Security Directory

The website kose.ee serves as a simple informational portal for Kose vald, a local government municipality in Estonia. It primarily functions as a redirect and contact hub linking users to the official Kose vald website (kosevald.ee) and its Facebook page. The site provides basic contact information including official email addresses and phone numbers but lacks comprehensive privacy, cookie, or terms of service policies. The content is minimal and targeted at residents or stakeholders seeking municipal information. Technically, the site is built on WordPress using common libraries such as jQuery, Bootstrap, and Font Awesome. Hosting appears to be managed by Zone Media OÜ, an Estonian registrar and hosting provider. The site uses HTTPS with good SSL configuration but lacks advanced security headers and modern privacy compliance features. Mobile optimization and accessibility are basic but functional. From a security perspective, the site shows moderate maturity with HTTPS enabled but no visible security policies or incident response contacts. No forms or user data collection mechanisms are present, reducing attack surface but also limiting user engagement. The absence of privacy and cookie policies indicates non-compliance with GDPR best practices, which is a risk for a government entity. Overall, the website is legitimate and consistent with its stated purpose but would benefit from enhanced security practices, privacy compliance, and improved user experience to better serve its audience and meet regulatory requirements.

V

Võru Linnavalitsus

voru.ee

0

Võru Linnavalitsus operates as the official municipal government of Võru city in Estonia, delivering a wide range of public services including urban planning, social welfare, cultural activities, and administrative support. The website serves residents, local businesses, tourists, and other stakeholders by providing comprehensive information and access to e-services. The site is multilingual, supporting Estonian, English, and Russian languages, enhancing accessibility for diverse users. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It demonstrates moderate performance and good mobile optimization, with a clear navigation structure and professional design. The presence of Google Analytics indicates moderate user tracking, balanced with a cookie consent mechanism and a privacy policy page, reflecting good privacy compliance. From a security perspective, the site enforces HTTPS and employs secure form submissions. However, it lacks explicit security headers and a dedicated incident response or vulnerability disclosure page. The use of an older jQuery version may pose minor risks. Overall, the security posture is solid but could benefit from enhancements in security policy transparency and technical hardening. The website's WHOIS data aligns well with its government identity, showing consistent registrant information and domain age appropriate for a municipal entity. No blocking or WAF interference was detected, allowing full content accessibility. Strategic recommendations include updating JavaScript libraries, implementing security headers, and publishing clear security policies to further strengthen trust and compliance.

Viljandi Linnavalitsus operates as the official municipal government of Viljandi city in Estonia, providing a broad range of public services including social support, education, urban planning, and cultural activities. The website serves residents, local businesses, and visitors by offering comprehensive information and access to municipal services. The site is well-structured with clear navigation and content relevant to its audience, reflecting a mature public sector digital presence. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It employs HTTPS with a valid SSL certificate ensuring secure communications. The site is moderately optimized for performance and mobile devices, though some legacy JavaScript libraries like jQuery 1.10.2 present potential security risks. SEO and accessibility are adequately addressed, but there is room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks modern security headers and uses outdated JavaScript libraries that could be vulnerable. There is no visible security policy or incident response contact, and no cookie consent mechanism is implemented, which may affect GDPR compliance. Google Analytics is used for visitor tracking, indicating moderate user tracking. Overall, the website demonstrates a solid business credibility and trustworthiness as a government entity, with a good content quality and technical foundation. Strategic improvements in updating libraries, enhancing security headers, and implementing privacy compliance mechanisms would strengthen its security posture and regulatory adherence.

R

Rapla vald

rapla.ee

0

Rapla vald operates as a local government entity serving the Rapla region in Estonia, providing a broad range of municipal services including social support, education, cultural activities, infrastructure management, and community engagement. The website serves as an official portal for residents and visitors, offering news, event information, and access to various public services. The organization maintains a clear and consistent brand presence with a well-structured website in Estonian, targeting local community members and stakeholders. Technically, the website is built on WordPress CMS, leveraging modern plugins and frontend technologies such as jQuery, FontAwesome, and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Hosting and domain registration are managed by a reputable Estonian registrar, Telia Eesti AS, with domain age consistent with the organization's history. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers, published security policies, and incident response contact information. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security maturity. Overall, the website presents a trustworthy and professional digital presence for a government entity, with moderate technical and security posture. Strategic enhancements in security headers, incident response readiness, and vulnerability disclosure would strengthen its security and compliance stance.

