Security Directory

E

Elkdata OÜ

koerumuusikakool.ee

0

Koeru Muusikakool is a small, regionally focused music school based in Estonia, providing music education and cultural events primarily targeting students and the local community. The website is built on a modern WordPress platform using popular plugins such as WooCommerce and Tutor LMS, indicating a digital maturity suitable for educational content delivery and course management. The site features active social media integration and regularly updated news content, supporting engagement with its audience. Technically, the website is well-structured with responsive design and moderate performance, although accessibility and SEO optimizations are basic. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance security posture. The WHOIS data confirms the domain is legitimately registered to Elkdata OÜ since 2010, consistent with the business's operational history. Overall, the website presents a professional and trustworthy front for the music school but requires improvements in privacy compliance and security best practices to reduce risk and increase user confidence. Strategic enhancements in these areas will support sustainable growth and regulatory adherence.

J

Järva-Jaani Gümnaasium

jjaanikool.ee

0

Järva-Jaani Gümnaasium is a public secondary educational institution located in Estonia, providing comprehensive educational services and community engagement. The website serves as an information portal for students, parents, and staff, offering details on school life, teaching schedules, admissions, and extracurricular activities. The institution maintains a strong local presence with partnerships and certifications that enhance its educational offerings. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Swiper.js for interactive elements and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization and accessibility features, including adjustable font sizes and contrast settings, supporting inclusive access. From a security perspective, the site uses HTTPS and respects Do Not Track signals in analytics, but lacks advanced security headers and published security policies. The domain registration is consistent with the Estonian Ministry of Education, reinforcing legitimacy. No blocking or WAF interference was detected, allowing full content access. Overall, the website presents a professional and trustworthy digital presence for the school, with room for improvement in security policy transparency and enhanced security headers to further protect users and data.

Aktsiaselts Koeru Hooldekeskus is a regional healthcare and eldercare service provider based in Järva County, Estonia. The organization specializes in 24/7 general care, nursing assistance, special care for individuals with deep disabilities, and dementia care. The website reflects a medium-sized entity with a clear focus on providing comprehensive care services to elderly and special needs clients. The business maintains a consistent brand presence and provides clear contact information and service descriptions, positioning itself as a trusted local healthcare provider. Technically, the website is built on WordPress using a modern tech stack including LayerSlider, WPBakery Page Builder, and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks some security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website demonstrates a solid digital presence with good business credibility and technical implementation. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence.

E

Ettevõte

jarvakodu.ee

0

Järvakodu is a small healthcare business operating a newly renovated elderly care home in Järva-Jaani, Estonia. The facility offers 24/7 general care services with a focus on personalized attention, a supportive environment, and sustainable energy solutions such as solar panels and geothermal heating. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and frameworks, hosted by Elkdata OÜ, and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but no terms of service or incident response information is published. Overall, the site is trustworthy and well-maintained, supporting the business's credibility and customer engagement.

J

Järva Valla Noorsootöökeskus

jarvanoored.ee

0

Järva Valla Noorsootöökeskus is a local government youth work center in Estonia, focused on providing youth services, activities, and community engagement within the Järva municipality. The website serves as an informational portal for youth centers, events, hobby education, and youth council activities. The organization appears to be a small public sector entity founded recently in 2022, with a clear local community focus. Technically, the website is built on WordPress using Elementor and common plugins, hosted by Zone Media OÜ. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No analytics or advertising scripts are detected, indicating minimal user tracking. Security posture is basic with HTTPS enabled but no security headers detected and no visible privacy or cookie policies, indicating compliance gaps with GDPR. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The site links to multiple partner organizations and government-related domains, enhancing trust. Overall, the website is functional and serves its purpose as a local youth center portal but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

J

Järva Vallaraamatukogu

jarvaraamat.ee

0

Järva Vallaraamatukogu operates as a public library service for the Järva County region in Estonia, providing residents with access to books, cultural events, and library services including a mobile library bus. The website serves as an informational portal with news, events, and user resources, targeting local community members and library patrons. The business model is government-funded public service, with a clear focus on community engagement and education. Technically, the website is built on WordPress using the Avada theme and incorporates modern web technologies such as Slider Revolution and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not detected and no explicit security or incident response policies are published. Overall, the site is trustworthy and professionally maintained, reflecting its public institution status.

