Security Directory

S

Spliethoff

spliethoff.com

0

Spliethoff is a well-established Dutch shipping company specializing in worldwide dry cargo ocean transport. With a fleet of over 50 modern vessels and a history dating back to 1921, the company positions itself as a reliable and high-quality partner in the maritime transport sector. Their website reflects a professional and comprehensive digital presence, targeting businesses requiring specialized cargo shipping services across various market segments including bulk cargo, containers, metals, and project cargo. Technically, the website employs modern frontend technologies such as Tailwind CSS, Alpine.js, and Swiper JS, alongside Google Tag Manager and Google Analytics for marketing and analytics purposes. The site is mobile responsive, well-structured, and optimized for SEO, providing a good user experience. Privacy compliance is evident through a cookie consent banner and a detailed privacy policy, indicating adherence to GDPR standards. From a security perspective, the site uses HTTPS and implements secure forms with anti-forgery tokens. However, it lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which could enhance protection. The absence of WHOIS data transparency reduces domain trust slightly, though the website content and business information strongly support legitimacy. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers and WHOIS transparency would further enhance trust and security posture.

I

interUX Usability Engineering Studio OÜ

interux.com

0

interUX Usability Engineering Studio OÜ is a small, Estonia-based consultancy specializing in user experience and usability engineering services across Estonia, Latvia, and Russia. With over 20 years of professional expertise, the company offers a comprehensive suite of UX services including user interface design, expert evaluations, field studies, usability testing, and eye tracking. Their client base spans multiple industries such as retail, insurance, travel, and telecommunications, positioning them as a trusted usability partner in the region. Technically, the website employs a basic but functional technology stack consisting of HTML, CSS, JavaScript, and Google Analytics for visitor tracking. The site is moderately optimized for performance and SEO, with basic mobile responsiveness and accessibility features. However, there is no evidence of a CMS or advanced frameworks, indicating a relatively simple infrastructure. From a security perspective, the domain is well-established with a consistent WHOIS record and domain status protections. However, the website lacks critical security headers, DNSSEC is not enabled, and there is no visible HTTPS enforcement or privacy compliance mechanisms such as privacy or cookie policies. Google Analytics is used without a cookie consent banner, which may raise GDPR compliance concerns. Overall, the website presents a professional and credible business front but requires improvements in privacy compliance and security best practices to reduce risk and enhance trust. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, enforcing HTTPS, and providing incident response information.

A

Agrello

agrello.io

0

Agrello is a technology company specializing in secure e-signature and contract management solutions tailored primarily for small and medium-sized enterprises (SMEs). The platform offers a comprehensive suite of services including document automation, bulk contract creation, and legally binding electronic signatures compliant with EU and UK regulations. Positioned as a time-saving and efficient alternative to manual contract workflows, Agrello emphasizes ease of use, security, and compliance. The company operates from Estonia and provides multilingual support, reflecting a focus on European markets. Technically, the website is built on modern web technologies including Webflow CMS, Google Fonts, and integrates analytics and marketing tools such as Microsoft Clarity and Google Tag Manager. The platform supports integrations via Zapier and offers API access, indicating a mature digital infrastructure. The site is well-optimized for performance, mobile responsiveness, and SEO, with clear navigation and professional design. From a security perspective, Agrello enforces HTTPS, uses reCAPTCHA for form protection, and implements cookie consent mechanisms. While explicit security headers are not fully documented in the HTML, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The WHOIS data is privacy protected, which is typical for SaaS providers, and the domain appears actively maintained. Overall, Agrello presents a trustworthy, professional, and technically sound online presence suitable for its target market. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing vulnerability disclosure information to further build trust.

E

Elkdata OÜ

keeleagentuur.ee

0

Keeleagentuur is a small Estonian language agency founded in 2022, specializing in language education and translation services primarily for Estonian and Russian languages. The company offers goal-oriented language courses for adults, including exam preparation and thematic courses. The website is built on WordPress using the Astra theme, Elementor page builder, and WooCommerce for e-commerce capabilities. It employs modern web technologies and integrates Google Analytics for visitor tracking. The website is well-structured, mobile-optimized, and SEO-friendly, but lacks explicit privacy and terms of service policies. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Overall, the business appears legitimate and consistent with its domain registration data.