The website parnu.ee is registered to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) via EENet, indicating a government affiliation. However, the website content is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge, which blocks automated access and requires human verification. This prevents direct analysis of the site's content, policies, and contact information. The domain is well-established since 2010 and shows no suspicious registration patterns, supporting its legitimacy as a government domain. Technically, the site leverages Cloudflare's security and performance services, including the Turnstile CAPTCHA for bot mitigation. No CMS or additional frameworks are detectable from the accessible content. The lack of visible privacy, cookie, or terms of service policies, as well as absence of contact details, limits assessment of compliance and user engagement features. From a security perspective, the use of Cloudflare provides a baseline of protection, but the absence of visible security headers or policies in the accessible content is a gap. The domain does not have DNSSEC enabled, which is recommended for enhanced DNS security. No vulnerabilities or exposed sensitive data are observable due to the content block. Overall, the site appears to be a legitimate government domain with strong domain registration trustworthiness but currently limited accessibility and transparency. Strategic recommendations include improving public access to privacy and security policies, enabling DNSSEC, and providing clear contact and incident response information to enhance trust and compliance.

M

MTÜ Kodukant Läänemaa

kklm.ee

0

MTÜ Kodukant Läänemaa is a small Estonian non-profit organization dedicated to promoting and supporting village life and rural community development in the Läänemaa region. The organization provides project support, facilitates funding opportunities, and organizes community events to strengthen local engagement. The website is built on WordPress using the Virtue theme and several plugins such as MailPoet for newsletters and Google Calendar Events for event management. The technical infrastructure is modern and moderately performant with good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks important security headers and formal privacy or cookie policies. Contact information is clearly provided with a physical address and company email, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security practices.

R

Rohelise Jõemaa Koostöökogu

joemaa.ee

0

Rohelise Jõemaa Koostöökogu is a small regional cooperative organization based in Estonia, focused on sustainable rural economic development, cultural heritage preservation, and tourism promotion. The website serves as an informational and promotional platform highlighting the organization's mission, events, and regional identity. The technical infrastructure is based on WordPress with common plugins such as Yoast SEO and Contact Form 7, supported by standard web technologies like jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but requires improvements in privacy, security, and compliance to enhance trust and user protection.

P

Pärnu Lahe Partnerluskogu

plp.ee

0

Pärnu Lahe Partnerluskogu is a regional non-profit partnership organization based in Estonia, focused on supporting local development projects, cooperation, and dissemination of information in the Pärnu Bay area. The website serves as an information hub for local government entities, community organizations, and residents, providing updates on meetings, funding opportunities, and collaborative projects. The organization appears well-established with a domain age since 2010 and consistent regional focus. Technically, the website is built on WordPress using the Sydney theme and common plugins such as Yoast SEO and Elementor. It employs HTTPS and basic SEO optimizations, with moderate performance and good mobile responsiveness. However, accessibility features are basic, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a good SSL configuration but lacks advanced security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure mechanisms are evident. The absence of contact emails and phone numbers in the HTML limits direct communication channels, though physical addresses linked to local municipalities are present. Overall, the website is functional and professional for its purpose but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

G

Geopeitus MTÜ

geopeitus.ee

0

Geopeitus.ee is a niche community platform dedicated to geocaching activities in Estonia, operated by Geopeitus MTÜ. The website offers geocache listings, user forums, event announcements, and user-generated content such as logs and photos. It targets geocaching enthusiasts primarily within Estonia, fostering an active and engaged community with premium membership features and event support. The platform's market position is that of a specialized community hub rather than a commercial enterprise. Technically, the site uses legacy JavaScript libraries like jQuery 1.6.4 and jQuery Fancybox 1.3.4, along with Google Tag Manager for analytics. The CMS appears custom-built, with basic mobile optimization and accessibility features. Security posture is moderate but could be improved; the site lacks modern security headers and uses outdated libraries that may expose vulnerabilities. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Contact information is limited to an obfuscated email and a login form; no phone numbers or physical addresses are provided. Overall, the site is functional and community-focused but would benefit from modernization and enhanced security and privacy practices.

Soomaa.com is a small hospitality and tourism business focused on providing wilderness experiences in Estonia, particularly in Soomaa National Park. The website offers detailed information and booking options for various outdoor activities such as canoe trips, kick-bike trips, bogwalking, mushrooming, and snowshoeing. The company targets nature enthusiasts and tourists seeking authentic outdoor adventures in Estonia. The business appears established, with a domain registered since 1999, and maintains a consistent brand presence including social media channels on Facebook, YouTube, and Instagram. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, integrating third-party booking services via FareHarbor. The site is well-structured with good SEO practices, mobile optimization, and a cookie consent mechanism compliant with GDPR principles. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS with good SSL configuration but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The cookie consent banner and detailed preferences indicate a commitment to privacy compliance, although no explicit privacy policy or terms of service were found in the analyzed content. Overall, Soomaa.com presents a credible and professional online presence for a niche tourism business. Strategic improvements in security headers, explicit privacy and security policies, and enhanced accessibility would strengthen its security posture and compliance. The domain registration data supports legitimacy and trustworthiness.