O

OÜ Oesel

huviregister.ee

0

Huviregister.ee is a specialized Estonian platform designed to manage hobby groups and their participants, primarily serving municipalities, hobby education providers, and parents. The service facilitates data collection, subsidy calculations, billing, and reporting related to hobby activities, supporting both public and private sector hobby schools. The platform is operated by OÜ Oesel, a small Estonian company founded in 2020. The website content is clear and relevant, though it lacks comprehensive legal and privacy documentation. Technically, the site uses a simple stack with HTML, CSS, and jQuery, hosted under a domain registered with Zone Media OÜ. Security posture is moderate but could be improved by enabling DNSSEC and adding security headers. No blocking or WAF mechanisms were detected, allowing full content access.

The website kriis.ee is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that requires human verification via Turnstile captcha. This security measure blocks access to the actual website content, preventing any meaningful analysis of business or security details. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate and established domain. However, the lack of accessible content, absence of privacy or cookie policies, and no visible contact or business information significantly limit the ability to assess the website's business model, technical maturity, or security posture. The technical infrastructure relies on Cloudflare services for security and performance, but no advanced security headers or configurations are evident in the provided data. Overall, the site appears to be protected by strong perimeter security but lacks visible transparency or user-facing information.

Z

Zone Media OÜ

visitjarva.ee

0

Visitjarva.ee is a regional tourism information website focused on Järvamaa (Järva County) in Estonia. It provides comprehensive information about local events, accommodation, cultural and historical sites, nature activities, food, wellness, and seminar facilities. The site targets tourists and visitors interested in exploring the region, offering curated content and links to social media channels for engagement. The business operates under Zone Media OÜ, with a domain established in 2016, indicating a stable presence in the regional tourism market. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Owl Carousel, LazySizes, and Lightbox for enhanced user experience. SEO is well addressed through Yoast SEO plugin and structured data (JSON-LD). The site is mobile optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, managed by Zone Media OÜ. From a security perspective, the site enforces HTTPS with excellent SSL configuration and includes a cookie consent banner, demonstrating basic privacy compliance. However, it lacks explicit privacy policy and terms of service pages, security headers, and a vulnerability disclosure mechanism. No incident response or security policy information is published, which could be improved to enhance trust and compliance. Overall, the website is a good quality regional tourism portal with solid business credibility and technical implementation. Strategic improvements in privacy documentation, security headers, and incident response transparency would elevate its security posture and compliance standing.

P

PÕLTSAMAA KODANIK MTÜ

poltsamaaraadio.ee

0

Põltsamaa Raadio is a small, community-driven seasonal radio station operated by local youth in the Põltsamaa region of Estonia. It broadcasts both online and on FM frequency 95.0 MHz, supported by project funding from the LEADER program to enhance broadcast reach. The website serves as a portal for live streaming, program schedules, and community engagement, targeting local listeners and supporters. The business model relies on volunteer efforts, donations, and local sponsorships. Technically, the site is built on WordPress with Elementor and several plugins for podcasting and streaming, hosted by Zone Media OÜ. The site is mobile responsive and uses modern web technologies, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy for its community media purpose but would benefit from improved privacy and security practices.

P

Põltsamaa Vallavara OÜ

visitpoltsamaa.com

0

Visit Põltsamaa is a regional tourism information website dedicated to promoting the Põltsamaa municipality in Estonia. The site provides comprehensive information about local attractions, accommodations, dining options, events, and cultural heritage, targeting tourists and visitors interested in exploring the region. The business operates as a small entity, likely under Põltsamaa Vallavara OÜ, with a focus on hospitality and government-supported tourism promotion. The website is multilingual, supporting Estonian, English, Finnish, and Russian, enhancing accessibility for diverse visitors. Technically, the website is built on WordPress CMS with common plugins such as Yoast SEO for search optimization and WPML for multilingual support. It uses jQuery and Google Analytics for user tracking and performance monitoring. The site demonstrates good mobile optimization and a professional design, though accessibility features are basic. Performance is moderate, with room for improvement in technical implementation such as enabling DNSSEC and adding security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and security headers like Content Security Policy or HSTS, which could enhance protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is provided but limited to an email and phone number in the footer. No incident response or vulnerability disclosure information is available. Overall, the website is a credible and functional regional tourism portal with good business credibility and technical foundation but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

R

Rakvere Spordikeskus

rakverespordikeskus.ee

0

Rakvere Spordikeskus is a well-established public sports center located in Rakvere, Estonia, founded in 2010. It serves as a key regional hub for sports facilities, events, and training programs targeting local residents, sports clubs, and event organizers. The website reflects a professional and community-focused organization with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although formal security policies and incident response information are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the site demonstrates a mature digital presence suitable for its public service role.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

