Security Directory

C

CyberSift | Cybersecurity Solutions for Your Business

cybersift.io

0

The website www.cybersift.com appears to be a Wix-hosted site with minimal accessible content and no visible WHOIS registration data, indicating the domain may not be registered or WHOIS data is privacy protected. The site includes tracking scripts such as Hotjar and Apollo.io, suggesting user behavior analytics are in place. However, there is a lack of essential business information, contact details, and compliance policies such as privacy or cookie policies. Technically, the site uses Wix's standard platform and scripts, with basic mobile optimization and moderate performance. Security posture is weak due to missing security headers and lack of HTTPS enforcement details. Overall, the site presents a low trust profile with significant gaps in transparency and compliance.

U

Unicorn Solutions AS

unicorn-solutions.com

0

Unicorn Solutions AS is a Norway-based software product company specializing in credit management solutions, including modular business applications such as Unicorn Box, Workflow, and Communication platforms. The company targets collection agencies and businesses requiring integrated credit management and workflow automation. Their market position is supported by a long-established domain since 2009 and Microsoft Silver Partner certification, indicating a credible and specialized niche player. Technically, the website employs a traditional tech stack including jQuery 1.11.1, Bootstrap, Font Awesome, and Google Analytics/Tag Manager for tracking. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Performance is moderate with no critical technical flaws detected. However, the use of an outdated jQuery version and absence of security headers are notable technical risks. From a security perspective, the site uses HTTPS (assumed from URL), but no security headers were detected in the provided data. There is no visible privacy or cookie policy, nor any incident response or vulnerability disclosure information, which are gaps in compliance and security transparency. The domain WHOIS data is consistent and supports legitimacy, with no privacy protection masking registrant details. Overall, the website is professional and functional but requires improvements in privacy compliance and security best practices to enhance trust and reduce risk. Strategic recommendations include implementing GDPR-compliant privacy and cookie policies, adding security headers, updating libraries, and publishing incident response information.

M

Meeskonnakoolitus ja Arendus OÜ

meeskonnakoolitus.ee

0

Meeskonnakoolitus ja Arendus OÜ is an Estonian company specializing in team training and organizational development services. Their offerings include multi-day team training, experiential learning, consulting, mentoring, and coaching aimed at improving cooperation, leadership, and communication within organizations. The company targets Estonian businesses seeking to enhance team dynamics and leadership skills. The website is built on Joomla CMS with Bootstrap and jQuery, featuring a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and CSRF tokens in forms, but the use of outdated JavaScript libraries and lack of security headers present moderate risks. Privacy and cookie policies are not found, indicating compliance gaps. Contact information and social media presence are clearly provided, supporting business credibility.

T

Thermoarena OÜ

thermoarena.com

0

Thermoarena OÜ is a medium-sized Estonian manufacturing company specializing in high-quality thermally modified wood products such as decking, cladding, and lumber. The company emphasizes sustainability and eco-friendliness, positioning itself as a leader in the Estonian wood industry with multiple recognitions and a strong creditworthiness rating. Their target audience includes architects, designers, and environmentally conscious consumers seeking durable and natural wood alternatives. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress using modern libraries such as jQuery, Bootstrap, and Slick Slider. It employs HTTPS with a good SSL configuration and uses CAPTCHA to secure its contact form. However, the site lacks DNSSEC and important security headers, which are recommended for enhanced security. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site demonstrates a reasonable posture with HTTPS enforcement and domain transfer protection. However, the absence of privacy and cookie policies, security headers, and incident response information indicates compliance gaps and areas for improvement. No WAF or blocking mechanisms were detected, allowing full content access. Overall, Thermoarena's website is credible and professional but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

C

Convertal OÜ

convertal.ee

0

Convertal OÜ is a well-established Estonian digital marketing agency specializing in a broad spectrum of services including SEO, social media marketing, digital advertising, analytics, and marketing training. The company positions itself as a strategic partner for businesses aiming to enhance their online visibility and achieve measurable business outcomes. Their market position is strong within Estonia and the Baltic region, supported by client testimonials and Google Partner certification. Technically, the website is built on WordPress with modern marketing and analytics integrations such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though improvements in security headers and formal security policies are recommended. Overall, the website demonstrates professionalism, good user experience, and trustworthy business credibility.