B

British Tourist Authority

visitbritain.org

0

VisitBritain.org is the official national tourism agency website for Britain, operated by the British Tourist Authority. It serves as a comprehensive resource for tourists, travel trade professionals, business event planners, and media, offering information on travel, accommodation, destinations, business support, research, and news. The site is well-positioned as an authoritative government entity promoting tourism in the UK. Technically, the website is built on Drupal 10, employs modern JavaScript libraries, and integrates Google Tag Manager and OneTrust for analytics and consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the site enforces HTTPS, uses standard security headers, and manages cookie consent effectively, though explicit security policies and vulnerability disclosure mechanisms are not publicly visible. Overall, the domain appears legitimate despite incomplete WHOIS data, likely due to privacy protection. The website presents a professional, trustworthy, and user-friendly experience aligned with its government agency status.

E

Eesti Maaturismi Ühing

saunatee.ee

0

Saunatee.ee is a specialized Estonian website dedicated to promoting sauna culture, tourism, and related products. Operated by Eesti Maaturismi Ühing, it serves as a comprehensive portal listing various sauna types, sauna packages, and educational content about sauna traditions in Estonia. The website targets sauna enthusiasts and tourists interested in authentic Estonian sauna experiences, positioning itself as a niche cultural and tourism information platform. The business model focuses on information dissemination and promotion of sauna-related services and products, supported by a small but consistent content base and community engagement through newsletters and social media.

A

Allikukivi Veinimõis

allikukivi.ee

0

Allikukivi Veinimõis is a small family-owned Estonian business specializing in handcrafted berry and fruit wines produced on-site in their manor's wine cellar. They complement their wine production with hospitality services including wine tastings, tours, and glamping accommodations in a historic manor park. The website is built on WordPress with WooCommerce, featuring a professional design and moderate performance. The site includes cookie consent mechanisms and integrates third-party booking services. Security posture is good with HTTPS and no exposed sensitive data, but lacks some security headers and formal privacy and terms policies. Overall, the business presents a trustworthy local niche hospitality and wine production service with room for improvement in privacy compliance and security documentation.

V

Valgeranna Seikluspark

valgerannaseikluspark.ee

0

Valgeranna Seikluspark is an Estonian adventure park offering active outdoor recreational activities primarily targeting families, children, and groups near Pärnu. The website presents a professional and consistent brand image with clear descriptions of services such as adventure trails, group bookings, and special events. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and Tag Manager for tracking. Cookie consent is implemented with detailed user controls, reflecting a basic level of privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security and incident response policies are absent. Overall, the site is functional, trustworthy, and well-positioned regionally, but could improve transparency by publishing privacy and terms policies and enhancing contact information visibility.

Z

Zone Media OÜ

visitkorvemaa.ee

0

VisitKorvemaa is a regional tourism platform focused on promoting the Kõrvemaa nature area in Estonia. It aggregates local tourism services and offers authentic nature and community experiences including guided tours, outdoor activities, accommodation, and workshops. The website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern plugins for SEO and marketing. The business is small, founded in 2021, and targets tourists interested in nature and active tourism. The platform integrates social media and third-party review widgets to build trust and engagement. Technically, the site is well-structured and mobile-optimized but lacks some advanced security headers and explicit privacy and cookie policies. The domain registration is consistent and transparent, supporting the legitimacy of the business.

E

Elkdata OÜ (registrar)

veetee.ee

0

VeeTee.ee is a small Estonian business specializing in outdoor recreational services including ski and snowboard rentals, canoe and rubber boat trips, and accommodation rental at Annemäe Puhkemaja. The company targets tourists and local outdoor enthusiasts seeking guided water and winter sports experiences. The website is built on WordPress with modern plugins and provides clear contact information and service descriptions. Technically, the site uses HTTPS and common WordPress technologies but lacks some security headers and explicit privacy consent mechanisms. Security posture is moderate with no critical vulnerabilities detected but room for improvement in policy transparency and compliance. Overall, the business appears legitimate with consistent domain registration data and a professional web presence.

