Security Directory

W

Wolf Group

krimelte.com

0

Wolf Group is a manufacturer specializing in construction chemistry products such as PU foams, sealants, adhesives, and coatings targeted at professional construction markets. The company presents itself as a global player with a focus on energy-saving solutions. The website is built on WordPress with modern SEO practices and integrates multiple Google services for analytics and marketing. The technical infrastructure is solid with HTTPS and cookie consent mechanisms in place, though some security headers are missing. The absence of explicit privacy policies, terms of service, and contact information reduces transparency and compliance posture. The WHOIS data is notably missing or inaccessible, raising concerns about domain legitimacy despite the professional website presence. Overall, the site is functional and well-designed but requires improvements in compliance documentation and domain registration transparency.

S

Smart MasterKey

blelocking.com

0

Smart MasterKey is a technology company specializing in cloud-based access control solutions that unify mobile smart keys with property systems. The company offers a SaaS platform with features such as digital access administration, multiple access types, integration with existing security infrastructure, and white-label options. Positioned as an innovator with TÜV SÜD certifications and industry awards, Smart MasterKey targets businesses and organizations across sectors including energy, real estate, hospitality, and critical infrastructure. The website demonstrates a high level of professionalism, clear navigation, and multilingual support, reflecting a mature digital presence for a company founded in 2024. Technically, the website is built on WordPress hosted on Amazon AWS infrastructure, utilizing modern JavaScript libraries and analytics tools such as Google Analytics and HubSpot. Performance and mobile optimization are good, with SEO best practices implemented. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms. Overall, the security posture is strong but could be enhanced by publishing explicit security policies and incident response contacts, enabling DNSSEC, and adding vulnerability disclosure mechanisms. The domain registration is consistent with the company's founding timeline and shows no suspicious patterns, supporting legitimacy. Strategic recommendations include improving DNS security, enhancing transparency around security policies, and continuing to build trust through certifications and clear contact channels.

K

Keemilise ja Bioloogilise Füüsika Instituut

kbfi.ee

0

Keemilise ja Bioloogilise Füüsika Instituut (KBFI) is an established interdisciplinary research institution based in Estonia, focusing on fundamental and applied research in materials science, particle physics, informatics, and health and environmental sciences. The website reflects a government-affiliated entity with a clear institutional presence, supported by EU-funded projects and collaborations with academic partners such as TalTech. The site targets researchers, academics, and the scientific community, providing news, contact information, and research services. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating Google Maps and FontAwesome for enhanced user experience. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented with detailed cookie categories, although some security headers and policies could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and trustworthy online presence. Overall, the website scores well on business credibility and technical implementation but could enhance privacy compliance by publishing explicit privacy and terms of service policies.

A

Abc Motors

abcmotors.ee

0

Abc Motors is an automotive dealership website based in Estonia, offering new and used cars, special offers on stock vehicles, and car servicing booking options. The site prominently features brands such as Renault, Dacia, and SWM, targeting car buyers and service customers in the regional market. The business model focuses on vehicle sales and after-sales services. Technically, the website uses a combination of jQuery, Bootstrap, and Cookiebot for cookie consent management, along with Google Tag Manager for analytics and marketing integration. The site is mobile optimized and uses HTTPS with a good SSL configuration. Security posture is adequate with cookie consent and Google Consent Mode configured to deny ad personalization by default, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. Contact information such as emails and phone numbers are not explicitly found in the HTML content, which may impact user trust. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security documentation.

V

Veriff

veriff.me

0

Veriff is a leading AI-powered identity verification company providing highly automated solutions for fraud prevention, compliance, and customer trust. Their platform supports a wide range of verification services including document verification, biometric authentication, age validation, and AML screening. The company targets global businesses across multiple industries such as financial services, e-commerce, and human resources. The website demonstrates a mature digital presence with modern technologies, strong branding, and comprehensive content. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance practices. However, the absence of public WHOIS data is notable and warrants further verification. Overall, Veriff presents a professional and trustworthy online presence aligned with its market position.

F

FINEST AS

finestmedia.ee

0

FINEST AS is an established Estonian technology company specializing in digital and IT solutions with over 20 years of experience. Their business model focuses on software development, e-commerce platforms, and practical business solutions, serving both government and private sector clients. The company maintains a professional online presence with multilingual support and active social media channels. Technically, the website is built on WordPress using modern plugins and frameworks, optimized for performance and SEO, though some accessibility features are basic. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks published security policies or incident response information. Overall, the website reflects a credible and professional business with room for improvement in security transparency and contact information clarity.