N

Nordkalk

nordkalk.com

0

Nordkalk is a leading limestone supplier in Northern Europe, providing essential raw materials and solutions for industries such as agriculture, environmental care, steel, pulp and paper, and construction. The company emphasizes sustainability and circular economy principles, aiming to reduce carbon footprint and maximize resource utilization. Owned by UK-based SigmaRoc PLC, Nordkalk operates multiple localized domains serving different European markets. The website is built on WordPress with modern technologies and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain www.nordkalk.com raises concerns about domain registration legitimacy, though the website content and branding appear professional and trustworthy. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site reflects a mature business with a strong sustainability focus but would benefit from enhanced transparency in domain registration and security policies.

M

Messente Communications Ltd

messente.com

0

Messente Communications Ltd operates a global business messaging platform specializing in SMS API services, enabling businesses to send text messages and notifications across 197 markets. The company is positioned as a reliable and worry-free messaging provider targeting businesses requiring scalable communication solutions. Founded in 2010 and based in Estonia, Messente has established a medium-sized presence in the telecommunications technology sector. The website reflects a mature digital infrastructure leveraging HubSpot CMS and marketing tools, with good mobile optimization and professional design. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit security policies could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the website and domain registration data indicate a trustworthy and credible business with a strong market position.

A

Amstelhoorn Notariaat

amstelhoorn.nl

0

Amstelhoorn Notariaat is a specialized notarial service provider focusing on leasehold (erfpacht) matters in Amsterdam. The company positions itself as an expert with comprehensive process control, efficient service, and client communication. The website reflects a small-sized, niche business with a clear market focus on Amsterdam residents and entities requiring leasehold notarial services. Technically, the website is built on WordPress with standard SEO and analytics tools, including Google Analytics, Facebook Pixel, and Bing UET, indicating a moderate level of digital maturity. The site is mobile optimized and professionally designed, providing a good user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with no visible cookie consent mechanism or detailed privacy policy. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

Interlogistics is a small logistics and transportation company operating primarily in Estonia and Belgium, as indicated by the contact phone numbers and email domain. The website is built on Joomla! CMS and uses common web technologies such as jQuery and Bootstrap. The technical infrastructure appears basic but functional, hosted by Radicenter OÜ, which also acts as the domain registrar, indicating consistent ownership and control. The website content is minimal, focusing mainly on contact information and a login form, with no visible privacy, cookie, or terms of service policies. Security posture is moderate; HTTPS is implied but no advanced security headers or protections are evident. The login form lacks visible CSRF tokens or other modern security controls. Overall, the site is functional but lacks comprehensive security and privacy compliance features.

A

Associazione Joint

associazionejoint.org

0

Associazione Joint is a well-established Italian non-profit organization based in Milan, specializing in international youth mobility, volunteering, and cultural exchange programs. Founded in 2003, it has a strong market position as a leader in its sector, offering a variety of services including European Voluntary Service, international work camps, language courses, and support for other non-profit organizations. The website reflects a professional and consistent brand image with good content quality and clear navigation aimed at young people seeking international experiences. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Tag Manager, and various marketing and privacy plugins. The hosting is provided by Hosting Concepts B.V., with Cloudflare DNS but DNSSEC is not enabled. Security posture is good with HTTPS and domain transfer protections, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service on the main site. Overall, the site is trustworthy and professionally maintained but could improve transparency on privacy and security policies.

AP Hogeschool Antwerpen is a well-established higher education institution based in Antwerp, Belgium, offering a wide range of educational programs including bachelor degrees, teacher training, and arts education. The website reflects a professional and comprehensive educational service provider targeting students, professionals, and society at large. Technically, the site is built on Drupal 10, uses modern web technologies, and implements cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The lack of explicit privacy policy and contact information for security or incident response are areas for improvement. Overall, the domain appears legitimate despite WHOIS data restrictions imposed by DNS Belgium, which is common for .be domains. Strategic recommendations include publishing clear privacy and security policies, enhancing security headers, and providing direct contact channels for compliance and incident reporting.

E

E-riigi Akadeemia

ega.ee

0

The e-Governance Academy (eGA) is a well-established Estonian organization specializing in digital transformation and e-governance advisory services. With over 20 years of experience and engagement in 145 countries, eGA positions itself as a center of excellence for governments and public administrations seeking to enhance prosperity and openness through digital means. The website reflects a professional and comprehensive digital presence, featuring rich content including conferences, podcasts, and insights relevant to its target audience. Technically, the site is built on WordPress with modern performance optimizations and uses Google Tag Manager and CookieYes for analytics and consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security best practices like DNSSEC and security headers could be improved. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service pages detected. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

D

Datafruit

datafruit.ee

0

Datafruit is a small Estonian technology company specializing in accelerating business data evolution through analytics and optimization services. Their website reflects a professional B2B service provider targeting businesses interested in supply chain and cost dynamics analysis. The company has been established since 2014, with a consistent domain registration and hosting setup. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Cookiebot for GDPR-compliant cookie management. Security posture is good with HTTPS enabled and bot protection via reCAPTCHA, though some security headers could be improved. Privacy compliance is well addressed through detailed cookie consent mechanisms and a linked cookie policy. However, explicit contact information and security policies are not present, which could be enhanced to improve trust and compliance. Overall, the website is functional, moderately performant, and professionally presented, with room for improvement in accessibility and security transparency.

