Security Directory

P

Peetri Kool

peetrikool.ee

0

Peetri Kool is a small educational institution located in Estonia, providing primary and kindergarten education services to the local community. The website serves as an informational portal offering details about school schedules, staff, admission, and extracurricular activities. The site is built on WordPress using the Education Hub theme and integrates basic modern web technologies such as jQuery and Font Awesome. Hosting appears to be managed by Elkdata OÜ, a local Estonian provider. The website is accessible, mobile-optimized, and includes clear navigation but lacks comprehensive content on the homepage. Security posture is moderate with HTTPS enabled but missing important security headers and privacy compliance elements such as privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Analytics are handled via plausible.io, indicating a privacy-conscious approach but without explicit consent mechanisms.

K

Koigi Kool

koigikool.ee

0

Koigi Kool is a small educational institution located in Koigi village, Estonia, providing primary and kindergarten education services. The website serves as an information portal for students, parents, and staff, offering news, event updates, school life details, and contact information. The site is built on Drupal 10 and incorporates modern web technologies and accessibility features, reflecting a moderate to good level of digital maturity. The presence of Matomo analytics indicates a privacy-conscious approach to user tracking. Security posture is adequate but could be improved by enabling DNSSEC and implementing security headers. No privacy policy or explicit security policies are published, which is a gap in compliance. Overall, the domain is legitimate and stable, with clear contact details and partner affiliations.

E

Elkdata OÜ

koerumuusikakool.ee

0

Koeru Muusikakool is a small, regionally focused music school based in Estonia, providing music education and cultural events primarily targeting students and the local community. The website is built on a modern WordPress platform using popular plugins such as WooCommerce and Tutor LMS, indicating a digital maturity suitable for educational content delivery and course management. The site features active social media integration and regularly updated news content, supporting engagement with its audience. Technically, the website is well-structured with responsive design and moderate performance, although accessibility and SEO optimizations are basic. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance security posture. The WHOIS data confirms the domain is legitimately registered to Elkdata OÜ since 2010, consistent with the business's operational history. Overall, the website presents a professional and trustworthy front for the music school but requires improvements in privacy compliance and security best practices to reduce risk and increase user confidence. Strategic enhancements in these areas will support sustainable growth and regulatory adherence.

J

Järva-Jaani Gümnaasium

jjaanikool.ee

0

Järva-Jaani Gümnaasium is a public secondary educational institution located in Estonia, providing comprehensive educational services and community engagement. The website serves as an information portal for students, parents, and staff, offering details on school life, teaching schedules, admissions, and extracurricular activities. The institution maintains a strong local presence with partnerships and certifications that enhance its educational offerings. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Swiper.js for interactive elements and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization and accessibility features, including adjustable font sizes and contrast settings, supporting inclusive access. From a security perspective, the site uses HTTPS and respects Do Not Track signals in analytics, but lacks advanced security headers and published security policies. The domain registration is consistent with the Estonian Ministry of Education, reinforcing legitimacy. No blocking or WAF interference was detected, allowing full content access. Overall, the website presents a professional and trustworthy digital presence for the school, with room for improvement in security policy transparency and enhanced security headers to further protect users and data.

Aktsiaselts Koeru Hooldekeskus is a regional healthcare and eldercare service provider based in Järva County, Estonia. The organization specializes in 24/7 general care, nursing assistance, special care for individuals with deep disabilities, and dementia care. The website reflects a medium-sized entity with a clear focus on providing comprehensive care services to elderly and special needs clients. The business maintains a consistent brand presence and provides clear contact information and service descriptions, positioning itself as a trusted local healthcare provider. Technically, the website is built on WordPress using a modern tech stack including LayerSlider, WPBakery Page Builder, and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks some security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website demonstrates a solid digital presence with good business credibility and technical implementation. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence.

E

Ettevõte

jarvakodu.ee

0

Järvakodu is a small healthcare business operating a newly renovated elderly care home in Järva-Jaani, Estonia. The facility offers 24/7 general care services with a focus on personalized attention, a supportive environment, and sustainable energy solutions such as solar panels and geothermal heating. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and frameworks, hosted by Elkdata OÜ, and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but no terms of service or incident response information is published. Overall, the site is trustworthy and well-maintained, supporting the business's credibility and customer engagement.

