Security Directory

Netbox Finland Oy is a Finnish technology company specializing in electronic invoicing, banking connection services, EDI, and company data solutions. The company positions itself as a customer-centric digital services provider offering comprehensive integration and data management services through a single interface. Their market focus includes both private and public sector organizations seeking efficient digital transaction and data solutions. The website reflects a professional and consistent brand image with clear service offerings and customer testimonials. Technically, the website is built on WordPress with modern web technologies including Google Fonts, Libre Form plugin for contact forms, and tracking scripts such as Leadfeeder and Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices are observed with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. The WHOIS data confirms the legitimacy of the domain and its alignment with the business entity. Overall, the website demonstrates a mature digital presence with good security and privacy practices. Strategically, the company should consider publishing explicit security policies and incident response information, implementing security.txt for vulnerability disclosures, and enhancing security headers to further strengthen their security posture and trustworthiness.

The website rik.ee is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content or business information. The domain is registered since 2010 to Elkdata OÜ, an Estonian registrar, indicating a legitimate and stable registration. However, no privacy policies, cookie notices, terms of service, contact information, or business descriptions are available on the accessible page. The technical infrastructure is heavily reliant on Cloudflare's security and analytics services, but no further technology stack or CMS details are discernible. Due to the content block, the website's security posture, privacy compliance, and business credibility cannot be properly assessed, resulting in a low overall AI score.

Merit Aktiva operates as a provider of accounting software solutions, targeting companies seeking simplified accounting processes. With over 40,000 companies relying on their software and 25 years of experience, the company holds a solid market position primarily in Estonia and neighboring countries. The business model centers on delivering easy-to-use accounting software combined with customer support, catering to small and medium-sized enterprises in the finance sector. Technically, the website employs legacy technologies such as Bootstrap 3.3.7 and jQuery 1.8.3, indicating a need for modernization to improve security and performance. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and modern frameworks. No CMS or hosting details were identified, and performance is assessed as moderate. From a security perspective, the site lacks visible security headers and privacy-related policies, which are critical for GDPR compliance and user trust. There is no evidence of HTTPS enforcement or incident response mechanisms. The absence of contact information and security disclosures further limits transparency. However, the domain WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a functional but basic digital presence with room for significant improvements in security posture, privacy compliance, and technical modernization. Strategic enhancements in these areas will strengthen trust, compliance, and user experience.

I

Inodia

inodia.fr

0

Inodia is a small regional digital agency based in Brittany, France, specializing in web design, SEO, and digital marketing services. The company targets local businesses and professionals in Lamballe, Rennes, and surrounding areas, offering tailored digital solutions to enhance online presence. The website is built on WordPress using Elementor and optimized with WPRocket, reflecting a modern and performant technical infrastructure. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Security posture is solid with HTTPS enforced and security headers present, though no explicit security policy or incident response information is published. The absence of WHOIS data limits domain trust assessment but the professional website and clear contact information support legitimacy. Overall, Inodia presents a credible and professional digital presence with room for improvement in transparency around security policies and domain registration details.

S

Semetron Ltd

mmh.ee

0

Golden Hour MMH is a specialized provider of rapid deployment mobile modular hospitals, offering a range of modular units transportable by air, sea, or land. The company targets healthcare providers, emergency responders, and government agencies, positioning itself as a niche manufacturer of modular medical solutions. The website reflects a professional and consistent brand presence with good content quality and clear navigation. Technically, the site is built on WordPress with Elementor and uses modern web technologies, providing a moderate performance and good mobile optimization. Security posture is strong with HTTPS and no obvious vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible but could improve transparency and compliance aspects.

J

Jill Arcaro

jillarcaro.com

0

Jill Arcaro operates a specialized wellness and educational business focused on holistic therapies such as Thai Massage, Reiki, and Access Bars, complemented by educational travel experiences and an artisan retail store. The website is professionally designed using WordPress and WooCommerce, offering a good user experience with clear navigation and mobile optimization. Privacy and cookie policies are well implemented, indicating GDPR compliance. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site presents a credible business front but requires domain registration verification and enhanced security measures.

