Security Directory

A

Aurightec

eolane.ee

0

Aurightec is a professional electronics manufacturing service provider based in Estonia, offering industrial services to support business partners in delivering cutting-edge electronic products. The company holds multiple ISO certifications, indicating a strong commitment to quality and safety standards. Their website is well-designed, SEO-optimized, and compliant with GDPR and cookie regulations, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and security features such as Google reCAPTCHA and cookie consent management. Security posture is solid with HTTPS and bot protection, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, Aurightec presents a trustworthy and professional business front with clear contact information and social media presence.

The website pmt.ee represents a small manufacturing company specializing in industrial machines and structures, offering engineering, manufacturing, and assembly services. The company appears established since 2010 and targets industrial clients requiring specialized manufacturing solutions. The website is built on WordPress with basic SEO optimization via Yoast SEO plugin and uses legacy JavaScript libraries such as jQuery 1.8.3. The technical infrastructure is moderate with room for modernization and improved mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and uses outdated libraries, which could expose the site to vulnerabilities. Privacy compliance is minimal with no visible privacy or cookie policies and no consent mechanisms. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the site is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

The website pagerr.net is currently inaccessible due to a Cloudflare 525 SSL handshake failure error, indicating that Cloudflare cannot establish a secure SSL connection with the origin server. This results in a complete block of website content, with only an error page displayed. The domain is registered with EuroDNS S.A. since 2019 and is valid until 2026, but no business or contact information is presented on the site. The lack of privacy, cookie, or terms of service policies further limits the ability to assess compliance or business credibility. Technically, the site uses Cloudflare as a proxy and DNS provider but suffers from misconfigured SSL at the origin, which is a critical security issue.

O

OBO Bettermann Holding GmbH & Co. KG

obo-bettermann.com

0

OBO Bettermann Holding GmbH & Co. KG is a leading manufacturer specializing in installation systems for electrotechnical equipment in buildings and systems. The company maintains a strong market position with a broad international presence, supported by numerous regional partner websites tailored to local languages and markets. Their business model focuses on manufacturing and distributing high-quality electrotechnical installation products to professional and business customers worldwide. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including jQuery and Google Tag Manager for analytics, alongside Usercentrics for GDPR-compliant consent management. The site demonstrates good mobile optimization and a professional design, although there is room for improvement in SEO and accessibility features. From a security perspective, the website enforces HTTPS and employs consent management for cookies, reflecting a solid security posture. However, the absence of explicit security headers and vulnerability disclosure policies suggests opportunities for enhancing security best practices. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional digital presence, though the lack of WHOIS data for the domain raises concerns about domain registration legitimacy. It is recommended to verify domain registration details to ensure full trustworthiness. Strategic improvements in security headers, accessibility, and SEO would further strengthen the site’s compliance and user experience.

A

As Balsnack International Holding

balsnack.ee

0

Balsnack is an established Estonian snack food company founded in 2010, specializing in unique snack products such as potato waffles, popcorn, and breakfast cereals. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting both local consumers and export markets. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including jQuery and Google APIs, hosted by Elkdata OÜ, a local Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable and accessible site. Overall, the website demonstrates a medium-sized retail business with a solid online presence but could improve privacy compliance and security transparency.

R

Rödl & Partner

roedl.pl

0

Rödl & Partner is a large international professional services firm operating in Poland and globally, offering audit, legal, tax, consulting, and technology advisory services. The company has a strong market presence with offices in 50 countries and approximately 6000 employees. The website is built on Microsoft SharePoint and uses modern web technologies including jQuery and Matomo analytics. It provides comprehensive content, clear navigation, and multilingual support. Security posture is good with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies. However, the absence of WHOIS data reduces domain registration trustworthiness, though the brand and content strongly indicate legitimacy. No WAF or blocking mechanisms were detected, allowing full content access.

P

Pontos

pontos.fi

0

Pontos is a Finnish family-owned investment company focusing on selective investments both domestically and internationally. The website positions the company as an established player in the investment sector with a clear business model centered on strategic asset allocation. The digital presence is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good technical maturity with HTTPS enforcement and a responsive design, although some advanced security headers are missing. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and a detailed privacy policy. However, explicit contact information and terms of service are not prominently available, which could be improved for better business credibility and user trust. Overall, the website reflects a professional and trustworthy investment firm with room for enhanced security and transparency features.