A

Ahula Pansionaat

ahulakodu.org

0

Ahula Pansionaat is a small healthcare service provider based in Estonia, offering general care services outside the home in a homely environment. The website is built on the Wix platform, indicating a moderate level of digital maturity with standard Wix technologies and frameworks. The site is accessible, mobile-optimized, and uses HTTPS, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data limits the ability to fully verify domain legitimacy. Overall, the website presents a professional front for a local care facility but would benefit from enhanced security and compliance measures.

J

Järva Valla Noorsootöökeskus

jarvanoored.ee

0

Järva Valla Noorsootöökeskus is a local government youth work center in Estonia, focused on providing youth services, activities, and community engagement within the Järva municipality. The website serves as an informational portal for youth centers, events, hobby education, and youth council activities. The organization appears to be a small public sector entity founded recently in 2022, with a clear local community focus. Technically, the website is built on WordPress using Elementor and common plugins, hosted by Zone Media OÜ. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No analytics or advertising scripts are detected, indicating minimal user tracking. Security posture is basic with HTTPS enabled but no security headers detected and no visible privacy or cookie policies, indicating compliance gaps with GDPR. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The site links to multiple partner organizations and government-related domains, enhancing trust. Overall, the website is functional and serves its purpose as a local youth center portal but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

J

Järva Vallaraamatukogu

jarvaraamat.ee

0

Järva Vallaraamatukogu operates as a public library service for the Järva County region in Estonia, providing residents with access to books, cultural events, and library services including a mobile library bus. The website serves as an informational portal with news, events, and user resources, targeting local community members and library patrons. The business model is government-funded public service, with a clear focus on community engagement and education. Technically, the website is built on WordPress using the Avada theme and incorporates modern web technologies such as Slider Revolution and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not detected and no explicit security or incident response policies are published. Overall, the site is trustworthy and professionally maintained, reflecting its public institution status.

O

OÜ Oesel

huviregister.ee

0

Huviregister.ee is a specialized Estonian platform designed to manage hobby groups and their participants, primarily serving municipalities, hobby education providers, and parents. The service facilitates data collection, subsidy calculations, billing, and reporting related to hobby activities, supporting both public and private sector hobby schools. The platform is operated by OÜ Oesel, a small Estonian company founded in 2020. The website content is clear and relevant, though it lacks comprehensive legal and privacy documentation. Technically, the site uses a simple stack with HTML, CSS, and jQuery, hosted under a domain registered with Zone Media OÜ. Security posture is moderate but could be improved by enabling DNSSEC and adding security headers. No blocking or WAF mechanisms were detected, allowing full content access.

The website kriis.ee is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires human verification via Turnstile captcha. This security measure blocks access to the actual website content, preventing any meaningful analysis of business or security details. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate and established domain. However, the lack of accessible content, absence of privacy or cookie policies, and no visible contact or business information significantly limit the ability to assess the website's business model, technical maturity, or security posture. The technical infrastructure relies on Cloudflare services for security and performance, but no advanced security headers or configurations are evident in the provided data. Overall, the site appears to be protected by strong perimeter security but lacks visible transparency or user-facing information.

Z

Zone Media OÜ

visitjarva.ee

0

Visitjarva.ee is a regional tourism information website focused on Järvamaa (Järva County) in Estonia. It provides comprehensive information about local events, accommodation, cultural and historical sites, nature activities, food, wellness, and seminar facilities. The site targets tourists and visitors interested in exploring the region, offering curated content and links to social media channels for engagement. The business operates under Zone Media OÜ, with a domain established in 2016, indicating a stable presence in the regional tourism market. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Owl Carousel, LazySizes, and Lightbox for enhanced user experience. SEO is well addressed through Yoast SEO plugin and structured data (JSON-LD). The site is mobile optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, managed by Zone Media OÜ. From a security perspective, the site enforces HTTPS with excellent SSL configuration and includes a cookie consent banner, demonstrating basic privacy compliance. However, it lacks explicit privacy policy and terms of service pages, security headers, and a vulnerability disclosure mechanism. No incident response or security policy information is published, which could be improved to enhance trust and compliance. Overall, the website is a good quality regional tourism portal with solid business credibility and technical implementation. Strategic improvements in privacy documentation, security headers, and incident response transparency would elevate its security posture and compliance standing.