T

TTK - Leak Detection System

ttkuk.com

0

TTK Leak Detection is a specialized manufacturer of liquid leak detection systems, focusing on water, acids, and oil leak detection for commercial and industrial applications. The company positions itself as a global leader with a strong presence in multiple international markets, offering products made in France with a notable 10-year warranty. Their target audience includes data centers, industrial facilities, airports, and other critical infrastructure sectors requiring reliable leak detection solutions. The website reflects a mature digital presence with comprehensive product information, case studies, and certifications that reinforce their market credibility. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Matomo, and Google Tag Manager for analytics and marketing. The site is well-optimized for SEO and mobile devices, with good performance and accessibility standards. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, although some advanced security headers are not detected. From a security perspective, the site demonstrates good practices but lacks explicit security policies or incident response information. The absence of WHOIS data for the domain is a notable anomaly that reduces trustworthiness from a domain registration standpoint. Despite this, the professional website, certifications, and client references suggest a legitimate and established business. Overall, the risk assessment is moderate with recommendations to enhance domain registration transparency, implement additional security headers, and publish vulnerability disclosure policies to improve trust and compliance.

Z

Z6·尊龙凯时集团有限公司

edge-asia.com

0

Z6·尊龙凯时集团有限公司 is a large, established Chinese conglomerate with diversified interests in retail, hospitality, real estate, and investment sectors. Founded in 1999 and headquartered in Nantong, Jiangsu, the company operates numerous subsidiaries and has a significant employee base and asset portfolio. The website presents detailed business information and sector descriptions, targeting business partners and customers primarily in China. Technically, the website uses modern JavaScript libraries and CSS frameworks, is mobile optimized, and includes a contact form with captcha for user interaction. However, the absence of WHOIS registration data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with HTTPS usage but lacks explicit security headers and has an external iframe to an IP address that may pose risks. Overall, the site is professional but would benefit from enhanced security and compliance measures.

D

Diivaniparadiis

paradiis.ee

0

Diivaniparadiis is a well-established Estonian furniture retailer operating since 1998, offering a wide range of home and office furniture through both online and physical stores. The website reflects a mature e-commerce platform with clear navigation, product listings, and customer account management features. The business targets Estonian consumers seeking quality furniture and home decor products. The domain age and WHOIS data align with the company's market presence, reinforcing its legitimacy. Technically, the website employs modern JavaScript libraries such as Swiper.js for sliders, Fancybox for image galleries, and integrates marketing tools like Google Tag Manager and Facebook Pixel for analytics and advertising. The presence of CSRF tokens and HTTPS indicates a reasonable security posture, although some security headers could be improved. Mobile optimization and SEO practices are adequately implemented, providing a good user experience across devices. Security-wise, the site uses HTTPS with a good SSL configuration and includes CSRF protection in forms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and compliance. Privacy compliance is basic but includes a cookie consent banner and a privacy policy page in Estonian. Overall, Diivaniparadiis presents a trustworthy and professional online presence with solid business credibility and technical implementation. Strategic enhancements in security policies, accessibility, and legal documentation would further strengthen its compliance and user trust.

A

Agrello

agrello.id

0

Agrello is a technology company based in Estonia specializing in secure e-signature and contract management solutions tailored primarily for small and medium-sized enterprises. Their platform enables users to create, sign, and manage legally binding agreements efficiently, reducing contract signing time by up to 60%. The company offers a SaaS subscription model with tiered plans, including a free trial and custom enterprise options, positioning itself as a niche player in the legaltech space with compliance to EU and UK regulations such as eIDAS. Technically, Agrello's website is built on modern web technologies including Webflow CMS, Google Tag Manager, Microsoft Clarity, and integrates with popular tools like Zapier and Microsoft Word templates. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement, use of reCAPTCHA, and cookie consent mechanisms, although explicit security headers and a dedicated security policy page are not publicly evident. From a security posture perspective, the platform demonstrates strong adherence to best practices with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements. However, the absence of a public incident response or vulnerability disclosure page suggests room for improvement in transparency and security readiness. Overall, Agrello presents a trustworthy and professional online presence with a clear value proposition for SMEs seeking to streamline contract workflows. The domain WHOIS data is privacy protected, which is typical for SaaS providers, and does not raise immediate concerns. Strategic recommendations include enhancing security header implementation, publishing a security policy and incident response information, and providing DPO contact details to further strengthen compliance and trust.

