Security Directory

S

SA Kiusamisvaba Kool

kiusamisvaba.ee

0

SA Kiusamisvaba Kool is a well-established Estonian non-profit organization dedicated to preventing bullying in schools through the implementation of the KiVa anti-bullying program developed in Finland. The organization provides training, resources, and support to schools, parents, and communities, positioning itself as the official representative of the KiVa program in Estonia. The website reflects a professional and consistent brand presence with comprehensive content targeting educators, parents, and socially responsible entities. Technically, the site is built on WordPress with modern plugins and integrations, including WooCommerce for e-commerce and Edwiser Bridge for LMS functionalities. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site demonstrates good digital maturity and trustworthiness.

W

Waldur

waldur.com

0

Waldur is a technology company specializing in an open-source hybrid cloud and HPC management platform. Their solution integrates private and public cloud resources, including OpenStack, AWS, and DigitalOcean, offering a self-service portal, billing, helpdesk, and marketplace functionalities. The company targets cloud service providers, enterprises, research institutions, and public sector organizations, positioning itself as a niche player with professional support services and a strong open-source community presence. The website content is well-structured, professionally designed, and provides comprehensive information about the product features, integrations, and documentation. Technically, the website uses a modern tech stack including ReactJS for the frontend, Jekyll for static site generation, and standard libraries like jQuery and Bootstrap. Hosting appears to be on AWS infrastructure. The site is mobile-optimized and SEO-friendly with proper meta tags and structured data. Analytics are implemented via Google Analytics and Google Tag Manager, though privacy compliance mechanisms such as cookie consent banners are missing. From a security perspective, the site enforces HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks important security headers and does not publish security policies or incident response contacts. The WHOIS data shows a consistent and long-term domain registration with no privacy protection, supporting legitimacy. Overall, the security posture is moderate but could be improved with better policy disclosures and technical hardening. The overall risk is low to moderate. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, publishing incident response and vulnerability disclosure information, and enabling DNSSEC for domain security. These steps will enhance trust, compliance, and security posture, supporting Waldur's professional market positioning.

O

OpenSpeedTest™

openspeedtest.com

0

OpenSpeedTest™ is a technology-focused company providing a free, open-source HTML5 internet speed testing tool accessible via any modern web browser without requiring plugins like Flash or Java. Established in 2013, the company targets a broad audience including individual internet users, website and app owners, and enterprise infrastructure operators. Their business model centers on offering free tools supported by advertising and self-hosted deployment options. The website demonstrates a mature technical infrastructure leveraging modern web standards, Google analytics and advertising services, and a reliable CDN provider (Cachefly) to ensure fast and responsive user experiences across devices. Security posture is strong with HTTPS enforcement, comprehensive security headers, and no visible vulnerabilities. Privacy compliance is robust, featuring a detailed consent management platform aligned with GDPR requirements. However, the site lacks explicit Terms of Service and incident response contact details, which could enhance trust and compliance. Overall, OpenSpeedTest™ presents a professional, trustworthy, and technically sound online presence with room for improvement in formal policy disclosures and direct contact information.

I

INHUS

inhus.eu

0

INHUS is a Lithuanian-based construction and manufacturing company specializing in precast reinforced concrete building structures, operating primarily in Lithuania and Northern Europe. The company follows a design-build business model integrating design, production, and construction services. Their website presents a professional portfolio of projects and maintains a consistent brand image across multiple subsidiary domains. Technically, the website uses modern web technologies including Google Tag Manager and Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and formal policies are missing. Overall, the site is trustworthy and well-maintained, supporting INHUS's market position as a regional player in the construction sector.

A

Adbangs Technologies

adbangs.com

0

Adbangs Technologies is a digital marketing and web development company based in Bangalore, India, founded in 2016. The company offers a broad range of services including responsive web design, dynamic website development, WordPress development, digital marketing services such as PPC advertising and social media marketing, business branding, and e-commerce development across multiple platforms. Positioned as a professional and affordable service provider, Adbangs targets small to medium businesses seeking comprehensive digital solutions. Technically, the website is built on WordPress using WPBakery Page Builder, integrates Google Analytics and Adsense for tracking and monetization, and uses Cloudflare for DNS services. The site is mobile optimized with good SEO practices but lacks explicit privacy and cookie policies, which impacts privacy compliance. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Overall, the domain registration is consistent and legitimate, supporting business credibility. Recommendations include implementing privacy and cookie policies, enhancing security headers, and enabling DNSSEC to improve trust and compliance.

