Security Directory

V

Valgeranna Seikluspark

valgerannaseikluspark.ee

0

Valgeranna Seikluspark is an Estonian adventure park offering active outdoor recreational activities primarily targeting families, children, and groups near Pärnu. The website presents a professional and consistent brand image with clear descriptions of services such as adventure trails, group bookings, and special events. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and Tag Manager for tracking. Cookie consent is implemented with detailed user controls, reflecting a basic level of privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security and incident response policies are absent. Overall, the site is functional, trustworthy, and well-positioned regionally, but could improve transparency by publishing privacy and terms policies and enhancing contact information visibility.

Z

Zone Media OÜ

visitkorvemaa.ee

0

VisitKorvemaa is a regional tourism platform focused on promoting the Kõrvemaa nature area in Estonia. It aggregates local tourism services and offers authentic nature and community experiences including guided tours, outdoor activities, accommodation, and workshops. The website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern plugins for SEO and marketing. The business is small, founded in 2021, and targets tourists interested in nature and active tourism. The platform integrates social media and third-party review widgets to build trust and engagement. Technically, the site is well-structured and mobile-optimized but lacks some advanced security headers and explicit privacy and cookie policies. The domain registration is consistent and transparent, supporting the legitimacy of the business.

E

Elkdata OÜ (registrar)

veetee.ee

0

VeeTee.ee is a small Estonian business specializing in outdoor recreational services including ski and snowboard rentals, canoe and rubber boat trips, and accommodation rental at Annemäe Puhkemaja. The company targets tourists and local outdoor enthusiasts seeking guided water and winter sports experiences. The website is built on WordPress with modern plugins and provides clear contact information and service descriptions. Technically, the site uses HTTPS and common WordPress technologies but lacks some security headers and explicit privacy consent mechanisms. Security posture is moderate with no critical vulnerabilities detected but room for improvement in policy transparency and compliance. Overall, the business appears legitimate with consistent domain registration data and a professional web presence.

A

Adrenaator Grupp

adrenaator.ee

0

Adrenaator Grupp operates the website adrenaator.ee, providing adventure and outdoor experiences such as canoe trips, hiking, and team events primarily in the Aidu quarry area in Estonia. The company targets families, friends, and corporate groups seeking unique adventure activities. The business is positioned as a niche local provider with a focus on experiential tourism and event hosting. The website is built on WordPress with modern SEO and GDPR compliance plugins, indicating a moderate level of digital maturity. Technical infrastructure includes Google Analytics and Tag Manager for tracking, and the site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional and trustworthy with room for improvement in security and contact transparency.

Maaturism.ee is the official website of MTÜ Eesti Maaturism, a non-profit organization dedicated to promoting rural tourism in Estonia. The website offers comprehensive information about accommodation, active holidays, food services, health tourism, family vacations, themed farms, museums, seminars, weddings, and cooperation networks. It also highlights various projects aimed at developing rural tourism products and services, targeting tourists interested in nature and cultural experiences in Estonia and the Baltic region. The organization has a strong local presence and a network of members, positioning itself as a key player in Estonia's rural tourism sector. Technically, the website employs a modern tech stack including jQuery, Leaflet.js for mapping, Google Tag Manager, and Google Analytics for tracking. It uses HTTPS with a hosting provider Elkdata OÜ, an Estonian registrar and hosting company, ensuring secure connections. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the site uses HTTPS and asynchronous script loading, but no explicit security headers were detected. There is no visible vulnerability disclosure or incident response contact information. The WHOIS data is transparent and consistent with the website's business and location, supporting legitimacy. Overall, the site demonstrates a moderate to good security posture but could improve compliance and security best practices. The overall risk assessment is moderate with recommendations to implement privacy and cookie policies, add security headers, and establish vulnerability disclosure mechanisms to enhance trust and compliance.

R

Romantiline Rannatee

rannatee.ee

0

Romantiline Rannatee is a well-established regional tourism promotion website focused on the Pärnumaa coastal area in Estonia. The site offers rich content including destination guides, events, accommodations, and virtual tours, targeting tourists interested in nature, culture, and leisure activities. The business operates primarily as a tourism marketing platform, leveraging partnerships with local organizations and maintaining a consistent brand presence. Technically, the website is built on WordPress using the Avada theme and Yoast SEO plugin, with Google Tag Manager integrated for analytics. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, with no blocking or WAF detected, supporting a moderate to good trust level for visitors.