R

ROI

roi.ee

0

ROI is an established Estonian company specializing in corporate gifts, promotional items, and branded apparel, serving businesses seeking quality branded products since 1992. The website is built on a modern Angular framework, incorporating standard web fonts and styles, and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The technical infrastructure is solid with HTTPS enforced and a cookie consent mechanism that supports GDPR compliance. However, explicit contact information and detailed security policies are not present on the site, which could be improved to enhance trust and compliance. The domain registration data is consistent and indicates a legitimate and stable business presence. Overall, the website demonstrates good digital maturity and a moderate security posture, with room for enhancements in security headers and incident response transparency.

N

NEVERHACK

expert-line.com

0

NEVERHACK is a well-established cybersecurity company founded in 2016, providing a broad range of services including risk assessment, identity and access management, managed security services, compliance consulting, and incident response. The company targets businesses seeking to strengthen their cybersecurity posture and comply with regulations such as GDPR and NIS2. The website demonstrates a mature digital presence with modern technologies and a comprehensive content strategy highlighting use cases and expert testimonials. Technically, the site is well implemented with a performant stack and good mobile optimization. Security posture is strong, leveraging HTTPS, domain protections, and offering managed SOC services, although some improvements like DNSSEC and explicit vulnerability disclosure could enhance trust. Privacy compliance is generally good, with a clear privacy policy, but lacks a cookie consent mechanism. Business credibility is high, supported by certifications and detailed service descriptions. Overall, NEVERHACK presents as a credible and professional cybersecurity partner with room for minor enhancements in transparency and privacy controls.

H

High Mobility

high-mobility.com

0

High Mobility is a technology company specializing in connected car data solutions, providing a unified API to access live, vehicle-specific data from multiple automotive brands. Their platform supports over 500 car models and integrates data from more than 22 OEMs, including Volkswagen Group brands. The business model focuses on ease of integration with a free registration and pay-when-live pricing, targeting developers and fleet operators in the automotive and transportation sectors. Technically, the website is built on Webflow with Matomo analytics, offering moderate performance and good mobile optimization. Security practices include HTTPS and encrypted data streams, but lack visible security headers and formal privacy or cookie policies. The absence of WHOIS data raises concerns about domain registration legitimacy, impacting trustworthiness. Overall, the site is professional and functional but would benefit from enhanced transparency and security disclosures.

A

AS Eesti Loto

eestiloto.ee

0

AS Eesti Loto operates as the official national lottery provider in Estonia, offering a variety of lottery games such as Eurojackpot, Vikinglotto, Bingo loto, Keno, Jokker, and e-kiirloterii. The website serves as a platform for ticket sales, results checking, and account management, targeting Estonian residents interested in legal lottery gaming. The company holds a strong market position as a government-licensed entity with a medium-sized operational scale. The website's content is well-structured, professionally designed, and provides comprehensive information about games, responsible gaming, and user support.

E

eHost OÜ

aksohaus.ee

0

Investor.ee is a small Estonian educational website focused on providing practical advice and information about investing, portfolio management, risk management, and financial knowledge. The site targets individuals and organizations interested in growing their capital through various investment strategies. The business operates primarily as a content and informational platform, with a niche focus on the Estonian-speaking investment community. The domain is registered to eHost OÜ since 2019, consistent with the website's scope and scale. Technically, the website is built on WordPress using a modern theme and standard libraries such as Bootstrap, jQuery, and FontAwesome. It integrates Google Tag Manager for analytics and Google reCAPTCHA v3 for spam protection on forms. The site is hosted behind Cloudflare DNS and uses HTTPS, ensuring secure communication. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks explicit security headers like Content-Security-Policy and X-Frame-Options, and does not publish privacy or cookie policies, which are critical for GDPR compliance. No incident response or security policy information is available. External links are configured to open in new windows with noopener for security. Overall, the website is functional, professionally designed, and provides relevant content for its audience. The main risks relate to privacy compliance gaps and missing security headers. Strategic improvements in these areas would enhance trust and regulatory adherence.

M

Manimal OÜ

manimaldesign.com

0

Manimal OÜ is a small Estonian digital media and design studio specializing in web design, SEO, and social media services. Founded in 2016, the company targets local businesses and individuals seeking creative digital solutions. The website reflects a professional and consistent brand image with a clear portfolio and client references. Technically, the site is built on WordPress with modern plugins such as Elementor and WooCommerce, and includes tracking via Google Analytics and Facebook Pixel. Security measures include HTTPS and Google reCAPTCHA on the contact form, but lack advanced security headers and explicit privacy or cookie policies. Overall, the site is functional and credible but would benefit from enhanced privacy compliance and security hardening.