Z

Zone Media OÜ

planeeringud.ee

0

The website planeeringud.ee serves as the official Estonian national repository for established planning documents, providing public access to planning data and downloadable files. It targets municipalities, planners, and the general public interested in regional planning information. The platform is built on modern Angular technology with Material Design components, ensuring a responsive and user-friendly interface. The site integrates Google Analytics for usage tracking but lacks visible privacy and cookie policies, indicating compliance gaps with GDPR requirements. Security posture is solid with HTTPS and a Content-Security-Policy header, though additional security headers and vulnerability disclosure mechanisms are absent. Overall, the site is professionally presented and trustworthy but would benefit from enhanced privacy compliance and security hardening.

Skepast & Puhkim OÜ is a leading Estonian consultancy specializing in infrastructure, environmental, and spatial planning services with over 15 years of experience. The company offers expert engineering and consulting services including infrastructure design, environmental impact assessments, and spatial planning solutions. Their market position is strong within Estonia, supported by a medium-sized team of 40 experts and a professional digital presence. The website is well-structured, multilingual, and provides clear contact channels and business information. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for traffic analysis. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is robust with a comprehensive privacy policy and cookie consent banner. No critical vulnerabilities or suspicious WHOIS patterns were detected, indicating a trustworthy domain and business operation.

P

PÕLTSAMAA KODANIK MTÜ

poltsamaaraadio.ee

0

Põltsamaa Raadio is a small, community-driven seasonal radio station operated by local youth in the Põltsamaa region of Estonia. It broadcasts both online and on FM frequency 95.0 MHz, supported by project funding from the LEADER program to enhance broadcast reach. The website serves as a portal for live streaming, program schedules, and community engagement, targeting local listeners and supporters. The business model relies on volunteer efforts, donations, and local sponsorships. Technically, the site is built on WordPress with Elementor and several plugins for podcasting and streaming, hosted by Zone Media OÜ. The site is mobile responsive and uses modern web technologies, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy for its community media purpose but would benefit from improved privacy and security practices.

P

Põltsamaa Vallavara OÜ

visitpoltsamaa.com

0

Visit Põltsamaa is a regional tourism information website dedicated to promoting the Põltsamaa municipality in Estonia. The site provides comprehensive information about local attractions, accommodations, dining options, events, and cultural heritage, targeting tourists and visitors interested in exploring the region. The business operates as a small entity, likely under Põltsamaa Vallavara OÜ, with a focus on hospitality and government-supported tourism promotion. The website is multilingual, supporting Estonian, English, Finnish, and Russian, enhancing accessibility for diverse visitors. Technically, the website is built on WordPress CMS with common plugins such as Yoast SEO for search optimization and WPML for multilingual support. It uses jQuery and Google Analytics for user tracking and performance monitoring. The site demonstrates good mobile optimization and a professional design, though accessibility features are basic. Performance is moderate, with room for improvement in technical implementation such as enabling DNSSEC and adding security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and security headers like Content Security Policy or HSTS, which could enhance protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is provided but limited to an email and phone number in the footer. No incident response or vulnerability disclosure information is available. Overall, the website is a credible and functional regional tourism portal with good business credibility and technical foundation but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

S

Spordikoolituse ja -Teabe SA

spordiregister.ee

0

Eesti Spordiregister, operated by Spordikoolituse ja -Teabe SA under the Estonian Ministry of Culture, serves as the official national registry and information portal for sports organizations, schools, facilities, and coaches in Estonia. It provides comprehensive data services including statistics, data submission portals, and public access to sports-related information, targeting sports entities and the general public. The platform is well-positioned as a trusted governmental resource in the Estonian sports sector. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Highcharts, Leaflet, and other modern JavaScript libraries, ensuring a responsive and accessible user experience. The site is mobile-optimized and implements basic SEO and accessibility features. The infrastructure appears custom-built without reliance on popular CMS platforms, indicating tailored development for specific governmental needs. From a security perspective, the site enforces HTTPS and uses secure form inputs, but lacks some advanced security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or malware were detected, and cookie consent mechanisms are in place, supporting GDPR compliance. The WHOIS data aligns well with the website's governmental nature, reinforcing legitimacy. Overall, the website demonstrates a solid security posture and technical maturity suitable for its governmental role, with room for improvement in security header implementation and transparency around security policies. The business credibility is high given its official status and clear contact information.