Z

Zone Media OÜ

spoku.ee

0

Spoku.ee is a government-focused support application and processing system primarily serving Estonian municipalities and institutions. The platform offers a comprehensive suite of features including application submission, payment integration, digital contract signing, and data integration with national registries. The website is built on WordPress with modern plugins and technologies, reflecting a moderate level of digital maturity. While the technical implementation is solid and the site is mobile-optimized with good SEO practices, there is a lack of published privacy, cookie, and security policies, which impacts compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal incident response documentation. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

Piksel OÜ

arno.ee

0

Arno.ee is a professionally developed WordPress-based website representing Piksel OÜ's software system for managing educational services in Estonia. The platform targets municipalities, schools, kindergartens, and hobby schools, offering modules for youth work, parental consent, invoicing, and digital signing via Smart-ID. The website demonstrates a consistent brand presence and good content quality, with a clear focus on the Estonian education sector. Technically, the site uses modern web technologies including WordPress 6.8.1, Kadence Blocks, and integrates Google Analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partial; a privacy policy is present and GDPR compliance is indicated, but cookie consent mechanisms are missing. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

S

Siseturvalisus

siseturvalisus.ee

0

Siseturvalisus.ee is a government-affiliated career portal dedicated to internal security in Estonia, providing job opportunities and career information across seven key security agencies. The website serves as a centralized platform for recruitment and career development in the Estonian internal security sector, targeting job seekers interested in contributing to national security. Technically, the site is built on WordPress with modern frontend libraries such as jQuery, Fancybox, and Splide.js, delivering a responsive and well-structured user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and explicit incident response contacts. Privacy compliance is adequate with privacy and cookie policies present, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its government sector mission.

V

Virupärane

laaneviru.ee

0

The website laaneviru.ee serves as an official regional portal for Lääne-Viru County in Estonia, focusing on tourism, living, and entrepreneurship. It provides comprehensive information about local attractions, events, accommodation, business support, and municipal resources. The site targets tourists, residents, and entrepreneurs interested in the region. The business model is informational and promotional, likely operated by a government or regional development entity. The domain is newly registered in 2024, consistent with the website's launch and content. Technically, the site is built on WordPress with modern performance and image optimization plugins. It uses Google Tag Manager and Facebook Pixel for analytics and marketing, with a cookie consent mechanism implemented via CookieYes. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly present, and no published security or incident response policies were found. Privacy compliance is basic, with no visible privacy policy or terms of service pages, which should be addressed to improve compliance and user trust. Overall, the website is professional and trustworthy, with a solid technical foundation and clear business purpose. Strategic recommendations include publishing privacy and security policies, enhancing security headers, and adding vulnerability disclosure information to strengthen security posture and compliance.

The website www.rescue.ee is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. As a result, no actual website content, metadata, or business information is available for analysis. The site is protected by Cloudflare's security mechanisms, which block automated access and prevent content scraping. Without access to the real content, it is impossible to assess the business overview, technical infrastructure, security posture, or compliance status. This limitation significantly impacts the ability to provide meaningful insights or recommendations.

@

@weboinc

webolution.ee

0

Webolution is a small Estonian web development company specializing in creating functional digital solutions and websites. With nearly 20 years of experience, they position themselves as a reliable partner for businesses seeking end-to-end digital services from concept to launch. Their portfolio showcases a variety of projects including websites and e-commerce platforms, indicating a focus on quality and client satisfaction. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though the absence of security headers and explicit privacy policies suggests room for improvement. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

A

AS Medisoft

medisoft.ee

0

AS Medisoft is an Estonian technology company with a domain registered since 2010, indicating a stable business presence. The website is built on WordPress using the Divi theme, reflecting a standard and professional digital infrastructure. The site appears to target a local or regional audience, though explicit business descriptions and contact details are not readily found in the provided content. The technical setup is moderate in performance and mobile optimization, but lacks advanced SEO and accessibility features. Security posture is average, with no detected security headers or explicit SSL/TLS configuration details, and no privacy or cookie policies are present, which may impact compliance and user trust. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

J

Jäneda Mõis OÜ

janedaturism.ee

0

Jäneda Mõis OÜ operates a tourism and hospitality center in Estonia offering conference facilities, restaurant services, accommodation, theater performances, and seasonal markets. The company targets tourists and event organizers, positioning itself as a regional hospitality provider with a medium-sized operation founded in 2010. The website is built on WordPress with WooCommerce and uses modern plugins and themes, providing a good user experience with multilingual support and clear navigation. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site reflects a professional and trustworthy business with good digital maturity.