U

Unique Hotels Group

uhotelsgroup.com

0

Unique Hotels Group operates a small portfolio of lifestyle hotels in Estonia, focusing on boutique hospitality experiences with historical ambiance and modern amenities. Their services include hotel accommodations, dining, spa treatments, seminars, and gift cards, targeting tourists and business travelers. The website is professionally designed using WordPress with modern technologies and supports multiple languages. Privacy and cookie policies are implemented, and contact information is clearly provided. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, though the website content and business information appear authentic. Security posture is generally good with HTTPS enforced, but security headers are missing, and no incident response or vulnerability disclosure information is provided. Overall, the website is functional, trustworthy, and well-positioned in the hospitality market in Estonia.

I

Iglu

iglu.ee

0

Iglu is an Estonian software development company specializing in business analysis, UI design, and development of e-services, self-service portals, and Java portals. Founded in 2013, it serves a range of clients including telecommunications, banking, and government sectors, positioning itself as a reliable partner with strong client relationships and a focus on agile development. The website reflects a professional and modern digital presence built on Gatsby and React technologies, with integration of Google Analytics and Tag Manager for performance and user tracking. Security posture is solid with HTTPS enabled and no exposed sensitive data, though the absence of security headers and formal security policies indicates room for improvement. Privacy compliance is lacking as no privacy or cookie policies are found, which is a notable gap given GDPR requirements. Overall, the site is well-designed and trustworthy, but enhancing privacy and security transparency would strengthen its compliance and user trust.

A

AS Hekotek

hekotek.ee

0

AS Hekotek is a well-established Estonian manufacturing company specializing in equipment and technological solutions for sawmills, pellet plants, and wood and wood pellet boiler houses. With over 30 years of market presence, 155 employees, and a broad international footprint, the company serves industrial clients primarily in the woodworking and bioenergy sectors. Their product portfolio includes log sorting lines, conveyor systems, pellet plants, and aspiration systems, positioning them as a key player in their niche. The website reflects a professional and consistent brand image with comprehensive business information and multilingual support. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, enhanced with modern plugins such as Rank Math SEO and CookieYes for privacy compliance. The site leverages Cloudflare for DNS and CDN services, ensuring good performance and security. Mobile optimization and SEO practices are well implemented, though accessibility features are basic. Analytics and tracking are managed via Google Analytics and Tag Manager, with a cookie consent mechanism in place. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers like CSP or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing a domain registered since 2010 under ALMIC OÜ, matching the Estonian business location. No WAF or blocking mechanisms interfere with content accessibility. Overall, AS Hekotek's digital presence is solid, reflecting a mature business with good technical infrastructure and privacy compliance. Security posture is adequate but could be improved with additional headers and policies. The site effectively supports business credibility and user trust.

1

1Partner

1partner.ee

0

1Partner is a well-established Estonian real estate company offering comprehensive property services including buying, selling, renting, and valuation. With over 20 years of market presence and more than 45,000 satisfied clients, it holds a strong position in the Estonian real estate sector. The website reflects a professional and consistent brand image, targeting both private and business clients. Technically, the site uses modern web technologies such as Bootstrap and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is trustworthy and compliant with GDPR, but could improve transparency around security policies and vulnerability disclosures.

S

SecureOps

secureops.com

0

SecureOps is a Canadian-based boutique cybersecurity service provider with over 25 years of industry experience, offering managed security services including 24/7 SOC monitoring, security infrastructure management, vulnerability management, and professional services. The company emphasizes personalized, collaborative, and scalable cybersecurity solutions tailored to enterprise clients across multiple sectors globally. Their market position is strengthened by a SOC 2 Type 2 certification and a strong reputation for quality service delivery. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, HubSpot, and multiple marketing and tracking tools. The site is well-optimized for SEO and mobile devices, with good performance and accessibility features. Hosting and domain registration are consistent with the business claims, with Amazon Registrar as the registrar and a domain age of over 20 years. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and no visible sensitive data exposure. However, DNSSEC is not enabled and security headers are not explicitly detected, indicating room for improvement. Privacy compliance is good with a clear privacy policy and cookie consent mechanism, though no explicit GDPR statement or data retention policies were found. Overall, SecureOps presents a professional and trustworthy online presence with comprehensive service offerings and solid technical infrastructure. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would further enhance their security posture and trustworthiness.

Levercode.com is a domain registered since 2018 and currently displays a permanent closure notice with no active business content or services. The website provides only a single contact email address that does not match the domain, indicating minimal operational presence. The technical infrastructure is minimal, with Cloudflare DNS used for hosting, but no CMS, analytics, or advertising technologies detected. The site lacks privacy, cookie, or terms of service policies, and no security headers or HTTPS status information is available from the provided data. Overall, the website is inactive and does not present a professional or trustworthy online presence.