A

Adrenaator Grupp

adrenaator.ee

0

Adrenaator Grupp operates the website adrenaator.ee, providing adventure and outdoor experiences such as canoe trips, hiking, and team events primarily in the Aidu quarry area in Estonia. The company targets families, friends, and corporate groups seeking unique adventure activities. The business is positioned as a niche local provider with a focus on experiential tourism and event hosting. The website is built on WordPress with modern SEO and GDPR compliance plugins, indicating a moderate level of digital maturity. Technical infrastructure includes Google Analytics and Tag Manager for tracking, and the site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional and trustworthy with room for improvement in security and contact transparency.

A

Avis Budget UK Limited

budget.co.uk

0

Budget.co.uk represents the UK branch of Avis Budget UK Limited, a major player in the global car rental industry. The website offers a comprehensive car rental booking platform with a wide range of services including additional drivers, one-way hires, roadside assistance, and long-term rentals. The company operates across 165 countries with over 11,000 locations, positioning itself as a large and reputable transportation service provider. The site targets consumers and businesses seeking affordable and convenient car rental solutions in the UK and internationally. From a technical perspective, the website employs modern JavaScript libraries such as Handlebars.js and Globalize.js, integrates Google Tag Manager and Tealium for analytics and marketing, and uses Bing Maps API for location services. The site is mobile-optimized with good navigation and content quality, although accessibility features could be enhanced. Performance is moderate with room for improvement in loading speed and technical SEO. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and input validation on forms. However, explicit security headers are not detected, and no public security or incident response policies are found on the site. The WHOIS lookup failed due to domain registration rules, but the website content and branding strongly indicate legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, Budget.co.uk is a professional, trustworthy, and functional car rental website with strong business credibility and good privacy compliance. Strategic improvements in security headers, accessibility, and public security policies would further enhance its security posture and user trust.

The website www.budgetlac.com is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks access to any substantive content. The WHOIS lookup for the domain returned no registration data, indicating the domain may not be registered or the data is unavailable, which raises concerns about the legitimacy and transparency of the site. No business information, contact details, or privacy-related policies are present or accessible. The technical infrastructure relies on Cloudflare services for security and performance, but the lack of accessible content and metadata prevents a full assessment of the site's business or security posture. Overall, the site presents a high risk due to lack of transparency and accessibility.

B

Budget Truck Rental

budgettruck.ca

0

Budget Truck Rental Canada operates a professional and well-structured website offering moving truck rentals and related services primarily targeting Canadian customers. The site is built on a modern technology stack including AngularJS and Adobe Experience Manager, integrating multiple analytics and marketing tools to optimize user engagement and business insights. The business is positioned as a large transportation service provider with a strong brand presence in Canada. Security posture is moderate with HTTPS usage and secure analytics scripts, but lacks visible security headers and explicit privacy or incident response policies. WHOIS data is unavailable, likely due to privacy protection, which limits domain trust verification but is common for commercial entities. Overall, the website is functional, professional, and trustworthy with room for improvement in privacy compliance and security transparency.

Lost Returns, Inc. operates a specialized lost property management platform that leverages AI for inventory matching and integrates with major shipping carriers to facilitate efficient return of lost items. The company targets businesses across various industries, particularly transportation and rental sectors, providing a SaaS-based solution to streamline lost and found operations and improve customer satisfaction. The website demonstrates a professional and modern digital presence built on Next.js and React, with good mobile optimization and performance. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit incident response information are lacking. Privacy compliance is supported by a comprehensive privacy policy but lacks a cookie consent mechanism. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall business credibility is supported by client testimonials and recognized brand partnerships.

T

The Hertz Corporation

hertz.ie

0

The website www.hertz.ie is the Irish regional portal for The Hertz Corporation, a globally recognized car rental company. It offers car and van rental services across Ireland with a focus on quality and convenience, including electric vehicle options. The site supports multiple languages and internationalization, reflecting a mature digital presence. Technically, the site employs modern JavaScript frameworks, asynchronous script loading, and integrates Google services such as Tag Manager and Analytics, alongside Stripe for payments and reCAPTCHA for bot protection. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response information are not evident. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR-aligned cookie consent. Business credibility is supported by consistent branding and professional content, though direct contact details are not prominently displayed on the analyzed page. Overall, the site is professionally designed, functional, and secure, suitable for enterprise-level operations in the transportation sector.