0

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

R

Rakvere Raamatukogu

lvkrk.ee

0

Rakvere Raamatukogu is a regional public library in Estonia providing a range of library and community services including book lending, e-catalog access, home delivery for vulnerable populations, and educational events. The website is built on Joomla CMS and integrates common web technologies such as Bootstrap, jQuery, and FontAwesome. It uses HTTPS and includes Google Analytics and Tawk.to live chat for user engagement and analytics. The site is well-branded and consistent with its public service mission, targeting local residents and library users. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. WHOIS data confirms domain legitimacy and long-term registration consistent with the institution's history.

The domain ehr.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, which prevents direct content analysis. The WHOIS data indicates the domain is registered with Zone Media OÜ in Estonia since 2010, suggesting a mature and legitimate registration. However, no business, contact, or policy information is publicly accessible on the landing page. The website relies heavily on Cloudflare's security and performance infrastructure, but no further technical or business details can be extracted due to the blocking mechanism. This limits the ability to assess the company's market position, services, or compliance posture. Security posture cannot be fully evaluated, but the presence of Cloudflare indicates some level of protection.

T

Tamsalu Perearstid OÜ

tamsalutervisekeskus.ee

0

Tamsalu Perearstid OÜ operates the Tamsalu Tervisekeskus website, providing primary healthcare services in Tamsalu and Vajangu, Estonia. The company offers a range of medical services including vaccinations, paid therapies, dental care, and pharmacy services, targeting local residents. The website is professionally designed using WordPress with the Avada theme and integrates trusted Estonian healthcare portals and partners, reflecting a solid local market position as a small healthcare provider. Technical infrastructure is modern and includes SEO optimization and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. WHOIS data confirms domain legitimacy and consistency with business founding in 2022. Overall, the site is trustworthy and functional but could improve privacy compliance and security practices.

The website tamsalusport.ee is currently a parked domain page indicating that the domain is registered but not linked to any hosting service. It primarily serves as a placeholder to promote web hosting packages offered by Zone Media OÜ, the domain registrar and hosting provider. The site is multilingual, targeting Estonian, Russian, Finnish, and English speakers, and offers basic information about hosting plans including pricing and features. There is no active business content or contact information on the site, reflecting its placeholder status. From a technical perspective, the site uses standard HTML, CSS, and JavaScript with no advanced frameworks or CMS detected. The hosting provider is Zone Media OÜ, consistent with the WHOIS data. The site is mobile responsive and has basic SEO and accessibility features but lacks comprehensive metadata or structured data. Security headers are minimal, with only a Content-Security-Policy allowing unsafe-inline scripts, and DNSSEC is not enabled, which is a security gap. Security posture is limited due to the lack of HTTPS linkage on the domain, absence of security best practices, and no privacy or cookie policies. No forms or data collection mechanisms are present, reducing immediate privacy risks but also indicating no active user engagement. The WHOIS data shows a recent domain registration consistent with the placeholder nature of the site. There are no suspicious patterns or privacy protection used, and the registrant matches the hosting provider, supporting legitimacy. Overall, the site is low risk but also low value in terms of business credibility and privacy compliance. It is recommended to enable DNSSEC, implement HTTPS hosting, add privacy and cookie policies, and provide contact information to improve trust and compliance. Until the domain is linked to an active website, the site remains a basic parked domain page with limited content and security features.

T

Tapa Valla Spordikeskus

tapasport.ee

0

Tapa Valla Spordikeskus is a municipal sports center in Lääne-Virumaa, Estonia, offering diverse sports facilities including swimming pools, gyms, health trails, and event hosting. The website serves local residents and sports enthusiasts with information on training, events, and additional services such as accommodation and seminar rooms. The business operates under a government sector model, founded in 2020, and maintains a consistent and professional online presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted by Virtuaal.com OÜ, and optimized for mobile devices with good performance and accessibility. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are missing, representing compliance gaps. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

The website at v-maarja.eu is currently under construction, presenting only a frameset that redirects to a placeholder page. There is no meaningful content, metadata, or business information available on the site. The domain is registered through Zone Media OÜ, an Estonian registrar, but no further business details are provided. The lack of content and policies limits the ability to assess the business or its market position. Technically, the site lacks modern web features, security headers, and visible SSL configuration, indicating a low digital maturity level. Security posture is weak due to absence of HTTPS and security best practices, and no privacy or cookie policies are published, resulting in poor privacy compliance. Overall, the site presents a high risk due to minimal content and lack of transparency, requiring significant improvements before it can be considered trustworthy or compliant.