M

Mistra-Autex AS

mistra.ee

0

Mistra-Autex AS is a well-established Estonian manufacturing company specializing in high-quality non-woven and tufted carpet products primarily for the automotive industry, with additional markets in furniture and footwear. The company has a strong market position supported by multiple industry certifications and awards, a medium-sized workforce, and a turnover of approximately 27 million Euros. Their website reflects a professional digital presence built on WordPress with Elementor, optimized for performance and mobile use. Security posture is solid with HTTPS, security headers, and reCAPTCHA on forms, though explicit security policies and cookie consent mechanisms are absent. Overall, the website and domain registration data indicate a legitimate and credible business with room for improvement in privacy compliance and security transparency.

S

ScanMarine Estonia OÜ

scanmarine.ee

0

ScanMarine Estonia OÜ is a small Estonian company specializing in the sale and rental of sea containers along with comprehensive transport and logistics services including maritime, air, road, and rail transport. Established in 2012, the company targets both business and consumer markets within Estonia and the broader EU region. Their website reflects a professional and consistent brand presence with multilingual support and e-commerce capabilities. Technically, the site is built on WordPress with WooCommerce and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and PixelYourSite, all managed with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Overall, the website demonstrates good digital maturity, compliance, and trustworthiness.

W

White Mammoth

whitemammoth.com

0

White Mammoth is a specialized visualization company focusing on architectural 3D images, animations, drone photography, and virtual reality content. Their website showcases a portfolio of exterior and interior projects, targeting architects, real estate developers, and design professionals. The company positions itself as a niche service provider in the real estate visualization market, leveraging modern web technologies such as Bootstrap and jQuery to deliver a responsive and visually appealing user experience. Technically, the website employs standard frontend libraries and Google Analytics for tracking. While the site is mobile-optimized and well-structured, it lacks advanced security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency, although the active social media presence partially offsets this risk. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but improvements are needed in implementing security headers and formalizing privacy compliance. The overall risk is moderate, with recommendations focusing on enhancing security posture, adding privacy documentation, and clarifying domain registration details to improve trustworthiness. Strategically, White Mammoth should prioritize compliance and transparency to strengthen its market position and reassure clients about data protection and business legitimacy.

T

Tavrida Electric

tavrida.com

0

Tavrida Electric is a globally recognized manufacturer specializing in medium voltage electrical equipment, including vacuum circuit breakers and automatic circuit reclosers. The company operates in over 22 countries with nearly 3000 employees, positioning itself among the top three suppliers worldwide in its industry. Their website reflects a professional and well-structured digital presence, targeting utility companies and industrial clients requiring reliable power system components. Technically, the site leverages Bitrix CMS, jQuery, and Google Tag Manager, indicating a mature but somewhat traditional technology stack. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks comprehensive security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of public WHOIS data slightly reduces trust but is not uncommon for large international companies employing privacy protection. Overall, the website is functional, professional, and credible, with moderate room for enhancement in privacy compliance and security posture.

1

1Home

1home.eu

0

1Home is a regional student housing provider focusing on accommodation for international students and interns in Baltic states and Poland. The company offers freshly renovated shared apartments with services such as weekly housekeeping, fixed utilities, and high-speed Wi-Fi. The website is built on WordPress with WooCommerce and Elementor, indicating a moderate level of digital maturity. It integrates common analytics and marketing tools like Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and reCAPTCHA on forms, but lacks comprehensive security headers and explicit GDPR cookie consent mechanisms. Overall, the website presents a professional and trustworthy image but could improve privacy compliance and security best practices.