T

The Hertz Corporation

dollar.co.uk

0

Dollar Car Rental UK, operated under The Hertz Corporation, provides car hire and rental services across Europe with over 400 locations. The website offers a user-friendly booking platform, special offers, and comprehensive customer support. The brand is well-established since 1965 and targets travelers seeking budget-friendly and flexible car rental options. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, CSRF tokens, and cookie consent mechanisms, though some security headers could be improved. The WHOIS data for the domain 'www.dollar.co.uk' is unavailable or invalid, but the website content and branding strongly indicate legitimacy as part of the Hertz group. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

T

The Hertz Corporation

thrifty.lu

0

Thrifty Car Rental, a brand under The Hertz Corporation, operates a comprehensive car rental service across Europe with over 400 locations. The website offers a user-friendly booking platform, extensive fleet options including electric vehicles, and promotional offers targeting cost-conscious travelers. The company leverages its strong brand recognition and parent company backing to maintain a competitive market position. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Tag Manager, ensuring a responsive and functional user experience. Privacy and cookie consent mechanisms are well implemented, reflecting compliance with GDPR and related regulations. Security posture is solid with HTTPS enforcement and CSRF protections, though some security headers and explicit vulnerability disclosures are absent. Overall, the site presents a professional and trustworthy digital presence aligned with an established transportation business.

T

The Hertz Corporation

thrifty.be

0

Thrifty Belgium is a car rental service website operated under The Hertz Corporation, a well-established global transportation company founded in 1958. The website offers a comprehensive range of rental vehicles targeting cost-conscious travelers and business clients in Belgium and Europe. The business model focuses on providing flexible, affordable car rental options with a strong online booking platform and physical locations across Europe. The site is well-branded, consistent, and provides clear service offerings with multiple language and location options. Technically, the website uses modern web technologies including Bootstrap 5, jQuery, and Google Tag Manager, with a cookie consent mechanism powered by Securiti.ai. The site is mobile-optimized and SEO-friendly, though some accessibility features could be enhanced. Performance is moderate with a good user experience and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and a published security.txt file. The WHOIS data is restricted due to DNS Belgium policies, limiting domain registration transparency, which slightly impacts trust. However, the overall digital maturity and security practices align with industry standards for a large transportation company. Overall, the website presents a trustworthy and professional front for Thrifty Car Rental in Belgium, with recommendations to improve security headers, publish vulnerability disclosure information, and enhance accessibility to further strengthen its security and compliance posture.

T

The Hertz Corporation

thrifty.nl

0

Thrifty.nl is the Dutch localized website of Thrifty Car Rental, a well-established car rental brand operating under The Hertz Corporation. The company offers affordable and flexible car rental services across the Netherlands and Europe, targeting cost-conscious travelers and business clients. The website provides a comprehensive booking platform, detailed fleet information, and localized content in Dutch, supported by a strong brand presence and social media engagement. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, cookie consent mechanisms, and CSRF protections, though some security headers could be improved. Privacy compliance is robust with clear privacy and cookie policies, and incident response information is publicly available. Overall, the site reflects a mature digital presence aligned with a large transportation company.

T

The Hertz Corporation

thrifty.it

0

Thrifty, operated by The Hertz Corporation, is a well-established car rental service provider founded in 1958, targeting cost-conscious travelers primarily in Italy and Europe. The website offers a comprehensive range of rental vehicles including electric and hybrid options, supported by a network of over 1000 locations. The digital platform is modern, mobile-optimized, and integrates advanced tracking and consent management tools, reflecting a mature technical infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and CSRF protections, though some security headers could be enhanced. Privacy compliance is robust with clear policies and GDPR adherence. Overall, the site projects a professional and trustworthy image aligned with its parent company's reputation.

T

The Hertz Corporation

thrifty.de

0

Thrifty.de is the German localized website of Thrifty Car Rental, a well-established car rental brand founded in 1958 and a subsidiary of The Hertz Corporation. The website offers comprehensive car rental services across Germany and Europe, targeting price-conscious business and leisure travelers. It provides a user-friendly booking interface, detailed fleet information, and multiple language and country options, reflecting a mature digital presence. The technical infrastructure leverages modern frontend technologies such as Bootstrap, jQuery, and slick-carousel, combined with a robust cookie consent mechanism powered by securiti.ai and Google Tag Manager for analytics and marketing. Security posture is strong with HTTPS enforcement and CSRF protections, though explicit security headers and a dedicated security policy page are absent. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. The domain registration aligns with the brand's legitimacy and history, reinforcing trust. Overall, the website demonstrates a professional, secure, and user-centric platform suitable for an enterprise-level transportation service provider.

T

The Hertz Corporation

hertz.es

0

The website www.hertz.es is the official Spanish portal for The Hertz Corporation, a globally recognized car and van rental company. It offers online reservation services tailored to the Spanish market and integrates with a broad international network of Hertz websites. The site targets consumers and businesses seeking vehicle rentals in Spain and worldwide, providing a professional and localized user experience. The business model centers on vehicle rental services supported by a loyalty program and business rental solutions. Technically, the site employs modern JavaScript frameworks, Google analytics and tag management, and security tools such as reCAPTCHA Enterprise, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with a comprehensive privacy policy and GDPR-aligned cookie consent. However, WHOIS data is restricted due to .es registry policies, limiting public domain registration transparency. Overall, the site is professional, secure, and trustworthy, suitable for enterprise-level operations.