H

HARJU ELEKTER UAB

harjuelekter.lt

0

HARJU ELEKTER UAB is a Lithuanian contract manufacturing company specializing in engineering and production of multi-drive systems, power distribution, and prototyping services primarily for industrial and marine sectors. The company operates under the Harju Elekter Group and offers Engineer-To-Order, Make-To-Order, and Assemble-To-Order business models. Their market position is that of a specialized manufacturer with capabilities for fast marine class certification and full load testing. The website is professionally designed using WordPress with Cherry Framework and Bootstrap, featuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers and incident response information are lacking. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site reflects a credible and established business with room for improvement in security and privacy transparency.

H

Harju Elekter

harjuelekter.se

0

Harju Elekter Sverige is a medium-sized business specializing in electrical distribution and electrification solutions, serving energy companies, industrial sectors, infrastructure projects, and large properties primarily in Sweden and the Nordic-Baltic region. The company is part of the larger Harju Elekter group headquartered in Estonia, with a well-established market presence since 2010. Their website reflects a professional and consistent brand image, showcasing key services such as prefabricated distribution stations, transformers, SCADA systems, and fiber cabinets. Technically, the site is built on WordPress using the Avada theme and incorporates modern SEO and marketing tools, including Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS enforced and reCAPTCHA protecting forms, though improvements like DNSSEC and security headers are recommended. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates a solid business credibility and digital maturity appropriate for its sector and size.

W

WhosOn

whoson.com

0

WhosOn is a UK-based technology company specializing in advanced live chat and AI-driven chatbot solutions tailored for enterprise businesses. Established in 2003, the company offers a comprehensive suite of services including live chat software, AI chatbots, help desk integration, analytics, and flexible deployment options such as on-premises and cloud hosting. Their market position is strong within the UK, supported by long-term operation and recognized certifications. The website reflects a professional and consistent brand image targeting large-scale, regulated industries requiring secure and scalable communication tools. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Blazor WebAssembly, and FontAwesome, hosted on AWS infrastructure. The site is mobile-optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and cookie consent mechanisms. Analytics are implemented via Statcounter and Google Tag Manager, indicating moderate user tracking. From a security perspective, the company demonstrates a solid posture with HTTPS enforcement, encryption, intrusion prevention, and data masking. Certifications such as Cyber Essentials and FSQS further reinforce trust. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for enhancement. Incident response contact details and vulnerability disclosure policies are not publicly visible, which could be improved to strengthen transparency and readiness. Overall, WhosOn presents a credible, secure, and professional online presence with minor gaps in privacy compliance and security transparency. Strategic recommendations include enabling DNSSEC, implementing a visible cookie consent mechanism, publishing incident response contacts, and enhancing security headers to elevate trust and compliance.

XiBE is a Netherlands-based technology company offering a cloud-based ideas realization platform designed to facilitate employee collaboration in idea sharing, selection, and execution. The website presents a modern, user-friendly interface hosted on the Weebly platform, targeting organizations seeking to enhance bottom-up innovation. The platform emphasizes ease of use and community engagement, supported by client testimonials and logos from reputable organizations. Technically, the site employs standard web technologies including jQuery and Google Analytics, with moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and visible privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and user trust. Overall, the site is professional and credible but would benefit from enhanced privacy compliance and security best practices.

N

Neway

neway.ee

0

Neway is an award-winning brand and experience design agency based in Estonia, with a domain age consistent with its claimed business history since 2007. The company specializes in creating brands and experiences from strategy through execution, targeting businesses seeking high-quality creative services. The website showcases a professional portfolio with multimedia content and highlights multiple industry awards, positioning Neway as a reputable player in the creative agency market. Technically, the website uses modern JavaScript frameworks such as Vue.js, integrates multiple analytics and marketing tools, and is hosted by Zone Media OÜ. Security posture is strong with HTTPS enforced, reCAPTCHA on forms, and cookie consent implemented, though explicit security policies and incident response information are absent. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the website is professional, trustworthy, and technically sound, with room for improvement in privacy and security transparency.

