Security Directory

K

Kalendersystem | Komplet bookingsystem til udlejning

kalendersystem.dk

0

Kalendersystem.dk is a Danish website offering a complete booking system tailored for rental services, including smart lock integration. The website is built on WordPress using the Divi theme and employs jQuery and Google Fonts for styling and interactivity. The technical infrastructure is standard for small to medium-sized businesses, with moderate performance and good mobile optimization. Security posture is basic, with HTTPS enabled but lacking DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from improved security and privacy practices to enhance trust and compliance.

E

Elfag

elfag.no

0

Elfag is a Norwegian electrical service provider targeting both private and business customers. The company offers a range of electrical services including smart home solutions, electrical safety checks, and electric vehicle charging installations. The website positions Elfag as a trusted local electrician chain with a 5-year warranty and partnerships with reputable Norwegian companies such as Lampehuset and Huseiernes landsforbund. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO and Google Analytics. The site is well-structured, mobile-optimized, and uses HTTPS with a valid SSL certificate, indicating a good security baseline. However, explicit security headers and detailed security policies are not present. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, though more comprehensive GDPR documentation could improve compliance. Overall, the website demonstrates a professional and trustworthy online presence with moderate technical sophistication and a solid security posture.

Positus.global is a minimally developed website with very limited content, presenting only the brand name 'Positus' on a blank page. The domain is registered through GoDaddy with privacy protection via Domains By Proxy, and hosted on DigitalOcean. There is no visible business description, contact information, or user engagement features, indicating an early-stage or placeholder site. The technical infrastructure is basic, relying on standard web fonts and minimal styling, with no advanced frameworks or CMS detected. Security posture is weak due to lack of DNSSEC, security headers, and privacy policies, though the domain registration and hosting providers are reputable. Overall, the site lacks transparency and professionalism, resulting in a low trust and compliance rating.

The website dooki.com.br is currently inaccessible due to a Cloudflare 520 error indicating an unknown issue between Cloudflare and the origin web server. This prevents any meaningful content from being displayed or analyzed. The site lacks any visible privacy, cookie, or terms of service policies, and no contact or business information is available. The technical infrastructure relies on Cloudflare for DNS and CDN services, but the origin server is not responding correctly. Security posture is weak due to the error and absence of security headers or policies. Overall, the site is not functional and scores very low on content quality, technical implementation, security, privacy compliance, and business credibility.

The website yampi.io is currently inaccessible due to a Cloudflare origin DNS error (error 1016), indicating that the origin server is unreachable or DNS settings are misconfigured. As a result, no business content, metadata, or contact information is available for analysis. The domain is registered through Gandi SAS with a creation date in 2019 and a registrant country of Brazil, but lacks publicly available registrant organization details. The site uses Cloudflare services for DNS and security, but the misconfiguration prevents content delivery. No privacy, cookie, or terms of service policies are present, and no forms or contact details are found on the page.

The website riigiteataja.ee serves as the official portal for Estonian legal publications, operated under the domain registered to Elkdata OÜ since 2010. It targets Estonian citizens, legal professionals, and government officials by providing access to legislation and legal documents. The business model is a government service focused on transparency and legal information dissemination. Technically, the site employs Cloudflare services including a Turnstile CAPTCHA for bot mitigation, indicating a focus on security and performance. However, the actual website content is currently inaccessible due to the Cloudflare security challenge, preventing a full analysis of content quality, user experience, and compliance features. Security posture benefits from Cloudflare's protection but lacks visible security headers and policies. Overall, the domain registration is consistent and legitimate, but the lack of accessible content and policies limits the assessment and lowers the AI score.

L

LocalProber

localprober.com

0

The website www.localprober.com presents an extremely minimal digital presence, consisting solely of a single image hosted externally and a basic HTML structure with no textual content or metadata beyond a title. The absence of any contact information, privacy policies, or business descriptions severely limits the ability to understand the business purpose or market positioning. Technically, the site lacks modern web technologies, security headers, and any visible analytics or tracking mechanisms, indicating a very low level of digital maturity. The WHOIS data query returned no registration information, suggesting the domain is either unregistered, deleted, or otherwise not properly maintained, which raises significant legitimacy concerns. Security posture is poor due to lack of HTTPS and absence of security best practices. Overall, the site poses a high risk from a trust and compliance perspective and requires substantial improvements to meet basic standards.