The website mirko.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered with Zone Media OÜ in Estonia since 2022, indicating a relatively new but legitimate registration. Due to the WAF challenge, no business information, contact details, or policies are visible, limiting the ability to assess the company's operations or compliance posture. The technical infrastructure relies on Cloudflare services for security and performance, but no additional frameworks or CMS platforms are detectable. Security headers and privacy compliance measures are not observable due to the blocked content. Overall, the site appears to be protected by Cloudflare's security mechanisms but lacks publicly accessible information for a full evaluation.

E

Eesti Kergejõustikuliit

ekjl.ee

0

Eesti Kergejõustikuliit is the national athletics federation of Estonia, providing organizational support, event management, and athlete services within the Estonian athletics community. The website serves as a comprehensive portal for news, competition calendars, results, rankings, and educational materials targeting athletes, coaches, clubs, and fans. It holds a strong market position as the official governing body for athletics in Estonia. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, and uses Bootstrap for responsive design. The site demonstrates good digital maturity with structured data, SEO optimization, and mobile responsiveness, although some accessibility features could be improved. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and uses standard libraries without visible vulnerabilities. However, it lacks some security headers and does not provide explicit security or incident response policies. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance, security policy transparency, and accessibility would enhance its security posture and user trust.

E

Eesti Jalgpalli Liit

jalgpall.ee

0

Eesti Jalgpalli Liit is the official governing body for football in Estonia, managing national teams, leagues, and grassroots football development. The website serves as a comprehensive portal for football news, events, and organizational information targeted at players, fans, and stakeholders within Estonia's football community. The site integrates multimedia content including live scores, videos, and social media feeds, reflecting a mature digital presence. Technically, the website employs a custom CMS with modern JavaScript libraries and asynchronous loading of third-party SDKs such as Facebook and Google Analytics, ensuring moderate performance and good mobile optimization. Security posture is strong with enforced HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic but includes cookie consent and a privacy policy in Estonian. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

E

Eesti Korvpalliliit

basket.ee

0

Eesti Korvpalliliit is the official governing body for basketball in Estonia, managing national teams, leagues, coaching, refereeing, and basketball development programs. The organization holds a strong market position as the primary basketball authority in Estonia, supported by sponsorship from Swedbank. The website provides comprehensive content including news, events, galleries, and contact information, targeting basketball players, coaches, referees, and fans within Estonia. Technically, the site uses a custom CMS with jQuery, Owl Carousel, and Google Tag Manager, offering good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements like updated libraries and security headers are recommended. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

E

Eesti Võrkpalli Liit

volley.ee

0

Eesti Võrkpalli Liit operates as the official Estonian Volleyball Federation, providing comprehensive information on volleyball teams, competitions, and related activities in Estonia. The website serves as a central hub for volleyball enthusiasts, players, coaches, and fans, offering news, schedules, and organizational details. The site is well-structured and professionally designed, reflecting its role as a national sports governing body. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and Facebook Pixel. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements some best practices like opening external links in new windows with noopener. However, it lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Overall, the domain is legitimate, well-established since 2010, and consistent with the organization's profile. Strategic improvements in privacy compliance and security headers would enhance the site's trustworthiness and regulatory adherence.

L

Lääne-Virumaa Kossuliiga

virukorvpall.ee

0

Lääne-Virumaa Kossuliiga operates a regional basketball league website serving the Lääne-Virumaa community in Estonia. The site provides schedules, results, team information, and news updates related to basketball events. The business model focuses on sports event promotion and community engagement within the regional sports sector. The website is built on WordPress with SportsPress Pro plugin, indicating a moderate level of digital maturity and technical infrastructure. Hosting is provided by Zone Media OÜ, a known Estonian hosting provider. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and privacy policies indicates room for improvement. The site uses common analytics and marketing tools such as Google Analytics and AddThis, but lacks explicit privacy compliance mechanisms. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

P

Peipsimaa turism

visitpeipsi.com

0

Visitpeipsi.com is a regional tourism promotion website dedicated to Peipsimaa, Estonia, highlighting the area's natural beauty, cultural heritage, local cuisine, and events. The site targets tourists interested in authentic regional experiences, offering information, event promotion, and an e-commerce shop for local products. The business operates as a small-sized entity focused on hospitality and non-profit tourism promotion, founded in 2011. The website branding is consistent and content quality is good, supporting its market position as a key regional tourism promoter. Technically, the site is built on WordPress with WooCommerce and Yoast SEO plugins, leveraging jQuery and Google Analytics for functionality and tracking. The site is mobile-optimized with good navigation and SEO practices, though performance is moderate. Hosting details are not explicit but DNS and registrar data suggest a stable setup. No WAF or blocking mechanisms are detected, and the site uses HTTPS with a clientTransferProhibited domain status, indicating basic security measures. Security posture is moderate; while HTTPS is enforced, no DNSSEC or security headers are detected, and no explicit security or incident response policies are published. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. The domain WHOIS data aligns well with the website content, showing consistent registration and legitimacy. Overall, the site is functional and professional but could improve security and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