V

Vanalinna Ehitus

vlrestaurering.se

0

Vanalinna Ehitus is a specialized restoration company focusing on the renovation of plastered facades and restoration of wooden windows and doors, particularly for culturally protected and historically valuable buildings. The company operates primarily in Sweden and emphasizes quality craftsmanship, flexibility, and preservation of architectural heritage. Their market position is that of a niche specialist serving clients who require expert restoration services for heritage properties. Technically, the website is built on WordPress with modern front-end technologies such as Bootstrap and jQuery, optimized for performance and mobile responsiveness. SEO practices are well implemented, and the site uses structured data to enhance search engine understanding. Hosting details are not explicit, but the domain is registered with Ascio and uses European name servers. From a security perspective, the site uses HTTPS with good SSL configuration but lacks DNSSEC and some recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy and cookie consent mechanism present, but no terms of service or explicit security policies. Contact information is clear and professional, enhancing business credibility. Overall, the website presents a professional and trustworthy image with a solid technical foundation and good content quality. The main areas for improvement include enhancing security headers, publishing a security policy, and improving privacy compliance details to align better with GDPR requirements.

The website weandthecolor.com is currently inaccessible due to a database connection error, resulting in no visible content or metadata for analysis. The domain is registered with IONOS SE since 2010, indicating a stable and legitimate registration history. However, the lack of accessible content prevents assessment of business operations, services, or compliance policies. Technically, the site shows no evidence of modern security headers or DNSSEC, and the SSL configuration could not be verified. The absence of privacy and cookie policies indicates non-compliance with GDPR and related regulations. Overall, the website's current state represents a critical operational and security risk that must be addressed promptly.

E

Etapes :

etapes.com

0

Étapes is a well-established French media company specializing in design, image, and visual communication since 1994. The website serves as a digital magazine platform offering editorial content, subscription services, event agendas, and job listings targeted at design professionals and enthusiasts. The company maintains a consistent brand presence across multiple social media platforms, reinforcing its market position as a reference media in its sector. Technically, the website is built on WordPress with WooCommerce integration for e-commerce capabilities, leveraging modern web technologies and SEO plugins to optimize content delivery and user experience. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks visible security headers and explicit privacy and cookie policies, which are critical for compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site is professional and functional but would benefit from enhanced transparency and security practices.

O

ooogo LLC.

ad110.com

0

AD110 is a non-profit project operated by ooogo LLC., focusing on art, design, creativity, and lifestyle content primarily targeted at design professionals and enthusiasts. The website offers curated articles, design resources, event coverage, and job listings within the creative industry. The platform positions itself as a niche media outlet with a long-standing presence since 2004, emphasizing open content sharing under Creative Commons licensing. Technically, the site is built using modern JavaScript frameworks such as Vue.js, with a custom CMS or proprietary platform, and includes advertising via Google Adsense. While the design and user experience are good, the site lacks HTTPS, security headers, and formal privacy or cookie policies, which impacts its security posture and privacy compliance. The domain is registered with GoDaddy and shows no suspicious WHOIS patterns, supporting its legitimacy. Overall, the site is functional and professional but requires significant improvements in security and privacy to meet modern standards.

A

Andevis

virosoft.ee

0

Andevis is an Estonian software development company specializing in integrated HR and payroll management solutions, including their flagship Virosoft HR system. The company targets businesses seeking tailored personnel accounting, work time tracking, payroll, training, and self-service portals. The website is professionally designed using WordPress and includes multiple contact forms secured with Google reCAPTCHA v2. The technical infrastructure is modern but lacks some advanced security headers. The domain is well-established since 2010 and registered with an Estonian registrar consistent with the business location. However, the site lacks visible privacy and cookie policies, which impacts compliance scores. Overall, the website presents a credible and professional business presence with room for improvement in privacy and security practices.

Connect.ge is a Georgian digital agency specializing in comprehensive web services including website development, UX/UI design, hosting, SEO, and digital marketing. Established in 2011, the company targets businesses seeking to enhance their online presence with professional and innovative digital solutions. Their market position is that of a trusted local provider with a strong portfolio and active social media presence. Technically, the website leverages modern frameworks such as Nuxt.js and Vue.js, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with detailed policies and GDPR alignment. Overall, Connect.ge presents a professional, trustworthy, and technically mature digital presence.