V

Virumaa Rannakalurite Ühing MTÜ

vrky.ee

0

Virumaa Rannakalurite Ühing MTÜ is a regional non-profit association established in 2007 in Estonia, serving fisheries sector stakeholders in Ida- and Lääne-Virumaa. The organization supports local fisheries businesses, non-profits, and municipalities through project coordination and information dissemination. The website reflects a focused regional presence with clear business objectives and a target audience within the local fisheries community. Technically, the site is built on WordPress with modern libraries such as jQuery, Swiper.js, and Google Fonts, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and technical maturity appropriate for a small non-profit organization.

V

Virumaa Koostöökogu

viko.ee

0

Virumaa Koostöökogu is a small Estonian non-profit organization focused on regional cooperation and rural development in the Virumaa area. Founded in 2006, it serves local municipalities and communities by managing projects, organizing events, and facilitating cooperation among stakeholders. The website reflects this mission with relevant content, event announcements, and organizational information. Technically, the site is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, with integration of Google Analytics and Facebook Pixel for tracking. The site is mobile-optimized and SEO-friendly but lacks some accessibility features. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms despite tracking scripts. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

MTÜ Partnerid is a small Estonian non-profit organization established in 2006, focusing on regional development and cooperation among local municipalities, NGOs, and entrepreneurs in Lääne-Virumaa. The website serves as an information hub for projects, events, and organizational details, targeting local communities and stakeholders. The digital infrastructure is based on WordPress with a moderate technical maturity, leveraging common plugins for SEO, statistics, and event management. The site is well-structured, mobile-optimized, and provides clear navigation and contact information. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with a cookie consent mechanism present but no privacy policy or terms of service published. Overall, the website is trustworthy and professional but would benefit from enhanced compliance documentation and security policies.

E

eHost OÜ

arenduskeskus.ee

0

Investor.ee is a small Estonian educational website focused on providing information and guidance about investing and financial growth. The site targets individuals and organizations interested in learning about investment strategies, risk management, and financial planning. The business operates primarily as an informational resource with content in Estonian, positioning itself as a niche player in the finance education sector. The website is built on WordPress using modern themes and plugins, with a moderate level of technical maturity and good mobile optimization. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security best practices such as security headers and explicit privacy policies are missing. Overall, the site demonstrates a moderate security posture with room for improvement in privacy compliance and security transparency.

L

Lääne-Viru Omavalitsuste Liit

virol.ee

0

Lääne-Viru Omavalitsuste Liit is a regional government association serving the municipalities of Lääne-Viru County, Estonia. The organization focuses on regional development, public health, safety, education, tourism, entrepreneurship, and cooperation among local governments. The website reflects a well-established entity with a domain registered since 2010, consistent with its government association status. The site targets local government officials, residents, and regional partners, providing information on programs, events, and strategic initiatives. Technically, the website is built on WordPress with modern plugins and technologies, including GDPR-compliant cookie consent and Google Analytics integration. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

The website elvl.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to any substantive content. The domain is registered to Elkdata OÜ, an Estonian company, since 2017, indicating a legitimate registration and consistent domain ownership. However, no business-related content, contact information, or compliance policies are accessible on the site. The technical infrastructure relies heavily on Cloudflare services for security and performance, but the lack of accessible content prevents a full assessment of the site's digital maturity or business model. Security posture cannot be evaluated beyond the presence of Cloudflare's WAF and challenge mechanisms.

The website id.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to actual site content. The domain is registered to Zone Media OÜ, an Estonian company, with a domain age of over a decade, indicating legitimacy. However, no business descriptions, contact information, or policy documents are accessible for analysis. The technical infrastructure relies on Cloudflare services for security and analytics, but the lack of DNSSEC and visible security headers limits the security posture assessment. Overall, the site appears to be a government or official digital identity service, but the current access restrictions prevent a full evaluation.

The website eesti.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks direct content access. This page serves as a security gate to verify visitors before allowing access to the actual site content. The domain is registered to Zone Media OÜ, an Estonian registrar, with a creation date in 2010, consistent with a mature government portal. However, no business or contact information, privacy policies, or terms of service are visible on the challenge page, limiting the ability to assess compliance and business details. The technical infrastructure relies on Cloudflare services for CDN and security, including the Turnstile captcha mechanism. The security posture is moderate given the use of HTTPS and Cloudflare protections, but lacks visible security headers and policies. Overall, the site cannot be fully analyzed due to access restrictions, resulting in a low AI score and limited insights.