Communications Test Design India Pvt. Ltd. (CTDI India) is a large, established subsidiary of the global company Communications Test Design Inc., specializing in repair, engineering, and logistics services primarily for telecom carriers, cable companies, and OEMs. The company operates multiple facilities in India and worldwide, serving a broad target audience in telecommunications and related technology sectors. The website reflects a professional and consistent brand presence with clear business information and service offerings. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Axios, providing a responsive and user-friendly experience. However, the site lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enforced and CSRF tokens present, but missing security headers and vulnerability disclosure mechanisms are notable gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

Glimstedt

glimstedt.lv

0

Glimstedt is a well-established full-service sworn law firm specializing in business law, with a history dating back to 1935. The firm serves a diverse clientele including large foreign capital companies, medium and small enterprises, and private individuals. With 14 offices in Sweden and 3 in the Baltic states, Glimstedt operates an international team of 250 professionals, emphasizing collaboration and excellence. The website reflects this professional positioning with clear branding and relevant business content. Technically, the website is built on WordPress and uses modern JavaScript libraries such as jQuery and Modernizr. The site is mobile-optimized and performs moderately well, with proper SEO meta tags and Open Graph data. However, accessibility features are basic and could be improved. The site uses HTTPS with a good SSL configuration but lacks explicit security headers and visible privacy or cookie policies. From a security perspective, the site shows a good baseline with HTTPS and no exposed sensitive data. However, the absence of security headers, privacy policies, cookie consent mechanisms, and vulnerability disclosure information indicates room for improvement in compliance and security posture. No critical vulnerabilities or WAF blocking were detected, suggesting a stable but improvable security environment. Overall, the website is professional and trustworthy, reflecting the firm's reputable market position. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing incident response and vulnerability disclosure information, and enhancing accessibility and compliance features to strengthen trust and security posture.

A

Advokatfirman Glimstedt

glimstedt.se

0

Advokatfirman Glimstedt is a well-established full-service law firm founded in 1935, specializing in business law and serving primarily large and medium-sized Swedish and international companies. The firm operates across 17 offices in Sweden and the Baltics with over 200 employees, positioning itself as one of the largest law firms in the region. Their website reflects a professional and modern digital presence, built on WordPress with integration of Google Tag Manager and Cookiebot for privacy compliance. The site is well-structured, mobile-optimized, and SEO-friendly, providing comprehensive legal content and news updates. Security-wise, the site enforces HTTPS and implements a robust cookie consent mechanism, though additional HTTP security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a mature digital infrastructure aligned with the firm's market position and compliance requirements.

O

Orpetron

orpetron.com

0

Orpetron is a specialized online platform established in 2020 that honors outstanding web design projects globally. It serves as a source of inspiration for web designers and creative professionals by showcasing award-winning websites. The platform operates on WordPress with a modern tech stack including Elementor, WooCommerce, and various marketing and analytics tools. The website demonstrates good design quality, mobile optimization, and SEO practices, positioning itself as a niche authority in the web design awards space. Security posture is adequate with HTTPS and some security headers, though DNSSEC is not enabled and advanced security policies are not disclosed. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, Orpetron presents a credible and professional business with room for improvement in privacy and security transparency.

B

Blind Android Users Podcast

blindandroidusers.com

0

Blind Android Users Podcast is a niche media platform dedicated to providing podcast content focused on Android accessibility for blind and visually impaired users. The website hosts a podcast player with multiple recent episodes and links to popular podcast platforms such as Spotify, Amazon Music, and Apple Podcasts. The target audience is primarily blind Android users and accessibility advocates. The business model revolves around content creation and community engagement, supported by donations and social media presence. Technically, the website is built on WordPress using modern plugins including Podcast Player, Gutenberg blocks, and performance optimizations via WP Rocket. It employs HTTPS with good SSL configuration and integrates Google Tag Manager for analytics. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured data. However, no hosting provider or domain registration details are available, raising questions about domain legitimacy. From a security perspective, the site uses HTTPS but lacks important security headers and does not provide privacy, cookie, or terms of service policies, which are critical for compliance and user trust. No incident response or vulnerability disclosure information is present. The absence of WHOIS data for the domain is a significant concern, suggesting either a very new or unregistered domain, or use of privacy protection that is not reflected in the WHOIS query results. Overall, the website presents professional content and a good user experience but requires improvements in transparency, compliance, and security best practices. The domain legitimacy should be verified to ensure trustworthiness.

L

Liviko

liviko.eu

0

Liviko is a well-established international group specializing in premium alcoholic beverages, with a strong market presence in the Baltic region and distribution across 60 markets. The company offers a range of services including distillery tours, production, export, and brand representation. Their website reflects a mature digital presence built on WordPress with modern SEO and privacy compliance tools. The technical infrastructure is solid, leveraging popular plugins and analytics services, and the site is mobile-optimized with good user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a professional and trustworthy online presence consistent with the company's business stature.