E

Elisa Eesti AS

starman.ee

0

Elisa Eesti AS is a leading telecommunications company in Estonia, providing a broad range of services including mobile and fixed internet, telephony, TV packages, and e-commerce for devices and accessories. The company targets private customers with a comprehensive portfolio of digital services and applications, positioning itself as a market leader with a strong brand presence and multiple industry recognitions. The website reflects a mature digital infrastructure built on Drupal CMS and custom Elisa design systems, offering good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement, security headers, and a robust cookie consent mechanism, although explicit security policy and incident response contacts are not publicly detailed. Overall, the website demonstrates professionalism, trustworthiness, and compliance with GDPR requirements, supporting Elisa Eesti AS's reputation as a reliable telecommunications provider.

G

Glia

salemove.com

0

Glia, Inc. is a technology company specializing in AI-powered contact center software solutions designed to enhance customer experience across digital and voice channels. Positioned primarily in the finance sector, Glia offers a unified platform that automates and assists customer interactions, targeting enterprises seeking to modernize their customer service operations. The company maintains a professional and well-branded online presence with comprehensive content and clear navigation, reflecting a mature digital infrastructure. Technically, the website leverages modern web technologies including Webflow CMS, Google Fonts, Marketo for marketing automation, Facebook Pixel for advertising, and Google Tag Manager for analytics. The site is hosted on Webflow's platform, optimized for mobile devices, and implements good SEO and accessibility practices. Performance is moderate, with room for improvement in loading speed. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes multiple security headers, indicating a solid security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy and incident response contact information suggests areas for enhancement in transparency and readiness. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, Glia presents a trustworthy and professional digital footprint with minor gaps in WHOIS transparency and explicit security disclosures. Strategic improvements in these areas would further strengthen business credibility and security posture.

Smarten Logistics AS operates as the largest third-party logistics (3PL) service provider in Estonia, offering comprehensive supply chain solutions to businesses seeking to optimize their logistics operations. The company positions itself as a key player in the Estonian transportation sector, targeting local enterprises requiring efficient logistics services. The website reflects a mature digital presence with professional design and consistent branding, supported by structured data and social media integration. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and analytics tools such as Google Analytics and Facebook Pixel. Security measures include HTTPS enforcement and a robust cookie consent mechanism via Cookiebot, demonstrating compliance with GDPR consent requirements. However, the absence of explicit privacy policies, terms of service, and incident response information represents a compliance gap. Overall, the website is professional and trustworthy, with a good security posture but room for improvement in privacy and legal disclosures.

F

Fiizy

fiizy.com

0

Fiizy operates as a leading marketplace connecting customers with financial products and services, leveraging technology to provide personalized offers from a broad network of partners. With over 10 years in the market, it serves millions of customers and supports lenders and affiliates through tailored lead generation and partnership programs. The company is headquartered in Estonia with local presence in multiple countries, emphasizing a customer-first approach and state-of-the-art technology infrastructure built on modern frameworks like Next.js and hosted on AWS. Technically, the website is well-structured, mobile-optimized, and performs well, utilizing modern web technologies. However, there is room for improvement in security practices, notably the absence of DNSSEC, missing security headers, and lack of published privacy and cookie policies. The domain registration is consistent with the business claims, showing a mature and legitimate online presence. Security posture is moderate with HTTPS enabled and domain protections in place, but the lack of explicit security policies and incident response contacts indicates potential compliance gaps. No critical vulnerabilities or exposed sensitive data were detected, but improvements in transparency and security best practices are recommended. Overall, Fiizy presents a credible and professional online presence with a solid business model and technical foundation. Strategic enhancements in privacy compliance, security headers, and incident response readiness would strengthen trust and regulatory adherence.

G

GT Tarkvara

soft.ee

0

GT Tarkvara is a well-established Estonian technology company specializing in software and cloud solutions, with over 25 years of market presence. The company positions itself as the largest software and related services provider in Estonia, targeting businesses and educational institutions. Their offerings include cloud solutions, software licensing, consulting, implementation, and ongoing support. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the website is built on WordPress with a modern tech stack including Gravity Forms, Google Analytics, Google Tag Manager, and LinkedIn Insight Tag. Hosting is managed via Azure DNS, indicating a reliable infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, the site uses HTTPS with good SSL configuration and employs reCAPTCHA v3 to protect forms. However, explicit security headers and published security policies are absent, and no incident response or vulnerability disclosure information is provided. Privacy compliance is partially addressed with a privacy and cookie policy present, but no active consent mechanism is implemented. Overall, GT Tarkvara's website demonstrates a strong business credibility and technical foundation with room for improvement in security policy transparency and privacy compliance mechanisms.