N

Nyenburgh Holding B.V.

nyenburgh.com

0

Nyenburgh Holding B.V. is a Dutch licensed proprietary trading firm specializing in providing liquidity to global financial markets through proprietary and arbitrage trading strategies. The company operates with a robust infrastructure co-located in major financial hubs including New York, Frankfurt, Milan Bergamo, and London, ensuring low-latency access and data for professional traders. Regulated by the Netherlands Authority for Financial Markets (AFM) and the Dutch Central Bank (DNB), Nyenburgh emphasizes risk management and operates solely with its own capital, not involving client funds. Technically, the website is built on WordPress using the Enfold theme, incorporating modern web technologies such as jQuery and YouTube iframe API. The site is mobile-optimized with good SEO practices and includes a comprehensive cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and no direct contact emails or phone numbers are publicly listed, with contact primarily via a web form. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks visible advanced security policies or incident response information. The WHOIS data is unavailable, which limits domain trust verification, though the website content and regulatory references support legitimacy. Overall, the site presents a professional and trustworthy front with room for improvement in security transparency and contact information availability. Strategically, Nyenburgh should enhance its security posture by implementing recommended HTTP security headers, publishing incident response contacts, and considering a security.txt file. Improving accessibility and providing clearer direct contact details would also strengthen user trust and compliance. These steps will help maintain its market position as a reputable and secure proprietary trading firm.

Z

Zlick Ltd

zlick.it

0

Zlick Ltd operates a specialized paywall software service designed for WordPress subscription sites, targeting content creators, bloggers, podcasters, and media corporations. The company positions itself as an easy-to-use, high-conversion paywall solution that requires minimal technical setup, emphasizing a 10-minute integration and no need for developers. Their business model is subscription and transaction-based, with integrated CRM and analytics tools to help customers optimize monetization. The website reflects a professional and consistent brand image with clear messaging and trust indicators such as customer earnings and testimonials. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern JavaScript libraries and Google Analytics for tracking. The site demonstrates good SEO optimization, mobile responsiveness, and moderate performance. Security best practices are observed with HTTPS enforcement and security headers, though some privacy compliance aspects like cookie consent are lacking. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's claims, showing consistent registration details and no privacy protection, supporting legitimacy. Overall, Zlick's website is a credible and professional platform with a strong business focus and good technical implementation. Enhancements in privacy compliance and security transparency would further strengthen its position and user trust.

E

Eedo & Partnerid OÜ

united-loggers.ee

0

United Loggers is a small Estonian company specializing in wood chip production, round timber material supply, and wood chipping services. The company operates a professionally designed website built on WordPress with the Astra theme, indicating a moderate level of digital maturity. The website includes a GDPR-compliant cookie consent mechanism and uses privacy-friendly Plausible Analytics for visitor tracking. However, it lacks explicit privacy policy, terms of service, and security policy pages, which are important for compliance and trust. Technically, the website uses modern web technologies and plugins but does not show advanced security headers or incident response information. The domain is well-established since 2010, registered to a local Estonian company consistent with the website's business focus. No signs of blocking or WAF interference were detected, allowing full content access. Security posture is adequate with HTTPS enforced and cookie consent implemented, but improvements are recommended in publishing security policies, adding security headers, and providing incident response contacts. Overall, the website is functional and professional but could enhance compliance and security transparency to improve trust and reduce risk.

S

Sparta.com domain name is for sale. Inquire now.

sparta.com

0

The website www.sparta.com currently serves as a domain sales landing page advertising the premium domain name Sparta.com for purchase. It targets domain investors and businesses seeking a strong, memorable brand domain. The site offers a contact form for potential buyers to make offers but lacks direct company contact details or business entity information. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, Font Awesome, Google Fonts, Google Analytics, and Google reCAPTCHA to provide a responsive and secure user experience. However, no CMS or hosting provider information is evident. Security posture is moderate with HTTPS enabled and spam protection via reCAPTCHA, but no security headers or explicit privacy and cookie policies are present. WHOIS data is unavailable, indicating the domain is likely unregistered or expired, which aligns with the site’s purpose as a domain sales landing page but reduces trustworthiness for operational business use. Overall, the site is professionally designed but minimal in business and compliance information, resulting in a moderate risk profile.

R-Systems is an Estonian software development company specializing in hydrography and spatial data software solutions, founded in 1989. The company offers services including hydrographic survey software, spatial data processing, and sensor integration, targeting sectors such as military, air surveillance, logistics, and GIS. The website reflects a small, niche technology business with a long operational history but limited online presence and content depth. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. The site lacks modern frameworks or CMS and shows basic performance and SEO optimization. Mobile optimization and accessibility are minimal, indicating room for improvement in digital maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response details are provided, limiting transparency and trust. The use of Google Analytics without a consent mechanism further impacts privacy compliance. Overall, the website presents a moderate risk profile with no critical security issues detected but several compliance and usability gaps. Strategic improvements in privacy policies, security headers, mobile optimization, and contact transparency are recommended to enhance trust and compliance.