R

Rakvere Spordikeskus

rakverespordikeskus.ee

0

Rakvere Spordikeskus is a well-established public sports center located in Rakvere, Estonia, founded in 2010. It serves as a key regional hub for sports facilities, events, and training programs targeting local residents, sports clubs, and event organizers. The website reflects a professional and community-focused organization with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although formal security policies and incident response information are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the site demonstrates a mature digital presence suitable for its public service role.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

0

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

R

Rakvere Raamatukogu

lvkrk.ee

0

Rakvere Raamatukogu is a regional public library in Estonia providing a range of library and community services including book lending, e-catalog access, home delivery for vulnerable populations, and educational events. The website is built on Joomla CMS and integrates common web technologies such as Bootstrap, jQuery, and FontAwesome. It uses HTTPS and includes Google Analytics and Tawk.to live chat for user engagement and analytics. The site is well-branded and consistent with its public service mission, targeting local residents and library users. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. WHOIS data confirms domain legitimacy and long-term registration consistent with the institution's history.

M

MTÜ Spordiklubi Presidendirada

presidendirada.ee

0

Spordiklubi Presidendirada is a small non-profit sports club based in Estonia, organizing the annual Presidendimatk event. The website provides event information, prize details, and contact information, targeting local sports enthusiasts and community members. The site is hosted on Google Sites, leveraging Google's infrastructure and technologies such as Google Fonts and APIs, with embedded Facebook social media integration. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, though lacking advanced security headers and formal security policies. Privacy compliance is minimal, with a cookie consent banner present but no dedicated privacy or terms pages. Overall, the website is trustworthy and professional for its scope but could improve in privacy and security transparency.

S

Spin TEK AS

llr.ee

0

The website www.llr.ee operates as the national pet registry platform for Estonia, managed by Spin TEK AS. It serves municipalities, veterinarians, shelters, and pet owners by providing a centralized system for pet registration and data management. The site is primarily in Estonian with an English option, targeting local government entities and citizens. The business model is focused on providing a government-aligned service with partnerships across municipalities and veterinary services, positioning itself as an essential national infrastructure for pet management. Technically, the website uses standard web technologies including jQuery and Google Analytics, with HTTPS enforced. The site shows moderate performance and basic mobile optimization. SEO and accessibility are basic but functional. However, there is a lack of advanced security headers and no visible privacy or cookie policies, which indicates room for improvement in compliance and security posture. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data but lacks explicit security headers such as CSP and HSTS. No vulnerability disclosures or incident response contacts are published, and no forms are present on the homepage to analyze input security. The use of Google Analytics without a cookie consent mechanism suggests potential GDPR compliance gaps. Overall, the website is legitimate and consistent with its stated purpose and ownership. The risk level is moderate due to missing privacy and security best practices. Strategic improvements in security headers, privacy compliance, and transparency would enhance trust and reduce potential regulatory risks.

The domain ehr.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, which prevents direct content analysis. The WHOIS data indicates the domain is registered with Zone Media OÜ in Estonia since 2010, suggesting a mature and legitimate registration. However, no business, contact, or policy information is publicly accessible on the landing page. The website relies heavily on Cloudflare's security and performance infrastructure, but no further technical or business details can be extracted due to the blocking mechanism. This limits the ability to assess the company's market position, services, or compliance posture. Security posture cannot be fully evaluated, but the presence of Cloudflare indicates some level of protection.

T

Tamsalu Perearstid OÜ

tamsalutervisekeskus.ee

0

Tamsalu Perearstid OÜ operates the Tamsalu Tervisekeskus website, providing primary healthcare services in Tamsalu and Vajangu, Estonia. The company offers a range of medical services including vaccinations, paid therapies, dental care, and pharmacy services, targeting local residents. The website is professionally designed using WordPress with the Avada theme and integrates trusted Estonian healthcare portals and partners, reflecting a solid local market position as a small healthcare provider. Technical infrastructure is modern and includes SEO optimization and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. WHOIS data confirms domain legitimacy and consistency with business founding in 2022. Overall, the site is trustworthy and functional but could improve privacy compliance and security practices.

Tapa Perearstikeskus OÜ operates as a local healthcare provider in Estonia, offering primary care services including general practitioners, nurses, midwifery, and physiotherapy. The website presents comprehensive contact details and staff information, positioning itself as a trusted community medical center. Technically, the site is built on the Odoo CMS platform with standard web technologies and demonstrates good mobile optimization and user experience. However, the absence of privacy and cookie policies indicates potential compliance gaps with GDPR requirements. Security posture is moderate with some best practices like CSRF tokens but lacks visible security headers and explicit HTTPS enforcement details. Overall, the site is functional and credible but would benefit from enhanced privacy and security measures.