T

The Catholic University of Eastern Africa

cuea.edu

0

The Catholic University of Eastern Africa (CUEA) is a well-established private international university based in Kenya, offering a wide range of academic programs including certificates, diplomas, undergraduate, postgraduate, and professional certifications. The institution positions itself as a premier university focused on producing morally upright and transformative leaders for the Church and society. The website reflects a mature digital presence with comprehensive academic and administrative content targeting prospective and current students, alumni, and researchers. Technically, the website is built on a modern WordPress platform utilizing popular plugins such as LearnPress for LMS functionality, Elementor for page building, and LayerSlider for rich content presentation. The site uses HTTPS with good SSL configuration and integrates Google Analytics for visitor tracking. The design is responsive and user-friendly, with clear navigation and structured data enhancing SEO. From a security perspective, the site employs HTTPS and some security best practices but lacks explicit security headers and visible privacy or cookie policies, indicating room for improvement in compliance and security posture. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the institution's claims. Overall, the website is professional and credible but should enhance privacy compliance and security headers to improve trust and regulatory adherence.

T

Tallinna Tehnikakõrgkool

tktk.ee

0

Tallinna Tehnikakõrgkool is a reputable higher education institution in Estonia specializing in technical and engineering education. The website serves multiple audiences including prospective and current students, continuing education learners, and business partners. It offers comprehensive information on study programs, admissions, continuing education, and institutional news. The institution maintains a solid market position as a key technical education provider in Estonia. Technically, the website is built on WordPress using the Elementor page builder, enhanced with Yoast SEO and Usercentrics for GDPR-compliant cookie management. It integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and a chat widget, indicating a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses a consent management platform, but lacks explicit security headers like Content-Security-Policy and does not publicly disclose security policies or incident response procedures. No vulnerability disclosure or security.txt file is present, which could be improved to enhance transparency and trust. Overall, the website is professional, trustworthy, and well-maintained, with moderate to good scores in content quality, technical implementation, and security posture. Strategic improvements in security headers, privacy policy publication, and incident response transparency are recommended to further strengthen compliance and security maturity.

M

Morek Group

morek.eu

0

Morek Group is a medium-sized Estonian company specializing in manufacturing and distributing high-quality electrical components and electric vehicle charging solutions. With 20 years of industry experience, Morek positions itself as a trusted partner in the energy and transportation sectors, focusing on infrastructure development for electricity and electric cars. The company targets electrical industry professionals and infrastructure developers across Europe, supported by multilingual website content and a clear product catalog. Technically, the website is built on WordPress with modern JavaScript integrations, including Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good performance, mobile optimization, and SEO practices, with a consent management system for cookies ensuring privacy compliance. The technical infrastructure reflects a mature digital presence suitable for a medium-sized enterprise. From a security perspective, the site enforces HTTPS and uses consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Security headers could be improved to enhance protection. Overall, the security posture is solid but could benefit from formalized policies and additional headers. The domain WHOIS data is consistent with the business claims, showing no privacy protection and a domain age appropriate for the company's 20-year history. Contact information is clearly presented, including emails, phone numbers, and physical address, enhancing business credibility. Social media presence on LinkedIn and Facebook supports trust and engagement. Recommendations include publishing security and incident response policies, adding security headers, and considering a vulnerability disclosure program to strengthen security culture and compliance.

A

Ambient Sound Investments

asi.ee

0

Ambient Sound Investments (ASI) is a private asset management firm established in 2003 by four founding engineers of Skype. The company operates as a family office with a focus on investments across venture capital, private equity, listed equity, and real assets, with assets geographically located in Europe, the US, and Asia. The website presents a professional image with clear navigation and relevant business content, targeting investors and professionals interested in diversified asset management. The business model is niche and specialized, leveraging the founders' technology and finance backgrounds. Technically, the website is built on the Voog CMS platform, utilizing standard web technologies such as JavaScript, CSS, and HTML5. The site is mobile optimized and performs moderately well, though accessibility features are basic. The hosting and domain registration are consistent with the business location in Estonia, with no signs of privacy protection or suspicious WHOIS data. External scripts are limited and primarily related to the CMS platform. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and visible security policies. There are no privacy or cookie policies, nor contact information for security incidents or data protection officers. No vulnerabilities or exposed sensitive data were detected, but the absence of key compliance documents and security headers represents a moderate risk. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

