Security Directory

L

Laama

pixie.ee

0

Laama is a small Estonian digital agency specializing in web design, UX/UI design, branding, graphic design, front-end development, websites, and web applications. The website serves as a minimal portfolio and contact landing page, targeting businesses or individuals seeking digital design and development services. The company appears to have been founded around 2018, consistent with the domain registration date. Technically, the website uses standard web technologies including Google Analytics and Google Tag Manager for tracking, and Typekit for fonts. Hosting and domain registration are managed by Elkdata OÜ, a local Estonian registrar and hosting provider. The site is basic in design and content, with moderate performance and basic mobile optimization. SEO and accessibility features are minimal but present. From a security perspective, the site uses HTTPS as indicated by canonical URLs, but no security headers were detected in the provided data. There are no visible forms or inputs, reducing attack surface, but the absence of privacy and cookie policies indicates poor privacy compliance. No incident response or security policy information is available. The WHOIS data is consistent and legitimate, with no suspicious patterns. Overall, the website is functional but minimal, with moderate technical maturity and basic security posture. Strategic improvements in privacy compliance, security headers, and richer contact information would enhance trust and compliance.

E

Eesti Vee-ettevõtete Liit

evel.ee

0

Eesti Vee-ettevõtete Liit (EVEL) is a well-established voluntary association representing water companies and related entities in Estonia. Founded in 1995, it serves over 90% of the country's public water and sewerage service consumers through its 42 member water companies and 31 related companies. The organization provides coordination, information dissemination, training, and project participation services to its members, positioning itself as a key player in Estonia's water sector. The website reflects this focus with relevant content, partner links, and organizational information primarily in Estonian, targeting industry stakeholders and members.

T

Terviserajad

terviserajad.ee

0

Terviserajad is an established Estonian platform dedicated to promoting health trails and outdoor physical activities across the country. The website offers comprehensive information on trails, events, news, and seasonal campaigns to encourage community engagement and healthy lifestyles. It targets Estonian residents and visitors interested in fitness and nature exploration. The platform enjoys partnerships with major Estonian companies such as Merko, Eesti Energia, and Swedbank, enhancing its market position as a trusted national resource. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Analytics, Google reCAPTCHA v3, and Instagram Feed integration. The site is mobile-optimized with good SEO practices and uses HTTPS to secure communications. However, some security best practices like HTTP security headers are missing, and privacy compliance is incomplete due to the absence of privacy and cookie policies. From a security perspective, the site demonstrates a moderate security posture with encrypted connections and anti-spam measures but lacks published security policies and incident response contacts. No WAF or blocking mechanisms were detected, and no exposed sensitive data was found. The domain registration is consistent and long-standing, supporting the site's legitimacy. Overall, Terviserajad presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

The website kik.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate registration. However, no business information, contact details, or compliance policies are visible on the landing page. The technical infrastructure relies on Cloudflare's security and analytics services, but no CMS or other technologies are detectable due to the blocked content. Security posture cannot be fully assessed given the lack of accessible content, but the presence of Cloudflare protection is a positive indicator. Overall, the site lacks visible privacy, cookie, or terms of service policies, and no contact or incident response information is available, limiting trust and compliance evaluation.

M

Metana Digiagentuur

metana.eu

0

Metana Digiagentuur is a small digital agency based in Tallinn, Estonia, specializing in website design, email marketing, and digital advertising services such as Meta Ads and Google Ads. The company targets businesses seeking comprehensive digital marketing and web development solutions. Their website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security measures.

The website sm.ee is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content or business information. The domain is registered since 2010 with an Estonian registrar, indicating a mature and legitimate domain. However, no privacy policies, cookie notices, terms of service, or contact information are visible on the challenge page. The technical infrastructure relies heavily on Cloudflare services for security and performance. Due to the WAF blocking, a full security and compliance assessment is not possible. The site lacks visible security headers and business trust indicators in the accessible content. Overall, the site appears legitimate but is currently inaccessible for detailed analysis.

J

Jõelähtme Valla Päevakeskus

joelahtmepaevakeskus.ee

0

Jõelähtme Valla Päevakeskus is a local government social service center in Estonia providing social and supportive services primarily to elderly and disabled individuals. The website is built on WordPress using common plugins for booking and accessibility, hosted by Zone Media OÜ. The site is well-structured with clear navigation and good mobile optimization. Security posture is adequate with HTTPS enabled and CSRF tokens in booking forms, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional and trustworthy but requires improvements in privacy and security practices.