F

Flavors of Livonia

flavoursoflivonia.com

0

Flavors of Livonia is a regional culinary tourism website focused on promoting the food heritage and cultural experiences of the historical Livonia region, covering Estonia and Latvia. The platform provides curated culinary routes, listings of local food producers, and information on traditional recipes and food heritage. The target audience includes tourists and culinary enthusiasts interested in exploring regional cuisine and culture. The business operates as a niche tourism promotion entity with a small-scale footprint and a focus on cultural preservation. Technically, the website uses a combination of jQuery, social media SDKs (Facebook and Twitter), Google Fonts, and various JavaScript libraries for UI and parallax effects. The site is mobile-optimized with a moderate performance profile. However, no explicit CMS or hosting provider information is evident. SEO and accessibility are basic but functional. From a security perspective, the site enforces HTTPS and includes a CSRF token, but lacks visible security headers and published privacy or cookie policies. No contact information or incident response channels are provided, which limits transparency and user trust. The WHOIS data indicates a stable domain registration with no privacy protection, consistent with the website's age and purpose. Overall, the site is professionally designed and serves its niche well but would benefit from enhanced privacy compliance, security hardening, and clearer contact and policy disclosures to improve trust and regulatory adherence.

V

Via Hanseatica

viahanseatica.info

0

Via Hanseatica is a regional tourism initiative promoting an international travel route through Latvia, Estonia, and Russia, focusing on cultural heritage, nature, and culinary experiences. The website serves as an informational and promotional platform supported by multiple regional tourism organizations and partners. The digital infrastructure is based on WordPress with standard SEO and analytics tools, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to missing policies and consent mechanisms. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy indicated by the website content and partnerships.

V

Visit Jõgeva | Avasta Jõgevamaa

visitjogeva.com

0

Visit Jõgeva is a regional tourism website dedicated to promoting the Jõgevamaa region in Estonia. It provides comprehensive information on local events, attractions, accommodation, food, active holidays, and local products, targeting tourists and visitors interested in exploring this area. The website is multilingual, supporting Estonian, English, German, Finnish, and Latvian languages, enhancing accessibility for international visitors. The business model focuses on informational and promotional services to boost regional tourism.

M

MTÜ Eesti Pagulasabi

pagulasabi.ee

0

Eesti Pagulasabi is a well-established Estonian non-profit humanitarian organization founded in 2011, dedicated to supporting refugees and displaced persons both in Estonia and internationally. The organization provides a broad range of services including humanitarian aid, social and economic wellbeing programs, mental health support, and integration assistance. Their website reflects a professional and consistent brand presence with comprehensive content and multiple language support, targeting refugees, donors, volunteers, and partners. The donation infrastructure is robust, offering multiple payment options and detailed forms to facilitate contributions. Technically, the website is built on Drupal 9, leveraging modern analytics and consent management tools, and is hosted by a reputable Estonian registrar and hosting provider. Security posture is good with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policy documentation. Overall, the website is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

S

SA Harju Ettevõtlus- ja Arenduskeskus

heak.ee

0

SA Harju Ettevõtlus- ja Arenduskeskus (HEAK) is a regional non-profit foundation based in Estonia focused on supporting local development through consulting, training, and partnership initiatives. The organization targets entrepreneurs, civic associations, and tourism sector participants, offering free advisory services and organizing events to foster regional growth. The website reflects a stable and professional presence with clear business objectives and a consistent brand identity. Technically, the site is built on WordPress with common plugins for event management, multilingual support, and analytics integration, demonstrating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though improvements could be made by adding security headers and formal incident response contacts. Overall, the website is trustworthy and well-maintained, supporting the organization's mission effectively.

E

Eesti Planeerijate Ühing

planeerijad.ee

0

Eesti Planeerijate Ühing is a professional non-profit association focused on spatial planning practices in Estonia. The organization provides certification for spatial planners, organizes events such as seminars and webinars, and engages in knowledge dissemination and international cooperation. The website is well-structured, professionally designed, and regularly updated with relevant news and events, reflecting an active and credible organization within its sector. Technically, the website is built on WordPress with modern plugins including Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. The site uses HTTPS with an excellent SSL configuration, but lacks some advanced security headers and explicit privacy and cookie policies, which are areas for improvement. No blocking or WAF mechanisms interfere with content accessibility. Security posture is solid with HTTPS and no exposed sensitive data, but the absence of published incident response or vulnerability disclosure policies and security.txt reduces transparency. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Business credibility is high given the consistent domain registration, professional content, and clear organizational purpose. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security transparency to align with best practices and regulatory requirements.