W

Walless

derling.ee

0

Walless is a modern Baltic law firm established in 2008, offering innovative and bespoke legal solutions primarily targeting businesses in the Baltic region. The firm emphasizes client trust, openness, and innovation, positioning itself as a growing and reputable player in the regional legal market. Their key services include legal advisory, arbitration, and dispute resolution. The website reflects a professional and consistent brand image with multi-language support and clear navigation. Technically, the site is built on WordPress, leveraging modern tools such as Google Analytics, MailerLite for marketing, and Google reCAPTCHA for form security. Hosting and DNS services are provided by reputable providers including Cloudflare and Tucows Domains Inc. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or suspicious domain registration patterns.

S

Softwerk

softwerk.ee

0

Softwerk OÜ is an Estonian technology company specializing in custom business software solutions including business intelligence (BI), ERP implementations (notably Microsoft Dynamics 365), and web development using modern frameworks such as .NET and React. Established in 2012, Softwerk has positioned itself as a trusted partner for businesses in Estonia and Europe, offering tailored solutions that improve operational efficiency and data-driven decision making. The company emphasizes long-term client relationships and quality service delivery, supported by positive client testimonials and recognized partnerships such as Microsoft. Technically, the website is built on WordPress with WPBakery Page Builder, leveraging common web technologies like jQuery and FontAwesome, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized and presents a professional design with clear navigation. Security posture is solid with HTTPS enforced and secure form handling, but lacks advanced security headers and explicit security or incident response policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, Softwerk demonstrates a mature digital presence with room for improvement in privacy and security transparency.

B

Boomerang

boomerang.ee

0

Boomerang is a well-established third-party logistics provider specializing in eCommerce fulfillment and returns management, primarily serving the Nordic region and global markets. The company positions itself as the largest return handling operator in the Nordics, offering tailored and flexible logistics solutions to online webshops. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the site is built on WordPress with Elementor, leveraging modern technologies such as Usercentrics for cookie consent and Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security-wise, the website enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies, which are areas for improvement. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

O

Oy Lunden Ab Jalostaja

jalostaja.fi

0

Oy Lunden Ab Jalostaja is a well-established Finnish food manufacturing and retail company specializing in ready meals, soups, salads, and vegan products. The company emphasizes convenience for everyday consumers and sustainability in packaging. Their website reflects a strong brand presence with consistent messaging and active engagement in para-sports sponsorship, enhancing their community involvement and brand image. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager, ensuring good digital maturity and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, user-friendly, and compliant with GDPR requirements, supporting a high trust level for visitors and customers.

The website www.sotsiaalkindlustusamet.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks access to the actual content. As a result, no business information, contact details, or policy documents are available for review. The site is protected by Cloudflare's WAF, indicating a focus on security but preventing external analysis. Without access to the real content, it is not possible to assess the company's market position, services, or compliance posture. The technical infrastructure relies on Cloudflare services, but performance and SEO cannot be evaluated. Security posture cannot be fully assessed beyond the presence of Cloudflare protection. Overall, the site appears to be a government-related entity from Estonia, but detailed insights are unavailable due to access restrictions.

I

Inission

inission.com

0

Inission is a Swedish-based full service electronics and mechanics manufacturer specializing in providing end-to-end solutions across the complete product lifecycle. The company targets businesses and engineers requiring development, prototyping, industrialization, manufacturing, and product maintenance services. Their market position is that of a quality-focused and sustainable partner with a strong emphasis on customer satisfaction and innovation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, hosted on DigitalOcean infrastructure, and optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are absent. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by professional content and investor relations transparency. Overall, the site demonstrates a mature digital presence suitable for a medium-sized manufacturing business.

Swissôtel Hotels & Resorts operates a luxury hospitality brand with a global footprint, offering premium hotel accommodations, event hosting, and loyalty programs. The website reflects a mature digital presence with multilingual support, rich content, and integrated marketing and analytics tools. Technically, the site uses ASP.NET Web Forms, modern JavaScript libraries, and robust cookie consent mechanisms, ensuring a good user experience across devices. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data is a notable anomaly but does not detract from the apparent legitimacy of the site given its branding and parent company association. Overall, the site is professional, secure, and compliant with privacy regulations, serving a large luxury hospitality market segment.