V

Visit Lahemaa

visitlahemaa.com

0

Visit Lahemaa is a regional tourism website dedicated to promoting Lahemaa National Park in Estonia. It provides comprehensive information on local attractions, accommodations, dining, transport, and events, targeting tourists interested in exploring this natural and cultural area. The website is multilingual, supporting several languages to cater to a diverse audience. Technically, it is built on WordPress using the Elementor page builder, with integration of common analytics and tracking tools such as Facebook Pixel and Microsoft Clarity. The site is hosted under a legitimate domain registered since 2017, with standard security practices like HTTPS enabled. However, there is room for improvement in privacy compliance, notably the absence of a cookie consent mechanism and limited explicit privacy-related disclosures. Security posture is generally good but could be enhanced by enabling DNSSEC and publishing security policies. Overall, the website is professional and functional, serving its purpose as a tourism information portal effectively.

A

AS Lahevesi

lahevesi.ee

0

AS Lahevesi is a municipal utility company founded in 2008, providing water supply, sewage, property management, cemetery services, and public space maintenance in Lääne-Harju municipality, Estonia. The company operates under contracts with the local government and serves residents and businesses in the region. The website is built on WordPress using Elementor and several plugins, featuring a professional design with clear navigation and mobile optimization. Security measures include HTTPS and Google reCAPTCHA on forms, though additional security headers and cookie consent mechanisms are recommended. The WHOIS data confirms the legitimacy of the company with consistent registration details. Overall, the website demonstrates a solid technical and business foundation with room for improvement in privacy compliance and security policies.

The website mil.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, preventing direct content analysis. The domain is registered since 2010 with an Estonian registrar, consistent with the .ee country code top-level domain and likely representing a government entity. Due to the WAF challenge, no business, contact, or policy information is visible on the landing page. The site uses Cloudflare services for security and performance, but no further technical or security details are accessible. This limits the ability to assess the website's content quality, privacy compliance, or security posture comprehensively.

Z

Zone Media OÜ

maardupanoraam.ee

0

Maardu Panoraam is a local news and information website serving the residents of Maardu, Estonia. It provides timely news, official announcements, event information, job postings, and messages from the mayor, targeting the local community. The website is built on WordPress CMS, leveraging common plugins such as WPBakery Page Builder and WPML for multilingual support. It uses Google Analytics and Tag Manager for visitor tracking and performance insights. The site is hosted under the domain registered by Zone Media OÜ, an Estonian registrar, aligning with the website's geographic focus. Technically, the website demonstrates a moderate level of digital maturity with responsive design, good SEO practices, and integration of modern web technologies. However, it lacks some advanced security measures such as DNSSEC and security headers, which could be improved to enhance protection against common web threats. The absence of privacy and cookie policies indicates a gap in compliance with GDPR and related privacy regulations, which is critical given the use of tracking technologies. From a security perspective, the site uses HTTPS and secure login forms but does not provide explicit security or incident response policies. No WAF or blocking mechanisms are detected, and no suspicious or malicious indicators are present. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to reduce risk and improve user trust.

R

Raven OÜ

ravenou.ee

0

Raven OÜ is a small Estonian company specializing in water utility services, including water supply, water-saving advice, and infrastructure development. The company targets local residents and businesses in the Harju maakond region, providing essential water-related services and customer support. The website is professionally designed using Joomla CMS and offers clear navigation and relevant content focused on water conservation and service notifications. Technically, the website employs a standard Joomla stack with modern JavaScript and CSS assets. It is hosted by Elkdata OÜ, consistent with the domain registration data. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. No advanced analytics or tracking technologies are detected, indicating a privacy-conscious approach but also a lack of marketing sophistication. From a security perspective, the website uses HTTPS with a valid SSL configuration and includes CSRF tokens in scripts, which is positive. However, it lacks important security headers and does not publish privacy, cookie, or security policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, representing a compliance and security gap. Overall, the website is legitimate and trustworthy based on domain age and registration consistency. The main risks relate to privacy compliance and security best practices. Strategic improvements in these areas would enhance the company's digital maturity and user trust.