X

xChange AS

changeinvest.com

0

Change Invest operates as a fintech investment platform offering a unified app for investing in cryptocurrencies, trading stocks, indices, commodities, and CFDs with leverage. The company targets retail investors primarily within the European Economic Area, emphasizing low fees, fast deposits, and regulatory compliance under Estonian and Dutch authorities. The platform boasts over 125,000 verified users and a broad asset offering, positioning itself as a competitive player in the EU fintech market. Technically, the website is built on Webflow CMS and integrates modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Segment Analytics, and Adjust SDK. The site is mobile-optimized, fast-loading, and well-structured, providing an excellent user experience. However, some security best practices like explicit security headers are missing, and no incident response or vulnerability disclosure information is publicly available. From a security perspective, the platform enforces HTTPS, uses cold wallets for crypto custody, and provides public proof of reserves, indicating a mature security posture. Cookie consent mechanisms are implemented with opt-in features, supporting GDPR compliance. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data unavailability, which slightly reduces trustworthiness. Overall, Change Invest presents a professional, secure, and compliant fintech service with strong market positioning in the EU. Strategic improvements in transparency around security policies and WHOIS data would enhance trust and compliance further.

HEREDITAS is a Dutch company specializing in inheritance and incapacity planning services, targeting seniors and their families. The company offers advisory and execution services including testament preparation and practical support after death or incapacity. The website reflects a niche market position with partnerships in the Dutch care sector. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Swiper, hosted by Hosting Concepts B.V. The site is mobile optimized and has good navigation and content quality but lacks privacy and cookie policies, security headers, and visible GDPR compliance indicators. Security posture is moderate with no DNSSEC and no visible security headers, and no analytics or tracking scripts detected, indicating minimal user tracking. Contact information is limited to a phone number and physical address with no email or contact forms visible. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

S

Semel Oy

semel.fi

0

Semel Oy is a Finnish company established in 1971, specializing in providing taxi meters and order management systems for taxi companies, primarily targeting the Nordic market. The company positions itself as one of the leading providers in the personnel transport sector in the region. The website reflects a professional and consistent brand image, with content tailored to its B2B audience of taxi operators. Technically, the site is built on WordPress using the Elementor framework, hosted behind Cloudflare DNS services, and incorporates Google Tag Manager for analytics. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Security-wise, the site enforces HTTPS and uses Cloudflare nameservers but lacks DNSSEC and some recommended security headers, which could be enhanced to improve resilience against attacks. Privacy compliance is basic, with no explicit privacy or cookie policies detected, which is an area for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

F

Fineltec Oy

fineltec.fi

0

Fineltec Oy is a well-established electronics manufacturing services (EMS) provider founded in 2003, specializing in contract manufacturing and assembly of electronics, electro-mechanics, and wiring harnesses. The company serves diverse industries including energy, industrial automation, instrumentation, defence, safety, building automation, and medical devices, positioning itself as a preferred partner with strong quality and environmental certifications such as ISO 9001, ISO 14001, and ISO 13485. Their business model focuses on providing comprehensive manufacturing solutions from prototypes to life-cycle services, supported by a subsidiary production site in Estonia. Technically, the website is built on WordPress with modern frameworks like Bootstrap and enhanced by SEO and analytics tools including Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized, has good navigation, and employs cookie consent mechanisms to comply with privacy regulations. Performance is moderate with a good balance of content richness and technical implementation. From a security perspective, the site enforces HTTPS with a solid SSL configuration but lacks DNSSEC and some recommended security headers. No vulnerabilities or exposed sensitive data were detected. The company demonstrates adherence to recognized quality and environmental standards but does not publicly provide an incident response or vulnerability disclosure policy, which could be improved. Overall, Fineltec presents a credible and professional online presence with strong business legitimacy and moderate to good security posture. Strategic recommendations include enhancing DNS security, adding security headers, publishing incident response contacts, and formalizing vulnerability disclosure to further strengthen trust and compliance.

S

Studio One

studio-one.am

0

Studio One is a medium-sized Armenian IT consulting and digital services company specializing in web design, development, mobile apps, online marketing, and security audits. The company serves a diverse client base including governmental, financial, e-commerce, manufacturing, consulting, and media sectors. Their website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Maps API, but lacks some advanced accessibility and mobile optimization features. Security posture is moderate with HTTPS usage but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data aligns well with the business claims, indicating legitimacy. Overall, the website is functional and professional but could improve in privacy and security transparency.

Media Menu International AS is a Swedish-Estonian digital media production studio specializing in online and mobile advertising assets including HTML5 banners, landing pages, email templates, web design, video production, and graphic design. Established in 2010, the company serves a global client base with a strong presence in Europe and the USA, supported by long-term partnerships and positive client testimonials. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap and Leaflet.js, ensuring good mobile optimization and user experience. However, the absence of privacy and cookie policies, security headers, and incident response information indicates areas for improvement in compliance and security posture. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security disclosures to align with best practices.