S

Specialist VC

specialist.vc

0

Specialist VC is a venture capital fund focused on supporting early-stage technology startups primarily in Estonia, Latvia, Lithuania, Finland, Ukraine, and Belarus. The fund invests mainly in pre-seed to Series A rounds, with occasional secondary investments in later rounds. Their portfolio includes over 60 companies, many of which are recognized regional tech leaders. The website presents a professional and consistent brand image, with detailed team bios and clear contact information, positioning Specialist VC as a credible and established player in the regional VC ecosystem. Technically, the website is built on WordPress with modern plugins such as Rank Math for SEO and uses jQuery and Splide.js for interactive elements. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. HTTPS is enforced, ensuring secure communications. From a security perspective, the site has a solid SSL configuration but lacks some security headers and does not provide a vulnerability disclosure or incident response contact. Privacy compliance is partial, with an ESG policy page but no dedicated privacy or cookie policy pages, nor cookie consent mechanisms. Contact information is comprehensive, including multiple team emails and phone numbers. Overall, Specialist VC's website reflects a mature business with a strong market position and good technical implementation. However, improvements in privacy compliance and security best practices would enhance trust and regulatory adherence.

T

Telia Eesti AS

keila.ee

0

Keila.ee is the official municipal website for the city of Keila, Estonia, providing residents and visitors with comprehensive information about city services, news, events, and contact details. The website is managed under the domain registered by Telia Eesti AS since 2010, indicating a stable and legitimate online presence. The site targets local citizens and tourists, offering resources such as job postings, municipal announcements, and tourism information. Technically, the site is built on WordPress with Elementor and Ova Framework plugins, leveraging modern web technologies like Bootstrap and FontAwesome for design and functionality. The website demonstrates good mobile optimization and accessibility features, ensuring usability across devices.

Z

Zone Media OÜ

kooliraamatukogud.ee

0

The website kooliraamatukogud.ee serves as a digital catalog platform named RIKSWEB for Estonian school libraries, enabling users to search library collections, view item statuses, and access news literature and events. It targets educational institutions in Estonia, providing a niche service that supports library management and user engagement. The platform is operated by Zone Media OÜ, a known Estonian registrar and hosting provider, which aligns with the website's regional and sector focus. Technically, the website employs a modern yet simple technology stack including jQuery and Google Fonts, with multiple CSS stylesheets for styling and responsive design. The site is mobile-optimized and offers a clear navigation structure, although SEO optimization is minimal. No CMS or advanced frameworks are detected, indicating a custom or lightweight solution. Performance is moderate, with no evident blocking or WAF interference. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, and no contact details for security matters are provided. These gaps reduce the overall security posture and privacy compliance. Overall, the website is functional and professionally presented for its educational purpose but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

H

Harju Maakonnaraamatukogu

keilaraamatukogu.ee

0

Harju Maakonnaraamatukogu is a regional public library serving Harju County in Estonia, providing a range of library services including book lending, children's services, local history resources, and event hosting. The website targets local residents and library users, offering information and access to library resources and services. The business operates as a public institution with a focus on education and cultural enrichment. Technically, the website is built on WordPress using Elementor and Bootstrap frameworks, hosted under a reputable Estonian registrar. The site is mobile-optimized, accessible, and uses HTTPS for secure communication. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

K

Keila Muusikakool

keilamuusikakool.ee

0

Keila Muusikakool is a small local music school based in Keila, Estonia, providing music education services primarily to students and parents in the local community. The website offers detailed information about competitions, study programs, schedules, events, and pricing. The business operates with a clear focus on education and community engagement. Technically, the website is built on WordPress using Elementor, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies such as privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

T

Tervise Arengu Instituut

terviseinfo.ee

0

Terviseinfo.ee is a well-established Estonian health information portal managed by the Tervise Arengu Instituut, a government-affiliated health development institute. The website provides comprehensive health promotion content, news, and educational resources targeted primarily at health promotion specialists and the general public. It covers a broad range of health topics including alcohol, HIV/AIDS, nutrition, mental health, and more, positioning itself as a trusted national resource for health information. Technically, the site is built on Joomla CMS and utilizes common JavaScript libraries such as MooTools and jQuery, along with Google Fonts and Google Analytics for tracking. The site is served over HTTPS, ensuring secure communication, and includes CSRF tokens in forms to protect against cross-site request forgery. However, it lacks explicit security headers like Content-Security-Policy and HSTS, and does not have a visible cookie consent mechanism or privacy policy page, which are important for GDPR compliance. From a security perspective, the website demonstrates a moderate security posture with secure form handling and HTTPS usage but could improve by implementing additional HTTP security headers and publishing clear privacy and cookie policies. No WAF or blocking mechanisms were detected, and the site content is fully accessible. The WHOIS data aligns well with the website's governmental health mission, showing a consistent and legitimate registration since 2011. Overall, the website is professional, trustworthy, and serves its public health mission effectively, but should enhance privacy compliance and security headers to strengthen its security posture and regulatory adherence.

