast SEO and uses Google Analytics and Tag Manager for visitor tracking. The hosting is provided by Zone Media OÜ, and the domain is registered since 2019, consistent with the site's purpose. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional, well-branded, and provides relevant content but could improve in privacy and security practices.

S

Sisevete festival

sisevetefestival.ee

0

The Sisevete festival website represents a regional cultural event focused on Estonia's largest inland water bodies, offering a 12-day program of activities, workshops, and concerts. The site targets watercraft enthusiasts and cultural visitors, providing detailed event information and a newsletter subscription. Technically, the website is built on the Voog CMS platform, utilizing modern web technologies such as jQuery and Facebook Pixel for marketing and tracking. The site is mobile-optimized with good navigation and content relevance. Security posture is solid with HTTPS enabled and no exposed sensitive data, though it lacks security headers and a cookie consent mechanism, which are recommended for enhanced protection and GDPR compliance. Overall, the website is trustworthy and professional, with room for improvement in privacy and security transparency.

S

SportAccord

aimsisf.org

0

The Alliance of Independent Recognized Members of Sports (AIMS) operates as a non-profit international sports alliance representing various independent sports federations. The organization is positioned as a key stakeholder in the global sports governance ecosystem, partnering with major entities such as the International Olympic Committee (IOC), SportAccord, WADA, and ITA. The website serves as a communication platform providing news, member federation information, and partnership details to its target audience of sports professionals and federations worldwide. Technically, the website is built on WordPress using the Elementor page builder, hosted on StableServer infrastructure. The site demonstrates good mobile optimization, clear navigation, and a professional design, although some accessibility features could be improved. Performance is moderate, with no major technical issues detected in the HTML content. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but DNSSEC is not enabled and some security headers are not explicitly detected, suggesting room for improvement. From a security and compliance perspective, the website lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. No incident response or vulnerability disclosure information is available, and no direct contact emails or phone numbers are provided, limiting transparency in communication channels. The WHOIS data is consistent and transparent, confirming the legitimacy of the domain ownership and alignment with the organization's identity. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance measures, improved security header implementation, and clearer contact information to strengthen user trust and regulatory adherence.

S

SportAccord

sportaccord.com

0

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-established entity with a strong market position in the sports event and federation engagement sector. Key services include organizing major events such as the SportAccord Convention and the International Federation Forum, alongside providing platforms for sustainability and membership applications. The technical infrastructure is built on WordPress with modern plugins and analytics tools, ensuring a robust digital presence. Security posture is strong with HTTPS enforcement, security headers, and monitoring tools like New Relic, although explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates high professionalism, good privacy compliance, and trustworthy business credibility.

S

SportAccord

gaisf.sport

0

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-structured platform offering information about major events such as the SportAccord Convention and the International Federation Forum. The organization positions itself as a key player in the sports event and federation engagement sector, supported by the International Olympic Committee and a broad network of partners. The digital infrastructure is built on WordPress with modern plugins and analytics tools, ensuring a good user experience and performance. Security posture is strong with HTTPS enforcement and privacy compliance mechanisms like Usercentrics CMP. However, WHOIS data is privacy protected, limiting transparency on domain ownership, though this is common and justified for such entities. Overall, the website demonstrates a mature digital presence with good content quality, technical implementation, and business credibility.

ENGSO is a well-established European non-profit organization dedicated to grassroots sport, acting as an umbrella for National Olympic Committees and National Sports Confederations across 33 European countries. The website clearly communicates ENGSO's mission to promote stronger communities through voluntary-based sport, supported by a professional and consistent digital presence. The organization leverages modern WordPress technologies with Elementor for content management and presentation, ensuring good mobile optimization and user experience. Security posture is adequate with HTTPS enabled, but could be enhanced by implementing additional security headers and explicit privacy compliance mechanisms such as cookie consent. Contact information is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, the domain registration and WHOIS data align with the organization's legitimacy and history, supporting a high trustworthiness rating.

I

International Paralympic Committee

paralympic.org

0

The International Paralympic Committee (IPC) operates the official website www.paralympic.org, serving as the global authority for Paralympic sports. The site provides comprehensive news, event results, and multimedia content targeted at athletes, fans, and stakeholders worldwide. The organization is positioned as a non-profit international sports governing body headquartered in Germany. Technically, the website is built on Drupal 8 CMS, integrating modern analytics and cookie consent tools such as Google Tag Manager and Cookiebot, ensuring GDPR compliance through explicit cookie consent mechanisms. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is strong with HTTPS enforced and anonymized IP tracking, although explicit security headers and incident response information are absent. The lack of WHOIS data limits domain registration transparency but is typical for such international organizations. Overall, the site is professional, trustworthy, and well-maintained, with minor gaps in privacy policy visibility and security disclosures.