E

E*TRADE Financial

etrade.com

0

E*TRADE Financial, a subsidiary of Morgan Stanley, operates a comprehensive online financial services platform offering brokerage, retirement, banking, and trading services to retail investors. The website reflects a mature, enterprise-grade digital presence with strong branding, extensive product offerings, and educational resources. The platform leverages advanced marketing, analytics, and consent management technologies to deliver a personalized and compliant user experience. Security measures such as HTTPS, Content Security Policy, and fraud protection guarantees are in place, underscoring a strong security posture. While WHOIS data for the subdomain is unavailable, this is typical for subdomains and does not detract from the site's legitimacy. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

The website frens.ee currently serves only a 404 Page Not Found error page with no active business content or user engagement features. The domain is registered with Zone Media OÜ, an Estonian registrar, since 2010, indicating a legitimate and aged domain. However, the lack of content and absence of privacy, cookie, or terms of service policies suggest the site is inactive or a placeholder. Technically, the site uses basic HTML, CSS, and JavaScript with minimal security headers, notably a weak Content-Security-Policy allowing 'unsafe-inline' scripts, which reduces security effectiveness. No HTTPS status was explicitly provided, but the domain status is 'ok' and presumably supports HTTPS given the registrar and hosting provider. No analytics, tracking, or social media integrations are present, indicating minimal digital maturity. Security posture is weak due to missing standard headers and lack of secure forms or incident response information. Overall, the site scores low on content quality, privacy compliance, and business credibility, reflecting its inactive state.

emu.ee is a domain registered and managed by the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) through EENet, indicating its role as a governmental or educational resource in Estonia. The website is currently inaccessible due to a Cloudflare Turnstile captcha challenge, which blocks direct content access and prevents detailed content analysis. The domain is well-established since 2010, consistent with a stable government entity. The technical infrastructure leverages Cloudflare services for security and performance, but the visible content is limited to a security verification page without business or contact information. Privacy and cookie policies are not present on the accessible page, and no forms or data collection mechanisms are visible. Overall, the site demonstrates a moderate security posture through Cloudflare's WAF but lacks transparency in privacy compliance and user engagement due to the blocking mechanism.

Metus Laenud is a small Estonian finance-focused informational website providing content about various loan types including quick loans, small loans, and general loans. The site targets Estonian-speaking individuals seeking financial solutions and loan information. The business model is content-driven, relying on informational articles rather than direct financial services. The website is built on WordPress, utilizing common plugins such as Contact Form 7 and Rank Math SEO, hosted behind Cloudflare DNS services. The technical infrastructure is modern and moderately performant with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and incident response information. Privacy compliance is poor due to absence of privacy and cookie policies. The domain registration data is suspicious due to a future creation date and lack of registrant details, which impacts overall trustworthiness. Strategic improvements in privacy compliance, security policies, and business transparency are recommended.

K

Krabu

krabugrupp.ee

0

Krabu is an established Estonian IT services company specializing in software development, project management, UX/UI design, and AI solutions. The company serves a diverse clientele including public sector entities and private businesses, emphasizing innovation and quality, supported by ISO 9001 certification. Their website reflects a professional digital presence with clear service offerings and project references. Technically, the site uses WordPress CMS with modern plugins and SEO tools, delivering a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit privacy and cookie policies. Overall, the company demonstrates strong business credibility and technical maturity, with room for improvement in privacy compliance and security transparency.

The website astangu.ee is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which prevents access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and established domain. However, no business information, contact details, or policies are available on the accessible page. The technical infrastructure relies on Cloudflare for security and performance, but no CMS or additional technologies are detected. The security posture is limited to Cloudflare's WAF and captcha challenge, with no further visible security headers or configurations. Due to the content being blocked, a full analysis of business, compliance, and security posture is not possible, resulting in a low overall AI score.

Saku Õlletehas is a well-established Estonian brewery founded in 1820, operating as a subsidiary of the Carlsberg Group. The company specializes in manufacturing and retailing a wide range of beverages including beers, ciders, energy drinks, and soft drinks, serving both local and international markets. The website reflects a mature digital presence with comprehensive product listings, clear navigation, and consistent branding aligned with its parent company. Technically, the site uses a mix of legacy and modern JavaScript libraries, is mobile-optimized, and implements GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and compliance scripts in place, though some security headers could be more explicitly defined. No blocking or WAF mechanisms interfere with content accessibility. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

Solaris is a well-established cultural and commercial center located in the heart of Tallinn, Estonia. Founded in 2010, it offers a diverse range of services including retail shops, restaurants, entertainment venues, office spaces, and parking facilities. The website reflects a professional and modern digital presence, targeting local visitors and shoppers with relevant content and event information. The business maintains a solid market position as a key destination for shopping and cultural activities in Tallinn.