CAACI Iberoamérica is a regional international organization specializing in audiovisual and cinematographic matters across Ibero-America. It serves as a collaborative platform for audiovisual authorities and stakeholders in 21 member countries, promoting cooperation, regulatory frameworks, and cultural exchange. The website reflects a professional presence with good content quality and consistent branding, targeting industry professionals and governmental bodies. Technically, the site is built on WordPress with common plugins and frameworks, hosted on SiteGround, and shows moderate performance with good mobile optimization. Security posture is adequate with HTTPS and domain protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Contact is available via a web form but lacks direct email or phone contacts. Overall, the site is trustworthy and credible within its niche, though improvements in security and privacy documentation are recommended.

V

Valio Eesti AS

karjaarvalios.ee

0

Valio Eesti AS operates as a significant player in the Estonian dairy manufacturing sector, providing fresh dairy products and employment opportunities. The website serves as a career portal inviting potential employees to join their team, emphasizing training, fair pay, and a safe work environment. The company is part of the international Valio group, known for its innovative and sustainable food solutions. Technically, the website is built on WordPress with Elementor, offering a modern and responsive user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security policies to meet compliance standards.

О

ООО «Мега Сервис»

mega-service.org

0

ООО «Мега Сервис» is a Russian service provider specializing in maintenance, repair, and recycling of digital satellite, cable, and terrestrial receivers. The company operates a large network of over 300 authorized service centers across Russia and owns facilities for electronic waste processing in Tula and Gusev. Their business model focuses on providing professional servicing and environmentally compliant recycling solutions, targeting both end-users and partner organizations. The website content is well-structured, professionally designed, and consistent with the company's market position as a medium-sized technology service provider founded in 2009. Technically, the website employs standard web technologies including HTML5, CSS3, and jQuery libraries. It is hosted under a reputable Russian registrar with HTTPS enabled, though it lacks advanced security headers and DNSSEC. The site performs moderately well with good mobile optimization but basic accessibility and SEO features. No major technical debt or outdated technologies were detected. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers that could mitigate common web threats. There is no visible privacy or cookie policy, nor incident response contacts, which indicates compliance gaps especially regarding GDPR or similar regulations. No forms or user data collection mechanisms were found on the main page, reducing immediate data exposure risks but also limiting user engagement features. Overall, the website presents a moderate risk profile with good business credibility but needs improvements in privacy compliance and security best practices. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact information for security incidents to enhance trust and regulatory compliance.

Т

Технополис GS

technopolis.gs

0

Technopolis GS is a leading private innovation cluster in Russia specializing in the radio-electronics manufacturing sector. Established in 2012, it supports multiple subsidiary companies and offers a comprehensive ecosystem including production facilities, residential areas, and infrastructure services. The website reflects a mature digital presence with a professional design and clear navigation, targeting industry professionals, investors, and partners within the Russian technology sector. Technopolis GS leverages modern web technologies including Bitrix CMS and integrates analytics tools such as Google Analytics and Yandex Metrika to monitor user engagement. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced DNS security and published security policies. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the site demonstrates a solid business credibility and technical foundation but requires improvements in privacy and security transparency.

G

GS Venture

venture.gs

0

GS Venture is a corporate investment fund operating under the GS Group industrial holding, focusing on investments ranging from 1 to 5 billion rubles in established businesses primarily in manufacturing, agriculture, chemical, and medical equipment sectors. The fund targets entrepreneurs seeking capital for scaling and development, offering equity participation or full acquisition. The website is professionally designed, content-rich, and provides clear contact channels including a secured contact form with CAPTCHA. Technically, the site is built on Bitrix CMS with common JavaScript libraries and integrates Google Analytics and Yandex Metrika for user tracking. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks advanced security headers and uses an outdated jQuery version. Privacy compliance is partial, with a privacy consent document available but no cookie consent mechanism. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the site presents a credible and professional front for the investment fund with room for security and privacy improvements.

S

Sisustuskoda OÜ

sisuko.ee

0

Sisustuskoda OÜ is a small Estonian company specializing in custom furniture manufacturing, particularly kitchen furniture. Established in 2014, it serves local consumers seeking high-quality, tailor-made interior solutions. The website reflects a niche retail business model with a focus on craftsmanship and design. The company maintains an active online presence with social media integration and a WooCommerce-based e-commerce platform. Technically, the website is built on WordPress using Elementor and Astra theme, leveraging modern web technologies and Google services such as reCAPTCHA and Tag Manager. Security posture is adequate with HTTPS enabled and basic protections, but lacks explicit security headers and formal privacy or cookie policies. Overall, the site is professional and functional, though privacy compliance and security best practices could be enhanced to improve trust and regulatory adherence.