R

Raasiku Vallavalitsus

raasikukalender.ee

0

Raasikukalender.ee is a local government-operated event calendar website serving the Raasiku municipality in Estonia. It provides categorized listings of cultural, sports, theater, music, and other community events targeted at residents and visitors. The website is designed to promote local events and facilitate community engagement through an accessible online platform. The business model is a public service information portal without commercial intent, focusing on local government communication and event promotion. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and uses modern JavaScript libraries like jQuery and Flatpickr for enhanced user experience. It employs Plausible Analytics, a privacy-conscious analytics tool, and loads resources from reputable CDNs. The site is hosted by Elkdata OÜ, an Estonian hosting provider, and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and deferred script loading. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained with a clear focus on community service. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and establishing a vulnerability disclosure process to enhance security posture and regulatory compliance.

V

Viimsi Hoolekandekeskus

viimsihoolekandekeskus.ee

0

Viimsi Hoolekandekeskus is a local Estonian social care center established in 2021, consolidating day centers and social services for the Viimsi municipality community. The website provides information about their services, events, and contact options primarily in Estonian. Technically, the site is built on WordPress with popular plugins for events and page building, hosted under a reputable Estonian registrar. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies are missing. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its local government/non-profit purpose.

V

Viimsi vald

viimsi.ee

0

Viimsi vald is the official local government authority for the Viimsi municipality in Estonia, providing a wide range of public services including administration, education, social care, culture, and environmental management. The website serves residents and businesses in the region with comprehensive information, news, and access to municipal services. The site is well-structured and professionally designed, reflecting its role as a government portal. Technically, the site is built on Drupal 9 CMS and integrates modern analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook SDK, while maintaining GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence suitable for a government entity, with clear contact information and consistent branding.

N

Novian Eesti OÜ

volis.ee

0

VOLIS is a specialized electronic meeting and voting platform serving Estonian local governments, enabling virtual meetings, electronic voting, and public participation in municipal decision-making. The platform is supported by the Estonian Association of Cities and Municipalities and developed by Novian Eesti OÜ. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its government audience. Technically, the site uses legacy JavaScript libraries and Grails-based server-side rendering, with moderate performance and basic mobile optimization. Security posture is strengthened by ISKE certification and audit references, but outdated libraries and lack of modern security headers present risks. Privacy compliance is partial, with no cookie consent mechanism and limited GDPR indicators. Overall, the site is trustworthy and credible but would benefit from technical and compliance improvements.

E

EOMAP

eomap.ee

0

EOMAP is an established Estonian technology company specializing in cartography and spatial data solutions, with a strong focus on municipal software products such as the Kovgis EVALD system. The company has a solid market position supported by integration with national information systems and a 30-year history. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a mature digital presence with good SEO and mobile optimization. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

I

Ida-Viru Ühistranspordikeskus

ivytk.ee

0

Ida-Viru Ühistranspordikeskus is a non-profit organization dedicated to coordinating and providing public transportation services in the Ida-Viru region of Estonia. The website serves as an information hub for passengers and transport providers, offering schedules, route maps, contact details, and ticket purchasing options. The organization is small-sized, regionally focused, and operates transparently with clear contact information and official registration details. Technically, the website is built on WordPress using a modern tech stack including Bootstrap, jQuery, and Yoast SEO for optimization. It employs Google reCAPTCHA v3 for form security and uses privacy-conscious analytics tools like Plausible. The site is hosted by Elkdata OÜ, consistent with the domain registration data, and uses HTTPS with a good SSL configuration. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and spam protection on forms. However, it lacks published security policies, security headers, and cookie consent mechanisms, which are important for compliance and enhanced security posture. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is professional, trustworthy, and functional, but it would benefit from improved privacy compliance and enhanced security policies to better protect users and meet regulatory requirements.

The website info.vaivaravald.ee serves as a minimal informational portal primarily using a frameset to display content from an internal page and an external domain www.vaivara.ee. The site lacks substantive content, metadata, and modern web features, indicating a low level of digital maturity. There is no evidence of privacy policies, cookie consent mechanisms, or contact information, which limits user trust and compliance with data protection regulations. Technically, the site does not demonstrate use of modern frameworks, CMS, or security best practices such as HTTPS or security headers. The security posture is weak due to absence of encryption and lack of visible security controls. Overall, the site presents a low-risk profile due to minimal data collection but suffers from poor professionalism and trustworthiness.