C

Coolbet

coolpickz.com

0

Coolbet is an online gambling platform offering sports betting, casino games, and poker primarily targeting the Finnish and Nordic markets. The website presents a professional and consistent brand image with a focus on providing competitive odds and engaging gaming experiences. The platform integrates modern technologies such as React, Google Tag Manager, and Geocomply for geolocation enforcement, indicating a mature digital infrastructure. Security practices include HTTPS and error monitoring via Sentry, though explicit security headers and policies are not evident in the provided content. The absence of WHOIS data raises some concerns about domain registration transparency, but the website's content and licensing claims suggest legitimacy. Overall, Coolbet demonstrates a solid market presence with room for improvement in privacy compliance and security transparency.

The website mkm.ee is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. Due to this, no actual business content, policies, or contact information is available for analysis. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate and stable domain ownership. The technical infrastructure relies on Cloudflare services for security and performance. However, the lack of accessible content and policies limits the ability to assess the business model, security posture, and compliance status. The site appears to be protected by a robust WAF, but this also restricts external analysis.

The Archimedes Foundation website serves as a minimal informational page indicating that as of January 1, 2021, its activities were transferred to the Estonian Education and Youth Board and the Erasmus+ and European Solidarity Corps Agency. The foundation historically managed European educational and youth programs such as Erasmus+. The website content is very limited, with no privacy, cookie, or terms of service policies, and no contact information provided. Technically, the site uses basic HTML and CSS with Google Fonts, hosted under an Estonian registrar. No advanced security headers or analytics tools are detected, and the site lacks modern SEO and accessibility features. Security posture is minimal but no critical vulnerabilities are evident. Overall, the site appears to be a legacy informational page rather than an active service platform.

T

Tripod

tripod.ee

0

Tripod is an Estonian service provider specializing in recruitment, testing, research, and coaching services. Established in 2010, the company targets businesses and professionals within Estonia, offering niche HR and development solutions. The website reflects a professional presence with clear branding and a focus on service offerings relevant to its market segment. The company maintains active social media profiles on Facebook and LinkedIn, enhancing its market visibility. Technically, the website is built on WordPress CMS, leveraging Yoast SEO for search optimization and Cookiebot for GDPR-compliant cookie consent management. The site uses modern web technologies including jQuery and integrates Google Tag Manager and Meta Pixel for marketing and analytics purposes. Hosting appears to be managed by Zone Media OÜ, consistent with the domain registration data. The website demonstrates good mobile optimization and moderate performance. From a security perspective, the site employs HTTPS with good SSL configuration and uses cookie consent mechanisms to comply with privacy regulations. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website presents a low-risk profile with strong compliance to privacy regulations and a solid technical foundation. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and providing clearer contact information to improve business credibility and user trust.

S

Softrend

softrend.ee

0

Softrend is an established Estonian furniture company specializing in sofas, beds, and home accessories, with a strong emphasis on sustainability and quality craftsmanship. The company operates a professional e-commerce website built on WordPress, featuring modern technologies such as Google Tag Manager, reCAPTCHA, and performance optimizations via WP Rocket. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is strong with HTTPS and bot protection, but could be improved with additional security headers and a vulnerability disclosure policy. Overall, the domain registration data supports the legitimacy of the business, and the website reflects a credible and professional retail operation.

B

BB Finance OÜ

raha24.ee

0

Raha24, operated by BB Finance OÜ, is an Estonian online lending platform specializing in unsecured loans up to 10,000 EUR with quick approval processes. The company targets individuals in Estonia seeking fast and reliable credit solutions. The website demonstrates a mature digital presence with a domain registered since 2010, consistent with the business's operational history. Technical infrastructure is based on WordPress with modern SEO and consent management tools, indicating a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers appear missing. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR-aligned consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its target market.

H

Heateo Sihtasutus

heategu.ee

0

Heateo Sihtasutus operates as a non-profit organization in Estonia, focusing on promoting social change and charitable activities. The website serves as a platform to engage the Estonian community in good deeds and social initiatives. The organization has an established presence since 2010, supported by a professionally designed website built on WordPress and hosted by a reputable Estonian provider. The technical infrastructure is modern and secure, with HTTPS and security headers properly configured. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. No explicit contact information or incident response details are provided, limiting direct communication channels. Overall, the website demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and transparency to enhance trust and regulatory adherence.