C

Connected Health

connectedhealth.ee

0

Connected Health is a small Estonian organization acting as a cluster and ecosystem connector for health innovation, focusing on IT and biotech companies, startups, and R&D partners. The website serves as a platform to showcase members, success stories, projects, and news related to Estonian health technology. Technically, the site is built on WordPress with modern plugins like Yoast SEO and uses Google Analytics and Google Maps API for analytics and mapping. The site is mobile optimized and has good SEO metadata and structured data, indicating a mature digital presence. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Business credibility is supported by consistent branding, partner association with Tehnopol, and EU funding logos. Overall, the site is professional and trustworthy but could improve privacy and security transparency.

Eesti Arst is a well-established Estonian medical journal operated by Celsius Healthcare OÜ, providing professional healthcare news, research, and clinical guidelines primarily for medical professionals in Estonia. The website is built on WordPress and integrates common analytics and marketing tools such as Google Analytics and Facebook Pixel. The technical infrastructure is solid with HTTPS and a mature domain, but lacks some compliance elements such as privacy and cookie policies. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the site presents a professional and trustworthy front for its target audience.

Bole is a small manufacturing company specializing in innovative flooring products that follow the natural growth of trees, positioning itself as a sustainable and design-focused brand. The website is built on WordPress and incorporates modern web technologies including jQuery, Select2, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The site features a catalog download form with user consent mechanisms, indicating attention to privacy compliance. Security posture is adequate with HTTPS enabled and basic form validation, but lacks explicit security headers and detailed security policies. The domain WHOIS data is privacy protected, which is common for small businesses, and no suspicious indicators were found. Overall, the website presents a professional and trustworthy front for a niche manufacturing business.

T

Topfinanses

topfinanses.lv

0

Topfinanses.lv is a Latvian online platform specializing in loan comparison and facilitation services, primarily focusing on quick loans, consumer loans, auto loans, and credit lines. The website aggregates loan offers from multiple Latvian financial institutions, providing users with detailed information and direct links to apply for loans. The platform targets Latvian consumers seeking fast and convenient credit solutions, positioning itself as a trusted intermediary in the Latvian finance market. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, FontAwesome, and Google Fonts, and integrates analytics tools like Google Analytics and Yandex Metrika. The site enforces HTTPS and includes affiliate marketing links to loan providers. However, it lacks explicit privacy, cookie, and terms of service policies, and does not provide direct contact information or security incident channels, which are critical for compliance and trust. Security posture is moderate with HTTPS enforced but missing security headers and formal policies. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices.

R

roi.lv

roi.lv

0

The website roi.lv appears to be a Latvian regional site likely related to financial or investment services, as inferred from domain and linked partner sites. The site uses modern web technologies such as Angular and includes cookie consent mechanisms via CookieHub, indicating some level of compliance with privacy regulations. However, the site lacks visible privacy policies, terms of service, and contact information, which limits transparency and user trust. The presence of multiple tracking and advertising scripts such as Google Analytics, Google Ads, Facebook Pixel, and LinkedIn Insight suggests a moderate level of user tracking and marketing activity. Technically, the site is moderately optimized but lacks explicit security headers and detailed security policies. WHOIS data shows the domain is active with consistent name servers and no privacy protection, supporting legitimacy but with limited registrant details. Overall, the site scores moderately on content quality, technical implementation, security posture, privacy compliance, and business credibility.

F

FiRO Yrityslahjat Oy

firo.fi

0

FiRO Yrityslahjat Oy is a Finnish-based company specializing in corporate gifts, promotional products, and branded clothing tailored to business clients. The company positions itself as a provider of quality branded products, targeting businesses seeking to enhance their brand visibility through customized merchandise. The website is professionally designed using modern web technologies such as Angular and integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting and domain registration are managed by Zone Media LLC with DNSSEC enabled, indicating a secure domain setup. However, the domain is relatively new, created in mid-2024, aligning with the company's recent market entry. Security posture is generally good with HTTPS enforced, but the absence of security headers and privacy policies indicates room for improvement. Overall, the website is accessible, functional, and presents clear contact information, though privacy compliance needs enhancement.

E

eHost OÜ

hoius.ee

0

Hoius.ee is a newly launched Estonian informational website focused on educating visitors about financial deposits and savings products. The site provides content in Estonian language explaining what deposits are, their types, and their benefits. The business model appears to be an informational platform targeting individuals interested in saving money securely. The website is built on WordPress and hosted by eHost OÜ, a known Estonian hosting provider. The technical infrastructure is standard for small informational sites, using PHP 7.4 and common SEO plugins. The site is mobile optimized and has a moderate performance profile. Security posture is basic with HTTPS enabled but lacks security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. No contact or incident response information is provided, which limits trust and compliance. Overall, the site is functional and professional but requires improvements in privacy, security, and contact transparency to enhance credibility and compliance.