M

MTÜ Eesti Keskkonnamõju Hindajate Ühing

eaia.eu

0

MTÜ Eesti Keskkonnamõju Hindajate Ühing (KeMÜ) is a small Estonian non-profit organization founded in 2012 that unites professionals and interested parties in the field of environmental impact assessment. The website serves as an information hub and membership portal, offering news, organizational details, and contact avenues primarily through structured navigation and login forms. The organization targets environmental impact assessors and stakeholders within Estonia, positioning itself as a niche entity in the environmental non-profit sector. Technically, the website is built on Joomla CMS with Yootheme templates, leveraging common web technologies such as jQuery and Widgetkit. It integrates Google Analytics and Facebook Pixel for user tracking and marketing insights. The site is mobile-optimized and features a moderate performance profile. Security measures include HTTPS enforcement and CSRF tokens in forms, but it lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, the site demonstrates a good baseline posture with encrypted communications and secure login forms. However, the absence of privacy and cookie policies, as well as missing security headers, represents compliance and security gaps. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the website is professionally designed and functional for its purpose but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

E

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts

evkis.ee

0

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts (EVKIS) is a professional association for water supply and sanitation engineering specialists in Estonia. Established in 2010, it serves as a voluntary union providing membership services, training, news, and an online store to its members and the wider industry community. The website is well-structured and targets professionals in the environmental engineering sector, particularly those focused on water and sanitation technologies. The organization maintains partnerships with relevant industry bodies, enhancing its credibility and reach. Technically, the website is built on WordPress using popular plugins such as WooCommerce for e-commerce, Yoast SEO for search optimization, and Events Manager for event handling. The site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. The infrastructure supports HTTPS with valid SSL certificates, ensuring secure communications. The site is moderately performant and mobile-optimized, though accessibility features are basic. From a security perspective, the site employs Google reCAPTCHA v3 to protect forms from spam and abuse. However, it lacks several important security headers such as Content-Security-Policy and HSTS, which are recommended to enhance security posture. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance and transparency. Overall, EVKIS presents a trustworthy and professional online presence consistent with its role as an industry association. The main risks relate to privacy compliance gaps, notably the absence of privacy and cookie policies, and the lack of advanced security headers. Addressing these areas would strengthen the site's compliance and security posture, thereby enhancing trust among members and visitors.

The website maaruum.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to actual content. The domain is newly registered in November 2023 under an Estonian registrar, consistent with the domain's country. The site uses Cloudflare services for security and performance, including Cloudflare Insights for analytics and Turnstile for bot mitigation. Due to the WAF challenge, no business information, contact details, or policies are visible, limiting the ability to assess the business model or market position. The technical infrastructure shows modern security practices such as HTTPS and Cloudflare protection but lacks DNSSEC and security headers. Privacy compliance and security posture are incomplete due to missing policies and contact channels. Overall, the site appears legitimate but is in an early stage with minimal public content.

P

Planeerimine.ee

planeerimine.ee

0

Planeerimine.ee is an Estonian government-related informational website dedicated to spatial planning. It provides comprehensive materials including legal documents, guidelines, FAQs, and training information to support planners and stakeholders in Estonia. The site targets professionals and public officials involved in spatial planning and related regulatory processes. The business model is primarily informational and educational, positioning itself as an authoritative resource within the Estonian government sector. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including jQuery, Google Analytics, and accessibility tools. The site is mobile-optimized, uses HTTPS, and implements cookie consent mechanisms. SEO and accessibility features are well integrated, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, some security headers are not explicitly present, suggesting room for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service pages. Overall, the website demonstrates a solid security posture and technical maturity suitable for a government informational portal. Strategic recommendations include enhancing security headers, publishing privacy and incident response policies, and maintaining up-to-date software to mitigate risks.