The website bytetrain.com currently serves as a login portal for konsoleH, a server and account administration interface likely associated with the Hetzner hosting provider. The site provides minimal content focused on navigation to webmail and account administration services, with no direct business description or contact information visible. The domain is well-established, registered since 2012, and shows stable registration status, but the website itself lacks modern security and privacy features. Technically, the site uses basic HTML and CSS without any detected modern frameworks or CMS. It is hosted likely by Hetzner, as inferred from URLs and copyright notices. The site lacks HTTPS, DNSSEC, security headers, and any form of privacy or cookie policy, indicating a low level of digital maturity and security posture. No analytics or tracking technologies are present, and the site is not optimized for mobile or accessibility. From a security perspective, the absence of HTTPS is a critical issue, exposing users to potential interception risks. The lack of security headers and privacy policies further reduces trust and compliance with GDPR. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent and legitimate, but the website's security and privacy posture require significant improvement. Overall, the site scores low on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic recommendations include immediate HTTPS enablement, publishing privacy and cookie policies, adding security headers, and improving content and contact transparency to enhance trust and compliance.

A

Adcash

adcash.com

0

Adcash is a well-established global online advertising platform founded in 2000, serving media buyers, affiliates, and publishers worldwide. The company offers a variety of advertising and monetization solutions including Pop-Under, Interstitial, Native, and Banner ads, supported by advanced targeting, anti-fraud technology, and real-time analytics. The website reflects a mature digital presence with comprehensive SEO, mobile optimization, and a professional design that supports user engagement and conversion. Technically, the site leverages modern tools such as Google Tag Manager, Matomo Analytics, and Cloudflare DNS, hosted on a WordPress CMS platform, ensuring fast performance and good accessibility. Security posture is solid with HTTPS enforced and domain registration protections, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, Adcash demonstrates a high level of business credibility and digital maturity, positioning itself as a trusted player in the online advertising industry.

1

101domain GRS Limited

acino-pharma.com

0

The website acino-pharma.com is currently a parked domain managed by 101domain GRS Limited, a domain registrar and service provider established in 1999. The site does not host any active business content related to Acino Pharma but instead displays a placeholder page offering domain management and upsell services such as Google Workspace, web hosting, and corporate brand services. The target audience appears to be individuals or businesses interested in acquiring or managing domain names. The business model is that of a domain registrar and related service provider with a moderate market presence. Technically, the site uses standard HTML5, CSS3, and JavaScript technologies including jQuery and Modernizr. It is hosted on infrastructure associated with 101datacenter.net. The site is moderately optimized for mobile devices and has basic accessibility and SEO features. However, it lacks HTTPS, security headers, and advanced technical frameworks or CMS platforms. From a security perspective, the site has several weaknesses including the absence of HTTPS, no DNSSEC enabled, and no visible security policies or incident response contacts. The domain is locked against transfer but is not actively used for business purposes. No privacy or cookie policies are present, and no contact information is provided, limiting compliance with GDPR and other regulations. Overall, the security posture is weak, and the site is primarily a parked domain with minimal risk but also minimal trust signals. The overall risk assessment is low due to the lack of active business operations on the domain. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, implementing DNSSEC, and providing clear contact and security information to improve trust and compliance if the domain is to be used actively in the future.

I

ITT Group

ittgroup.ee

0

ITT Group is a small Estonian company specializing in education-related innovative mechatronic products, training, and e-solution development, primarily targeting educational institutions in Estonia, Scandinavia, and Europe. With over 20 years of experience, the company has evolved to include consulting and development services in autonomous systems, collaborating with European and US higher-education institutions. The website is built on Joomla CMS, featuring a consistent and professional design with moderate performance and good mobile optimization. However, it lacks critical compliance documentation such as privacy and cookie policies, and no contact information is provided, which impacts trust and compliance perception. Security posture is basic with HTTPS enabled but missing advanced security headers and incident response details. Overall, the site is functional and informative but requires improvements in compliance and security transparency to enhance trustworthiness and regulatory adherence.

I

Industry62

industry62.com

0

Industry62 is a small, employee-owned digital design company operating primarily in Finland and Estonia, with offices in Helsinki, Turku, Tallinn, and Tampere. The company focuses on creating impactful digital services and positions itself as a human-centric, value-driven organization. Their website reflects a professional and consistent brand image, targeting businesses seeking digital design and development services. The technical infrastructure is based on the Squarespace platform, leveraging modern web technologies including Google Analytics and YouTube integrations, providing a moderate performance and good mobile optimization. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies, which is a notable gap given GDPR requirements. The domain WHOIS data is missing, raising concerns about domain registration legitimacy, though the website content and social media presence support the business's authenticity. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and clearer domain registration transparency.