The website laen.eu operates as a loan information and comparison portal primarily targeting Estonian consumers seeking various loan products such as quick loans, small loans, and secured loans. It provides detailed loan comparisons, affiliate links to loan providers, and educational content about loan types and borrowing in Estonia. The site leverages WordPress CMS with plugins for loan comparison, table of contents, and Google services for analytics and CAPTCHA protection. The technical infrastructure is modern and supports mobile responsiveness with moderate performance. Security posture is good with HTTPS enforced and use of Google reCAPTCHA, though it lacks explicit security headers and formal privacy or cookie policies. Contact information is limited to a contact form without direct emails or phone numbers, which may impact user trust. Overall, the site is functional, professional, and serves its niche well but would benefit from enhanced privacy compliance and security best practices.

P

PremierCert+

premiercert.org

0

PremierCert+ operates as a specialized certification management platform requiring user authentication to access services. The website serves primarily as a login portal with minimal public-facing content, indicating a focus on registered users such as professionals or organizations involved in certification processes. The platform is powered by Isopyre technology and leverages ASP.NET Web Forms with DevExpress controls, reflecting a traditional Microsoft web technology stack. Client-side SHA256 hashing is implemented for password security, demonstrating some attention to protecting user credentials. Technically, the site uses a mature but somewhat dated technology stack with jQuery and ASP.NET AJAX. Performance and mobile optimization are basic, with no advanced SEO or accessibility features detected. Security posture shows moderate implementation with session timeout warnings and client-side hashing; however, the absence of security headers and anti-CSRF tokens indicates room for improvement. The lack of HTTPS verification and missing WHOIS data further reduce trustworthiness. Overall, the website is functional for its intended purpose but lacks comprehensive privacy, security, and business transparency features. The missing WHOIS data and absence of contact or policy pages limit the ability to fully verify legitimacy and compliance. Strategic improvements in security headers, privacy policies, and domain registration transparency are recommended to enhance trust and compliance.

Kanso.ee is a small Estonian business specializing in custom web development, UX, and UI design services. The website presents a clear but minimalistic business description focused on tailored web solutions and consultation. The company appears to be established since 2016, with a consistent domain registration and hosting provider. The technical infrastructure is basic, relying on jQuery 3.1.1 and Google Fonts, with no detected CMS or advanced frameworks. Mobile optimization and accessibility are present but minimal. Security posture is moderate but lacks critical elements such as security headers and visible HTTPS confirmation. Privacy and cookie policies are absent, which impacts compliance and trust. Overall, the site is functional but could benefit from enhanced security and privacy measures.

N

Nordic Science Investments Oy

nordscience.fi

0

Nordic Science Investments Oy is a Finnish venture capital firm specializing in transforming scientific research into successful startups, focusing on deeptech, healthtech, and life sciences sectors within the Nordic region. The company acts as an anchor investor and incubator, supporting university spinouts and early-stage innovations. The website reflects a professional and consistent brand image with clear messaging targeting founders and investors in science-based startups. Technically, the site is built on WordPress with Elementor, uses modern web technologies, and includes Google Analytics for tracking. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers could enhance protection. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the domain registration data aligns well with the business identity, indicating legitimacy and trustworthiness.

E

Energex OÜ

energex.ee

0

Energex OÜ is an Estonian consulting company specializing in energy audits, digitalization, sustainability, and funding support services. Established in 2015, the company serves over 250 organizations across private and public sectors, positioning itself as a trusted partner in the energy sector. Their key offerings include energy and resource audits, green audits, digitalization roadmaps, funding application assistance, procurement management, and ESG analyses. The website reflects a professional and consistent brand image with comprehensive service descriptions and client trust indicators such as certifications and client logos. Technically, the website is built on WordPress with performance optimizations via WP Rocket and integrates Google Analytics and Tag Manager for analytics. Cookie consent is managed through CookieYes, ensuring compliance with privacy regulations. The site is mobile-optimized, fast-loading, and SEO-friendly, demonstrating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs some security headers, though there is room for improvement in publishing explicit security policies and incident response information. No critical vulnerabilities or blocking mechanisms were detected, indicating a solid security posture. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, Energex presents a credible, professional, and trustworthy online presence with strong business credibility and good technical implementation. Strategic recommendations include enhancing security transparency and formalizing vulnerability disclosure mechanisms to further strengthen trust and compliance.