T

The European Olympic Committees

eurolympic.org

0

The European Olympic Committees (EOC) is a well-established non-profit organization dedicated to promoting the fundamental principles of Olympism across Europe. The website serves as the official digital presence for the EOC, providing comprehensive information about its activities, events, awards, and news. It targets Olympic committees, athletes, sports organizations, and the general public interested in European Olympic sports. The organization holds a strong market position as the continental association for European Olympic Committees and organizes major sports events such as the European Games and the European Youth Olympic Festival. Technically, the website is built on a modern WordPress platform with popular plugins like WPBakery Page Builder and integrates Bootstrap for responsive design. It employs Google Analytics for traffic analysis and Mailchimp for newsletter subscriptions. The site is well-optimized for mobile devices and offers good SEO and accessibility features, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with strong security headers and secure forms that include consent checkboxes. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit cookie consent mechanisms and does not publish a security incident response or vulnerability disclosure policy, which are areas for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. The lack of WHOIS data limits domain registration insights, but the website's branding, content quality, and external partnerships strongly support its legitimacy. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing accessibility to further strengthen the site's security posture and user trust.

I

International Olympic Committee (IOC)

olympic.org

0

Olympics.com is the official digital platform of the International Olympic Committee (IOC), providing authoritative and comprehensive coverage of the Olympic Games, athletes, sports, and related news. The website serves a global audience of sports enthusiasts, athletes, and stakeholders by delivering live event coverage, video highlights, original series, and historical Olympic content. It is positioned as the primary source for Olympic information and media worldwide. Technically, the site employs a modern technology stack including JavaScript frameworks (likely React), advanced search via Algolia, customer identity management through Gigya, and robust analytics with Google Tag Manager and Conviva. The site is hosted on a high-performance CDN (Akamai), ensuring fast load times and excellent mobile optimization. Accessibility and SEO practices are well implemented, supporting a broad and inclusive user experience. From a security perspective, Olympics.com enforces HTTPS with strong SSL configuration and implements key security headers such as Content-Security-Policy and Strict-Transport-Security. The site uses a comprehensive cookie consent mechanism compliant with GDPR, and no critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public WHOIS record and lack of visible incident response contacts or vulnerability disclosure pages suggest areas for improvement in transparency and security communication. Overall, Olympics.com demonstrates a mature digital presence with strong content quality, technical infrastructure, and security posture. The main risks relate to WHOIS data opacity and limited direct contact information for security incidents. Strategic recommendations include enhancing incident response visibility, publishing a security.txt file, and continuous monitoring of third-party scripts to maintain security integrity.

Ü

Ühendus Sport Kõigile

sportkoigile.ee

0

Ühendus Sport Kõigile is an Estonian sports association dedicated to promoting sports activities and events across multiple disciplines. The website serves as an informational portal providing event calendars, organizational details, sports facilities, and coaching resources primarily targeting Estonian sports enthusiasts and organizations. The domain is well-established since 2010 and hosted under a reputable Estonian registrar, indicating a stable online presence. Technically, the website employs a traditional web stack with jQuery, Owl Carousel, Fancybox, and AOS for animations. While the technology is somewhat dated, it remains functional and provides a moderate performance experience. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, there is room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies. No analytics or tracking scripts were detected, suggesting minimal user tracking. The absence of GDPR compliance indicators and consent mechanisms is a notable gap given the European context. No forms collecting sensitive personal data were found except a basic search form. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected but with compliance and security best practices needing enhancement. Strategic improvements in privacy policy publication, cookie consent, security headers, and GDPR compliance would strengthen the site's trustworthiness and security posture.

L

Liikumisharrastuse kompetentsikeskus

liikumisaasta.ee

0

Liikumisharrastuse kompetentsikeskus is a government-affiliated non-profit organization established by the Estonian Olympic Committee in 2022 to promote physical activity and healthy lifestyles across Estonia. The website serves as a central hub for information, resources, and events related to physical movement, targeting a broad audience including youth, adults, seniors, and partners in the health and sports sectors. The organization positions itself as a leader in driving a national movement towards increased physical activity and wellness.