C

CYBERNETICA AS

cyber.ee

0

Cybernetica AS is a well-established Estonian technology company specializing in secure digital society technologies, including e-governance, cybersecurity, digital identity, and maritime surveillance. The company has a strong market position as the architect of e-Estonia and serves governments and enterprises globally. Their website reflects a mature digital presence with comprehensive content, clear navigation, and professional design. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, is mobile-optimized, and performs well. Security posture is strong with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies. However, explicit security policies and vulnerability disclosure mechanisms are absent. Overall, Cybernetica demonstrates high business credibility and technical maturity, making it a trustworthy and professional entity in its sector.

The website www.esplan.ee is currently non-functional due to a fatal PHP error caused by an outdated WordPress plugin (wpml-string-translation). This prevents any content from being displayed, including business information, policies, or contact details. The domain is registered in Estonia with consistent WHOIS data, suggesting legitimacy, but the website itself lacks operational status and visible content. The technical infrastructure relies on WordPress CMS but suffers from plugin compatibility issues that must be addressed to restore functionality. Security posture is weak due to lack of visible security headers, unknown SSL status, and absence of privacy or cookie policies. Overall, the website presents a high risk due to inaccessibility and lack of compliance indicators.

A

AS Kevelt

kevelt.ee

0

AS Kevelt is an established Estonian pharmaceutical company specializing in the manufacturing, resale, and subcontracting of pharmaceuticals. The company emphasizes scientific approaches and strict quality controls to produce original and generic medicines, with ongoing research and innovation efforts to support long-term growth. The website targets healthcare industry stakeholders, partners, and investors, presenting a professional and consistent brand image with multilingual support in English, Russian, and Estonian. The business model focuses on pharmaceutical production and related services, positioning AS Kevelt as a reputable player in the Estonian healthcare sector. Technically, the website is built on WordPress CMS using a modern tech stack including Bootstrap, jQuery, Google Maps API, and several plugins such as Yoast SEO and Contact Form 7. The site is mobile-optimized with good SEO practices and moderate performance. Hosting and domain registration are managed by Zone Media OÜ, a legitimate Estonian registrar, with the domain active since 2010, aligning with the company's history. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA v3 for form protection. However, it lacks several security headers and does not publish a security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with no cookie consent mechanism or detailed privacy policy visible, which could be improved to meet GDPR standards fully. Overall, AS Kevelt's website demonstrates a solid business presence with good technical implementation and a moderate security posture. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence, supporting the company's professional image and operational security.

Eolane France was an electronics manufacturing services company operating production sites in France and Morocco. The company has ceased operations and is undergoing judicial liquidation, with its activities acquired by the Cicor Group, a pan-European EMS provider. The website serves primarily as an informational notice about this transition and does not provide active business or customer engagement features. The technical infrastructure appears minimal, with no detected CMS, scripts, or advanced technologies. The site lacks privacy, cookie, and terms of service policies, and no contact information is provided, limiting user engagement and transparency. Security posture is basic with no DNSSEC and no visible security headers, though the domain registration is consistent and legitimate with a long history dating back to 2000. Overall, the website functions as a static notice rather than an active business platform.

D

DUX

dux.ee

0

DUX is a small, established UX and UI design studio based in Estonia, founded in 2014. They specialize in creating digital experiences including mobile and desktop applications, websites, e-commerce platforms, and SaaS products. Their portfolio showcases over 200 projects, targeting NGOs, startups, SMEs, and global/local leaders, positioning them as a reputable design partner in the technology sector. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Tag Manager, hosted by Elkdata OÜ, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

C

CCP Games

ccpgames.com

0

CCP Games is a well-established interactive entertainment company founded in 1997 in Reykjavik, Iceland, best known for its flagship product EVE Online. The company positions itself as an innovative leader in the gaming industry with a focus on immersive online experiences. The website reflects a professional digital presence with modern technologies such as Google Tag Manager, Cookiebot for privacy compliance, and Bootstrap for responsive design. The site is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a notable concern, as it raises questions about domain registration legitimacy despite the professional appearance of the site. Overall, CCP Games demonstrates a mature digital infrastructure but should address transparency in domain registration and enhance security disclosures to improve trust and compliance.

R

Riigi Kinnisvara AS

rkas.ee

0

Riigi Kinnisvara AS is a state-owned enterprise responsible for managing and developing Estonia's public real estate portfolio. The company focuses on efficient property management, environmental sustainability, and supporting public sector clients through various services including leasing, sales, and technical requirements for buildings. The website reflects a professional government entity with clear communication and comprehensive service offerings. Technically, the site is built on Drupal 10 with modern libraries ensuring good performance and accessibility. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate online presence.