B

Big Penny

trumansbeer.co.uk

0

Big Penny is a hospitality operator based in Walthamstow, London, managing large community venues that offer food, drink, and live events. The company emphasizes inclusivity and community connection, operating flagship venues such as Big Penny Social and Flukes. The website is professionally designed using Webflow CMS and integrates modern technologies including Google Analytics and cookie consent mechanisms. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS usage and cookie consent, but lacks visible security headers and formal security policies. Privacy compliance is basic with a privacy policy and cookie banner present but no GDPR explicit statements or data retention policies. Business credibility is strong with clear contact information and consistent branding. Overall, the website is functional and trustworthy for its hospitality business purpose.

L

Latitude59

latitude59.ee

0

Latitude59 is a well-established flagship startup and technology event based in Estonia, with a history dating back to 2012. It serves as a key platform for startups, investors, partners, and media to connect and showcase innovation. The website reflects a mature event organization with a strong international presence, offering pitch competitions, investor days, and satellite events worldwide. The business model centers on event management and ecosystem development within the technology sector. Technically, the website is built on WordPress using Elementor and integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and PixelYourSite. The site is optimized for SEO and mobile devices, with a good user experience and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is good, with a comprehensive privacy and cookie policy and GDPR adherence. However, the site lacks explicit security policies, incident response contacts, and terms of service pages, which could enhance trust and compliance. Overall, Latitude59's website demonstrates a professional, secure, and privacy-conscious digital presence aligned with its business objectives.

E

Evocon

evocon.com

0

Evocon is a Denmark-based company specializing in user-friendly OEE (Overall Equipment Effectiveness) software designed to help manufacturing companies automate data collection from machines and provide real-time production performance insights. The company targets manufacturers seeking to improve productivity, reduce waste, and enhance operational efficiency. Their market position is supported by a global client base and trusted brand presence, including notable manufacturing partners. Technically, the website is built on WordPress with modern integrations such as HubSpot, Google Tag Manager, and Hotjar, indicating a mature digital infrastructure. Performance and mobile optimization are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and domain transfer protections in place, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service found. Overall, the website reflects a professional and credible business with room for improvement in privacy and security transparency.

S

Sviiter Studio

sviiter.ee

0

Sviiter Studio is a small, independent full-service design-oriented studio based in Estonia, specializing in branding, digital, and print design services. The company positions itself as innovative and client-focused, targeting businesses and organizations seeking comprehensive design solutions. The website is professionally designed using the Squarespace platform, featuring clear navigation, responsive design, and integration with social media channels such as Instagram, Facebook, and Behance. Technical infrastructure leverages modern web technologies and content delivery networks to ensure moderate performance and good user experience across devices. Security posture is strong with HTTPS enforced, HSTS enabled, and a cookie consent mechanism in place, although explicit privacy policies and incident response information are absent. Overall, the website reflects a trustworthy and credible business presence with room for improvement in privacy compliance and security transparency.

ID Production is an event marketing and production company that specializes in creating event identities. Their Facebook business page serves as their primary online presence, showcasing their services and engaging with a moderate follower base of approximately 1.1K followers. The company targets event organizers and marketers seeking professional event marketing and production services. The business model is service-oriented, focusing on event marketing and production within a niche market segment. Technically, the page is hosted on the Facebook platform, leveraging Facebook's infrastructure, React framework, and secure HTTPS environment. The page is well-optimized for mobile devices and provides a good user experience with clear navigation and relevant content. The technical implementation benefits from Facebook's robust hosting and security features, ensuring fast performance and accessibility. From a security perspective, the page benefits from Facebook's platform security, including HTTPS enforcement and secure login forms. No direct security vulnerabilities or exposed sensitive data were detected. However, the page lacks explicit privacy, cookie, or terms of service policies specific to the business, relying instead on Facebook's overarching policies. Contact information is limited to an email address, with no phone numbers or physical addresses provided. Overall, the risk profile of the page is low given its hosting on a reputable platform and absence of suspicious indicators. Strategic recommendations include enhancing privacy compliance disclosures, providing additional contact channels, and maintaining strong administrative security practices. The business should also consider linking to a dedicated website for more comprehensive corporate information and policies.