S

Silberauto AS

silberauto.ee

0

Silberauto AS is an established Estonian parent company operating in the automotive and transportation sectors, with a focus on autonomous vehicle technology, vehicle construction, and automotive sales software. The company has a history dating back to 1993 and manages several subsidiaries specializing in various automotive-related fields. The website reflects a medium-sized enterprise with a clear business model centered on innovation in automotive technology and related services. Technically, the website is built on the Webflow platform, utilizing modern web technologies including jQuery and Weglot for multilingual support. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks some security headers and formal security policies. Privacy compliance is limited, with no privacy policy or cookie consent mechanism explicitly implemented. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

T

SEO Optimeerimine | Teie Ettevõte

taddy.ee

0

The website www.taddy.ee is a small Estonian SEO service provider specializing in both internal and external SEO optimization, competitor analysis, and targeted advertising. The business targets companies seeking to improve their search engine visibility and website traffic. The site presents clear service packages with pricing and showcases client examples, indicating a focused and professional approach. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics, with a responsive design and good navigation. However, there are gaps in privacy compliance, as no privacy or cookie policies are published, and contact information is limited to a web form without direct emails or phone numbers. Security posture is moderate with HTTPS enabled but lacking explicit security headers and vulnerability disclosures. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

A

Analyse²

analyse2.com

0

Analyse² is a B2B company providing advanced retail analytics solutions tailored for FMCG brands and retailers. Their offerings include trade promotion insights and optimization, category analytics, and assortment planning, aimed at driving demand-driven growth and profitability. The company positions itself as a trusted partner to over 100 leading FMCG brands, showcasing logos of notable clients such as Essity, Paulig, Orkla, Fazer, Unilever, and Arla. The website is professionally designed with a clear focus on the retail sector, emphasizing shopper-centric analytics solutions.

R

Rephop

rephop.com

0

Rephop is a specialized SaaS provider offering web-based group consolidation, reporting, and planning software tailored for CFOs and finance professionals. Established in 2013, it has positioned itself as a trusted solution for simplifying complex financial consolidation processes across multiple subsidiaries and currencies. The platform emphasizes ease of use, powerful features such as intergroup transaction reconciliation, non-controlling interest calculations, and compliance with IFRS and US GAAP standards. Its market presence is supported by customer testimonials and a clear pricing model targeting small to medium-sized businesses and enterprises. Technically, Rephop leverages modern web technologies including Next.js and React, hosted on Vercel with Cloudflare DNS services. The website is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Analytics tools such as Vercel Analytics and Google Tag Manager are used for user behavior tracking, though privacy compliance could be enhanced with explicit cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks DNSSEC and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a consistent and legitimate domain registration history aligned with the company's operational timeline. Overall, Rephop demonstrates a strong business and technical foundation with room for improvement in privacy compliance and security transparency. Strategic recommendations include implementing cookie consent, publishing security policies, and enabling DNSSEC to bolster trust and regulatory adherence.

T

Trumpit Solutions OÜ

iteraction.ee

0

Trumpit Solutions OÜ is an Estonian IT service provider specializing in comprehensive IT solutions for small and medium-sized enterprises. With over 16 years of experience, the company offers a broad range of services including IT support, software development, IT security, Microsoft 365 business solutions, website development, and cloud services. The company positions itself as a reliable and experienced IT partner in the Estonian market, supported by a strong local presence and positive customer testimonials. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, and is hosted behind Cloudflare DNS services. The site is well-optimized for SEO and mobile devices, with good design and user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are published. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website reflects a professional and credible business with room for improvement in privacy and security transparency.

P

Plakit OÜ

plakit.ee

0

Plakit OÜ is a small Estonian company specializing in software and platform testing services. The website presents basic information about the business, targeting clients seeking quality assurance for their software products. The site is built on the Wix platform, utilizing Wix's Thunderbolt framework and standard JavaScript libraries. While the technical infrastructure is modern and the site is mobile-optimized, the content is minimal and lacks comprehensive privacy, cookie, and terms of service policies. Security posture is adequate with HTTPS enabled and some cookie handling mechanisms, but lacks advanced security headers and incident response information. Overall, the website is functional but could benefit from enhanced privacy compliance and clearer contact details to improve trust and professionalism.