The website tamsalusport.ee is currently a parked domain page indicating that the domain is registered but not linked to any hosting service. It primarily serves as a placeholder to promote web hosting packages offered by Zone Media OÜ, the domain registrar and hosting provider. The site is multilingual, targeting Estonian, Russian, Finnish, and English speakers, and offers basic information about hosting plans including pricing and features. There is no active business content or contact information on the site, reflecting its placeholder status. From a technical perspective, the site uses standard HTML, CSS, and JavaScript with no advanced frameworks or CMS detected. The hosting provider is Zone Media OÜ, consistent with the WHOIS data. The site is mobile responsive and has basic SEO and accessibility features but lacks comprehensive metadata or structured data. Security headers are minimal, with only a Content-Security-Policy allowing unsafe-inline scripts, and DNSSEC is not enabled, which is a security gap. Security posture is limited due to the lack of HTTPS linkage on the domain, absence of security best practices, and no privacy or cookie policies. No forms or data collection mechanisms are present, reducing immediate privacy risks but also indicating no active user engagement. The WHOIS data shows a recent domain registration consistent with the placeholder nature of the site. There are no suspicious patterns or privacy protection used, and the registrant matches the hosting provider, supporting legitimacy. Overall, the site is low risk but also low value in terms of business credibility and privacy compliance. It is recommended to enable DNSSEC, implement HTTPS hosting, add privacy and cookie policies, and provide contact information to improve trust and compliance. Until the domain is linked to an active website, the site remains a basic parked domain page with limited content and security features.

T

Tapa Valla Spordikeskus

tapasport.ee

0

Tapa Valla Spordikeskus is a municipal sports center in Lääne-Virumaa, Estonia, offering diverse sports facilities including swimming pools, gyms, health trails, and event hosting. The website serves local residents and sports enthusiasts with information on training, events, and additional services such as accommodation and seminar rooms. The business operates under a government sector model, founded in 2020, and maintains a consistent and professional online presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted by Virtuaal.com OÜ, and optimized for mobile devices with good performance and accessibility. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are missing, representing compliance gaps. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

O

Olevalmis.ee

olevalmis.ee

0

Olevalmis.ee is a government-affiliated Estonian crisis preparedness information portal operated under the auspices of the Estonian Rescue Board (Päästeamet). The website provides practical guidance on handling various crises, behavioral instructions, emergency contact information, and news updates relevant to public safety. It targets Estonian residents seeking reliable and official information on crisis readiness. The business model is informational and public service oriented, positioning itself as a trusted government resource in the emergency preparedness sector. Technically, the website is built on modern web technologies including Nuxt.js and Vue.js frameworks, leveraging Cloudinary for media delivery and Matomo for analytics. The site demonstrates good mobile optimization, accessibility at a basic level, and solid SEO practices. Performance is moderate with no critical technical issues detected. The infrastructure reflects a mature digital presence suitable for a government service. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes important security headers. No exposed sensitive data or vulnerable libraries were found. However, the site lacks explicit cookie consent mechanisms and does not publish dedicated security or incident response policies, which are areas for improvement. The WHOIS data confirms the domain's legitimacy and consistency with the website's government affiliation. Overall, Olevalmis.ee presents a trustworthy, professional, and well-maintained platform for crisis information in Estonia. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, enhancing accessibility, and adding vulnerability disclosure information to further strengthen trust and compliance.

The website at v-maarja.eu is currently under construction, presenting only a frameset that redirects to a placeholder page. There is no meaningful content, metadata, or business information available on the site. The domain is registered through Zone Media OÜ, an Estonian registrar, but no further business details are provided. The lack of content and policies limits the ability to assess the business or its market position. Technically, the site lacks modern web features, security headers, and visible SSL configuration, indicating a low digital maturity level. Security posture is weak due to absence of HTTPS and security best practices, and no privacy or cookie policies are published, resulting in poor privacy compliance. Overall, the site presents a high risk due to minimal content and lack of transparency, requiring significant improvements before it can be considered trustworthy or compliant.