F

FM Capital Consulting Ltd.

capital-consulting.com

0

FM Capital Consulting Ltd. is a well-established Estonian finance consulting firm specializing in worldwide company registration, bookkeeping, compliance, legal support, and tax planning services. The company targets businesses and entrepreneurs, including startups and fintech companies, offering tailored corporate and tax advantage solutions. Their market position is that of a niche consulting provider with expertise in cross-border transactions and fintech licensing. The website is professionally designed with good content quality and clear navigation, supporting their business credibility. Technically, the website is built on WordPress with common plugins such as Yoast SEO, Slider Revolution, and WPBakery Page Builder. It uses modern tracking and analytics tools including Google Analytics and LinkedIn Insight Tag. Performance and mobile optimization are good, though accessibility is basic. The hosting provider is not explicitly identified but the domain is registered with GoDaddy and uses DNS servers from zone.eu and zone.ee. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. No privacy or cookie policies are present, which is a compliance gap especially given the use of tracking technologies. Contact information is clearly provided, enhancing trust. No WAF or blocking mechanisms are detected, allowing full content access. Overall, the website presents a moderate risk profile with strengths in business credibility and technical implementation but weaknesses in privacy compliance and security best practices. Strategic improvements in privacy policy implementation, cookie consent, and security headers would enhance their security posture and compliance standing.

H

Horizon Geosciences

horizon-geosciences.com

0

Horizon Geosciences is a medium-sized, established company specializing in worldwide marine survey, geotechnical services, and offshore vessel operations. Founded in 2004, the company serves key sectors including oil & gas, renewables, civil, utilities, subsea, and offshore construction. Their website reflects a professional and consistent brand with detailed service offerings and a growing fleet of specialized vessels. Technically, the site is built on WordPress with Elementor, hosted on Bluehost, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and domain transfer protection, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy and well-positioned in its market niche.

I

Iutecredit

iutecredit.md

0

Iutecredit is a Moldovan financial services company specializing in instant credit products, refinancing, and smart shopping solutions. The company leverages a mobile application (Myiute) and an extensive ATM network to provide convenient access to financial services. The website reflects a mature digital presence with a focus on user experience and mobile accessibility. The business is positioned as a trusted player in the Moldovan microfinance sector with over 15 years of operational history through its parent company, Iute Group AS. Technically, the website is built on WordPress and integrates multiple analytics and marketing tools, indicating a well-developed digital marketing strategy. Security posture is strong with HTTPS, security headers, and reCAPTCHA usage, though some improvements in cookie consent and incident response transparency are recommended. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

Eton

etonshirts.com

0

Eton is a well-established Swedish brand specializing in premium men's shirts and accessories, with a history dating back to 1928. The company operates a sophisticated e-commerce platform targeting men seeking quality and style in shirts and related apparel. Their market position is strong within the premium retail segment, supported by a comprehensive product range including custom-made options and a membership club offering exclusive benefits. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Contentful CMS and integrating analytics tools like Google Tag Manager and Voyado. The site demonstrates excellent design quality, mobile optimization, and accessibility, providing a seamless user experience. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although the absence of explicit security policy or incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing, which raises concerns about domain registration transparency despite the site's legitimacy and professional appearance. Overall, the website is secure, professional, and user-friendly but would benefit from improved domain registration transparency and explicit security disclosures.

R

R Haldus OÜ

rhaldus.ee

0

R Haldus OÜ is a small Estonian company specializing in property management services for commercial and residential real estate. Their website presents a focused business model offering competent and quality property maintenance and management services. The site is primarily in Estonian with options for English and Russian, targeting property owners seeking professional management solutions. Technically, the website is built on the Voog CMS platform and uses common JavaScript libraries such as jQuery and Modernizr, along with Google Analytics and Google Tag Manager for tracking. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. Security-wise, the website uses HTTPS but lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. There is no visible incident response or vulnerability disclosure information, which limits transparency in security matters. Overall, the website is functional but basic, with room for improvement in privacy, security, and content depth.

I

Inzmo Gmbh

inzmo.com

0

INZMO GmbH is a German-based innovative insurance provider specializing in digital insurance solutions for consumers. Their offerings include mobile phone insurance, rental deposit warranties, bicycle insurance, laptop/tablet insurance, and e-scooter insurance. The company positions itself as a revolutionary player in the insurance market, emphasizing ease of use, fast claims processing, and 24/7 customer support. Their market approach leverages a user-friendly app and digital-first experience to attract tech-savvy customers seeking hassle-free insurance products. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS enforcement and bot protection via Google reCAPTCHA, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and regulatory adherence. Overall, INZMO demonstrates a mature digital presence with a solid business model and good security hygiene.