E

Eesti Rahvusraamatukogu

digar.ee

0

DIGAR is a digital archive platform operated by the National Library of Estonia, providing access to a wide range of digitized cultural heritage materials including books, periodicals, images, and collections. The website targets researchers, students, historians, and the general public interested in Estonian history and culture. It serves as a national-level digital repository with a public service business model, offering structured search capabilities and curated collections. The platform is well-branded and consistent with its institutional identity. Technically, the website employs standard web technologies including JavaScript and integrates Google Analytics and Google Tag Manager for user tracking and analytics. The site is served over HTTPS with CSRF protection on forms, indicating a reasonable security baseline. However, it lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and user trust. Mobile optimization and accessibility are basic but functional, with room for improvement. From a security perspective, the site demonstrates good practices such as HTTPS and CSRF tokens but misses opportunities to enhance security posture through security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or blocking mechanisms were detected. The WHOIS data confirms the legitimacy and consistency of the domain registration, aligning with the website's governmental and cultural heritage role. Overall, DIGAR presents a trustworthy and professional digital archive service with good content quality and business credibility. To improve, it should implement comprehensive privacy and cookie policies, enhance security headers, and provide clear incident response and vulnerability disclosure information to strengthen user trust and compliance.

M

MTÜ Eesti Raamatukoguvõrgu Konsortsium

elnet.ee

0

MTÜ Eesti Raamatukoguvõrgu Konsortsium operates as a non-profit consortium dedicated to serving the public interests of Estonian libraries. The organization provides key shared services such as the E-kataloog ESTER, Eesti artiklite andmebaas, Eesti märksõnastik, and the E-varamu portaal, targeting libraries, researchers, and the general public interested in library resources. The website reflects a medium-sized, well-established entity with a consistent brand and a clear focus on education and information services within Estonia. Technically, the website is built on a modern WordPress platform using the Enfold theme and several plugins including Yoast SEO and Ajax Search Pro. It employs HTTPS with good SSL configuration and integrates Google Analytics with user consent mechanisms. The site demonstrates good mobile optimization and accessibility features, including options for visually impaired users. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response information, and vulnerability disclosure channels. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, reinforcing the legitimacy of the domain. Overall, the website presents a trustworthy and professional digital presence for the consortium, with room for improvement in security transparency and incident response readiness.

E

Eesti Noorteühenduste Liit

enl.ee

0

Eesti Noorteühenduste Liit (ENL) is a well-established non-profit umbrella organization founded in 2010 that unites youth associations and participation bodies across Estonia. The organization focuses on advocacy, youth participation, training, and international cooperation, positioning itself as a leading entity in the Estonian youth sector. The website reflects a professional and comprehensive digital presence with clear content, strong branding, and multilingual support. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS, cookie consent, and error reporting, though some security headers and formal policies could be enhanced. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media engagement.

I

Infohunt

infohunt.ee

0

Infohunt.ee is a government-backed Estonian youth information portal providing localized event and activity information for young people. The platform aggregates data on youth events, hobby education, and projects, supporting youth engagement and participation. It is operated under the auspices of the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) and hosted by EENet, reflecting a strong institutional foundation. The website uses WordPress with modern SEO and accessibility features, ensuring good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Privacy compliance is partial, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, Infohunt.ee is a credible, well-maintained portal serving the Estonian youth sector effectively.

E

Erasmus+ ja Euroopa Solidaarsuskorpuse agentuur

euroopanoored.eu

0

The website represents the Erasmus+ and European Solidarity Corps national agency in Estonia, providing comprehensive information, resources, and support for youth, youth workers, and organizations involved in European youth programs. It serves as a government-funded platform facilitating access to program opportunities, project guidance, and community engagement. The site is well-positioned as the authoritative national agency for these programs, targeting youth and professionals in the youth sector. Technically, the website is built on WordPress with modern performance and SEO optimizations, including WP Rocket and The SEO Framework. It employs Google Site Kit for analytics and consent management, ensuring GDPR compliance with a robust cookie consent mechanism. The site is mobile-optimized, accessible, and fast-loading, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs consent mode to restrict tracking and personalization. While explicit security headers and incident response policies are not evident, no vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the agency's Estonian identity, registered through a reputable local registrar without privacy protection, appropriate for a government entity. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, making it a trustworthy and professional platform for its audience.

K

Kodutütred

kodututred.ee

0

Kodutütred is a well-established Estonian youth organization affiliated with the Kaitseliit (Estonian Defence League), focusing on patriotic education and voluntary activities for girls aged 7 to 18. The website serves as an informational and engagement platform, showcasing news, events, organizational structure, and membership opportunities. The organization has a strong national presence with thousands of members and active participation across all counties in Estonia. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting and domain registration are consistent with the organization's location and purpose. From a security perspective, the site uses HTTPS and secure forms but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

The website eenet.ee is registered to the Haridus- ja Teadusministeerium (EENet), an Estonian government entity likely providing educational and research network services. However, the website content is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page employing Turnstile captcha, which blocks direct access to the site's content. This prevents a full assessment of the business description, policies, and contact information. The domain is well-established since 2010 and the WHOIS data aligns with the government registrant, indicating legitimacy. The technical infrastructure leverages Cloudflare services for security and performance, but the lack of accessible content limits evaluation of user experience, privacy compliance, and detailed security posture. Overall, the site demonstrates a moderate level of security controls through WAF but lacks visible transparency on privacy and contact details.