Z

Zone Media OÜ

puhkaeestis.ee

0

PuhkaEestis.ee is a professional tourism portal focused on promoting Estonia's unique cultural, natural, and recreational offerings to visitors. The website is well-established, with a domain age dating back to 2010, and is operated by Zone Media OÜ. It targets tourists and travelers interested in exploring Estonia, providing curated content on activities, destinations, and local experiences. The site leverages modern web technologies including Next.js and React, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism aligned with GDPR requirements. However, explicit contact information, terms of service, and security policy pages are not publicly available, which could be improved to enhance transparency and trust. Security posture is strong with HTTPS enforcement and monitoring tools like New Relic in place, but incident response details are absent. Overall, the site presents a trustworthy and professional front for Estonia's tourism promotion, with room for improvement in compliance documentation and contact accessibility.

V

Virumaa Rannakalurite Ühing MTÜ

vrky.ee

0

Virumaa Rannakalurite Ühing MTÜ is a regional non-profit association established in 2007 in Estonia, serving fisheries sector stakeholders in Ida- and Lääne-Virumaa. The organization supports local fisheries businesses, non-profits, and municipalities through project coordination and information dissemination. The website reflects a focused regional presence with clear business objectives and a target audience within the local fisheries community. Technically, the site is built on WordPress with modern libraries such as jQuery, Swiper.js, and Google Fonts, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and technical maturity appropriate for a small non-profit organization.

V

Virumaa Koostöökogu

viko.ee

0

Virumaa Koostöökogu is a small Estonian non-profit organization focused on regional cooperation and rural development in the Virumaa area. Founded in 2006, it serves local municipalities and communities by managing projects, organizing events, and facilitating cooperation among stakeholders. The website reflects this mission with relevant content, event announcements, and organizational information. Technically, the site is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, with integration of Google Analytics and Facebook Pixel for tracking. The site is mobile-optimized and SEO-friendly but lacks some accessibility features. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms despite tracking scripts. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

MTÜ Partnerid is a small Estonian non-profit organization established in 2006, focusing on regional development and cooperation among local municipalities, NGOs, and entrepreneurs in Lääne-Virumaa. The website serves as an information hub for projects, events, and organizational details, targeting local communities and stakeholders. The digital infrastructure is based on WordPress with a moderate technical maturity, leveraging common plugins for SEO, statistics, and event management. The site is well-structured, mobile-optimized, and provides clear navigation and contact information. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with a cookie consent mechanism present but no privacy policy or terms of service published. Overall, the website is trustworthy and professional but would benefit from enhanced compliance documentation and security policies.

E

eHost OÜ

arenduskeskus.ee

0

Investor.ee is a small Estonian educational website focused on providing information and guidance about investing and financial growth. The site targets individuals and organizations interested in learning about investment strategies, risk management, and financial planning. The business operates primarily as an informational resource with content in Estonian, positioning itself as a niche player in the finance education sector. The website is built on WordPress using modern themes and plugins, with a moderate level of technical maturity and good mobile optimization. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security best practices such as security headers and explicit privacy policies are missing. Overall, the site demonstrates a moderate security posture with room for improvement in privacy compliance and security transparency.

L

Lääne-Viru Omavalitsuste Liit

virol.ee

0

Lääne-Viru Omavalitsuste Liit is a regional government association serving the municipalities of Lääne-Viru County, Estonia. The organization focuses on regional development, public health, safety, education, tourism, entrepreneurship, and cooperation among local governments. The website reflects a well-established entity with a domain registered since 2010, consistent with its government association status. The site targets local government officials, residents, and regional partners, providing information on programs, events, and strategic initiatives. Technically, the website is built on WordPress with modern plugins and technologies, including GDPR-compliant cookie consent and Google Analytics integration. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

The website elvl.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to any substantive content. The domain is registered to Elkdata OÜ, an Estonian company, since 2017, indicating a legitimate registration and consistent domain ownership. However, no business-related content, contact information, or compliance policies are accessible on the site. The technical infrastructure relies heavily on Cloudflare services for security and performance, but the lack of accessible content prevents a full assessment of the site's digital maturity or business model. Security posture cannot be evaluated beyond the presence of Cloudflare's WAF and challenge mechanisms.

The website id.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to actual site content. The domain is registered to Zone Media OÜ, an Estonian company, with a domain age of over a decade, indicating legitimacy. However, no business descriptions, contact information, or policy documents are accessible for analysis. The technical infrastructure relies on Cloudflare services for security and analytics, but the lack of DNSSEC and visible security headers limits the security posture assessment. Overall, the site appears to be a government or official digital identity service, but the current access restrictions prevent a full evaluation.