E

Eesti Spordi- ja Olümpiamuuseum SA

spordimuuseum.ee

0

Eesti Spordi- ja Olümpiamuuseum is a well-established cultural institution located in Tartu, Estonia, serving as the largest and most modern sports museum in the Baltic region. The museum offers a rich visitor experience with over 15 attractions, educational programs, exhibitions, and a dedicated Hall of Fame. Its target audience includes families, groups, individual sports enthusiasts, and educational institutions. The business model combines ticket sales, educational services, event hosting, and an online store. The museum maintains a strong market position supported by partnerships with cultural and Olympic organizations and environmental certifications.

S

Spordimeditsiini SA

sportmed.ee

0

Spordimeditsiini SA is an established Estonian sports medicine foundation providing specialized health examinations, treatments, and consultations for amateur, youth, and professional athletes. With over 25 years of experience, it holds a strong market position in Estonia's healthcare sector, focusing on sports-related medical services including physiotherapy, cardiology diagnostics, nutrition counseling, and advanced physiotherapy procedures. The website is well-structured, multilingual, and professionally designed, reflecting the organization's credibility and service quality. Technically, it is built on WordPress with modern plugins and SEO optimizations, though some performance and security enhancements are advisable. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks explicit security headers and incident response policies. Privacy compliance is partially met with privacy and cookie policies present, but missing active consent mechanisms. Overall, the site demonstrates a mature digital presence with room for improvements in security and privacy transparency.

Eesti Paralümpiakomitee is the official Estonian Paralympic Committee, a non-profit organization dedicated to supporting Paralympic athletes and promoting Paralympic sports within Estonia. The website serves as a hub for news, event calendars, athlete information, and organizational details, targeting athletes, supporters, and the general public interested in Paralympic sports. The organization maintains a clear national presence with sponsorships and social media engagement. Technically, the website employs a modern JavaScript stack including jQuery, Google reCAPTCHA, Axios, and sliders for dynamic content presentation. It uses HTTPS with a valid SSL configuration and integrates Google Analytics for visitor tracking. The site is moderately optimized for mobile and accessibility, with room for improvement in SEO and accessibility features. From a security perspective, the site benefits from HTTPS and CSRF token usage in forms, but lacks explicit security headers and detailed security or incident response policies. No privacy or cookie policies are present, which is a compliance gap. Contact information is clearly provided, enhancing trust and user engagement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

T

treenerikutse.ee

treenerikutse.ee

0

The website treenerikutse.ee serves as a portal for coaching certification and related educational services primarily targeting the Estonian market. It offers functionalities such as application control, certification verification, self-training campaigns, and registers related to education and sports disciplines. The business operates in a niche sector focused on professional coaching and sports education within Estonia, with a domain registered in 2019 and hosted by Spin TEK AS, an Estonian registrar and hosting provider. Technically, the website employs a variety of common web technologies including jQuery, Bootstrap, FlexSlider, and DataTables, indicating a moderate level of digital maturity. The site is structured with responsive design elements but lacks advanced SEO optimization and accessibility features. The absence of CMS detection suggests a custom or lightweight platform. Performance is moderate, with no explicit indicators of slow loading but also no advanced optimization. From a security perspective, the site lacks visible security headers and does not provide explicit HTTPS status in the provided data, which is a concern. The cookie consent mechanism is implemented, indicating some awareness of privacy compliance, but no privacy policy or terms of service are present, limiting GDPR compliance. No contact information or incident response channels are provided, reducing transparency and trust. Overall, the website presents a basic but functional service portal with moderate business credibility. Security and privacy practices require significant improvement to meet modern standards. Strategic recommendations include implementing HTTPS with strong SSL/TLS, publishing comprehensive privacy and security policies, adding security headers, and providing clear contact information to enhance trust and compliance.

S

Spordikoolituse ja -Teabe Sihtasutus

spordiraamat.ee

0

Spordiraamat.ee is an Estonian e-commerce platform specializing in the sale of sports-related books, including annual sports yearbooks and training manuals. The business is operated by Spordikoolituse ja -Teabe Sihtasutus, targeting sports professionals, coaches, and enthusiasts primarily within Estonia. The website offers a focused catalog of sports literature with some partner integrations for purchasing select titles. Technically, the site uses a traditional frontend stack including jQuery, Bootstrap 3.3.7, and Selectize.js, with basic mobile responsiveness and moderate performance. Security measures include HTTPS, CSRF tokens, and a cookie consent mechanism, but lack advanced security headers and vulnerability disclosure policies. The WHOIS data aligns well with the business claims, indicating a legitimate and consistent registration. Overall, the site presents a professional and trustworthy e-commerce experience within its niche, though improvements in privacy policy presence and security hardening are recommended.