T

The Hertz Corporation

thrifty.es

0

Thrifty.es is the Spanish localized website for Thrifty Car Rental, a well-established car rental brand operating under The Hertz Corporation. The website offers comprehensive car rental services across Spain and Europe, targeting travelers seeking affordable and flexible vehicle rentals. The site is professionally designed with a clear focus on user experience, featuring booking forms, promotional offers, and multilingual support. Technically, the website employs modern web technologies including jQuery, Bootstrap 5, and Google Tag Manager, ensuring a responsive and functional user interface. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements, although some security headers could be improved. The WHOIS data is unavailable due to .es domain restrictions but the domain and branding strongly align with the parent company, indicating legitimacy. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its large-scale commercial operations.

T

Thrifty Car Rental

thrifty.ie

0

Thrifty Car Rental operates a professional and user-friendly website focused on providing car rental services primarily in Ireland with global reach. The company offers a broad range of vehicles and emphasizes competitive pricing and convenience. The website integrates modern technologies such as jQuery, Bootstrap, and Google Tag Manager, supporting a responsive and accessible user experience. Privacy and cookie policies are clearly presented with a consent mechanism, reflecting compliance with GDPR standards. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy. Security practices are generally sound with HTTPS and CSRF protections, though additional security headers could enhance the posture. Overall, the site represents a credible and established business in the transportation sector with room for technical and security improvements.

T

The Hertz Corporation

thrifty.fr

0

Thrifty.fr is the French localized website of Thrifty Car Rental, a brand under The Hertz Corporation, a major player in the global car rental industry. The website offers car rental services primarily in France and Europe, targeting both leisure and business travelers. It provides a comprehensive booking system, special offers, and a diverse fleet including electric vehicles. The site is well-branded, consistent with corporate identity, and includes multilingual support and regional targeting. Technically, the site uses modern frontend frameworks such as Bootstrap and jQuery, integrates Google Tag Manager and Visual Website Optimizer for analytics and marketing, and implements cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS, CSRF tokens, and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but is mitigated by strong brand presence and content quality. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

T

Thrifty Car Rental

thriftycanada.ca

0

Thrifty Car Rental operates as a major car rental service provider primarily targeting consumers in Canada and the United States. It is a subsidiary of The Hertz Corporation, a well-established brand founded in 1965. The website offers online car rental reservations, location finders, and promotional deals, positioning itself as a competitive player in the transportation sector. The brand maintains consistent and professional digital branding with a focus on user-friendly design and clear service offerings. Technically, the website leverages modern web technologies including React, Adobe Experience Manager CMS, and advanced analytics tools such as Dynatrace and Google Tag Manager. The site is mobile-optimized and incorporates cookie consent mechanisms aligned with GDPR requirements. Security posture is generally strong with HTTPS enforced and privacy policies clearly presented, though explicit security headers are not evident in the HTML content. The absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy, but the overall trustworthiness is supported by consistent branding and external references. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility compliance to further strengthen the security and compliance posture.

B

Budget Car Rental Canada

budget.ca

0

Budget Car Rental Canada operates a comprehensive online platform for car rental services targeting Canadian consumers and businesses. The website offers reservation capabilities, promotional deals, loyalty programs, and additional services such as moving truck rentals. The company positions itself as a major player in the Canadian transportation rental market with strong branding and partner integrations. Technically, the site leverages modern web technologies including AngularJS, Adobe Experience Manager CMS, and integrates multiple analytics and marketing tools. Security posture is solid with HTTPS enforcement and bot protection via reCAPTCHA Enterprise, though some security headers are not explicitly detected. Privacy compliance is moderate due to lack of visible privacy and cookie policies in the provided content. WHOIS data is unavailable, likely due to privacy protection, but the site content and branding indicate legitimacy. Overall, the site is professional, user-friendly, and well-optimized for mobile users.