P

Playversity

playversity.co

0

Playversity is an educational platform focused on transforming teaching through game-based learning. The website offers games, resources, learning opportunities, and programs for trainers, targeting educators and learners interested in innovative educational methods. The business is relatively new, founded in 2021, and operates primarily online with a small organizational size. The platform maintains a professional and consistent brand presence with good content quality and clear navigation. Technically, the site is built on WordPress using Elementor and several addons, hosted on HostGator. The infrastructure is modern and supports mobile responsiveness and SEO best practices. Performance is moderate, with room for improvement in accessibility and security headers. The site uses HTTPS and domain registration includes protective EPP locks, but DNSSEC is not enabled. From a security perspective, the site has a good baseline with HTTPS and domain protections but lacks critical security headers and privacy compliance documents such as privacy and cookie policies. No forms or data collection mechanisms were detected on the homepage, reducing immediate data protection concerns. The WHOIS data shows privacy protection for the registrant, which is reasonable for this business type. Overall, the website is functional and professional but should improve privacy compliance and security posture to enhance trust and regulatory adherence.

H

HUUM

huum.de

0

HUUM is a medium-sized manufacturing company specializing in sauna stoves and innovative sauna control systems, combining traditional Estonian sauna knowledge with modern Nordic design and technology. The company maintains a strong international presence with multiple regional domains targeting different markets including Germany, Estonia, Europe, the US, and Japan. The website is built on WordPress with performance optimizations and includes structured data for SEO enhancement. Privacy compliance is well addressed through Cookiebot, providing a comprehensive cookie consent mechanism and linking to a detailed privacy policy. However, explicit contact information and terms of service are not readily found on the homepage, which could be improved for better user trust and compliance.

H

Hubert Inglin Transporte AG

inglintransporte.ch

0

Hubert Inglin Transporte AG is a Swiss transportation company specializing in transport, crane, and grapple services, serving trades such as carpenters, gardeners, metal and steel builders, and roofers. The company has over 30 years of experience, positioning itself as a reliable partner in the transportation sector. Their website provides detailed descriptions of their services and equipment, targeting businesses and professionals needing specialized transport and crane operations. Technically, the website is built using Incomedia WebSite X5 Evo CMS and employs common JavaScript libraries like jQuery and Anime.js. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Security-wise, the website lacks visible security headers and does not enforce cookie consent mechanisms, which are important for GDPR compliance. No incident response or security contact information is provided, indicating room for improvement in security posture. Overall, the website is professional and credible but could enhance its security and privacy compliance to better protect users and build trust.

K

Kalendersystem | Komplet bookingsystem til udlejning

kalendersystem.dk

0

Kalendersystem.dk is a Danish website offering a complete booking system tailored for rental services, including smart lock integration. The website is built on WordPress using the Divi theme and employs jQuery and Google Fonts for styling and interactivity. The technical infrastructure is standard for small to medium-sized businesses, with moderate performance and good mobile optimization. Security posture is basic, with HTTPS enabled but lacking DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from improved security and privacy practices to enhance trust and compliance.

E

Elfag

elfag.no

0

Elfag is a Norwegian electrical service provider targeting both private and business customers. The company offers a range of electrical services including smart home solutions, electrical safety checks, and electric vehicle charging installations. The website positions Elfag as a trusted local electrician chain with a 5-year warranty and partnerships with reputable Norwegian companies such as Lampehuset and Huseiernes landsforbund. Technically, the website is built on WordPress with modern SEO and analytics tools, including Yoast SEO and Google Analytics. The site is well-structured, mobile-optimized, and uses HTTPS with a valid SSL certificate, indicating a good security baseline. However, explicit security headers and detailed security policies are not present. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, though more comprehensive GDPR documentation could improve compliance. Overall, the website demonstrates a professional and trustworthy online presence with moderate technical sophistication and a solid security posture.

Positus.global is a minimally developed website with very limited content, presenting only the brand name 'Positus' on a blank page. The domain is registered through GoDaddy with privacy protection via Domains By Proxy, and hosted on DigitalOcean. There is no visible business description, contact information, or user engagement features, indicating an early-stage or placeholder site. The technical infrastructure is basic, relying on standard web fonts and minimal styling, with no advanced frameworks or CMS detected. Security posture is weak due to lack of DNSSEC, security headers, and privacy policies, though the domain registration and hosting providers are reputable. Overall, the site lacks transparency and professionalism, resulting in a low trust and compliance rating.