S

Sinimäe spordihoone

spordihoone.ee

0

Sinimäe spordihoone is a local sports facility based in Sinimäe, Narva-Jõesuu, Estonia, offering group training classes, gym access, sauna, and event hosting primarily targeting local sports enthusiasts. The website is built on WordPress with modern plugins and themes, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is legitimate and professionally presented but would benefit from enhanced security and compliance measures.

Z

Zone Media OÜ

evald.ee

0

Eomap.ee is a technology company focused on geoinformation systems and cartography, primarily serving local governments in Estonia. Their flagship product, Kovgis EVALD, is a server-based, open-source software solution designed for municipal geoinformation management, integrating with national systems via X-tee. The company has a solid local market presence with over 30 years of experience, reflected in their comprehensive suite of modules tailored for municipal needs such as waste management, road maintenance, and public lighting. Technically, the website is built on WordPress with modern SEO and performance optimizations, though it lacks explicit privacy and cookie policies. Security posture is good with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact details.

M

MTÜ Lastekaitse Liit

lastekaitseliit.ee

0

MTÜ Lastekaitse Liit is a well-established Estonian non-profit organization dedicated to the protection of children's rights and interests. The organization actively develops and implements child protection projects, provides expert opinions on child protection legislation, supports child and youth participation, organizes training for professionals, and offers camp services and scholarships for children and youth. The website reflects a clear mission and target audience focused on children, families, and child welfare professionals. Technically, the site is built on a modern WordPress platform with WooCommerce integration, leveraging popular plugins such as Yoast SEO, WPBakery, and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, it lacks published privacy and cookie policies, which impacts its privacy compliance score. Social media presence is strong with official Facebook, LinkedIn, and YouTube channels linked. Overall, the website demonstrates good professionalism and trustworthiness but would benefit from enhanced privacy and security policy transparency.

The website keskkonnaamet.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to the site's content. This prevents extraction of meaningful business, contact, or policy information. The domain is registered since 2010 with a reputable Estonian registrar, indicating legitimacy and a stable presence. The site appears to be a government-related entity based on the domain and WHOIS data, but no explicit business details or descriptions are available in the accessible content. Technically, the site uses Cloudflare services for security and performance, but no CMS or frameworks are detectable from the challenge page. Security posture is partially observable due to HTTPS and Cloudflare protection, but no security headers or policies are visible. Privacy and cookie policies are not found, and no contact information is exposed. Overall, the site is protected by a strong WAF, but this limits external analysis and transparency.

Ida-Virumaa Omavalitsuste Liit is a regional government association serving the municipalities of Ida-Virumaa, Estonia. The website provides comprehensive information on governance, development strategies, programs, projects, education, public health, safety, culture, and visa-related matters. It targets local residents, government officials, and stakeholders interested in regional development. The organization operates as a small-sized government entity founded in 2010, with a clear focus on regional coordination and public service. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, Google reCAPTCHA, and Font Awesome. The site is hosted by Elkdata OÜ, consistent with the WHOIS data. The website is mobile-optimized and provides a good user experience, although some technical aspects like the use of an outdated jQuery version and lack of security headers indicate areas for improvement. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate automated abuse. However, the absence of security headers and outdated JavaScript libraries present potential vulnerabilities. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which could expose the organization to regulatory risks. Overall, the website is trustworthy and professional but would benefit from enhanced security practices and improved privacy compliance to align with modern standards and regulations.

The website juristaitab.ee is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content, including business descriptions, contact information, or policies. The domain is registered since 2010 under Elkdata OÜ, an Estonian registrar, indicating a legitimate registration history. However, the lack of accessible content limits the ability to assess the company's market position, services, or technical maturity. The technical infrastructure relies on Cloudflare for security and performance, but no further technology stack details are available. Security posture is difficult to evaluate fully due to the blocked content, but the presence of Cloudflare indicates some level of protection. Privacy and compliance policies are not found, and no contact or business details are visible. Overall, the site currently presents a low trust profile due to inaccessibility and lack of transparency.

S

Sillamäe Muuseum

sillamae-muuseum.ee

0

Sillamäe Muuseum is a small cultural and educational institution based in Estonia, providing guided tours, educational programs, workshops, and children's entertainment rentals. The website is professionally designed using WordPress with a modern theme and includes multilingual support. It demonstrates compliance with GDPR through a cookie consent mechanism and provides clear contact information. The technical infrastructure is solid, leveraging common web technologies and plugins, with good mobile optimization and moderate performance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is trustworthy and serves its target audience effectively.