Maaturism.ee is the official website of MTÜ Eesti Maaturism, a non-profit organization dedicated to promoting rural tourism in Estonia. The website offers comprehensive information about accommodation, active holidays, food services, health tourism, family vacations, themed farms, museums, seminars, weddings, and cooperation networks. It also highlights various projects aimed at developing rural tourism products and services, targeting tourists interested in nature and cultural experiences in Estonia and the Baltic region. The organization has a strong local presence and a network of members, positioning itself as a key player in Estonia's rural tourism sector. Technically, the website employs a modern tech stack including jQuery, Leaflet.js for mapping, Google Tag Manager, and Google Analytics for tracking. It uses HTTPS with a hosting provider Elkdata OÜ, an Estonian registrar and hosting company, ensuring secure connections. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the site uses HTTPS and asynchronous script loading, but no explicit security headers were detected. There is no visible vulnerability disclosure or incident response contact information. The WHOIS data is transparent and consistent with the website's business and location, supporting legitimacy. Overall, the site demonstrates a moderate to good security posture but could improve compliance and security best practices. The overall risk assessment is moderate with recommendations to implement privacy and cookie policies, add security headers, and establish vulnerability disclosure mechanisms to enhance trust and compliance.

A

AS Kihnu Veeteed

veeteed.com

0

AS Kihnu Veeteed operates as a regional ferry transportation service provider in Estonia, specializing in ferry routes connecting several islands including Kihnu, Vormsi, Hiiumaa, Saaremaa, and others. The company offers online ticket sales through a modern React-based single-page application, targeting residents and visitors requiring reliable ferry transport. The website is professionally designed with consistent branding and provides essential information such as schedules, routes, and news updates. Technical infrastructure leverages modern web technologies including React, Material-UI, service workers for offline capabilities, and Google Analytics for user behavior tracking. Hosting and DNS services are managed via Google Cloud infrastructure, ensuring reliable uptime and performance. Security posture is adequate with HTTPS enforced and domain transfer protection enabled; however, DNSSEC is not enabled and security headers are not explicitly present, indicating room for improvement. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and security policies are absent. Overall, the website demonstrates a moderate to good level of digital maturity and business credibility, with recommendations to enhance security headers, DNSSEC, and incident response disclosures to strengthen trust and compliance.

R

Romantiline Rannatee

rannatee.ee

0

Romantiline Rannatee is a well-established regional tourism promotion website focused on the Pärnumaa coastal area in Estonia. The site offers rich content including destination guides, events, accommodations, and virtual tours, targeting tourists interested in nature, culture, and leisure activities. The business operates primarily as a tourism marketing platform, leveraging partnerships with local organizations and maintaining a consistent brand presence. Technically, the website is built on WordPress using the Avada theme and Yoast SEO plugin, with Google Tag Manager integrated for analytics. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, with no blocking or WAF detected, supporting a moderate to good trust level for visitors.

V

Visit Pärnu

visitparnu.com

0

Visit Pärnu operates a well-established regional tourism portal focused on the Pärnu area in Estonia, providing comprehensive information on accommodation, dining, events, transport, and general tourism guidance. The website targets tourists and visitors seeking detailed and localized travel information. The business is positioned as a key regional tourism information provider with a clear focus on hospitality and visitor services. Technically, the site is built on WordPress with Elementor and integrates modern plugins for search, analytics, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected, though improvements in DNSSEC and security headers are recommended. Privacy compliance is robust with accessible privacy and cookie policies aligned with GDPR requirements. Overall, the site demonstrates a professional and trustworthy online presence with good user experience and content relevance.

Z

Zone Media OÜ

spoku.ee

0

Spoku.ee is a government-focused support application and processing system primarily serving Estonian municipalities and institutions. The platform offers a comprehensive suite of features including application submission, payment integration, digital contract signing, and data integration with national registries. The website is built on WordPress with modern plugins and technologies, reflecting a moderate level of digital maturity. While the technical implementation is solid and the site is mobile-optimized with good SEO practices, there is a lack of published privacy, cookie, and security policies, which impacts compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal incident response documentation. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

Piksel OÜ

arno.ee

0

Arno.ee is a professionally developed WordPress-based website representing Piksel OÜ's software system for managing educational services in Estonia. The platform targets municipalities, schools, kindergartens, and hobby schools, offering modules for youth work, parental consent, invoicing, and digital signing via Smart-ID. The website demonstrates a consistent brand presence and good content quality, with a clear focus on the Estonian education sector. Technically, the site uses modern web technologies including WordPress 6.8.1, Kadence Blocks, and integrates Google Analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partial; a privacy policy is present and GDPR compliance is indicated, but cookie consent mechanisms are missing. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

S

Siseturvalisus

siseturvalisus.ee

0

Siseturvalisus.ee is a government-affiliated career portal dedicated to internal security in Estonia, providing job opportunities and career information across seven key security agencies. The website serves as a centralized platform for recruitment and career development in the Estonian internal security sector, targeting job seekers interested in contributing to national security. Technically, the site is built on WordPress with modern frontend libraries such as jQuery, Fancybox, and Splide.js, delivering a responsive and well-structured user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and explicit incident response contacts. Privacy compliance is adequate with privacy and cookie policies present, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its government sector mission.