B

Baltic Innovation Agency

bia.ee

0

Baltic Innovation Agency is a small Estonian innovation management company established in 2010, focused on connecting ideas, people, and funding to foster innovation in the Baltic region. Their key services include innovation consulting, analysis, management, and funding support, targeting startups, clusters, smart cities, and green deal initiatives. The website is built on WordPress with modern plugins and SEO tools, showing good digital maturity and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal privacy/cookie policies, indicating room for compliance improvement. Overall, the site is professional and trustworthy, with clear contact information and partner affiliations, but should enhance privacy compliance and security transparency to reduce risk.

V

Valencia Innovation Capital

valenciainnovationcapital.com

0

Valencia Innovation Capital is a municipal platform launched by the Innovation Department of the Valencia City Council to foster a dynamic, diverse, and creative city ecosystem. It aims to unite all stakeholders in Valencia's innovation and technological entrepreneurship ecosystem to collaboratively drive political and economic transformation towards a sustainable and technologically advanced future. The website is built on WordPress using modern plugins and frameworks, featuring multilingual support and active event programming. Security posture is solid with HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though DNSSEC is not enabled and security headers are not evident. The domain is newly registered in 2024, consistent with the initiative's launch. Overall, the site demonstrates good technical maturity, privacy compliance, and business credibility.

H

Health Founders

healthfounders.ee

0

Health Founders is a specialized health technology accelerator based in Estonia, focused on supporting and accelerating healthtech startups through a dedicated program, expert mentoring, and access to a global investor network. The organization positions itself as the first vertical healthtech accelerator in the Baltics, leveraging Estonia's advanced digital health ecosystem. The website reflects a professional and consistent brand image with clear information about its services, partners, and mentors. Technically, the site is built on WordPress with modern plugins and integrates analytics tools such as Google Analytics and Plausible. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks published security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is credible and well-positioned but should improve compliance and security transparency.

T

Thinking in Billions – 21 May 2025

thinkinginbillions.eu

0

Thinking in Billions is a specialized event focused on fostering innovation through government-led regulatory sandboxes and legal experimentation frameworks. The event is closely tied to Estonian government entities and Latitude59, positioning it as a niche but credible platform for collaboration between public and private sectors in technology and defense innovation. The website is built on a modern WordPress platform using Elementor, with integration of Google Analytics and Tag Manager for tracking. While the site is professionally designed and mobile-optimized, it lacks critical privacy and cookie policies, which impacts compliance and user trust. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but security headers and incident response information are missing. Overall, the site is legitimate and consistent with its stated purpose but would benefit from enhanced privacy compliance and security transparency.

K

Kodulehe tegemine OÜ

disain.ee

0

Kodulehe tegemine OÜ operates a professional web design and development studio based in Estonia, specializing in website creation, e-commerce solutions, SEO optimization, and graphic design services. The company targets businesses and organizations primarily in Europe and the USA, offering a comprehensive suite of digital services including website maintenance, analysis, and branding. Their market position is that of a trusted, experienced small business with nearly two decades of industry presence and a strong portfolio of satisfied clients. Technically, the website is built on WordPress with modern frameworks like Uikit, integrates Google services such as reCAPTCHA and Tag Manager, and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS and CAPTCHA usage, but lacks advanced security headers and explicit privacy and cookie policies, indicating room for compliance and security improvements. Overall, the site is accessible without WAF or blocking, and the domain registration is consistent and legitimate. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and providing explicit contact information to improve trust and compliance.

The website represents the Estonian Association of Architectural and Consulting Engineering Companies (EKEL), a professional industry association founded in 2015. It serves as a platform for member representation, training, news dissemination, and advocacy within the Estonian construction and architectural consulting sector. The site targets industry professionals and stakeholders in Estonia and Europe, positioning itself as a key national association with European affiliations such as EFCA. The business model is focused on membership services and sector development rather than commercial sales. Technically, the website is built on Joomla CMS using Bootstrap and jQuery, with Google Analytics and Google Tag Manager integrated for visitor tracking. The site is mobile responsive and has a moderate performance profile. However, it lacks advanced accessibility features and comprehensive SEO optimizations. The hosting is provided by Zone Media OÜ, a known Estonian registrar and hosting provider. From a security perspective, the site uses HTTPS (implied by WHOIS domain status and no HTTP-only indications) but lacks visible security headers and does not provide privacy or cookie policies, nor a cookie consent mechanism. No contact information or incident response channels are visible, which limits transparency and user trust. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and functional but requires improvements in privacy compliance, security headers, and transparency of contact information to enhance trust and regulatory adherence. Strategic recommendations include publishing privacy and cookie policies, implementing consent mechanisms, adding security headers, and providing clear contact details for security incidents.