Jaanilill is a small local kindergarten based in Järva-Jaani, Estonia, providing early childhood education services primarily to local families. The website serves as an informational portal with basic content about the kindergarten, including navigation to pages about history, daily schedule, and parental information. The business model is straightforward, focusing on educational services for young children in a local community setting. The domain age and WHOIS data indicate a legitimate and consistent online presence since 2015. Technically, the website is built on WordPress using the Twenty Seventeen theme and includes jQuery as a JavaScript library. The hosting is provided by Elkdata OÜ, a local Estonian hosting provider. The site is accessible over HTTPS with a good SSL configuration but lacks advanced security headers and modern tracking or analytics tools. Mobile optimization and accessibility are basic but functional. From a security perspective, the site benefits from HTTPS but lacks security headers and does not display privacy or cookie policies, which are important for GDPR compliance. No forms or data collection mechanisms are present on the homepage, reducing immediate data protection risks. However, the absence of incident response contacts or security policies indicates a low maturity in security governance. Overall, the website is a basic but legitimate online presence for a local kindergarten. It would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to increase trust and regulatory adherence.

P

Peetri Kool

peetrikool.ee

0

Peetri Kool is a small educational institution located in Estonia, providing primary and kindergarten education services to the local community. The website serves as an informational portal offering details about school schedules, staff, admission, and extracurricular activities. The site is built on WordPress using the Education Hub theme and integrates basic modern web technologies such as jQuery and Font Awesome. Hosting appears to be managed by Elkdata OÜ, a local Estonian provider. The website is accessible, mobile-optimized, and includes clear navigation but lacks comprehensive content on the homepage. Security posture is moderate with HTTPS enabled but missing important security headers and privacy compliance elements such as privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Analytics are handled via plausible.io, indicating a privacy-conscious approach but without explicit consent mechanisms.

K

Koigi Kool

koigikool.ee

0

Koigi Kool is a small educational institution located in Koigi village, Estonia, providing primary and kindergarten education services. The website serves as an information portal for students, parents, and staff, offering news, event updates, school life details, and contact information. The site is built on Drupal 10 and incorporates modern web technologies and accessibility features, reflecting a moderate to good level of digital maturity. The presence of Matomo analytics indicates a privacy-conscious approach to user tracking. Security posture is adequate but could be improved by enabling DNSSEC and implementing security headers. No privacy policy or explicit security policies are published, which is a gap in compliance. Overall, the domain is legitimate and stable, with clear contact details and partner affiliations.

E

Elkdata OÜ

koerumuusikakool.ee

0

Koeru Muusikakool is a small, regionally focused music school based in Estonia, providing music education and cultural events primarily targeting students and the local community. The website is built on a modern WordPress platform using popular plugins such as WooCommerce and Tutor LMS, indicating a digital maturity suitable for educational content delivery and course management. The site features active social media integration and regularly updated news content, supporting engagement with its audience. Technically, the website is well-structured with responsive design and moderate performance, although accessibility and SEO optimizations are basic. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance security posture. The WHOIS data confirms the domain is legitimately registered to Elkdata OÜ since 2010, consistent with the business's operational history. Overall, the website presents a professional and trustworthy front for the music school but requires improvements in privacy compliance and security best practices to reduce risk and increase user confidence. Strategic enhancements in these areas will support sustainable growth and regulatory adherence.

J

Järva-Jaani Gümnaasium

jjaanikool.ee

0

Järva-Jaani Gümnaasium is a public secondary educational institution located in Estonia, providing comprehensive educational services and community engagement. The website serves as an information portal for students, parents, and staff, offering details on school life, teaching schedules, admissions, and extracurricular activities. The institution maintains a strong local presence with partnerships and certifications that enhance its educational offerings. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Swiper.js for interactive elements and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization and accessibility features, including adjustable font sizes and contrast settings, supporting inclusive access. From a security perspective, the site uses HTTPS and respects Do Not Track signals in analytics, but lacks advanced security headers and published security policies. The domain registration is consistent with the Estonian Ministry of Education, reinforcing legitimacy. No blocking or WAF interference was detected, allowing full content access. Overall, the website presents a professional and trustworthy digital presence for the school, with room for improvement in security policy transparency and enhanced security headers to further protect users and data.