N

Nord Projekt

nordprojekt.ee

0

Nord Projekt is a leading Estonian architecture and engineering bureau offering comprehensive design and project management services. The company emphasizes creativity, precision, and quality across all project phases, serving clients seeking professional architectural and engineering solutions. Their market position is strong within Estonia, supported by a portfolio of notable projects and ISO 9001 certification. The website is built on WordPress with modern plugins and demonstrates good digital maturity, including multilingual support and SEO optimization. Security posture is solid with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. Contact information is clearly provided, enhancing business credibility. Overall, the site reflects a professional and trustworthy business presence.

P

Pro Circuit Electrical Contracting

procircuitec.com

0

Pro Circuit Electrical Contracting is a specialized commercial and industrial electrical contractor based in New Jersey, offering a broad range of services including solar installations, emergency power systems, and general electrical contracting. The company positions itself as a leading provider in the energy sector with a focus on consistent competitive pricing and project success. The website is built on the Squarespace platform, featuring professional design and good mobile optimization, but lacks key compliance documents such as privacy and cookie policies. Security posture is generally strong with HTTPS enabled, but the absence of security headers and WHOIS registration data introduces some risk. Overall, the site is functional and professional but would benefit from enhanced compliance and transparency measures.

R

Rebank

rebank.lt

0

Rebank is a Lithuanian real estate and investment management company established in 2022. The website presents a basic but clean and responsive design built on the Framer platform, targeting local investors and clients interested in property and investment management. The business appears to be a small local player with a focus on real estate services. Technically, the website uses modern web fonts and is mobile optimized, but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing important security headers and policies. No privacy, cookie, or terms of service policies were found, indicating compliance gaps. Contact information and incident response details are absent, limiting user trust and support options. Overall, the site is functional but requires improvements in privacy, security, and business transparency to enhance credibility and compliance.

M

Mobalytics

mobalytics.gg

0

Mobalytics is a technology company specializing in gaming performance analytics and companion software, targeting competitive gamers across multiple popular titles such as League of Legends, TFT, Diablo 4, and others. The platform boasts over 10 million users and maintains partnerships with esports organizations, positioning itself as a leading player in the gaming analytics market. Their business model revolves around providing personalized game insights, in-game overlays, and esports data services, primarily delivered via a WordPress-based website and a Windows desktop application integrated through Overwolf. Technically, the website leverages a modern tech stack including WordPress CMS, Google Fonts, multiple analytics and marketing tools (Google Analytics, Mixpanel, Hotjar, Ahrefs, Comscore), and integrates Riot Games APIs for game data. The site is well-optimized for performance, mobile responsiveness, and SEO, with fast loading times and clear navigation. Hosting appears to be cloud-based with CDN usage for static assets. From a security perspective, the site uses HTTPS with good SSL configuration and employs asynchronous loading of scripts to minimize performance impact. However, explicit security headers are not evident, and there is no visible security policy or incident response contact information. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found in the provided content. No direct company contact emails or phone numbers are visible, which may impact user trust and support accessibility. Overall, Mobalytics presents a professional and trustworthy online presence with strong business credibility and technical maturity. To enhance security posture and compliance, the company should publish clear privacy and security policies, implement security headers, and provide direct contact information. These improvements would further solidify user trust and regulatory adherence.

The website ww.ee represents a small Estonian technology-related company operating under the names OÜ Wõrgu Wõlurid and Web Wizards LLC. The business appears to provide web or IT services, targeting both Estonian and English-speaking clients. The domain is well-established since 2010 and hosted by Zone Media OÜ, consistent with the company's location and language. The website content is minimal but accessible, providing basic contact information in two languages. Technical infrastructure is simple, relying on standard HTML, CSS, and JavaScript without advanced frameworks or CMS platforms. Mobile optimization and accessibility are basic but functional. From a security perspective, the site lacks critical security headers and published policies such as privacy, cookie, or terms of service, which indicates compliance gaps and potential risks. No incident response or vulnerability disclosure mechanisms are present. The absence of analytics or tracking scripts suggests minimal user tracking, which is positive for privacy but also indicates limited marketing sophistication. WHOIS data is transparent and consistent with the website's claims, supporting legitimacy. Overall, the website scores moderately on business credibility but falls short on privacy compliance and security posture. The lack of published policies and security best practices presents risks that should be addressed to improve trust and regulatory compliance. Strategic improvements in security headers, policy publication, and incident response readiness are recommended to enhance the site's security and compliance maturity.