The website harno.ee is registered to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) and appears to be a government-related domain. However, the actual website content is inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. This prevents a full analysis of the website's offerings, policies, and user interface. The domain is relatively new, created in 2020, which aligns with possible recent governmental digital initiatives. Technically, the site uses Cloudflare for security and performance, but no DNSSEC is enabled, and no security headers are visible in the provided data. The lack of visible privacy, cookie, or terms of service policies, as well as absence of contact information, limits the assessment of compliance and user support. The site does not expose any forms or data collection fields beyond the captcha mechanism. From a security perspective, the use of Cloudflare's WAF and captcha indicates a proactive approach to mitigate automated threats and abuse. However, the absence of DNSSEC and security headers suggests room for improvement in hardening the domain's security posture. The lack of visible compliance documentation and contact channels is a concern for transparency and user trust. Overall, the site is legitimate and consistent with a government entity but currently inaccessible for detailed content and compliance evaluation. Strategic recommendations include enabling DNSSEC, publishing clear privacy and cookie policies, adding contact and incident response information, and implementing security headers to enhance trust and security.

C

Constructive

constructive.net.au

0

Constructive is a specialist recruitment consultancy operating in Australia since 2003, focusing on the Built Environment and Infrastructure sectors. The company offers permanent and contract recruitment solutions, franchise opportunities, and tailored hiring services to employers and jobseekers. The website reflects a professional and consistent brand with clear navigation and relevant content. Technically, the site uses modern web technologies including service workers, Google Analytics, and Elfsight widgets, hosted likely by Identity Digital Australia. Security posture is good with HTTPS and captcha-protected forms, but lacks explicit security headers and published privacy or cookie policies. WHOIS data is incomplete but registrar information aligns with Australian domain administration, supporting legitimacy. Overall, the site is functional and trustworthy but could improve compliance and security transparency.

B

Briti Eesti Kaubanduskoda

becc.ee

0

The British-Estonian Chamber of Commerce (Briti Eesti Kaubanduskoda) operates as a membership organization facilitating business connections and trade between Estonia and the United Kingdom. Established in 2010, it serves a niche market of businesses engaged in bilateral commerce, providing networking opportunities and member support. The website reflects a professional and consistent brand image with clear business focus and relevant content for its target audience. Technically, the website is built on WordPress with WooCommerce and BuddyPress plugins, leveraging modern web technologies such as jQuery, Google Analytics, and Google Tag Manager for analytics and user engagement tracking. The site is hosted under the domain registrar Zone Media OÜ, with a stable and long-standing domain registration since 2010. Performance and mobile optimization are adequate, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection, alongside a cookie consent mechanism compliant with GDPR principles. However, explicit security headers are not detected, and there is a lack of published security policies or incident response contacts. Privacy and terms of service pages are missing, representing compliance gaps. Overall, the website presents a trustworthy and credible business presence with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

U

Ukrainian Marketing Project (UMP)

ump.ua

0

Ukrainian Marketing Project (UMP) is an established independent marketing and media research company based in Ukraine since 1996. It specializes in providing qualitative and quantitative research services, focus groups, and periodic studies, serving advertisers, advertising agencies, and broadcasters. The company holds recognized certifications such as IRIS, ESOMAR, and UAM, reinforcing its market credibility. Technically, the website is built on WordPress with a moderate tech stack including jQuery and Google reCAPTCHA, offering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and spam protection, though it lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

The website cityntel.com represents a small Chinese company specializing in the rental, leasing, sales, and recycling of diesel generators ranging from 30KW to 2000KW, focusing on imported brands such as Cummins, Mitsubishi, and Caterpillar. The target audience includes infrastructure sectors such as railway, transportation, municipal engineering, real estate, factories, hotels, and construction sites. The business model is primarily service-oriented, providing equipment solutions tailored to client needs. The website content is primarily in Simplified Chinese and provides product listings, case studies, team introductions, and news updates related to diesel generators. Technically, the website is built on the EmpireCMS platform, utilizing standard web technologies including HTML5, CSS, JavaScript, and libraries such as Blazy for lazy loading and WOW.js for animations. The site has basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. There is no evidence of modern frameworks or advanced hosting details. The WHOIS data shows inconsistencies, including a domain creation date in the future and minimal registrant information, which raises legitimacy concerns. From a security perspective, the website lacks critical security headers, DNSSEC is not enabled, and there is no visible HTTPS enforcement information. Privacy and cookie policies are absent, and no incident response or vulnerability disclosure information is provided. These gaps indicate a low security maturity level and potential compliance issues with data protection regulations such as GDPR. Overall, the website presents a functional but basic online presence for a niche diesel generator rental business. The main risks relate to domain legitimacy concerns and insufficient security and privacy practices. Strategic improvements in security posture, compliance documentation, and WHOIS transparency are recommended to enhance trust and reduce operational risks.