Aktsiaselts Koeru Hooldekeskus is a regional healthcare and eldercare service provider based in Järva County, Estonia. The organization specializes in 24/7 general care, nursing assistance, special care for individuals with deep disabilities, and dementia care. The website reflects a medium-sized entity with a clear focus on providing comprehensive care services to elderly and special needs clients. The business maintains a consistent brand presence and provides clear contact information and service descriptions, positioning itself as a trusted local healthcare provider. Technically, the website is built on WordPress using a modern tech stack including LayerSlider, WPBakery Page Builder, and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks some security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website demonstrates a solid digital presence with good business credibility and technical implementation. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence.

E

Ettevõte

jarvakodu.ee

0

Järvakodu is a small healthcare business operating a newly renovated elderly care home in Järva-Jaani, Estonia. The facility offers 24/7 general care services with a focus on personalized attention, a supportive environment, and sustainable energy solutions such as solar panels and geothermal heating. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and frameworks, hosted by Elkdata OÜ, and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but no terms of service or incident response information is published. Overall, the site is trustworthy and well-maintained, supporting the business's credibility and customer engagement.

J

Järva Valla Noorsootöökeskus

jarvanoored.ee

0

Järva Valla Noorsootöökeskus is a local government youth work center in Estonia, focused on providing youth services, activities, and community engagement within the Järva municipality. The website serves as an informational portal for youth centers, events, hobby education, and youth council activities. The organization appears to be a small public sector entity founded recently in 2022, with a clear local community focus. Technically, the website is built on WordPress using Elementor and common plugins, hosted by Zone Media OÜ. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No analytics or advertising scripts are detected, indicating minimal user tracking. Security posture is basic with HTTPS enabled but no security headers detected and no visible privacy or cookie policies, indicating compliance gaps with GDPR. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The site links to multiple partner organizations and government-related domains, enhancing trust. Overall, the website is functional and serves its purpose as a local youth center portal but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

J

Järva Vallaraamatukogu

jarvaraamat.ee

0

Järva Vallaraamatukogu operates as a public library service for the Järva County region in Estonia, providing residents with access to books, cultural events, and library services including a mobile library bus. The website serves as an informational portal with news, events, and user resources, targeting local community members and library patrons. The business model is government-funded public service, with a clear focus on community engagement and education. Technically, the website is built on WordPress using the Avada theme and incorporates modern web technologies such as Slider Revolution and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not detected and no explicit security or incident response policies are published. Overall, the site is trustworthy and professionally maintained, reflecting its public institution status.

O

OÜ Oesel

huviregister.ee

0

Huviregister.ee is a specialized Estonian platform designed to manage hobby groups and their participants, primarily serving municipalities, hobby education providers, and parents. The service facilitates data collection, subsidy calculations, billing, and reporting related to hobby activities, supporting both public and private sector hobby schools. The platform is operated by OÜ Oesel, a small Estonian company founded in 2020. The website content is clear and relevant, though it lacks comprehensive legal and privacy documentation. Technically, the site uses a simple stack with HTML, CSS, and jQuery, hosted under a domain registered with Zone Media OÜ. Security posture is moderate but could be improved by enabling DNSSEC and adding security headers. No blocking or WAF mechanisms were detected, allowing full content access.

The website kriis.ee is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires human verification via Turnstile captcha. This security measure blocks access to the actual website content, preventing any meaningful analysis of business or security details. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate and established domain. However, the lack of accessible content, absence of privacy or cookie policies, and no visible contact or business information significantly limit the ability to assess the website's business model, technical maturity, or security posture. The technical infrastructure relies on Cloudflare services for security and performance, but no advanced security headers or configurations are evident in the provided data. Overall, the site appears to be protected by strong perimeter security but lacks visible transparency or user-facing information.