M

Motieka & Audzevičius

tark.legal

0

Advokaadibüroo TARK OÜ is a well-established full-service law firm based in Estonia, operating since 1991. The firm offers a broad range of legal services including corporate law, mergers and acquisitions, banking and finance, competition regulation, dispute resolution, energy, real estate, IT, labor, and tax law. Positioned as a leader in the Baltic legal market, TARK has received multiple industry recognitions and maintains a strong client testimonial presence. Their target audience primarily consists of businesses and professionals requiring comprehensive legal support in Estonia and the Baltic region. Technically, the website is built on WordPress using modern plugins such as Yoast SEO Premium and WPBakery Page Builder. It integrates multiple tracking and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO practices, though performance is moderate. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, but lack advanced security headers and explicit security policies. The security posture is solid but could be improved by implementing additional HTTP security headers and publishing incident response and security policies. Privacy compliance is supported by a cookie consent mechanism and a privacy policy page, though terms of service and vulnerability disclosure information are absent. WHOIS data confirms domain legitimacy and consistency with the business location and history. Overall, the website reflects a professional and credible legal services provider with a mature digital presence. Strategic improvements in security policies and technical hardening would enhance trust and compliance further.

R

Reliex

reliex.com

0

Reliex is a technology company specializing in Jira plugins designed to enhance project management workflows through resource planning, duplicate issue detection, and notification management. The company has established a strong market presence with over 5,000 teams globally, including Fortune 500 clients, and offers its products primarily via the Atlassian Marketplace. Their website reflects a mature SaaS business model focused on productivity tools for Jira users. Technically, the site is built on Webflow and integrates modern analytics and tracking tools such as Google Analytics, Segment, and Hotjar, alongside robust bot protection via Cloudflare and Google reCAPTCHA. Security posture is strong, supported by SOC 2 Type II and ISO 27001:2022 certifications, participation in bug bounty programs, and a comprehensive cookie consent mechanism. However, the absence of explicit privacy policy and terms of service pages, as well as direct contact information, represents areas for improvement. Overall, the website is professional, secure, and trustworthy, with minor gaps in privacy compliance documentation.

E

eHost OÜ

royal.ee

0

Aktiva.ee is an Estonian business information portal focused on supporting entrepreneurs at various stages, including startups, operating companies, and those expanding internationally. The site offers practical guidance, resources, and educational content related to business planning, management, marketing, accounting, legal frameworks, and international trade. The portal positions itself as a comprehensive guide for business success in Estonia and beyond. Technically, the website is built on WordPress, leveraging common plugins such as Google Analytics and Google reCAPTCHA for security and tracking. Hosting and DNS services are provided by eHost OÜ and Cloudflare respectively, ensuring reliable infrastructure. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit HTTP security headers and does not provide visible privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency and readiness. Overall, the website is a well-structured, content-rich portal with moderate technical maturity and security posture. To enhance trust and compliance, it should implement comprehensive privacy and cookie policies, improve security headers, and provide clear contact and incident response information.

S

SIGA

siga.swiss

0

SIGA is a Swiss-based company specializing in providing high-quality vapour control layers, tapes, adhesives, and sealants aimed at enabling architects, builders, and installers to construct energy-efficient and airtight buildings. The company positions itself as a trusted supplier in the building materials sector with a focus on sustainable and durable building envelope solutions. Their website is well-structured, multilingual, and rich in technical content including product catalogs and guides, targeting professional audiences in the construction industry. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern analytics and tracking tools such as Google Tag Manager and Hotjar. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is basic with cookie consent implemented but no explicit privacy policy page found. Overall, the website reflects a professional and credible business presence with good digital maturity.

O

ONLINE ONLY OÜ

onlineonly.com

0

ONLINE ONLY OÜ is a small, Estonia-based digital marketing and online business management company operating a fully remote team of about 30 people. The company focuses on managing and investing in profitable online businesses including SaaS, eCommerce, and publishing sectors. Their key services include conversion optimization, Google Ads, SEO, design, and development. The company presents a professional and consistent brand image with a clear portfolio of owned businesses, indicating a stable market position in their niche. Technically, the website is built on a modern React and Gatsby framework, delivering good performance and mobile optimization. However, the site lacks critical privacy and cookie policies, and no security headers were detected, which are areas for improvement. The domain is well maintained with a long history and consistent WHOIS data, supporting the legitimacy of the business. Overall, the security posture is moderate with room for enhancements in policy transparency and technical security measures.

H

Hookah

hekkpipe.com

0

Hekkpipe.com appears to be a WordPress-based website branded as 'Hookah' with minimal content and limited business information. The domain is well-established since 2013 and uses Cloudflare DNS services, indicating a moderate level of technical infrastructure. The website employs standard web technologies including Bootstrap and jQuery, but lacks comprehensive privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enabled and domain-level protections, but the absence of DNSSEC and security headers suggests room for improvement. Overall, the site shows basic digital maturity but requires enhancements in privacy compliance, security best practices, and business transparency to improve trustworthiness and professional standing.