The website esbl.ee serves as an Estonian sports biographical lexicon, providing historical data and biographies of Estonian sports figures. It is operated by Spin TEK AS, a company registered since 2013, which aligns with the domain age and content maturity. The site targets sports enthusiasts and researchers interested in Estonian sports history. The business model is informational, focusing on archival and reference content rather than commercial services. Technically, the website is built on static HTML enhanced with JavaScript, notably using an outdated jQuery version (1.7.2). There is no evidence of a modern CMS or frameworks, and the site shows basic performance and accessibility features. Mobile optimization is poor, and SEO practices are minimal. Hosting appears to be managed by Spin TEK AS, consistent with the WHOIS data. From a security perspective, the site lacks modern security headers and uses outdated libraries, which could expose it to vulnerabilities. HTTPS usage and SSL configuration details are not explicitly provided but should be verified. The site implements a cookie consent mechanism and provides a privacy policy document, indicating some compliance with GDPR. However, no terms of service, security policies, incident response contacts, or vulnerability disclosure mechanisms are present. Overall, the website is functional and moderately credible but requires technical and security improvements to enhance trust and protect user data. Strategic recommendations include updating JavaScript libraries, implementing security headers, improving SSL configuration, and publishing comprehensive security and contact policies.

Z

Zone Media OÜ

korvpall24.ee

0

Korvpall24.ee is a specialized Estonian media website focusing on basketball news, interviews, and event coverage. Operated by Zone Media OÜ since 2017, it serves a niche audience of basketball enthusiasts primarily in Estonia. The website features regularly updated content, including interviews and reports on local and international basketball events. Technically, the site is built on WordPress with Elementor and integrates modern web technologies such as push notifications (OneSignal), Google Analytics, and Facebook Pixel for marketing and analytics. The site uses HTTPS with good SSL configuration, ensuring secure data transmission. However, it lacks a cookie consent mechanism and explicit security or incident response policies, which are important for GDPR compliance and user trust. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility, but could improve privacy compliance and security transparency.

Teamspirit is an Estonian e-commerce retailer specializing in sportswear and merchandise for local sports teams and events. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Google Analytics, Facebook Pixel, and CookieYes for consent management. The business targets sports fans and clubs within Estonia, offering custom sports apparel and accessories. The domain is registered to an Estonian company, Zone Media OÜ, consistent with the website's market and content. The website demonstrates good technical maturity with responsive design, SEO optimization, and a clear navigation structure. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

A

A. Le Coq

alecoq.ee

0

A. Le Coq is Estonia's oldest and largest beverage producer, offering a wide range of alcoholic and non-alcoholic drinks including beer, cider, juices, water, and energy drinks. The company operates a professional and well-structured website built on WordPress with WooCommerce, targeting both consumers and distributors in Estonia and export markets. The website demonstrates good digital maturity with modern technologies, SEO optimization, and mobile responsiveness. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit privacy and security policies are not published. Overall, the site reflects a credible and established business with a focus on compliance and user experience.

P

Pilt Ruudus OÜ

piltruudus.ee

0

Pilt Ruudus OÜ operates as a creative agency based in Estonia, offering a comprehensive suite of digital marketing, SEO, web development, video, and photography services. The company targets Estonian businesses seeking to enhance their online presence and marketing effectiveness. The website reflects a professional and consistent brand image, with clear service descriptions and a user-friendly contact form facilitating client engagement. The business appears well-established with a domain age consistent with its operational history.

S

SYNLAB International GmbH

synlab.com

0

SYNLAB International GmbH operates as a leading European provider of medical laboratory diagnostic services, offering a broad range of routine and specialty testing solutions. The company targets healthcare providers, clinics, doctors, and patients, emphasizing fast and reliable test results and innovative diagnostic technologies. Their market position is strong, supported by a large network across more than 20 countries and a significant employee base including medical experts. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their audience. Technically, the site is built on TYPO3 CMS with Bootstrap and integrates Matomo analytics and conditional Google Maps functionality, indicating a modern and privacy-conscious infrastructure. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms in place, though explicit incident response and vulnerability disclosure policies are not publicly visible. The absence of WHOIS data for the domain is notable but does not detract from the overall legitimacy and professionalism of the site. Strategic recommendations include enhancing transparency around security incident response and publishing a security.txt file to facilitate vulnerability reporting.