The website lasteabi.ee is currently inaccessible due to a Cloudflare Turnstile security challenge page, preventing access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and established presence. However, no business, contact, or policy information is accessible for analysis. The technical infrastructure relies on Cloudflare services for security and performance, but the lack of accessible content limits the ability to assess digital maturity or business operations. Security posture cannot be fully evaluated beyond the presence of Cloudflare's WAF protection. Overall, the site is effectively blocked from analysis, resulting in a low AI score and limited insights.

The website livekluster.ehr.ee is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. This indicates a strong security posture at the perimeter, likely to protect sensitive electronic health record (EHR) data. However, due to the content being blocked, no business or contact information, privacy policies, or terms of service are visible, limiting the ability to assess the company's market position or services. The technical infrastructure leverages Cloudflare's security and performance services, but the lack of visible content and metadata results in poor content quality and SEO. Security best practices are partially implemented through WAF and bot mitigation, but no additional security headers or policies are observable. Overall, the site demonstrates a high-security perimeter but lacks transparency and compliance disclosures in the accessible content.

K

Kihnu Muuseum

kihnumuuseum.ee

0

Kihnu Muuseum is a small cultural heritage museum located in Estonia, dedicated to preserving and presenting the unique Kihnu heritage culture. The museum operates both physical exhibitions and virtual tours, offering educational workshops, group visits, event organization, and guided services. The website is built on WordPress using the OceanWP theme and Elementor page builder, hosted by Elkdata OÜ. It employs modern web technologies including jQuery and Font Awesome, and uses plausible.io for privacy-conscious analytics. The site is accessible, mobile-optimized, and professionally designed with clear navigation and relevant content for its target audience. Security posture is good with HTTPS enforced and no visible vulnerabilities, though it lacks security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the website is trustworthy and credible for its business purpose, though improvements in security headers and privacy compliance are recommended.

K

Kihnu Vallavalitsus

visitkihnu.ee

0

Visit Kihnu is a specialized tourism website promoting the Estonian island of Kihnu. It provides comprehensive information about local events, accommodations, transport options, cultural heritage, and services, targeting tourists interested in visiting the island. The website is operated by Kihnu Vallavalitsus, an official local government entity, which adds credibility and trustworthiness to the platform. The domain is registered since 2017 and aligns well with the business purpose and location. Technically, the website uses a modern JavaScript stack including jQuery, Leaflet.js for maps, Google Analytics, and Facebook Pixel for tracking. It employs Google reCAPTCHA for form security and uses HTTPS to secure communications. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site has a good SSL configuration and uses CSRF tokens in forms, but no security headers were detected in the provided data. There is no visible incident response or vulnerability disclosure information. Tracking and analytics are moderately extensive, but privacy compliance is weak due to missing policies and consent mechanisms. Overall, the website is a credible and functional tourism portal with good business credibility and technical implementation. To improve, it should address privacy compliance by publishing policies and implementing cookie consent, enhance security headers, and provide incident response contacts to strengthen trust and compliance.

C

404 Page not found | Canary

cms-dt.com

0

The website cms-dt.com currently serves a 404 error page indicating that the requested content is not available or has been moved. There is no visible business information, contact details, or privacy-related policies on the accessible page. The domain is relatively new, registered in April 2023 via Amazon Registrar, Inc., and uses the Laravel framework with common JavaScript libraries such as jQuery and Bootstrap. The technical infrastructure appears standard but lacks advanced security configurations such as DNSSEC and security headers. The absence of privacy policies, cookie consent mechanisms, and contact information indicates low compliance with privacy regulations and poor user trust signals. Overall, the site is in an early or incomplete state, limiting its business credibility and security posture.

Kihnu.ee is the official website of the Kihnu Municipality Government in Estonia, serving as a comprehensive portal for local governance, community services, cultural events, and public information. The site targets residents, visitors, and local businesses, providing timely news, event calendars, and access to municipal resources. The business model is that of a governmental public service provider with a clear focus on community engagement and transparency. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. It is hosted by Zone Media OÜ, an Estonian hosting provider, and employs HTTPS with a valid SSL certificate. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and basic accessibility features. From a security perspective, the site enforces HTTPS but lacks several security headers and uses an outdated version of jQuery, which could expose it to vulnerabilities. There is no visible cookie consent mechanism or published security policy, which are important for GDPR compliance. Contact information is clearly provided, but incident response and vulnerability disclosure details are absent. Overall, the website is trustworthy and professional, reflecting its governmental nature. However, improvements in security practices, privacy compliance, and technical modernization are recommended to enhance its security posture and user trust.