S

Sillamäe Muuseum - SASIMU

sasimu.ee

0

Sillamäe Muuseum SASIMU is a recently established cultural institution in Estonia, focusing on the rich and complex history of Sillamäe through permanent exhibitions, educational programs, and innovative virtual reality experiences. The museum targets tourists, local visitors, and educational groups, offering a blend of historical insight and interactive technology to enhance visitor engagement. The website is built on WordPress and integrates common marketing and analytics tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy and cookie policies, indicating room for compliance improvement. Overall, the site presents a professional and trustworthy image aligned with its business goals.

E

Ettevõtlik kool

evkool.ee

0

Ettevõtlik Kool is a non-profit educational network in Estonia focused on promoting entrepreneurial learning and providing a quality mark for modern education. The website serves as a portal for schools and kindergartens to access training, tools, and certification processes. It targets educational institutions and professionals within Estonia, supporting over 221 schools and more than 41,000 students. The business model revolves around educational services and network collaboration rather than commercial sales. Technically, the website is built on WordPress with modern enhancements such as lazy loading, Google Tag Manager, and reCAPTCHA for security. The site is mobile-optimized and includes accessibility features, reflecting a mature digital presence. SEO and metadata are well implemented, supporting discoverability and user engagement. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms, and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contacts, which could be improved. Privacy and cookie policies are present and appear GDPR compliant, enhancing user trust. Overall, the website presents a trustworthy and professional image with good content quality and technical implementation. The domain registration data aligns with the business claims, supporting legitimacy. Strategic improvements in security policy transparency and additional compliance documentation would further strengthen the site's posture.

I

Ida-Viru Ettevõtluskeskus

ivek.ee

0

Ida-Viru Ettevõtluskeskus is a regional development center focused on providing free consulting services to individuals, non-profit organizations, and entrepreneurs in Ida-Viru County, Estonia. Established in 2010, it acts as a regional development engine offering training, funding opportunities, and support services. The website is multilingual, targeting Estonian, English, and Russian speakers, reflecting the regional demographic. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and various plugins for SEO, multilingual support, and user interaction. Security posture is solid with HTTPS and cookie consent mechanisms, though additional HTTP security headers and published policies would enhance compliance and trust. Overall, the site presents a professional and trustworthy digital presence aligned with its business mission.

L

Lastekaitse Liidu Lastelaagrite OÜ

lastelaagrid.eu

0

Lastekaitse Liidu Lastelaagrite OÜ is a small Estonian non-profit organization dedicated to providing educational and recreational youth camps and programs aligned with the mission of Lastekaitse Liit. The organization operates recognized youth camps such as Pivarootsi and Remniku and offers educational programs during school time. Their target audience includes children, youth, schools, municipalities, and entrepreneurs within Estonia. The website is built on a modern WordPress CMS with WooCommerce integration, supporting online interactions and registrations. The technical infrastructure includes standard web technologies and third-party services such as Google Analytics and CookieYes for consent management. Security posture is solid with HTTPS and reCAPTCHA implemented, though some security headers are missing and no formal security or privacy policies are published. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, well-branded, and trustworthy, but could improve privacy compliance and security transparency.

T

Targalt Internetis

targaltinternetis.ee

0

Targalt Internetis is a reputable non-profit educational initiative based in Estonia, dedicated to promoting safe and responsible internet use among children, youth, parents, and educators. The website offers a rich array of resources including workshops, seminars, articles, and events focused on digital safety, cyberbullying, misinformation, and digital wellbeing. It serves as a trusted platform with strong partnerships and a clear focus on community education and awareness. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR, ensuring good SEO and privacy compliance. The site is mobile-optimized and accessible, with a moderate performance profile. Security-wise, the website enforces HTTPS, implements strong security headers, and provides a comprehensive cookie consent mechanism, although it lacks explicit incident response or vulnerability disclosure information. Overall, the site demonstrates a strong security posture and compliance with GDPR, supporting its credibility and trustworthiness in the education sector.