W

Workflows OÜ

workflows.ee

0

Workflows OÜ, operating under the ADM Workflows brand, is a medium-sized Estonian technology company specializing in the sales, implementation, and hosting of Atlassian products. They provide comprehensive services including consultation, license sales, cloud hosting, and user support, targeting businesses seeking to optimize their project management and IT workflows. The company holds recognized certifications such as Atlassian Gold Solution Partner and AWS hosting capabilities, positioning them strongly in the Atlassian ecosystem. Technically, the website is built on WordPress with modern SEO and analytics tools like Yoast SEO and Google Analytics. The site is mobile-optimized with good navigation and content quality, although some accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and published security policies. From a security and compliance perspective, the site does not display privacy or cookie policies, nor incident response or security policy documentation, which are areas for improvement. Contact information is clearly provided, enhancing business credibility. The WHOIS data aligns well with the website content, confirming legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency to improve user trust and regulatory adherence.

S

Sinulaen

sinulaen.ee

0

Sinulaen.ee is an Estonian loan comparison portal providing consumers with independent and up-to-date information on various loan products including quick loans, small loans, auto loans, and refinancing options. The website serves as a platform to compare loan offers from multiple providers, facilitating informed financial decisions for its users. The business operates primarily in the Estonian market and targets individuals seeking consumer loans with a user-friendly online experience. Technically, the site is built on WordPress with common plugins for SEO, multilingual support, and loan comparison functionalities. It integrates multiple third-party analytics and advertising services, including Google Analytics, Yandex Metrika, and Google Adsense, and uses affiliate links to monetize loan referrals. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are missing. Overall, the site is professional, content-rich, and trustworthy, with room for improvement in security best practices and privacy policy comprehensiveness.

K

Kopi Kenangan

kopikenangan.com

0

Kopi Kenangan is a prominent and fast-growing grab-and-go coffee chain based in Indonesia, founded in 2017. The company focuses on delivering high-quality coffee products using fresh local ingredients, supported by a mobile app that facilitates ordering and loyalty programs. The brand has received notable recognition including Halal certification and a World Branding Award, reinforcing its market position in the Indonesian retail coffee sector. Technically, the website is built on Squarespace, leveraging modern web technologies and integrates analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is generally good with HTTPS enforced and domain locking, though improvements like enabling DNSSEC and HSTS are recommended. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website presents a professional and trustworthy image but should enhance privacy and security disclosures to align with best practices.

A

AVAR VISUALS OÜ

avar.ee

0

AVAR VISUALS OÜ operates the website avar.ee, providing specialized services in virtual tours, 3D visualizations, and virtual reality solutions primarily targeting businesses in real estate, hospitality, education, and event management sectors. The company has a solid market presence with over 300 projects completed and more than 4 years of experience, positioning itself as a trusted niche service provider in Estonia. The website showcases a professional design with clear navigation, multimedia content including embedded Matterport virtual tours, and client testimonials enhancing credibility. Technically, the website is built on WordPress 6.8.1 with Bootstrap 4.3.1 and jQuery 3.7.1, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and Mouseflow. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, with the domain registered since 2012 by Zone Media OÜ. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling but lacks important security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms, which poses a compliance risk under GDPR. Overall, the website is professional and trustworthy with strong business credibility and technical implementation but requires improvements in privacy compliance and security policy transparency to enhance its security posture and regulatory adherence.

V

Visionest Institute

visionest.institute

0

Visionest Institute is an Estonian education and training organization formed by the merger of Marketingi Instituut, Invicta, and Director. It offers a variety of training courses and development programs targeting both businesses and individual learners, positioning itself as a reputable provider in the Estonian market. The website is professionally designed, mobile-optimized, and uses modern marketing and analytics tools such as HubSpot, Google Tag Manager, and Facebook Pixel to engage and track visitors. The technical infrastructure is based on WordPress with WooCommerce, supported by performance optimization via WP Rocket. Security posture is solid with HTTPS enabled and domain transfer protection, though some security headers and DNSSEC are missing. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy in Estonian. No explicit security policy or incident response contacts were found, indicating room for improvement in transparency. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

V

vDesignly

vdisain.ee

0

vDesignly operates as a small Estonian web design and development company, focusing on creating custom digital solutions to elevate web standards. The company leverages WordPress as its CMS platform, enhanced by popular plugins such as Yoast SEO and Google Tag Manager for SEO and analytics. The website demonstrates a good level of technical maturity with HTTPS enabled and reCAPTCHA implemented to secure forms. However, the absence of explicit privacy and cookie policies, as well as contact information, indicates gaps in privacy compliance and user trust facilitation. Security posture is generally sound but could be improved by adding security headers and formal incident response contacts. Overall, the site is professional and functional but would benefit from enhanced transparency and compliance documentation.