Z

Zone Media OÜ

visitjarva.ee

0

Visitjarva.ee is a regional tourism information website focused on Järvamaa (Järva County) in Estonia. It provides comprehensive information about local events, accommodation, cultural and historical sites, nature activities, food, wellness, and seminar facilities. The site targets tourists and visitors interested in exploring the region, offering curated content and links to social media channels for engagement. The business operates under Zone Media OÜ, with a domain established in 2016, indicating a stable presence in the regional tourism market. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Owl Carousel, LazySizes, and Lightbox for enhanced user experience. SEO is well addressed through Yoast SEO plugin and structured data (JSON-LD). The site is mobile optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, managed by Zone Media OÜ. From a security perspective, the site enforces HTTPS with excellent SSL configuration and includes a cookie consent banner, demonstrating basic privacy compliance. However, it lacks explicit privacy policy and terms of service pages, security headers, and a vulnerability disclosure mechanism. No incident response or security policy information is published, which could be improved to enhance trust and compliance. Overall, the website is a good quality regional tourism portal with solid business credibility and technical implementation. Strategic improvements in privacy documentation, security headers, and incident response transparency would elevate its security posture and compliance standing.

P

PÕLTSAMAA KODANIK MTÜ

poltsamaaraadio.ee

0

Põltsamaa Raadio is a small, community-driven seasonal radio station operated by local youth in the Põltsamaa region of Estonia. It broadcasts both online and on FM frequency 95.0 MHz, supported by project funding from the LEADER program to enhance broadcast reach. The website serves as a portal for live streaming, program schedules, and community engagement, targeting local listeners and supporters. The business model relies on volunteer efforts, donations, and local sponsorships. Technically, the site is built on WordPress with Elementor and several plugins for podcasting and streaming, hosted by Zone Media OÜ. The site is mobile responsive and uses modern web technologies, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy for its community media purpose but would benefit from improved privacy and security practices.

P

Põltsamaa Vallavara OÜ

visitpoltsamaa.com

0

Visit Põltsamaa is a regional tourism information website dedicated to promoting the Põltsamaa municipality in Estonia. The site provides comprehensive information about local attractions, accommodations, dining options, events, and cultural heritage, targeting tourists and visitors interested in exploring the region. The business operates as a small entity, likely under Põltsamaa Vallavara OÜ, with a focus on hospitality and government-supported tourism promotion. The website is multilingual, supporting Estonian, English, Finnish, and Russian, enhancing accessibility for diverse visitors. Technically, the website is built on WordPress CMS with common plugins such as Yoast SEO for search optimization and WPML for multilingual support. It uses jQuery and Google Analytics for user tracking and performance monitoring. The site demonstrates good mobile optimization and a professional design, though accessibility features are basic. Performance is moderate, with room for improvement in technical implementation such as enabling DNSSEC and adding security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and security headers like Content Security Policy or HSTS, which could enhance protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is provided but limited to an email and phone number in the footer. No incident response or vulnerability disclosure information is available. Overall, the website is a credible and functional regional tourism portal with good business credibility and technical foundation but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

R

Rakvere Spordikeskus

rakverespordikeskus.ee

0

Rakvere Spordikeskus is a well-established public sports center located in Rakvere, Estonia, founded in 2010. It serves as a key regional hub for sports facilities, events, and training programs targeting local residents, sports clubs, and event organizers. The website reflects a professional and community-focused organization with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although formal security policies and incident response information are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the site demonstrates a mature digital presence suitable for its public service role.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

0

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

R

Rakvere Raamatukogu

lvkrk.ee

0

Rakvere Raamatukogu is a regional public library in Estonia providing a range of library and community services including book lending, e-catalog access, home delivery for vulnerable populations, and educational events. The website is built on Joomla CMS and integrates common web technologies such as Bootstrap, jQuery, and FontAwesome. It uses HTTPS and includes Google Analytics and Tawk.to live chat for user engagement and analytics. The site is well-branded and consistent with its public service mission, targeting local residents and library users. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. WHOIS data confirms domain legitimacy and long-term registration consistent with the institution's history.

The domain ehr.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, which prevents direct content analysis. The WHOIS data indicates the domain is registered with Zone Media OÜ in Estonia since 2010, suggesting a mature and legitimate registration. However, no business, contact, or policy information is publicly accessible on the landing page. The website relies heavily on Cloudflare's security and performance infrastructure, but no further technical or business details can be extracted due to the blocking mechanism. This limits the ability to assess the company's market position, services, or compliance posture. Security posture cannot be fully evaluated, but the presence of Cloudflare indicates some level of protection.