The website dooki.com.br is currently inaccessible due to a Cloudflare 520 error indicating an unknown issue between Cloudflare and the origin web server. This prevents any meaningful content from being displayed or analyzed. The site lacks any visible privacy, cookie, or terms of service policies, and no contact or business information is available. The technical infrastructure relies on Cloudflare for DNS and CDN services, but the origin server is not responding correctly. Security posture is weak due to the error and absence of security headers or policies. Overall, the site is not functional and scores very low on content quality, technical implementation, security, privacy compliance, and business credibility.

The website yampi.io is currently inaccessible due to a Cloudflare origin DNS error (error 1016), indicating that the origin server is unreachable or DNS settings are misconfigured. As a result, no business content, metadata, or contact information is available for analysis. The domain is registered through Gandi SAS with a creation date in 2019 and a registrant country of Brazil, but lacks publicly available registrant organization details. The site uses Cloudflare services for DNS and security, but the misconfiguration prevents content delivery. No privacy, cookie, or terms of service policies are present, and no forms or contact details are found on the page.

The website riigiteataja.ee serves as the official portal for Estonian legal publications, operated under the domain registered to Elkdata OÜ since 2010. It targets Estonian citizens, legal professionals, and government officials by providing access to legislation and legal documents. The business model is a government service focused on transparency and legal information dissemination. Technically, the site employs Cloudflare services including a Turnstile CAPTCHA for bot mitigation, indicating a focus on security and performance. However, the actual website content is currently inaccessible due to the Cloudflare security challenge, preventing a full analysis of content quality, user experience, and compliance features. Security posture benefits from Cloudflare's protection but lacks visible security headers and policies. Overall, the domain registration is consistent and legitimate, but the lack of accessible content and policies limits the assessment and lowers the AI score.

L

LocalProber

localprober.com

0

The website www.localprober.com presents an extremely minimal digital presence, consisting solely of a single image hosted externally and a basic HTML structure with no textual content or metadata beyond a title. The absence of any contact information, privacy policies, or business descriptions severely limits the ability to understand the business purpose or market positioning. Technically, the site lacks modern web technologies, security headers, and any visible analytics or tracking mechanisms, indicating a very low level of digital maturity. The WHOIS data query returned no registration information, suggesting the domain is either unregistered, deleted, or otherwise not properly maintained, which raises significant legitimacy concerns. Security posture is poor due to lack of HTTPS and absence of security best practices. Overall, the site poses a high risk from a trust and compliance perspective and requires substantial improvements to meet basic standards.

CAACI Iberoamérica is a regional international organization specializing in audiovisual and cinematographic matters across Ibero-America. It serves as a collaborative platform for audiovisual authorities and stakeholders in 21 member countries, promoting cooperation, regulatory frameworks, and cultural exchange. The website reflects a professional presence with good content quality and consistent branding, targeting industry professionals and governmental bodies. Technically, the site is built on WordPress with common plugins and frameworks, hosted on SiteGround, and shows moderate performance with good mobile optimization. Security posture is adequate with HTTPS and domain protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Contact is available via a web form but lacks direct email or phone contacts. Overall, the site is trustworthy and credible within its niche, though improvements in security and privacy documentation are recommended.

V

Valio Eesti AS

karjaarvalios.ee

0

Valio Eesti AS operates as a significant player in the Estonian dairy manufacturing sector, providing fresh dairy products and employment opportunities. The website serves as a career portal inviting potential employees to join their team, emphasizing training, fair pay, and a safe work environment. The company is part of the international Valio group, known for its innovative and sustainable food solutions. Technically, the website is built on WordPress with Elementor, offering a modern and responsive user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security policies to meet compliance standards.

О

ООО «Мега Сервис»

mega-service.org

0

ООО «Мега Сервис» is a Russian service provider specializing in maintenance, repair, and recycling of digital satellite, cable, and terrestrial receivers. The company operates a large network of over 300 authorized service centers across Russia and owns facilities for electronic waste processing in Tula and Gusev. Their business model focuses on providing professional servicing and environmentally compliant recycling solutions, targeting both end-users and partner organizations. The website content is well-structured, professionally designed, and consistent with the company's market position as a medium-sized technology service provider founded in 2009. Technically, the website employs standard web technologies including HTML5, CSS3, and jQuery libraries. It is hosted under a reputable Russian registrar with HTTPS enabled, though it lacks advanced security headers and DNSSEC. The site performs moderately well with good mobile optimization but basic accessibility and SEO features. No major technical debt or outdated technologies were detected. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers that could mitigate common web threats. There is no visible privacy or cookie policy, nor incident response contacts, which indicates compliance gaps especially regarding GDPR or similar regulations. No forms or user data collection mechanisms were found on the main page, reducing immediate data exposure risks but also limiting user engagement features. Overall, the website presents a moderate risk profile with good business credibility but needs improvements in privacy compliance and security best practices. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact information for security incidents to enhance trust and regulatory compliance.