T

Tapa Vallavalitsus

tapa.ee

0

Tapa Vallavalitsus operates as the official municipal government portal for Tapa vald in Estonia, providing residents, businesses, and visitors with comprehensive information on local governance, social services, urban planning, cultural events, and community resources. The website is well-structured with clear navigation and a focus on public service delivery, targeting local citizens and stakeholders. The business model is that of a governmental public service entity, with a medium-sized operational scope typical for a municipality.

Rakvere Linnavalitsus operates as the local government authority for the city of Rakvere, Estonia, providing a wide range of municipal services including public administration, social welfare, urban planning, crisis management, and cultural and sports activities. The website serves residents, visitors, and local businesses with comprehensive information and e-services. The organization maintains a medium-sized municipal operation with a well-structured digital presence. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized and features clear navigation and professional design. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some modern security headers and incident response contacts. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and legitimate, reflecting a stable municipal entity with room for improvements in privacy and security practices.

The website haljala.ee is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, which blocks access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and longstanding registration. However, no business information, contact details, or privacy policies are visible on the accessible page, limiting the ability to assess the business or compliance posture. The technical infrastructure relies on Cloudflare services for security and performance, but no additional technologies or CMS platforms are detectable. Due to the content block, the security posture cannot be fully evaluated, though the presence of Cloudflare WAF indicates some level of protection. Overall, the site lacks visible trust indicators and business transparency in the accessible content.

Vormsi.ee is the official local government and community information portal for Vormsi island, Estonia. The website provides current news, event calendars, administrative information, and local services primarily targeting residents and visitors of Vormsi. It is positioned as a trusted source of local information with a focus on community engagement and tourism. The site is multilingual, supporting Estonian, English, and Swedish languages, enhancing accessibility for diverse audiences. The business model is informational and governmental, with no evident commercial transactions. The domain is well-established since 2010, reinforcing its credibility and local presence. Technically, the website is built on WordPress CMS using a modern tech stack including PHP, jQuery, and popular plugins such as Yoast SEO and WPML for multilingual support. The site uses Google Tag Manager for analytics and employs a responsive design optimized for mobile devices. Performance is moderate with good SEO practices implemented. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration, but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There is no evidence of a published privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. No security.txt or vulnerability disclosure information is present. The site does not appear to be behind a WAF or security challenge, and no critical vulnerabilities were detected in the provided content. Overall, Vormsi.ee is a credible and professionally maintained government website with good content quality and technical implementation. To enhance security posture and compliance, it should publish privacy and cookie policies, implement security headers, and provide clear contact information for incident response. These improvements will strengthen user trust and regulatory compliance.

The domain xn--jgeva-dua.ee is registered with Zone Media OÜ, an Estonian registrar, since 2017. The website is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to actual content. No business-related content, contact information, or policies are visible, indicating the site is either under protection or not publicly available. The technical infrastructure relies on Cloudflare for security and performance, but lacks DNSSEC and security headers, which are recommended for enhanced security. The SSL configuration is basic but present. Overall, the website's digital maturity is low due to the lack of accessible content and minimal technical optimizations.

Järva vald operates as a local government authority in Estonia, providing a wide range of public services including social welfare, education, cultural activities, infrastructure management, and environmental oversight. The website serves as a comprehensive portal for residents, businesses, and visitors, offering detailed information and access to municipal resources. The site is well-structured with clear navigation and extensive content primarily in Estonian, targeting local stakeholders. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Google Analytics, and Font Awesome. While the site is mobile-optimized and uses HTTPS, some technologies like jQuery 1.10.2 are outdated, which may introduce security risks. Performance is moderate, and SEO and accessibility are adequately addressed. From a security perspective, the website enforces HTTPS and includes some security best practices such as the use of security tokens in forms. However, it lacks several modern security headers and uses an outdated JavaScript library. Privacy compliance is partially met with a comprehensive privacy policy and data protection officer information, but no visible cookie consent mechanism is present. Incident response and security policies are not explicitly published. Overall, the website is trustworthy and professional, reflecting its governmental nature. The main risks relate to outdated libraries and incomplete privacy compliance. Strategic improvements in security headers, library updates, and privacy mechanisms would enhance the site's security posture and regulatory adherence.