The UNESCO Chair in Community-Based Research and Social Responsibility in Higher Education is a collaborative academic initiative established in 2012 between the University of Victoria, Canada, and PRIA, New Delhi, India. The organization focuses on community-based research, training, policy advocacy, and socially responsible higher education. It serves a global academic and practitioner audience with a strong emphasis on social responsibility and community engagement. The website reflects a well-structured, content-rich platform that highlights ongoing projects, events, and knowledge resources. Technically, the website employs modern web technologies including jQuery, Flickity carousel, and FontAwesome icons, hosted on GoDaddy infrastructure. The site is mobile responsive and provides a good user experience with clear navigation. However, some security best practices such as DNSSEC and security headers are missing, and there is no cookie consent mechanism, which impacts privacy compliance. From a security perspective, the site uses HTTPS but lacks advanced security headers and explicit incident response or security policies. The domain registration is privacy protected but consistent with the organization's history and purpose, indicating legitimacy. Contact information is clearly provided, including emails, phone numbers, and physical addresses in India and Canada, enhancing trustworthiness. Overall, the website is professional and credible but could improve its privacy compliance and security posture by implementing cookie consent, security headers, and publishing explicit privacy and security policies.

The Martha Farrell Foundation is a small non-profit organization based in India, dedicated to promoting gender justice and creating safe, equitable learning and working environments. Founded in 2016, it carries forward the legacy of Dr. Martha Farrell, focusing on empowering women, adolescents, and formal and informal workers through various programs, scholarships, and awards. The foundation maintains a professional online presence with clear contact information and active social media engagement. Technically, the website employs a moderate technology stack including jQuery, Owl Carousel, and Google Analytics, with good mobile optimization and a valid SSL certificate ensuring secure communications. However, there is room for improvement in accessibility and SEO optimization. The site lacks advanced security headers and a cookie consent mechanism, which are important for compliance and security hardening. From a security perspective, the site benefits from HTTPS and secure form handling but does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration insights, but the website content and contact details support legitimacy. Overall, the site presents a trustworthy and professional image with moderate technical maturity. Strategically, the foundation should enhance privacy compliance by implementing cookie consent and publishing security policies. Strengthening security headers and regularly auditing third-party scripts will improve security posture. These steps will bolster trust and compliance, supporting the foundation's mission and stakeholder confidence.

S

Superhands OÜ

superhands.ee

0

Superhands OÜ is a small Estonian technology company specializing in smart industrial and city solutions using Internet of Things (IoT) technology. Their offerings include IoT devices, product and software development, system integration, analytics, and consulting services. The company has a niche market position supported by partnerships and client testimonials, including a notable collaboration with Elisa. The website is built on WordPress with a modern tech stack and includes multilingual support and SEO optimization. Security posture is adequate with HTTPS and secure form handling, but lacks explicit security headers and privacy compliance documentation. Overall, the website is professional and trustworthy, though improvements in privacy and security transparency are recommended.

N

Nordic Aviation Group

xfly.ee

0

Nordic Aviation Group is a medium-sized airline organization based in Estonia, operating multiple airline brands including Nordica and Xfly. The company provides aviation services primarily in the transportation sector, targeting airline passengers and industry stakeholders. The website content focuses on a recent bankruptcy filing, indicating significant financial distress. The company maintains a professional online presence with consistent branding and structured data, but lacks some privacy and security policy disclosures. Technically, the website is built on WordPress with modern technologies such as Bootstrap and Google Tag Manager. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but could be improved with additional security headers and incident response information. Overall, the website is trustworthy and professionally maintained, but the lack of cookie consent and explicit privacy compliance mechanisms represents a compliance gap. The absence of contact emails and phone numbers on the analyzed page limits direct communication channels. Strategic improvements in privacy compliance and security transparency are recommended to enhance trust and regulatory adherence.