A

Alarmeco

alarmeco.ee

0

Alarmeco is an Estonian company specializing in low-voltage, building automation, and security systems. Positioned as a domain expert, it offers modern technical solutions primarily targeting businesses and organizations within Estonia. The website reflects a professional and consistent brand image with clear contact information and relevant business descriptions. Technically, the site uses standard web technologies including Google Tag Manager for analytics, and it is well-optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

T

Trimtex Norge

trimtex.no

0

Trimtex Norge operates an e-commerce platform specializing in sports apparel, targeting the Norwegian market. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party marketing tools such as Klaviyo and Rebuy Engine. The business appears to be a medium-sized retailer founded in 2022, with a consistent brand presence and a focus on direct-to-consumer sales. The website demonstrates good design quality, mobile optimization, and SEO practices, although explicit privacy and terms of service policies are not found on the analyzed page. Security measures include HTTPS enforcement and standard security headers, with no detected vulnerabilities or WAF blocking. However, the absence of clear contact information and privacy policies slightly reduces trust and compliance scores. Overall, the site is professionally implemented with moderate tracking and marketing integrations.

P

PZU Kindlustus

pzu.ee

0

PZU Kindlustus operates as an established insurance provider in Estonia, offering a range of personal insurance products including vehicle, travel, home, and accident insurance. The website reflects a professional presence with consistent branding and a focus on serving private individuals. The business is supported by a domain registered since 2012 under ALMIC OÜ, an Estonian registrar, indicating a stable and legitimate operation. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager, Cookiebot for cookie consent, and Cloudflare for DNS and security, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement and reCAPTCHA integration, though explicit security policies and headers could be enhanced. Privacy compliance is partially addressed via cookie consent, but the absence of a clear privacy policy and terms of service pages represents a compliance gap. Overall, the site is functional and trustworthy but would benefit from improved transparency and security documentation.

R

Respo Haagised AS

respo.ee

0

Respo Haagised AS is a well-established Estonian company founded in 1990, specializing in the manufacturing and sale of trailers, accessories, and spare parts. It holds a market leader position in Estonia and is a significant player in the Baltic and Scandinavian regions. The company operates a modern e-commerce platform with multi-language support and offers innovative services such as 24/7 self-service trailer sales points. The website reflects a mature digital infrastructure built on Magento, integrating advanced tracking and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, user-friendly, and trustworthy, supporting the company's business credibility and market presence.

P

Pepe Jeans London

pepejeans.com

0

Pepe Jeans London is a well-established fashion retail brand offering a wide range of apparel and accessories for women, men, and children. The website serves as an official e-commerce platform targeting international consumers interested in contemporary fashion trends. The brand maintains a consistent and professional online presence with active social media channels and a clear focus on retail sales. Technically, the website is built on Salesforce Commerce Cloud, leveraging modern JavaScript libraries such as jQuery, and integrates multiple third-party services for marketing, analytics, and payment processing, including Monetate, Cookiebot, FullStory, Global-e, and PayPal. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced further. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The WHOIS data is privacy protected, which is typical for commercial retail domains, and no suspicious indicators were found. Overall, the website presents a solid digital infrastructure with moderate to good security posture and privacy compliance, suitable for its business model and market position.

The website at hashtago.com/lander is currently a minimal placeholder or parking page with very limited content and no substantive business information. The domain is registered since 2013 with GoDaddy.com, LLC and has standard domain status protections but lacks DNSSEC and advanced security configurations. The technical infrastructure includes basic JavaScript and a parking-lander framework with Google Adsense advertising. There are no privacy, cookie, or terms of service policies present, nor any contact or security incident response information. The security posture is weak with no security headers detected and no evidence of HTTPS enforcement in the provided content. Overall, the site lacks professionalism, trust indicators, and compliance features, resulting in a low trust and security score.

T

Tallinna Tehnikaülikool (TalTech)

gi.ee

0

Tallinna Tehnikaülikool's Geoloogia instituut is a reputable academic unit specializing in geology, mineral resources, and mining engineering. It serves as a key educational and research hub within Estonia, offering undergraduate, graduate, and doctoral programs, alongside active research groups and modern laboratories. The institute maintains a strong presence in the academic community through events, publications, and collaborations. Technically, the website employs modern frameworks such as Next.js and integrates multiple analytics and marketing tools while ensuring GDPR-compliant cookie consent. Security posture is strong with HTTPS enforcement and bot protection mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site reflects a professional, trustworthy, and well-maintained digital presence aligned with its institutional mission.

G

GH Imaging

ghimaging.com

0

GH Imaging is a medium-sized manufacturing company specializing in large format digital printing products such as custom decals, vehicle wraps, banners, and rigid prints. The company operates under the Graphics House family umbrella, with multiple related subsidiaries supporting various product lines. The website is professionally designed using WordPress with Elementor and OceanWP theme, providing a good user experience and clear navigation. Contact information including phone number and physical address is prominently displayed, supporting business credibility. However, the absence of WHOIS data raises concerns about domain registration legitimacy. The website uses HTTPS and includes anti-spam and tracking technologies but lacks explicit privacy and cookie policies, which impacts privacy compliance scores.