Т

Технополис GS

technopolis.gs

0

Technopolis GS is a leading private innovation cluster in Russia specializing in the radio-electronics manufacturing sector. Established in 2012, it supports multiple subsidiary companies and offers a comprehensive ecosystem including production facilities, residential areas, and infrastructure services. The website reflects a mature digital presence with a professional design and clear navigation, targeting industry professionals, investors, and partners within the Russian technology sector. Technopolis GS leverages modern web technologies including Bitrix CMS and integrates analytics tools such as Google Analytics and Yandex Metrika to monitor user engagement. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced DNS security and published security policies. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the site demonstrates a solid business credibility and technical foundation but requires improvements in privacy and security transparency.

G

GS Venture

venture.gs

0

GS Venture is a corporate investment fund operating under the GS Group industrial holding, focusing on investments ranging from 1 to 5 billion rubles in established businesses primarily in manufacturing, agriculture, chemical, and medical equipment sectors. The fund targets entrepreneurs seeking capital for scaling and development, offering equity participation or full acquisition. The website is professionally designed, content-rich, and provides clear contact channels including a secured contact form with CAPTCHA. Technically, the site is built on Bitrix CMS with common JavaScript libraries and integrates Google Analytics and Yandex Metrika for user tracking. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks advanced security headers and uses an outdated jQuery version. Privacy compliance is partial, with a privacy consent document available but no cookie consent mechanism. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the site presents a credible and professional front for the investment fund with room for security and privacy improvements.

S

Sisustuskoda OÜ

sisuko.ee

0

Sisustuskoda OÜ is a small Estonian company specializing in custom furniture manufacturing, particularly kitchen furniture. Established in 2014, it serves local consumers seeking high-quality, tailor-made interior solutions. The website reflects a niche retail business model with a focus on craftsmanship and design. The company maintains an active online presence with social media integration and a WooCommerce-based e-commerce platform. Technically, the website is built on WordPress using Elementor and Astra theme, leveraging modern web technologies and Google services such as reCAPTCHA and Tag Manager. Security posture is adequate with HTTPS enabled and basic protections, but lacks explicit security headers and formal privacy or cookie policies. Overall, the site is professional and functional, though privacy compliance and security best practices could be enhanced to improve trust and regulatory adherence.

C

Connected Health

connectedhealth.ee

0

Connected Health is a small Estonian organization acting as a cluster and ecosystem connector for health innovation, focusing on IT and biotech companies, startups, and R&D partners. The website serves as a platform to showcase members, success stories, projects, and news related to Estonian health technology. Technically, the site is built on WordPress with modern plugins like Yoast SEO and uses Google Analytics and Google Maps API for analytics and mapping. The site is mobile optimized and has good SEO metadata and structured data, indicating a mature digital presence. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Business credibility is supported by consistent branding, partner association with Tehnopol, and EU funding logos. Overall, the site is professional and trustworthy but could improve privacy and security transparency.

Eesti Arst is a well-established Estonian medical journal operated by Celsius Healthcare OÜ, providing professional healthcare news, research, and clinical guidelines primarily for medical professionals in Estonia. The website is built on WordPress and integrates common analytics and marketing tools such as Google Analytics and Facebook Pixel. The technical infrastructure is solid with HTTPS and a mature domain, but lacks some compliance elements such as privacy and cookie policies. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the site presents a professional and trustworthy front for its target audience.

Bole is a small manufacturing company specializing in innovative flooring products that follow the natural growth of trees, positioning itself as a sustainable and design-focused brand. The website is built on WordPress and incorporates modern web technologies including jQuery, Select2, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The site features a catalog download form with user consent mechanisms, indicating attention to privacy compliance. Security posture is adequate with HTTPS enabled and basic form validation, but lacks explicit security headers and detailed security policies. The domain WHOIS data is privacy protected, which is common for small businesses, and no suspicious indicators were found. Overall, the website presents a professional and trustworthy front for a niche manufacturing business.