N

Nordic Aviation Group

nagroup.ee

0

Nordic Aviation Group is a regional airline group based in Estonia, operating under brands such as Nordica and Xfly. The company provides passenger air transport services primarily in the Nordic and Baltic regions. The website presents official press releases and corporate information targeting passengers, industry stakeholders, and potential employees. The business is positioned as an important regional player with a medium-sized operational scale. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates SEO and analytics tools such as Rank Math and Google Tag Manager. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and follows some best practices but lacks explicit security headers and a published security policy. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

Outsourcing Pharma was a media platform providing insights and news for the pharmaceutical and biopharma industries. The website now serves as an announcement page informing visitors of the closure of Outsourcing Pharma and BioPharma Reporter, with a strategic shift by the parent company, William Reed Ltd, towards other sister brands in nutrition, food, cosmetics, and agriculture sectors. The business model was focused on industry news and analysis, targeting professionals in healthcare and related industries. The domain is well-established since 2005 and owned by a reputable UK-based media company. Technically, the website is a simple static HTML page using modern web fonts but lacks advanced frameworks or CMS indicators. Hosting is via Google Cloud DNS with no DNSSEC enabled. The site is mobile responsive with basic accessibility and SEO features but lacks privacy, cookie, and terms of service policies. No forms or interactive elements are present, indicating minimal data collection. Security posture is basic with no detected security headers or advanced configurations. The domain uses HTTPS (implied by domain status and hosting) but lacks DNSSEC and security policies. No contact information or incident response channels are provided, limiting transparency. The WHOIS data shows a consistent and legitimate registration with no privacy protection, supporting trustworthiness. Overall, the website is functional for its purpose as an announcement page but lacks comprehensive privacy, security, and compliance features expected for active business websites. Strategic recommendations include adding privacy and cookie policies, improving security headers, enabling DNSSEC, and providing contact information for security and data protection inquiries.

Seileri Kvartal is a residential real estate development project by Nordecon, focused on building a modern riverside living environment in Pärnu city center, Estonia. The website presents detailed information about the project, including location, history, apartment plans, and amenities, targeting homebuyers and investors in the region. The site uses modern web technologies including Google Analytics, Facebook Pixel, and Google Maps API to enhance user experience and marketing efforts. The cookie consent mechanism is implemented with clear categories and user control, supporting GDPR compliance. Security posture is good with HTTPS enabled and no visible vulnerabilities, though some security headers and policies are missing. The domain registration is consistent and appropriate for the business, registered with a reputable Estonian registrar. Overall, the website is professional, informative, and trustworthy, though it lacks explicit contact details and some legal pages like terms of service.

The website pg-redirect.net operates primarily as a redirect service with minimal content and no visible business or contact information. The domain is registered since 2019 with NameCheap and uses ParkLogic's DNS and routing infrastructure, indicating a monetization or domain parking model. The technical infrastructure is basic, relying on JavaScript for redirection and ad overlay detection, with no modern CMS or frameworks detected. Security posture is weak, lacking security headers and visible HTTPS enforcement in the HTML content, and the site does not provide privacy or cookie policies, which raises compliance concerns. Overall, the site appears to be a low-trust redirect domain with limited transparency and minimal user engagement.

Grupa ZPR Media is a prominent multimedia group in Poland, delivering a wide range of entertainment, information, and advisory content across multiple media channels including press, radio, internet, and television. The company operates numerous well-known brands and offers comprehensive advertising and business services, positioning itself as a leader in the Polish media market. Their digital infrastructure incorporates modern web technologies and analytics tools, supporting a responsive and content-rich website experience. Security practices include HTTPS enforcement and cookie consent mechanisms, though some improvements in security headers and library updates are recommended. Overall, the website reflects a mature digital presence with strong business credibility and compliance with privacy regulations.

S

Sunset di Kebun

sunsetdikebun.id

0

Sunset di Kebun is a newly established Indonesian event organizer specializing in music festivals that integrate natural settings, primarily hosted in various cities across Indonesia. The website presents a professional and visually appealing platform showcasing event details, artist lineups, galleries, news, and sponsorship information. The business model revolves around event ticket sales, sponsorship partnerships, and merchandise offerings, targeting music and nature enthusiasts. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, Flickity, and Google Tag Manager, hosted behind Cloudflare DNS services, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and CSRF protections in place; however, the absence of DNSSEC and security headers indicates room for improvement. Privacy compliance is lacking due to missing privacy and cookie policies, which is a notable gap given the use of tracking technologies. Overall, the domain registration aligns well with the business timeline and geographic focus, supporting legitimacy. Strategic improvements in privacy compliance and security hardening would enhance trust and regulatory adherence.