Infonet AS is a well-established Estonian Internet Service Provider operating since 1993, offering a broad range of telecommunications services including high-speed internet, digital television, hosting, domain registration, virtual servers, and mobile telephony. The company targets both residential and business customers within Estonia, positioning itself as a reliable local ISP with a TIER 3 compliant data center partner. The website reflects this business focus with clear service offerings and contact information. Technically, the website uses legacy JavaScript libraries such as jQuery 1.5.2 and several jQuery plugins, indicating a need for modernization to improve security and performance. The site is served over HTTPS with no blocking mechanisms detected, but lacks advanced security headers and uses outdated libraries that pose potential vulnerabilities. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though GDPR compliance indicators could be enhanced. Business credibility is strong, supported by consistent WHOIS data and transparent contact details. Overall, the website is functional and trustworthy but would benefit from technical and security updates.

Sportlyzer LLC. operates a SaaS platform focused on player development and team management software tailored for youth and amateur sports clubs. The platform facilitates membership management, invoicing, attendance tracking, communication, and athlete homework assignments, serving coaches, managers, players, and parents globally. The company maintains a professional web presence with mobile apps on iOS and Android, and a consistent brand image emphasizing ease of use and comprehensive sports club management. The website content is well-structured, informative, and targets sports organizations seeking digital management solutions. Technically, the website employs modern JavaScript frameworks and integrates multiple marketing and analytics tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. The site is mobile-optimized and uses HTTPS exclusively, ensuring secure data transmission. However, some security best practices like security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. The lack of WHOIS data transparency is a moderate concern but does not outweigh the professional presentation and trust signals on the site. Privacy and terms of service pages are present and comprehensive, indicating attention to compliance, though explicit cookie consent is absent. Overall, the security posture is good but could benefit from additional transparency and policy disclosures. Strategically, Sportlyzer is positioned as a specialized SaaS provider in the sports management niche with a solid user base and positive testimonials. The company should focus on improving security headers, cookie consent, and publishing incident response policies to strengthen trust and compliance. Enhancing WHOIS transparency or providing verified domain registration details would also improve legitimacy perception.

B

Bellcom Estonia

bellcom.ee

0

Bellcom Estonia is a small but established technology service provider specializing in custom website development, hosting, and technical support. Founded in 2013, the company serves businesses and organizations seeking agile and innovative digital solutions. Their market position is supported by a portfolio of case studies and client testimonials, emphasizing their expertise in Drupal and other web technologies. Technically, the website is built on Drupal 8 with modern frontend libraries such as Bootstrap and jQuery, and integrates Google Analytics with IP anonymization for user tracking. The site is mobile optimized and presents a professional user experience. Security posture is moderate; while HTTPS usage is assumed but not confirmed, no security headers or explicit security policies are published, representing an area for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is credible and trustworthy but would benefit from enhanced security and privacy disclosures.

D

Delfi Meedia AS

ekspress.ee

0

Eesti Ekspress, operated by Delfi Meedia AS, is a leading Estonian investigative and analytical news portal targeting discerning readers who value in-depth journalism and diverse perspectives. The website leverages modern web technologies including Nuxt.js and Vue.js, and integrates multiple advertising and tracking services from reputable providers. The site is well-structured, mobile-optimized, and maintains a professional design with consistent branding. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not prominently provided. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the website demonstrates a mature digital presence with high trustworthiness and business credibility.

H

HELMES

helmes.ee

0

Helmes is a well-established software development company specializing in custom software solutions, digital transformation, and consulting services. With over 30 years of experience and a global presence spanning 20 offices, Helmes serves more than 500 international clients including major organizations such as Airbus, Telia, OECD, and CERN. Their service portfolio includes mobile app development, legacy software modernization, data analytics, design, and cybersecurity services, positioning them as a comprehensive digital innovation partner for enterprises. Technically, the website is built on WordPress with modern SEO practices implemented via Yoast SEO. It integrates multiple analytics and consent management tools such as Google Analytics, Microsoft Clarity, Google Tag Manager, and Conseno for GDPR compliance. The site is mobile-optimized, accessible, and demonstrates good performance, although some security headers are not explicitly detected. The company holds ISO certifications (27001, 9001, 14001), reflecting a strong commitment to security and quality management. From a security perspective, Helmes employs HTTPS, Google reCAPTCHA, and a consent management platform to protect user data and ensure compliance. However, the absence of WHOIS registration data and lack of visible incident response contacts or security.txt file slightly reduce the overall trust score. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, Helmes presents a professional, trustworthy, and technically mature digital presence suitable for enterprise clients. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to improve trust and compliance further.