S

SDDNL

sdd.nl

0

SDDNL is a specialized distributor of high-quality print finishing machinery and materials based in the Netherlands. The company offers a range of products including binders, laminators, cutters, creasers, and folders, targeting professional print finishing businesses. Their website reflects a strong market position with partnerships with well-known brands and a focus on quality and technical innovation. The digital infrastructure is built on WordPress with WooCommerce, enhanced by performance and GDPR compliance plugins, indicating a mature and professional online presence. Security posture is solid with HTTPS, security headers, and spam protection, though there is room for improvement in publishing dedicated security policies and incident response information. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, supporting the company’s credibility and trustworthiness in its niche market.

G

gotoAndPlay

gotoandplay.ee

0

gotoAndPlay is a small, agile web development team based in Estonia, founded in 2013. They specialize in creating web applications, websites, and MVPs using modern technologies such as React, Laravel, and WordPress. The company emphasizes close collaboration with clients to deliver result-driven digital solutions. Their market position is that of a niche, high-quality service provider focused on innovation and client partnership. Technically, the website is built on a modern stack with good performance, mobile optimization, and SEO best practices. Security posture is strong with HTTPS, security headers, and privacy compliance including cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site reflects a professional and trustworthy business with a clear focus on privacy and user experience.

C

Crowdly

crowdly.com

0

Crowdly operates a mature customer engagement platform focused on activating brand advocates for market research, user-generated content, and word-of-mouth marketing. The company targets brands seeking to deepen customer loyalty and engagement through a SaaS model with managed service options. The website presents a professional and consistent brand image supported by client logos, case studies, and testimonials, indicating a strong market position. Technically, the website uses modern frameworks such as Bootstrap 5, integrates Google Analytics, Google Tag Manager, and Intercom for marketing and customer support. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and CSRF protections in forms. However, DNSSEC is not enabled and security headers are not detected, representing areas for improvement. Privacy compliance is partial; a privacy policy is present and GDPR compliance is indicated, but no cookie consent mechanism is implemented. No explicit security policy or incident response contacts are published. Overall, Crowdly's website is trustworthy and professional with a good security baseline. Strategic improvements in privacy compliance and security hardening would enhance trust and reduce risk.

G

Error

gaiaschool.in

0

The website gaiaschool.in currently serves an error page hosted by Wix indicating that the domain is not connected to any active website. There is no business content, contact information, or policies available, which severely limits the ability to assess the business or its market position. The site uses AngularJS and jQuery libraries and is hosted on the Wix platform. The technical infrastructure is basic and typical of a placeholder or error page. Security posture is minimal with no visible security headers or SSL information, and no privacy or cookie policies are present. Overall, the site is inaccessible for normal users and does not provide any meaningful content or business credibility. The risk level is high due to lack of content and security measures.

O

Omnes Capital

omnescapital.com

0

Omnes Capital is a prominent European private equity firm specializing in the energy transition sector. The company supports visionary entrepreneurs and manages significant assets across renewable energy, sustainable cities, deeptech venture capital, and co-investment opportunities. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content focused on their business mission and services. Technically, the site employs modern JavaScript libraries, integrates Cookiebot for GDPR-compliant cookie management, and uses Google Analytics and Bugsnag for analytics and performance monitoring. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and a published security policy suggests room for improvement. The lack of WHOIS data is a notable concern for domain legitimacy, but the overall professional presentation and compliance mechanisms mitigate some risk. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen trust.

V

Virumaa Muuseumid

svm.ee

0

Virumaa Muuseumid is a regional museum network based in Estonia, focusing on cultural heritage, history, and educational services related to the Virumaa region. The website serves as a portal to various museums including Rakvere linnus, Palmse mõis, and others, targeting visitors interested in history and culture. The business operates primarily as a government or non-profit entity with a small organizational size and a recent establishment date in 2022. Technically, the website is built on WordPress, leveraging common plugins for SEO, analytics, and cookie management, hosted by Zone Media OÜ. The site is well-structured with multilingual support and good accessibility features. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, though DNSSEC is not enabled and security headers are not explicitly confirmed. Privacy compliance is strong with GDPR-aligned cookie consent and privacy policy. Overall, the site is professional, trustworthy, and serves its cultural mission effectively.