T

Topfinanses

topfinanses.lv

0

Topfinanses.lv is a Latvian online platform specializing in loan comparison and facilitation services, primarily focusing on quick loans, consumer loans, auto loans, and credit lines. The website aggregates loan offers from multiple Latvian financial institutions, providing users with detailed information and direct links to apply for loans. The platform targets Latvian consumers seeking fast and convenient credit solutions, positioning itself as a trusted intermediary in the Latvian finance market. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, FontAwesome, and Google Fonts, and integrates analytics tools like Google Analytics and Yandex Metrika. The site enforces HTTPS and includes affiliate marketing links to loan providers. However, it lacks explicit privacy, cookie, and terms of service policies, and does not provide direct contact information or security incident channels, which are critical for compliance and trust. Security posture is moderate with HTTPS enforced but missing security headers and formal policies. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices.

R

roi.lv

roi.lv

0

The website roi.lv appears to be a Latvian regional site likely related to financial or investment services, as inferred from domain and linked partner sites. The site uses modern web technologies such as Angular and includes cookie consent mechanisms via CookieHub, indicating some level of compliance with privacy regulations. However, the site lacks visible privacy policies, terms of service, and contact information, which limits transparency and user trust. The presence of multiple tracking and advertising scripts such as Google Analytics, Google Ads, Facebook Pixel, and LinkedIn Insight suggests a moderate level of user tracking and marketing activity. Technically, the site is moderately optimized but lacks explicit security headers and detailed security policies. WHOIS data shows the domain is active with consistent name servers and no privacy protection, supporting legitimacy but with limited registrant details. Overall, the site scores moderately on content quality, technical implementation, security posture, privacy compliance, and business credibility.

F

FiRO Yrityslahjat Oy

firo.fi

0

FiRO Yrityslahjat Oy is a Finnish-based company specializing in corporate gifts, promotional products, and branded clothing tailored to business clients. The company positions itself as a provider of quality branded products, targeting businesses seeking to enhance their brand visibility through customized merchandise. The website is professionally designed using modern web technologies such as Angular and integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting and domain registration are managed by Zone Media LLC with DNSSEC enabled, indicating a secure domain setup. However, the domain is relatively new, created in mid-2024, aligning with the company's recent market entry. Security posture is generally good with HTTPS enforced, but the absence of security headers and privacy policies indicates room for improvement. Overall, the website is accessible, functional, and presents clear contact information, though privacy compliance needs enhancement.

E

eHost OÜ

hoius.ee

0

Hoius.ee is a newly launched Estonian informational website focused on educating visitors about financial deposits and savings products. The site provides content in Estonian language explaining what deposits are, their types, and their benefits. The business model appears to be an informational platform targeting individuals interested in saving money securely. The website is built on WordPress and hosted by eHost OÜ, a known Estonian hosting provider. The technical infrastructure is standard for small informational sites, using PHP 7.4 and common SEO plugins. The site is mobile optimized and has a moderate performance profile. Security posture is basic with HTTPS enabled but lacks security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. No contact or incident response information is provided, which limits trust and compliance. Overall, the site is functional and professional but requires improvements in privacy, security, and contact transparency to enhance credibility and compliance.

The website laen.eu operates as a loan information and comparison portal primarily targeting Estonian consumers seeking various loan products such as quick loans, small loans, and secured loans. It provides detailed loan comparisons, affiliate links to loan providers, and educational content about loan types and borrowing in Estonia. The site leverages WordPress CMS with plugins for loan comparison, table of contents, and Google services for analytics and CAPTCHA protection. The technical infrastructure is modern and supports mobile responsiveness with moderate performance. Security posture is good with HTTPS enforced and use of Google reCAPTCHA, though it lacks explicit security headers and formal privacy or cookie policies. Contact information is limited to a contact form without direct emails or phone numbers, which may impact user trust. Overall, the site is functional, professional, and serves its niche well but would benefit from enhanced privacy compliance and security best practices.

P

PremierCert+

premiercert.org

0

PremierCert+ operates as a specialized certification management platform requiring user authentication to access services. The website serves primarily as a login portal with minimal public-facing content, indicating a focus on registered users such as professionals or organizations involved in certification processes. The platform is powered by Isopyre technology and leverages ASP.NET Web Forms with DevExpress controls, reflecting a traditional Microsoft web technology stack. Client-side SHA256 hashing is implemented for password security, demonstrating some attention to protecting user credentials. Technically, the site uses a mature but somewhat dated technology stack with jQuery and ASP.NET AJAX. Performance and mobile optimization are basic, with no advanced SEO or accessibility features detected. Security posture shows moderate implementation with session timeout warnings and client-side hashing; however, the absence of security headers and anti-CSRF tokens indicates room for improvement. The lack of HTTPS verification and missing WHOIS data further reduce trustworthiness. Overall, the website is functional for its intended purpose but lacks comprehensive privacy, security, and business transparency features. The missing WHOIS data and absence of contact or policy pages limit the ability to fully verify legitimacy and compliance. Strategic improvements in security headers, privacy policies, and domain registration transparency are recommended to enhance trust and compliance.