V

Virupärane

laaneviru.ee

0

The website laaneviru.ee serves as an official regional portal for Lääne-Viru County in Estonia, focusing on tourism, living, and entrepreneurship. It provides comprehensive information about local attractions, events, accommodation, business support, and municipal resources. The site targets tourists, residents, and entrepreneurs interested in the region. The business model is informational and promotional, likely operated by a government or regional development entity. The domain is newly registered in 2024, consistent with the website's launch and content. Technically, the site is built on WordPress with modern performance and image optimization plugins. It uses Google Tag Manager and Facebook Pixel for analytics and marketing, with a cookie consent mechanism implemented via CookieYes. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly present, and no published security or incident response policies were found. Privacy compliance is basic, with no visible privacy policy or terms of service pages, which should be addressed to improve compliance and user trust. Overall, the website is professional and trustworthy, with a solid technical foundation and clear business purpose. Strategic recommendations include publishing privacy and security policies, enhancing security headers, and adding vulnerability disclosure information to strengthen security posture and compliance.

Z

Zone Media OÜ

eestitoit.ee

0

Eestitoit.ee is a government-affiliated website focused on promoting Estonian food culture, local food products, and sustainable food practices. It serves as an informational and educational platform targeting Estonian residents, food enthusiasts, and culinary tourists. The site is well-branded and consistent with official government initiatives, featuring rich content about food events, traditions, and sustainability projects. Technically, the website is built on Drupal CMS and uses modern analytics tools such as Google Analytics and Matomo. It is mobile-optimized and accessible, with good SEO practices. Security-wise, the site implements cookie consent with an opt-in mechanism but lacks visible advanced security headers and a published privacy policy or terms of service. WHOIS data confirms the domain's legitimacy and long-standing registration since 2010. Overall, the website is professional, trustworthy, and serves its informational purpose effectively.

P

Põllumajanduse Registrite ja Informatsiooni Amet (PRIA)

pria.ee

0

PRIA (Põllumajanduse Registrite ja Informatsiooni Amet) is the official Estonian government agency responsible for managing agricultural subsidies, registers, and providing information services to farmers and rural entrepreneurs. The website serves as a comprehensive portal offering subsidy information, registers, news, and e-services such as the e-PRIA login portal. The site targets Estonian agricultural stakeholders and the general public interested in rural development. Technically, the website is built on Drupal 10, employs modern web technologies, and integrates analytics and business intelligence tools, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and shows no signs of exposed sensitive data or vulnerabilities. Overall, the website demonstrates a strong security posture and good privacy compliance, supporting its role as a trusted government resource.

The website www.rescue.ee is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. As a result, no actual website content, metadata, or business information is available for analysis. The site is protected by Cloudflare's security mechanisms, which block automated access and prevent content scraping. Without access to the real content, it is impossible to assess the business overview, technical infrastructure, security posture, or compliance status. This limitation significantly impacts the ability to provide meaningful insights or recommendations.

@

@weboinc

webolution.ee

0

Webolution is a small Estonian web development company specializing in creating functional digital solutions and websites. With nearly 20 years of experience, they position themselves as a reliable partner for businesses seeking end-to-end digital services from concept to launch. Their portfolio showcases a variety of projects including websites and e-commerce platforms, indicating a focus on quality and client satisfaction. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though the absence of security headers and explicit privacy policies suggests room for improvement. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

S

SYNLAB Eesti

synlab.ee

0

SYNLAB Eesti is the largest medical laboratory in Estonia, operating since 1995 and part of the global SYNLAB Group. The company provides a wide range of medical laboratory testing services targeting medical professionals, private clients, and employers. The website reflects a mature digital presence built on WordPress with modern plugins and SEO optimizations. It offers multilingual support and integrates GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and explicit security policies could enhance trust. Contact is primarily via a contact form, with no exposed direct emails or phone numbers. Overall, the site is professional, trustworthy, and well-aligned with the business's market position.

A

AS Medisoft

medisoft.ee

0

AS Medisoft is an Estonian technology company with a domain registered since 2010, indicating a stable business presence. The website is built on WordPress using the Divi theme, reflecting a standard and professional digital infrastructure. The site appears to target a local or regional audience, though explicit business descriptions and contact details are not readily found in the provided content. The technical setup is moderate in performance and mobile optimization, but lacks advanced SEO and accessibility features. Security posture is average, with no detected security headers or explicit SSL/TLS configuration details, and no privacy or cookie policies are present, which may impact compliance and user trust. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.