W

Wallester AS

wallester.eu

0

Wallester AS is a European leader in card issuing and expense management solutions, providing white-label and business expense card platforms. The company targets businesses seeking embedded finance and streamlined corporate spending solutions. Their market position is strong within the European fintech sector, supported by a modern, well-structured website and a clear business model focused on B2B SaaS offerings. Technically, the website uses modern JavaScript frameworks like React, integrates Google Tag Manager and Bing Ads for marketing and analytics, and is hosted with Cloudflare DNS services. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and domain transfer protections in place, but could be improved with DNSSEC and additional security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

E

Eesti Üliõpilaskondade Liit

eyl.ee

0

Eesti Üliõpilaskondade Liit (EÜL) is a well-established Estonian non-profit umbrella organization representing student unions nationally. It advocates for student rights, participates in policy development, and supports student representatives. The website is professionally designed using WordPress with modern plugins and provides clear contact information and social media presence. The organization also serves as the official representative for the ISIC student card in Estonia, indicating a key partnership. Technically, the site uses a modern CMS and includes SEO optimizations, but some performance and security header improvements are possible. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and security policies are absent. Analytics tools like Facebook Pixel and Hotjar are used, with Google Analytics plugin present but not configured. Overall, the site demonstrates a good security posture but could enhance security headers and incident response transparency.

A

Amandus Communication

amanduscommunication.com

0

Amandus Communication is a specialized online corporate communications agency focusing on corporate websites and related services, primarily serving publicly traded companies and organizations. Their offerings include website advisory, design, production, IPO and transaction support, integrated connections for investor relations and recruitment, concept and design services, and financial reporting. The company leverages platforms such as WordPress and Optimizely and promotes a Website as a Service (WaaS) model through their partner domain amanduswp.com. Technically, the website uses modern web technologies with JavaScript and CSS, is mobile optimized, and served over HTTPS, but lacks advanced security headers and privacy compliance mechanisms. Security posture is moderate with room for improvement in DNS security and policy disclosures. Overall, the site presents a professional and trustworthy image with clear contact information and consistent branding.

E

Exove

exove.com

0

Exove is a technology company specializing in creating future-friendly digital solutions aimed at helping businesses grow. Their website presents a professional and modern digital presence, leveraging WordPress CMS and integrating multiple third-party marketing and analytics tools such as Google Analytics, HubSpot, and Leadfeeder. The company demonstrates compliance with GDPR through a comprehensive cookie consent mechanism and detailed cookie policy. Technically, the site is hosted behind Cloudflare, ensuring good SSL configuration and performance. Security headers are partially inferred but could be improved with explicit implementation. No blocking or WAF challenges were detected, indicating open accessibility. However, the absence of WHOIS data for the domain www.exove.com raises concerns about domain registration transparency, which impacts trustworthiness despite the professional website content.

M

Miterassa

miterassa.ee

0

Miterassa operates a professional e-commerce platform specializing in consumer electronics, including audio, video, and smart devices, targeting customers primarily in Estonia. The website presents a well-structured catalog with clear navigation and a consistent brand presence. The business model focuses on retail sales supported by extended warranty and installation services, positioning Miterassa as a reputable regional player in the electronics retail market. Technically, the website is built on Magento 2, leveraging modern JavaScript frameworks such as RequireJS and jQuery, and integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, Hotjar, and Cookiebot for consent management. The site is mobile-optimized and employs HTTPS with appropriate security headers, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices such as enforcing HTTPS, implementing cookie consent, and using security headers. However, it lacks publicly available security policies and incident response contacts, which are recommended for enhanced transparency and compliance. No critical vulnerabilities or suspicious indicators were detected. Overall, the website is professional, secure, and compliant with privacy regulations, reflecting a trustworthy business. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility features, and maintaining regular audits of third-party scripts to sustain security posture.

F

FOB Solutions OÜ

fob-solutions.com

0

FOB Solutions OÜ is a technology service provider specializing in software development, quality assurance, digitized business operations, and Elastic consulting services. The company targets businesses seeking expert technology solutions and positions itself as a niche provider with a focus on Elastic technologies and digitized operations. The website is professionally designed, mobile-optimized, and uses WordPress CMS with modern SEO and analytics tools integrated. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good privacy compliance. Security posture is strong with HTTPS enforced and no exposed sensitive data, though additional security headers and policies could enhance protection. The absence of WHOIS data is a concern for domain legitimacy but is offset by the professional website and active social media presence. Overall, the site demonstrates a mature digital presence with room for improvement in transparency and security documentation.