N

Narva-Jõesuu Linnavalitsus

narva-joesuu.ee

0

Narva-Jõesuu Linnavalitsus operates as the local government authority for the city of Narva-Jõesuu in Estonia, providing essential municipal services, governance information, and community engagement through its official website. The site targets local residents, businesses, and visitors, offering news, event calendars, contact details, and public service forms. The business model is typical of a government entity, funded by public resources and focused on transparency and service delivery. Technically, the website is built on the Liferay CMS platform, utilizing technologies such as jQuery, Bootstrap, and Font Awesome. The infrastructure is stable and moderately performant, with good mobile optimization and basic accessibility features. The site is hosted under the domain registered by Zone Media OÜ, a known registrar and hosting provider, with a domain age consistent with a mature municipal website. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks several security headers and does not provide explicit privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are evident, indicating room for improvement in security governance. Overall, the website is professional and trustworthy, serving its governmental purpose effectively. The main risks relate to privacy compliance and security best practices, which should be addressed to enhance user trust and regulatory adherence.

K

Kohtla-Järve Linnavalitsus

kohtla-jarve.ee

0

Kohtla-Järve Linnavalitsus is the official municipal government of Kohtla-Järve city in Estonia, providing a comprehensive digital portal for residents, businesses, and visitors. The website offers extensive information on local governance, social and health services, urban planning, cultural activities, and e-services, positioning itself as a central hub for community engagement and public administration. The target audience primarily includes local citizens and stakeholders seeking municipal information and services. Technically, the website is built on the Liferay CMS platform, utilizing established web technologies such as jQuery, Bootstrap, and Font Awesome. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks visible advanced security headers and explicit security or incident response policies. The use of an outdated jQuery version may pose minor risks. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security maturity. Overall, the website is professional, trustworthy, and well-aligned with its governmental function. Strategic enhancements in security headers, incident response documentation, and modernization of libraries would strengthen its security posture and compliance standing.

Z

Zone Media OÜ

hiiumaa.ee

0

The website hiiumaa.ee serves as a comprehensive tourism information portal for Hiiumaa island in Estonia, providing visitors with details on events, accommodation, transport, and local attractions. It targets tourists and visitors interested in exploring the island, positioning itself as a regional tourism promotion platform. The business behind the domain is registered as Zone Media OÜ, an Estonian company, with the domain established in 2010, indicating a mature presence in the market. Technically, the site is built on WordPress 6.7.2 with a modern tech stack including Yoast SEO, Google Tag Manager, Facebook Pixel, and multilingual support via WPML. The site demonstrates good mobile optimization, accessibility, and SEO practices. Cookie consent mechanisms are implemented, reflecting awareness of privacy compliance requirements. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers such as Content-Security-Policy or X-Frame-Options. No exposed sensitive data or vulnerable libraries were detected in the HTML content. However, the absence of a published security policy or incident response contact limits transparency. Overall, the website presents a professional and trustworthy front for regional tourism promotion, with moderate tracking and advertising practices. The lack of explicit privacy and terms of service policies is a compliance gap. Strategic improvements in security headers, privacy documentation, and incident response transparency would enhance the site's security posture and user trust.

V

Viimsi vald

viimsivald.ee

0

Viimsi vald is the official municipal government entity for the Viimsi region in Estonia, providing a broad range of public services including planning, social welfare, education, culture, and infrastructure management. The website serves as a comprehensive portal for residents and stakeholders, offering news, event information, service guides, and contact details. It maintains a strong local government presence with clear communication channels and social media integration. Technically, the website is built on Drupal 9 CMS, leveraging modern JavaScript libraries and analytics tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Hosting and domain registration are consistent with a reputable Estonian registrar, Elkdata OÜ, supporting the site's legitimacy. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and some recommended security headers, which could be improved to strengthen its security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, Viimsi vald's website is a trustworthy, well-structured government portal with good content quality and technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance its robustness and user trust.

The website rae.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to the actual website content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and stable registration. However, no business information, contact details, or policies are visible on the landing page. The technical infrastructure relies heavily on Cloudflare services for security and performance, but no further technical or business details can be extracted due to the access block. The security posture cannot be fully assessed, but the presence of Cloudflare WAF indicates a baseline security measure. Overall, the site’s risk assessment is limited by the lack of accessible content, and strategic recommendations focus on enabling access for proper evaluation and improving transparency.