Kanso.ee is a small Estonian business specializing in custom web development, UX, and UI design services. The website presents a clear but minimalistic business description focused on tailored web solutions and consultation. The company appears to be established since 2016, with a consistent domain registration and hosting provider. The technical infrastructure is basic, relying on jQuery 3.1.1 and Google Fonts, with no detected CMS or advanced frameworks. Mobile optimization and accessibility are present but minimal. Security posture is moderate but lacks critical elements such as security headers and visible HTTPS confirmation. Privacy and cookie policies are absent, which impacts compliance and trust. Overall, the site is functional but could benefit from enhanced security and privacy measures.

N

Nordic Science Investments Oy

nordscience.fi

0

Nordic Science Investments Oy is a Finnish venture capital firm specializing in transforming scientific research into successful startups, focusing on deeptech, healthtech, and life sciences sectors within the Nordic region. The company acts as an anchor investor and incubator, supporting university spinouts and early-stage innovations. The website reflects a professional and consistent brand image with clear messaging targeting founders and investors in science-based startups. Technically, the site is built on WordPress with Elementor, uses modern web technologies, and includes Google Analytics for tracking. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers could enhance protection. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the domain registration data aligns well with the business identity, indicating legitimacy and trustworthiness.

E

Energex OÜ

energex.ee

0

Energex OÜ is an Estonian consulting company specializing in energy audits, digitalization, sustainability, and funding support services. Established in 2015, the company serves over 250 organizations across private and public sectors, positioning itself as a trusted partner in the energy sector. Their key offerings include energy and resource audits, green audits, digitalization roadmaps, funding application assistance, procurement management, and ESG analyses. The website reflects a professional and consistent brand image with comprehensive service descriptions and client trust indicators such as certifications and client logos. Technically, the website is built on WordPress with performance optimizations via WP Rocket and integrates Google Analytics and Tag Manager for analytics. Cookie consent is managed through CookieYes, ensuring compliance with privacy regulations. The site is mobile-optimized, fast-loading, and SEO-friendly, demonstrating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs some security headers, though there is room for improvement in publishing explicit security policies and incident response information. No critical vulnerabilities or blocking mechanisms were detected, indicating a solid security posture. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, Energex presents a credible, professional, and trustworthy online presence with strong business credibility and good technical implementation. Strategic recommendations include enhancing security transparency and formalizing vulnerability disclosure mechanisms to further strengthen trust and compliance.

B

Baltic Innovation Agency

bia.ee

0

Baltic Innovation Agency is a small Estonian innovation management company established in 2010, focused on connecting ideas, people, and funding to foster innovation in the Baltic region. Their key services include innovation consulting, analysis, management, and funding support, targeting startups, clusters, smart cities, and green deal initiatives. The website is built on WordPress with modern plugins and SEO tools, showing good digital maturity and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal privacy/cookie policies, indicating room for compliance improvement. Overall, the site is professional and trustworthy, with clear contact information and partner affiliations, but should enhance privacy compliance and security transparency to reduce risk.

V

Valencia Innovation Capital

valenciainnovationcapital.com

0

Valencia Innovation Capital is a municipal platform launched by the Innovation Department of the Valencia City Council to foster a dynamic, diverse, and creative city ecosystem. It aims to unite all stakeholders in Valencia's innovation and technological entrepreneurship ecosystem to collaboratively drive political and economic transformation towards a sustainable and technologically advanced future. The website is built on WordPress using modern plugins and frameworks, featuring multilingual support and active event programming. Security posture is solid with HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though DNSSEC is not enabled and security headers are not evident. The domain is newly registered in 2024, consistent with the initiative's launch. Overall, the site demonstrates good technical maturity, privacy compliance, and business credibility.

H

Health Founders

healthfounders.ee

0

Health Founders is a specialized health technology accelerator based in Estonia, focused on supporting and accelerating healthtech startups through a dedicated program, expert mentoring, and access to a global investor network. The organization positions itself as the first vertical healthtech accelerator in the Baltics, leveraging Estonia's advanced digital health ecosystem. The website reflects a professional and consistent brand image with clear information about its services, partners, and mentors. Technically, the site is built on WordPress with modern plugins and integrates analytics tools such as Google Analytics and Plausible. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks published security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is credible and well-positioned but should improve compliance and security transparency.