M

Mipro Oy

mipro.fi

0

Mipro Oy is a Finnish specialist company focused on railway and industrial systems, with a history dating back to 1980. The company provides advanced safety and operational solutions for railway traffic, metro systems, water and energy supply, and industrial sectors. With headquarters in Mikkeli and offices in Espoo, Oulu, and Tallinn, Mipro serves a broad international client base including government agencies and utility companies. The website reflects a mature business with clear market positioning and a strong emphasis on safety and technology expertise. Technically, the site is built on WordPress with modern plugins and includes security measures such as HTTPS and hCaptcha for form protection. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Security posture is good but could be enhanced by adding security headers and publishing explicit security policies. Overall, the website and domain registration data indicate a legitimate, professional, and trustworthy business presence.

T

Tallinna Linnateater

linnateater.ee

0

Tallinna Linnateater operates as a cultural institution providing theatrical performances and related visitor services primarily to the Estonian audience. The website serves as an official portal for event information, ticket sales, and theatre news, positioning itself as a reputable and established player in the local media and cultural sector. The domain has been registered since 2010, indicating a stable presence in the market. The site content is professionally presented with good navigation and mobile optimization, supporting a positive user experience.

E

Eklips Digital

eklips.se

0

Eklips Digital is a specialized provider of subscription-based corporate websites, targeting listed and non-listed companies primarily in the Nordic region. Founded in 2011, the company offers a Corporate Website as a Service (CWaaS) platform that includes web development, design, branding, hosting, maintenance, security, and support services. Their market position is strengthened by serving 10% of Nasdaq Stockholm Main Market companies and delivering over 300 websites with a 99.9% uptime guarantee. The website is professionally designed using modern technologies such as Next.js and React, reflecting a mature digital infrastructure. However, the absence of WHOIS data for the domain www.eklips.se raises concerns about domain registration legitimacy, which should be verified. Security posture is moderate with no visible vulnerabilities but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website presents a trustworthy and professional business presence but requires improvements in compliance and domain legitimacy verification.

I

Islamic Azad University | Dubai Branch

iau.ae

0

Islamic Azad University Dubai Branch is an educational institution offering fourteen quality and cost-effective degree programs with English as the medium of instruction. The university aligns its curricula with nationally approved standards, targeting students in Dubai and the UAE region. The website is built on a WordPress platform using Elementor, indicating a modern and maintainable technical infrastructure. SEO practices are implemented, and the site is mobile optimized with good user experience. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and incident response information. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the site is professional and credible but would benefit from enhanced privacy and security disclosures.

R

RTT AS

rtt.ee

0

RTT AS is an established Estonian company specializing in retail technology and office supplies, with over 28 years of experience. The company offers a broad range of products including cash registers, printers, copiers, and consumables, alongside installation, maintenance, and training services. Their market position is that of a trusted local provider catering primarily to business customers in Estonia. The website reflects a mature e-commerce platform built on WordPress and WooCommerce, featuring multilingual support and a comprehensive product catalog. Technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and CookieYes for consent management. Security posture is solid with HTTPS enforced and reCAPTCHA integration, although explicit security policies and incident response contacts are not published. Privacy compliance is supported by a detailed cookie consent mechanism, but lacks a visible privacy policy page. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in formal policy disclosures and security header implementation.

C

Cryo Transport

cryo-transport.com

0

Cryo Transport is a specialized courier service focused on the transport of cryopreserved human biological materials such as sperm, eggs, embryos, and stem cells from clinics or cryobanks to IVF clinics. The company operates in a niche segment of medical logistics, serving fertility and reproductive medicine providers. The website is built on WordPress and employs modern digital tools including Cookiebot for cookie consent, Google Tag Manager for analytics, and Tawk.to for live chat support. The technical infrastructure is standard for small to medium-sized service providers, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is supported by cookie consent mechanisms and links to third-party privacy policies, but the site lacks an explicit privacy policy and terms of service pages. Overall, the website presents a professional and trustworthy image consistent with its business focus.