The website eesti.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct content access. This page serves as a security gate to verify visitors before allowing access to the actual site content. The domain is registered to Zone Media OÜ, an Estonian registrar, with a creation date in 2010, consistent with a mature government portal. However, no business or contact information, privacy policies, or terms of service are visible on the challenge page, limiting the ability to assess compliance and business details. The technical infrastructure relies on Cloudflare services for CDN and security, including the Turnstile captcha mechanism. The security posture is moderate given the use of HTTPS and Cloudflare protections, but lacks visible security headers and policies. Overall, the site cannot be fully analyzed due to access restrictions, resulting in a low AI score and limited insights.

The website lasteabi.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, preventing access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and established presence. However, no business, contact, or policy information is accessible for analysis. The technical infrastructure relies on Cloudflare services for security and performance, but the lack of accessible content limits the ability to assess digital maturity or business operations. Security posture cannot be fully evaluated beyond the presence of Cloudflare's WAF protection. Overall, the site is effectively blocked from analysis, resulting in a low AI score and limited insights.

H

Häirekeskus

112.ee

0

Häirekeskus is the official Estonian Emergency Response Center responsible for managing emergency calls and coordinating emergency services such as ambulance, police, and rescue. The website serves as a public information portal providing emergency contact numbers, career opportunities, and safety guidance. It targets Estonian residents and visitors requiring emergency assistance, positioning itself as a critical government agency in public safety. The site is well-branded and consistent with government standards, offering content primarily in Estonian with English and Russian alternatives. Technically, the website is built on modern web technologies including Nuxt.js and Vue.js, ensuring good mobile optimization, accessibility, and SEO. The site loads with moderate performance and includes security best practices such as HTTPS enforcement and security headers. No major vulnerabilities or exposed sensitive data were detected. However, explicit cookie consent mechanisms and security policy disclosures could be improved. The security posture is strong with excellent SSL configuration and standard security headers. The absence of a published incident response or vulnerability disclosure policy is noted but not critical. WHOIS data confirms the domain's legitimacy and consistency with the Estonian government entity. Overall, the website demonstrates a mature digital presence with a high level of trustworthiness and professionalism. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to enhance transparency and compliance. These improvements will further strengthen the site's security posture and user trust.

The website livekluster.ehr.ee is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. This indicates a strong security posture at the perimeter, likely to protect sensitive electronic health record (EHR) data. However, due to the content being blocked, no business or contact information, privacy policies, or terms of service are visible, limiting the ability to assess the company's market position or services. The technical infrastructure leverages Cloudflare's security and performance services, but the lack of visible content and metadata results in poor content quality and SEO. Security best practices are partially implemented through WAF and bot mitigation, but no additional security headers or policies are observable. Overall, the site demonstrates a high-security perimeter but lacks transparency and compliance disclosures in the accessible content.

K

Kihnu Muuseum

kihnumuuseum.ee

0

Kihnu Muuseum is a small cultural heritage museum located in Estonia, dedicated to preserving and presenting the unique Kihnu heritage culture. The museum operates both physical exhibitions and virtual tours, offering educational workshops, group visits, event organization, and guided services. The website is built on WordPress using the OceanWP theme and Elementor page builder, hosted by Elkdata OÜ. It employs modern web technologies including jQuery and Font Awesome, and uses plausible.io for privacy-conscious analytics. The site is accessible, mobile-optimized, and professionally designed with clear navigation and relevant content for its target audience. Security posture is good with HTTPS enforced and no visible vulnerabilities, though it lacks security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the website is trustworthy and credible for its business purpose, though improvements in security headers and privacy compliance are recommended.

K

Kihnu Vallavalitsus

visitkihnu.ee

0

Visit Kihnu is a specialized tourism website promoting the Estonian island of Kihnu. It provides comprehensive information about local events, accommodations, transport options, cultural heritage, and services, targeting tourists interested in visiting the island. The website is operated by Kihnu Vallavalitsus, an official local government entity, which adds credibility and trustworthiness to the platform. The domain is registered since 2017 and aligns well with the business purpose and location. Technically, the website uses a modern JavaScript stack including jQuery, Leaflet.js for maps, Google Analytics, and Facebook Pixel for tracking. It employs Google reCAPTCHA for form security and uses HTTPS to secure communications. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site has a good SSL configuration and uses CSRF tokens in forms, but no security headers were detected in the provided data. There is no visible incident response or vulnerability disclosure information. Tracking and analytics are moderately extensive, but privacy compliance is weak due to missing policies and consent mechanisms. Overall, the website is a credible and functional tourism portal with good business credibility and technical implementation. To improve, it should address privacy compliance by publishing policies and implementing cookie consent, enhance security headers, and provide incident response contacts to strengthen trust and compliance.