ج

جيديا للتقنية

geidea.net

0

جيديا للتقنية هي شركة رائدة في مجال حلول الدفع الإلكتروني ونقاط البيع في المملكة العربية السعودية، تقدم خدمات متكاملة تشمل أجهزة نقاط البيع، المدفوعات عبر الإنترنت، وحلول نقاط البيع للمطاعم. تتمتع الشركة بحصة سوقية كبيرة في السعودية وتقدم خدماتها لأكثر من 150,000 تاجر مع أكثر من 5 ملايين عملية مالية يومياً. الموقع الإلكتروني يعكس تركيز الشركة على السوق السعودي ويقدم محتوى غني ومتنوع باللغة العربية مع دعم للغة الإنجليزية. من الناحية التقنية، يستخدم الموقع تقنيات حديثة مثل Bootstrap وjQuery مع تكامل أدوات تتبع وتحليل مثل Google Tag Manager وFacebook Pixel. من حيث الأمن، الموقع يستخدم HTTPS بشكل كامل ويطبق ممارسات أمان أساسية، لكنه يفتقر إلى بعض السياسات الأمنية المنشورة مثل سياسة الأمان أو سياسة الحوادث. لا توجد سياسات خصوصية أو ملفات تعريف ارتباط واضحة، مما يشير إلى فجوات في الامتثال للخصوصية. من ناحية أخرى، وجود شهادات معتمدة وترخيص من البنك المركزي السعودي يعزز من مصداقية الشركة. التقييم العام للموقع جيد مع نقاط قوة في المحتوى والموثوقية، لكن هناك مجال لتحسين الامتثال للخصوصية وتعزيز ممارسات الأمان التقنية. التوصيات الاستراتيجية تشمل نشر سياسات الخصوصية والكوكيز، تحسين رؤوس الأمان، وتوفير قنوات اتصال للحوادث الأمنية.

H

Hoob OÜ

hoob.ee

0

Hoob OÜ is an Estonian company specializing in factory automation and machine building, serving industries such as automotive, electronics, telecom, and medical sectors. Established in 2015, it offers turnkey automation solutions and subcontracting services including engineering and manufacturing. The company maintains a strong market position with reputable clients like ABB and Ericsson, supported by ISO certifications and European funding. Technically, the website is built on WordPress with modern libraries and plugins, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and anti-spam measures, though lacking some advanced security headers and explicit privacy policies. Overall, the site is professional and trustworthy, but could improve privacy compliance and security transparency.

A

Access Partnership

accesspartnership.com

0

Access Partnership is a well-established public policy consultancy specializing in technology and innovation sectors, founded in 1999. The company provides comprehensive advisory services including policy analysis, regulatory strategy, compliance, advocacy campaigns, and government advisory. Their market position is strong as a leading global consultancy with a focus on helping businesses and governments navigate complex regulatory environments. Technically, the website is built on WordPress with modern plugins and integrations such as HubSpot forms, Google Tag Manager, and Cloudflare DNS, delivering fast performance and excellent mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is currently basic, lacking visible privacy and cookie policies or consent mechanisms. Overall, the website demonstrates high professionalism and business credibility, supported by trust signals such as awards and active social media presence.

G

Go Wombat OU

gowombat.team

0

Go Wombat OU is a custom software development company founded in 2015, specializing in personalized digital solutions including web and mobile applications, cybersecurity consulting, AI and machine learning services, and business process automation. The company positions itself as a passionate team of world-class developers focused on transparency, loyalty, and performance, targeting businesses seeking tailored software solutions. The website is professionally designed with clear navigation and modern technologies such as Next.js, React, Python frameworks, and is hosted on DigitalOcean. However, the site lacks explicit privacy, cookie, and terms of service policies, as well as visible contact information, which impacts privacy compliance and user trust. Security posture is moderate with HTTPS enabled and domain locking, but missing DNSSEC and security headers.

A

AS Arstikeskus Confido

ortopeediaarstid.ee

0

Ortopeediaarstid, now part of AS Arstikeskus Confido since April 2024, is a well-established orthopedic healthcare provider in Estonia offering a comprehensive range of modern orthopedic treatments including arthroscopy, endoprosthetics, physiotherapy, and sports medicine. The website targets patients seeking specialized orthopedic care and provides detailed service descriptions, appointment booking options, and patient information in multiple languages. The business is positioned as a reputable healthcare provider with a medium-sized operation and a clear focus on quality patient care. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and reCAPTCHA v3 for form security. The site is mobile-optimized, SEO-friendly, and uses structured data for enhanced search engine visibility. Hosting is managed by Zone Media OÜ, a known Estonian hosting provider. Performance is moderate with good accessibility and navigation. From a security perspective, the site enforces HTTPS, integrates reCAPTCHA to protect forms, and uses Wordfence security plugin scripts. However, it lacks explicit security headers and published security policies or incident response contacts. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and a clear cookie consent mechanism. Contact information is comprehensive and professionally presented. Overall, the website demonstrates a solid security posture and business credibility with room for improvement in security policy transparency and accessibility. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance.