M

MTÜ Lastekaitse Liit

markalast.ee

0

MTÜ Lastekaitse Liit operates the 'Märka Last' web portal, a non-profit platform dedicated to promoting child rights and welfare in Estonia. The website offers a variety of content including opinion articles, podcasts, news updates, and educational resources targeting parents, children, youth, and child protection professionals. The organization is well-established with a domain registered since 2019 and maintains a consistent brand presence online. Technically, the site is built on WordPress using modern themes and plugins, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and basic security practices in place, though improvements such as enabling DNSSEC and publishing a security.txt file are recommended. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively.

The website elron.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to the actual content. This prevents a full analysis of the business, security, and compliance posture. Based on the WHOIS data, the domain is registered since 2013 with Zone Media OÜ, a known registrar, indicating a legitimate domain age and registration consistency. The website appears to be related to the transportation sector in Estonia, likely a medium-sized entity given the domain age and sector. The technical infrastructure includes Cloudflare services for CDN, security, and bot mitigation, but no CMS or other frameworks are detectable due to the blocked content. Security posture cannot be fully assessed, but the presence of Cloudflare WAF and Turnstile indicates a baseline security measure. No privacy, cookie, or terms of service policies are visible, nor are there any contact details or business information on the landing page. Overall, the site is protected by strong bot mitigation but lacks publicly accessible content for deeper analysis.

The website 'kaart.ee/epood/' appears to be a minimal online store page titled 'EOMAP-Veebipood' with very limited content and no visible interactive elements or contact information. The domain is registered since 2010 with Zone Media OÜ, a known Estonian registrar and hosting provider, indicating a legitimate domain registration history. However, the website itself lacks essential business information, privacy policies, and security features such as HTTPS, which significantly impacts its trustworthiness and user confidence. Technically, the site uses outdated HTML framesets and lacks modern web technologies, resulting in poor user experience and SEO performance. Security posture is weak due to absence of HTTPS and security headers, and no incident response or vulnerability disclosure mechanisms are present. Overall, the site presents a high risk from a security and compliance perspective and requires significant improvements to meet modern standards.

H

Haridus- ja Teadusministeerium (EENet)

elurikkus.ee

0

eElurikkus is a government-backed public portal aggregating biodiversity data for Estonia, integrating scientific, monitoring, and citizen science datasets. It serves researchers, environmental agencies, and the public by providing access to species taxonomy, occurrence records, and monitoring projects. The platform is built on the PlutoF biodiversity data infrastructure and collaborates with global partners like GBIF. Technically, the website uses modern JavaScript libraries such as Leaflet for mapping and Google Analytics for user tracking. The site is mobile-optimized with a clear navigation structure and good content relevance. Security posture is solid with HTTPS enforced and no exposed sensitive data, though it lacks some security headers and formal security policies. Privacy compliance is basic, with no visible cookie consent mechanism or detailed privacy policy links. Overall, the site is trustworthy and professionally maintained, reflecting its governmental and research affiliations.

Z

Zone Media OÜ

inimene.ee

0

Inimene.ee is an established Estonian health portal operated by Zone Media OÜ since 2010. It provides comprehensive health-related content including disease catalogs, symptoms, treatments, and health news. The site targets Estonian-speaking individuals seeking reliable health information and offers interactive features such as a question submission form answered by medical professionals. The business model relies on content provision combined with advertising partnerships, notably with Apotheka e-pharmacy. Technically, the site uses a modern CMS (Greativ), integrates multiple third-party analytics and advertising services, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though it lacks some advanced headers and published incident response policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and direct contact information.

MTÜ Viimsi Invaühing is a small Estonian non-profit organization focused on community support and charity events, such as the Heategevusball. The website serves as an informational portal for local activities and fundraising events, targeting the Viimsi community and supporters of disability-related causes. The business model is event-driven and donation-based, with a local market position and a history dating back to 2010. Technically, the website uses a basic custom or legacy CMS with JavaScript and jQuery libraries. The hosting is provided by Spin TEK AS, a local Estonian registrar and hosting company. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS platforms. SEO and accessibility features are minimal. From a security perspective, the site uses HTTPS (assumed from URL), but no advanced security headers or policies are detected. There are no visible forms collecting sensitive data, but the absence of privacy and cookie policies indicates compliance gaps with GDPR. No incident response or security contact information is provided, limiting the organization's readiness for security events. Overall, the website is functional but basic, with moderate trustworthiness due to its long domain age and consistent WHOIS data. However, it lacks critical privacy and security policies, contact transparency, and modern technical implementations. Strategic improvements in security posture, privacy compliance, and user experience would enhance trust and compliance.