S

SYNLAB Holding Deutschland GmbH

synlab.fi

0

SYNLAB Suomi operates as a healthcare diagnostics service provider in Finland, offering laboratory testing and related services to individuals, healthcare professionals, companies, and municipalities. The website is part of the SYNLAB group, registered under SYNLAB Holding Deutschland GmbH in Germany, reflecting a mature and established business presence since 2013. The site supports multiple languages and provides online booking and result portals, indicating a customer-centric digital approach. Technically, the website leverages the BigCommerce platform with modern web technologies including asynchronous script loading, Google Fonts, and integration of analytics tools such as Facebook Pixel and Piwik PRO. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes standard security headers, but lacks DNSSEC and explicit security or incident response policies. No privacy or cookie policies were detected, which is a compliance gap given GDPR requirements. Tracking and marketing scripts are present, suggesting moderate user tracking. Overall, SYNLAB Suomi presents a professional and trustworthy online presence with a solid business foundation. However, improvements in privacy compliance, security transparency, and accessibility would strengthen its security posture and regulatory adherence.

T

Talendipank

talendipank.ee

0

Talendipank is an Estonian-based recruitment software provider offering a comprehensive platform for managing recruitment processes, candidate evaluation, and job postings. The company targets a broad audience including small businesses, large organizations, educational institutions, and government agencies. Their platform emphasizes ease of use, GDPR-compliant data security, and personalized user support. The website reflects a mature business with a domain registered since 2014 and a history of software development dating back to 1998. Technically, the website uses Bootstrap 5.3.3 for responsive design and custom CSS with embedded SVG icons. The site is mobile-optimized and well-structured, though some accessibility features could be improved. No advanced CMS or analytics tools are detected, indicating a lean technical stack focused on performance and simplicity. From a security perspective, the site claims GDPR compliance and does not expose sensitive data or vulnerable libraries. However, it lacks visible security headers, cookie consent mechanisms, and published security or incident response policies. The WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. Overall, Talendipank presents a professional and credible online presence with moderate technical sophistication and a solid business foundation. Security and privacy practices could be enhanced to improve compliance and user trust.

S

Sisekaitseakadeemia

sisekaitse.ee

0

Sisekaitseakadeemia is a key Estonian governmental educational institution specializing in internal security education, research, and professional training. It serves students, professionals, and government officials with a broad portfolio of academic programs, seminars, and research activities. The website reflects a well-established institution with a clear focus on internal security sectors including police, rescue, prison, finance, and security studies. The institution holds a strong market position as the national authority in its domain. Technically, the website is built on Drupal 9 with modern web technologies such as Bootstrap, jQuery, and lazy loading for images. It integrates analytics tools like Matomo and Google Tag Manager, indicating a mature digital infrastructure. The site is mobile optimized, accessible, and SEO friendly, providing a good user experience. From a security perspective, the site uses HTTPS and employs some best practices like Do Not Track in analytics. However, explicit security headers and incident response policies are not evident. Privacy compliance is partially addressed with privacy and cookie policies present, though lacking a consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and serves its educational and governmental purpose effectively. Strategic improvements in security headers, incident response transparency, and cookie consent would further strengthen its posture.

The website elva.ee is currently inaccessible beyond a Cloudflare security challenge page, which prevents access to any substantive content. The domain is registered since 2010 with a legitimate Estonian registrar, indicating a stable domain ownership. However, no business information, contact details, or compliance policies are visible due to the access restriction. The technical infrastructure relies on Cloudflare services for security and performance, but no further technical or business details can be assessed. The security posture cannot be fully evaluated given the lack of accessible content, but the presence of Cloudflare WAF indicates a baseline security measure. Overall, the site is currently not analyzable for business or compliance insights due to the WAF block.

Lääneranna vald is a local government entity in Estonia formed in 2017 by merging several municipalities. The website currently serves as a maintenance page with basic information about the municipality's geography, administrative structure, and protected natural areas. The site is built on WordPress and uses common web technologies such as jQuery. The technical infrastructure is moderate with HTTPS enabled and hosted likely by Zone Media OÜ, an Estonian registrar and hosting provider. However, the site lacks advanced security headers and policies, and no privacy or cookie policies are published, which limits compliance with GDPR and other regulations. The login form is present but lacks visible security enhancements such as CAPTCHA or multi-factor authentication. Overall, the website is functional but minimal, reflecting a work-in-progress status.

Luunja Vald is a local government entity in Estonia providing a comprehensive range of municipal services including social aid, education, cultural activities, urban planning, and waste management. The website serves as an official portal for residents and stakeholders to access news, contact information, and administrative resources. The site is built on the Liferay CMS platform and uses common web technologies such as jQuery, Bootstrap, and Font Awesome, with Google Analytics integrated for visitor tracking. The technical infrastructure supports both desktop and mobile users with a moderate performance profile and basic accessibility features. Security posture is adequate with HTTPS enforced, but the use of outdated JavaScript libraries and lack of security headers indicate areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.