Advoco Konsultandid OÜ is a small Estonian company founded in 2010, providing professional and personalized accounting services primarily targeting small and medium-sized enterprises in Tallinn. The website reflects a clear business focus on flexible and reliable bookkeeping services, with content tailored to the local market. The company maintains a consistent brand presence and provides clear contact information, enhancing business credibility. Technically, the website is built on the Voog CMS platform, utilizing common web technologies such as jQuery and lazy loading scripts. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO is implemented at a basic level with appropriate meta tags and Open Graph data. From a security perspective, the site benefits from HTTPS encryption but lacks important security headers and formal security policies. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No forms or data collection mechanisms are detected on the homepage, reducing immediate data protection risks. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

S

Stockholm Independent Art Fair

supermarketartfair.com

0

Stockholm Independent Art Fair operates the Supermarket art fair, a niche cultural event focused on artist-run initiatives in Stockholm. The website provides comprehensive information about the event, including exhibitor details, tickets, talks, and publications. The business targets artists, exhibitors, and art enthusiasts, positioning itself as a key platform for independent art in the region. Technically, the site is built on WordPress with Elementor and uses modern frontend libraries, ensuring good mobile optimization and SEO. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit privacy or cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

Addenda OÜ is an Estonian-based professional training and consulting company established in 2010. The company offers a wide range of training courses, including construction, occupational safety, accounting, and legal topics, both in-person and via an e-learning platform called Addenda e-akadeemia. The website targets Estonian professionals and organizations seeking continuing education and compliance training. The business maintains a stable market position with a comprehensive course catalog and partnerships with local organizations. Technically, the website uses a custom CMS with legacy JavaScript libraries such as jQuery 1.11.1, and integrates common analytics and advertising tools like Google Analytics and Facebook Pixel. The site is mobile optimized and SEO friendly but lacks modern security headers and updated libraries. Security posture is moderate with HTTPS enabled but missing explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

A

Arme Oy

arme.fi

0

Arme Oy is a well-established Finnish industrial service and contracting company specializing in insulation and scaffolding services for various heavy industries including oil and gas, petrochemical, energy, and pulp and paper sectors. The company offers flexible service models ranging from standalone services to turnkey project deliveries and maintenance contracts, positioning itself as a leading provider in the Finnish market with international reach. The website reflects a professional digital presence built on WordPress with modern SEO and privacy compliance features, including a comprehensive cookie consent mechanism and detailed privacy policies. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though additional security headers and incident response contacts could enhance resilience. Overall, Arme Oy demonstrates a mature business and digital infrastructure with trustworthy domain registration and consistent branding.

F

Fort Aero

fort.aero

0

Fort Aero is a specialized aviation service provider focused on corporate jet management, sales, acquisition, maintenance, and charter services. Established since 1997, the company positions itself as a trusted and experienced player in the business aviation sector, primarily serving corporate jet owners and operators. The website reflects a professional and consistent brand image with comprehensive service descriptions and multiple contact channels. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and secure forms, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. WHOIS data is unavailable due to privacy protection, which is common for this business type but slightly reduces trust. Overall, Fort Aero presents a credible and professional online presence with room for improvement in privacy and security transparency.

H

Hansabuss AS

hansabuss.ee

0

Hansabuss AS is an established Estonian transportation company specializing in bus services including charter, line routes, employee transport, school transport, and city tours. With over 30 years of experience, the company positions itself as a reliable and caring bus partner in Estonia and neighboring regions. The website reflects a mature digital presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with modern plugins and SEO tools, offering a good user experience and mobile optimization. Security posture is strong with HTTPS, security headers, and spam protection on forms, though explicit security policies and incident response contacts are not published. Privacy compliance is basic with cookie consent mechanisms and privacy policy presence, but lacks detailed GDPR documentation or data protection officer contact. Overall, the website and domain registration data indicate a legitimate and professional business with moderate to high trustworthiness.

G

GDPR Register

gdprregister.eu

0

GDPR Register is a specialized technology company providing GDPR compliance software tools designed to streamline privacy management for organizations. The company offers a SaaS platform that supports data mapping, records of processing activities, data breach registers, contract lifecycle management, and reporting tools. Their market position is that of an established GDPR compliance software provider with a focus on privacy teams and Data Protection Officers, primarily serving clients in the EU and UK regions. The website demonstrates a mature digital presence with multilingual support and integration of modern marketing and analytics technologies. Technically, the website is built on WordPress using Elementor, with a modern tech stack including jQuery, FontAwesome, and Klaviyo for marketing automation. The site is well-optimized for SEO and mobile responsiveness, with good performance and accessibility features. Security posture is strong, with HTTPS enforced and multiple security headers present. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a publicly visible vulnerability disclosure policy and explicit incident response contact details. Overall, GDPR Register presents a professional, trustworthy, and secure online presence consistent with its business focus on data privacy compliance. The domain WHOIS data is privacy protected, which aligns with the nature of the business. The site integrates trusted client logos and provides comprehensive privacy and cookie policies, reinforcing its compliance credentials. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing incident response transparency, and improving accessibility compliance to further strengthen trust and security posture.