P

Platvorm

platvorm.ee

0

Platvorm is a specialized data visualisation studio based in Tallinn, Estonia, focusing on integrating physical and digital spaces through innovative digital platforms. Their services include data visualisation, exhibitions, smart city solutions, mapping, installations, web development, VR/AR, and 3D printing. The company targets clients who require advanced digital storytelling and interactive media solutions. The website reflects a niche market position with a professional and consistent brand presence. Technically, the website is built using modern technologies such as React and Next.js, with a focus on performance and mobile optimization. The use of Plausible Analytics indicates a privacy-conscious approach to user tracking. However, there is room for improvement in accessibility and security headers to enhance the overall technical maturity. From a security perspective, the site benefits from HTTPS and deferred script loading but lacks important security headers and formal privacy and cookie policies, which are critical for GDPR compliance. No forms or sensitive data exposure were detected, reducing immediate risk. The WHOIS data aligns well with the website's claims, supporting legitimacy. Overall, the website is professional and functional but should address privacy compliance and security best practices to reduce risk and improve trustworthiness.

L

Laenud

emara.ee

0

The website emara.ee operates as an online loan comparison and referral platform targeting the Estonian market, primarily offering information and access to various loan products such as quick loans, small loans, mortgage loans, and business loans. The site is built on a modern WordPress CMS with Elementor page builder and uses Cloudflare DNS services. It demonstrates good SEO practices with Rank Math plugin and structured data markup. However, the domain is very recently registered in early 2025 by a registrar company rather than the business itself, which raises questions about the maturity and legitimacy of the operation. No privacy, cookie, or terms of service policies are present, and no direct company contact emails or phone numbers are provided, limiting transparency. Security posture is moderate with HTTPS enabled but lacking important security headers.

A

APTEK

aptek.ee

0

APTEK is a small hospitality business operating as a cocktail and shot bar located in Pärnu, Estonia. The website presents a well-structured digital presence with event promotions, a cocktail menu, and club membership offerings targeting adults interested in nightlife. The business appears established with a domain age of over 12 years, consistent WHOIS data, and active social media engagement. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Owl Carousel, providing a moderate performance and good mobile optimization. However, the site lacks critical privacy and cookie policies, and the contact form is disabled, which limits user interaction and compliance with data protection regulations. Security headers are not evident, and while HTTPS is used, further security hardening is recommended. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices.

H

Heidi Park Kondiiter

kondiiter.ee

0

Heidi Park Kondiiter is a small Estonian bakery business operating since 2010, specializing in retail and custom cakes including gluten-free options. The website is built on WordPress with WooCommerce, providing an e-commerce platform and rich content including product descriptions and Instagram integration. The business has announced permanent closure effective June 13, 2025. Technically, the site uses modern web technologies and maintains good SSL security, but lacks explicit privacy and security policies. Contact information is clearly presented, enhancing business credibility. Security posture is adequate but could be improved with additional headers and published policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

O

OÜ Teadusteater

teadusteater.ee

0

OÜ Teadusteater is an Estonian small-sized company specializing in personalized scientific performances and workshops for various events such as children's birthdays, corporate parties, schools, and festivals. The company leverages a team of enthusiastic science popularizers with extensive experience in notable Estonian science outreach projects. Their market position is strong within the educational and entertainment niche in Estonia, supported by partnerships with reputable institutions like Tartu University and Teaduskeskus AHHAA. Technically, the website is built on WordPress with a moderate performance profile and good mobile optimization, though it uses outdated software versions that pose security risks. Security posture is adequate with HTTPS enforced but lacks modern security headers and up-to-date software. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but requires improvements in security and compliance to reduce risk and enhance user trust.

V

Vecta Design

vectadesign.com

0

Vecta Design is a specialized interior solutions company focusing on stretch ceilings, lighting, acoustic, and smart air systems. Established in 2009, it positions itself as a market leader offering high-quality products and installation services to residential and commercial clients. The website reflects a professional and modern digital presence built on WordPress with WooCommerce, showcasing products and projects effectively. Technically, the site uses modern plugins and frameworks, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and Cloudflare DNS, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is legitimate and trustworthy but would benefit from enhanced privacy and security practices.