T

The Hertz Corporation

hertz.co.uk

0

The Hertz Corporation operates a comprehensive car and van rental service platform targeting customers primarily in the UK and worldwide. The website offers a broad range of services including daily car hire, electric vehicles, long-term business rentals, and van hire, supported by loyalty programs such as Gold Plus Rewards. The site is professionally designed with good content quality and clear navigation, optimized for mobile devices. Technically, the platform leverages modern JavaScript frameworks, Google Tag Manager, Google Analytics, and Stripe for payments, alongside security tools like Google reCAPTCHA Enterprise and a cookie consent mechanism powered by Securiti.ai. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. WHOIS data for the subdomain queried is unavailable due to Nominet rules, but the main domain is legitimate and consistent with the business. Overall, the website demonstrates a mature digital presence with robust security and privacy practices.

C

404 Page not found | Canary

cms-dt.com

0

The website cms-dt.com currently serves a 404 error page indicating that the requested content is not available or has been moved. There is no visible business information, contact details, or privacy-related policies on the accessible page. The domain is relatively new, registered in April 2023 via Amazon Registrar, Inc., and uses the Laravel framework with common JavaScript libraries such as jQuery and Bootstrap. The technical infrastructure appears standard but lacks advanced security configurations such as DNSSEC and security headers. The absence of privacy policies, cookie consent mechanisms, and contact information indicates low compliance with privacy regulations and poor user trust signals. Overall, the site is in an early or incomplete state, limiting its business credibility and security posture.

G

Goldcar Spain S.L.

goldcar.es

0

Goldcar Spain S.L. operates a large car rental service with over 95 offices across multiple countries, primarily in Southern Europe. The company is a subsidiary of Europcar, positioning it as a significant player in the transportation rental sector. The website offers multilingual support, currency selection, and a comprehensive booking system, targeting travelers seeking affordable car rentals. Technically, the site uses modern frameworks such as Bootstrap and integrates performance and consent management tools like Akamai Boomerang and Didomi SDK. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be verified further. The absence of WHOIS domain registration data is a transparency concern but does not detract from the overall legitimacy indicated by the brand presence and structured data. Overall, the website is professional, user-friendly, and compliant with GDPR requirements.

G

Goldcar

ongoldroad.com

0

Goldcar is a large car rental company operating over 115 offices primarily in Europe and the United States, targeting travelers and tourists. The company is part of the Europcar Mobility Group, which enhances its market credibility and operational scale. The website is professionally designed, mobile-optimized, and provides comprehensive information about office locations and services. Technically, the site uses modern frameworks such as Bootstrap, integrates Google Tag Manager and Akamai Boomerang for analytics and performance monitoring, and employs Didomi for consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and association with Europcar support its legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

G

Goldcar

goldcarhelp.com

0

Goldcar is a well-established car rental company operating primarily in Spain with a strong presence in major tourist destinations. The company offers a variety of car rental services, including innovative features like the Key'n Go automatic key pickup system and a loyalty program called GO Club. The website serves as a comprehensive help center supporting customers with FAQs, booking assistance, and contact options. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and Google Tag Manager, hosted on a CDN likely provided by Akamai, ensuring moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced and secure forms, but lacks some security headers and explicit cookie consent mechanisms. The absence of WHOIS registration data is a notable concern, impacting trust and legitimacy assessments. Overall, the site is professional and functional but would benefit from enhanced security and privacy compliance measures.

Prisma.fi is a large Finnish e-commerce retail platform offering a wide range of consumer products including electronics, home goods, fashion, sports, and garden supplies. The website is professionally designed with clear navigation and a comprehensive product catalog targeting Finnish consumers. Technically, the site uses modern frameworks such as Next.js and React, with Contentful as the CMS, and integrates Usercentrics for cookie consent management. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a published security policy are absent. Privacy compliance is partial, with cookie consent but no visible privacy or terms of service pages. Overall, the site is trustworthy and well-positioned in the Finnish retail market, but could improve transparency and security documentation.