Maardu Linnavalitsus operates as the municipal government portal for the city of Maardu, Estonia, providing residents and visitors with information about city services, news, events, and contact details. The website serves as an essential communication channel for local government functions and citizen engagement. It targets local residents, visitors, and stakeholders seeking municipal information and services. The business model is that of a government entity offering public services and information dissemination.

The website kosevald.ee is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. The domain is registered since 2010 with a reputable Estonian registrar, indicating a stable domain history. However, no business, contact, or policy information is visible on the landing page, preventing a full assessment of the company's operations or compliance posture. The technical infrastructure relies heavily on Cloudflare's security and performance services, but no further technology stack or CMS details are available due to content blocking. Security posture cannot be fully evaluated, but the presence of Cloudflare WAF indicates some level of protection. Overall, the site scores low on content quality, privacy compliance, and business credibility due to lack of accessible information.

A

Anija vald

anija.ee

0

Anija.ee is the official website of Anija vald, a local government entity in Estonia. The site serves as a comprehensive portal for municipal information, including news, services, contacts, and community resources. It targets residents and stakeholders within the Anija vald municipality, providing essential public service information and facilitating communication between the government and its constituents. The website is well-structured with clear navigation and a consistent branding approach, reflecting its role as a trusted government resource. Technically, the website is built on WordPress CMS, utilizing modern plugins such as Max Mega Menu, Complianz GDPR Cookie Consent, and Carousel Block. It employs jQuery and FontAwesome for enhanced UI/UX. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. The presence of Google Tag Manager indicates usage of analytics and tracking, balanced with a GDPR-compliant cookie consent mechanism. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms a consistent and legitimate domain registration aligned with the website's governmental purpose. Overall, Anija.ee presents a secure, compliant, and professionally maintained digital presence for the Anija vald municipality. Strategic recommendations include enhancing security headers, adding explicit incident response contacts, and maintaining regular updates to CMS and plugins to sustain security and compliance.

E

Eesti Puuetega Inimeste Koda

epikoda.ee

0

Eesti Puuetega Inimeste Koda (EPIK) is a well-established Estonian non-profit organization founded in 2010, dedicated to improving the quality of life, social inclusion, and self-realization opportunities for people with disabilities and chronic illnesses. The organization operates primarily in Estonia and targets disabled individuals, their families, and professionals working in related fields. Their key services include advocacy, counseling, accessibility initiatives, publications, international cooperation, podcasts, and newsletters. The website reflects a professional and accessible digital presence with multi-language support and clear navigation.

The website sotsiaalkindlustusamet.ee appears to represent a government entity in Estonia, likely related to social security or social insurance services. However, the actual website content is inaccessible due to a Cloudflare Turnstile CAPTCHA challenge page, which blocks automated access and prevents content retrieval. This limits the ability to analyze the website's business description, policies, or contact information. The domain is well-established, created in 2010, and registered through a legitimate Estonian registrar, indicating a trustworthy origin. Technically, the website leverages Cloudflare's security and performance services, including Turnstile CAPTCHA and Cloudflare Insights for analytics. Due to the blocking, no detailed security headers or privacy compliance mechanisms are visible. The lack of visible privacy, cookie, or terms of service policies and absence of contact information on the landing page further limit the assessment. From a security perspective, the use of Cloudflare provides a strong protective layer, but the inability to access the actual content or policies restricts a full evaluation. No vulnerabilities or exposed sensitive data were detected, but this is due to lack of access rather than confirmed absence. Overall, the site demonstrates a basic security posture through WAF usage but lacks visible compliance documentation. The overall risk assessment is moderate due to the blocking mechanism preventing full analysis. Strategic recommendations include enabling access beyond the CAPTCHA for legitimate users and security analysts, publishing clear privacy and cookie policies, and providing accessible contact information to improve transparency and trust.

Copix is a modern digital printing company based in Estonia, offering a wide range of printing products and services such as labels, floor stickers, books, and interior decoration prints. The company targets businesses and individuals requiring quality printing solutions and operates an e-commerce platform for convenient ordering. The website is built on WordPress with modern technologies including Bootstrap, jQuery, and integrates multiple marketing and analytics tools such as Google Analytics and Facebook Pixel. Security posture is basic with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. The domain is newly registered in 2024, consistent with the business's apparent recent establishment. Contact information is comprehensive and transparent, enhancing business credibility.