T

Tamsalu Perearstid OÜ

tamsalutervisekeskus.ee

0

Tamsalu Perearstid OÜ operates the Tamsalu Tervisekeskus website, providing primary healthcare services in Tamsalu and Vajangu, Estonia. The company offers a range of medical services including vaccinations, paid therapies, dental care, and pharmacy services, targeting local residents. The website is professionally designed using WordPress with the Avada theme and integrates trusted Estonian healthcare portals and partners, reflecting a solid local market position as a small healthcare provider. Technical infrastructure is modern and includes SEO optimization and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. WHOIS data confirms domain legitimacy and consistency with business founding in 2022. Overall, the site is trustworthy and functional but could improve privacy compliance and security practices.

The website tamsalusport.ee is currently a parked domain page indicating that the domain is registered but not linked to any hosting service. It primarily serves as a placeholder to promote web hosting packages offered by Zone Media OÜ, the domain registrar and hosting provider. The site is multilingual, targeting Estonian, Russian, Finnish, and English speakers, and offers basic information about hosting plans including pricing and features. There is no active business content or contact information on the site, reflecting its placeholder status. From a technical perspective, the site uses standard HTML, CSS, and JavaScript with no advanced frameworks or CMS detected. The hosting provider is Zone Media OÜ, consistent with the WHOIS data. The site is mobile responsive and has basic SEO and accessibility features but lacks comprehensive metadata or structured data. Security headers are minimal, with only a Content-Security-Policy allowing unsafe-inline scripts, and DNSSEC is not enabled, which is a security gap. Security posture is limited due to the lack of HTTPS linkage on the domain, absence of security best practices, and no privacy or cookie policies. No forms or data collection mechanisms are present, reducing immediate privacy risks but also indicating no active user engagement. The WHOIS data shows a recent domain registration consistent with the placeholder nature of the site. There are no suspicious patterns or privacy protection used, and the registrant matches the hosting provider, supporting legitimacy. Overall, the site is low risk but also low value in terms of business credibility and privacy compliance. It is recommended to enable DNSSEC, implement HTTPS hosting, add privacy and cookie policies, and provide contact information to improve trust and compliance. Until the domain is linked to an active website, the site remains a basic parked domain page with limited content and security features.

T

Tapa Valla Spordikeskus

tapasport.ee

0

Tapa Valla Spordikeskus is a municipal sports center in Lääne-Virumaa, Estonia, offering diverse sports facilities including swimming pools, gyms, health trails, and event hosting. The website serves local residents and sports enthusiasts with information on training, events, and additional services such as accommodation and seminar rooms. The business operates under a government sector model, founded in 2020, and maintains a consistent and professional online presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted by Virtuaal.com OÜ, and optimized for mobile devices with good performance and accessibility. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are missing, representing compliance gaps. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

The website at v-maarja.eu is currently under construction, presenting only a frameset that redirects to a placeholder page. There is no meaningful content, metadata, or business information available on the site. The domain is registered through Zone Media OÜ, an Estonian registrar, but no further business details are provided. The lack of content and policies limits the ability to assess the business or its market position. Technically, the site lacks modern web features, security headers, and visible SSL configuration, indicating a low digital maturity level. Security posture is weak due to absence of HTTPS and security best practices, and no privacy or cookie policies are published, resulting in poor privacy compliance. Overall, the site presents a high risk due to minimal content and lack of transparency, requiring significant improvements before it can be considered trustworthy or compliant.

V

Virumaa Rannakalurite Ühing MTÜ

vrky.ee

0

Virumaa Rannakalurite Ühing MTÜ is a regional non-profit association established in 2007 in Estonia, serving fisheries sector stakeholders in Ida- and Lääne-Virumaa. The organization supports local fisheries businesses, non-profits, and municipalities through project coordination and information dissemination. The website reflects a focused regional presence with clear business objectives and a target audience within the local fisheries community. Technically, the site is built on WordPress with modern libraries such as jQuery, Swiper.js, and Google Fonts, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and technical maturity appropriate for a small non-profit organization.

V

Virumaa Koostöökogu

viko.ee

0

Virumaa Koostöökogu is a small Estonian non-profit organization focused on regional cooperation and rural development in the Virumaa area. Founded in 2006, it serves local municipalities and communities by managing projects, organizing events, and facilitating cooperation among stakeholders. The website reflects this mission with relevant content, event announcements, and organizational information. Technically, the site is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, with integration of Google Analytics and Facebook Pixel for tracking. The site is mobile-optimized and SEO-friendly but lacks some accessibility features. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms despite tracking scripts. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.