1

152 MEDIA

152media.com

0

152 MEDIA is a specialized AdTech company focused on delivering innovative programmatic advertising solutions for publishers and buyers. With over 14 years of experience, the company operates a dedicated development lab leveraging AI to enhance digital advertising profitability and campaign performance. The website reflects a mature business with a clear market position and a professional digital presence. Technically, the site is built on WordPress with modern frameworks and includes essential security features such as HTTPS and Google reCAPTCHA. Privacy compliance is addressed through a cookie consent mechanism and a privacy policy, though terms of service and security policies are not explicitly found. The security posture is solid but could be improved by adding security headers and formal incident response information. Overall, the website is trustworthy, well-maintained, and aligned with the business claims.

The domain hm.ee is registered to the Estonian Ministry of Education and Research, indicating a government-operated website focused on education and research sectors. However, the website content is currently inaccessible due to a Cloudflare Turnstile captcha security challenge, preventing direct analysis of the site's content, policies, or contact information. The technical infrastructure leverages Cloudflare for security and performance, but DNSSEC is not enabled, representing a minor security gap. The security posture is difficult to assess fully due to the blocked content, but the use of Cloudflare's WAF and captcha indicates a proactive approach to mitigating automated threats. Overall, the domain registration data is consistent and legitimate, reflecting a stable government entity. Strategic recommendations include enabling DNSSEC, publishing clear privacy and security policies, and ensuring accessibility without excessive security barriers to improve user experience and transparency.

E

Eesti Õpilasesinduste Liit

escu.ee

0

Eesti Õpilasesinduste Liit is the largest youth organization in Estonia representing approximately 90,000 students through its member schools. The organization focuses on advocating for student interests, organizing events, and providing resources to member schools. The website is built on WordPress using the Avada theme and integrates Gravity Forms for contact and application forms. It demonstrates a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and spam prevention in forms, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, the website is professional and trustworthy, serving an essential role in the Estonian education sector.

M

MTÜ Noorteühing Tugiõpilaste Oma Ring Eestis

tore.ee

0

MTÜ Noorteühing Tugiõpilaste Oma Ring Eestis (TORE) is a well-established Estonian non-profit organization focused on youth peer support, mentoring, and training programs. The organization operates nationally with a history of nearly three decades, offering structured events such as summer and autumn schools, conferences, and supervision sessions. Their target audience includes Estonian students and their mentors, aiming to empower youth through systematic engagement and education. The website reflects this mission with relevant content, event announcements, and training information. Technically, the website is built on WordPress 6.8.1 with popular plugins like Yoast SEO and Modern Events Calendar Lite, indicating a mature digital infrastructure. The site uses HTTPS with a good SSL configuration, Google Fonts, and jQuery libraries. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured data. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, demonstrating awareness of privacy compliance. However, it lacks explicit privacy and terms of service pages, security headers, and incident response contacts, which are areas for improvement. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the HTML content. Overall, the website is credible and professional, with strong business legitimacy and consistent branding. The main risks relate to privacy compliance and security best practices, which can be addressed to enhance trust and regulatory adherence.

T

Taimne Teisipäev | Sest elu on tähistamist väärt!

taimneteisipaev.ee

0

Taimne Teisipäev is a niche Estonian website dedicated to promoting healthier eating habits by encouraging more plant-based food consumption. The site targets health-conscious consumers interested in lifestyle changes towards plant-based diets. The business model appears to be informational and advocacy-focused, without direct e-commerce or transactional services. The website uses modern frontend technologies including Bootstrap and Nuxt.js, and integrates popular analytics and tracking tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. However, the absence of explicit privacy, cookie, and terms of service policies suggests gaps in compliance and transparency. Security posture is moderate with HTTPS usage implied, but lacks published security policies or incident response contacts. Overall, the domain registration is consistent and legitimate, supporting the website's credibility. Strategic improvements in privacy compliance and security transparency are recommended to enhance trust and regulatory adherence.

P

Peaasi.ee

peaasi.ee

0

Peaasi.ee is a well-established Estonian non-profit organization dedicated to supporting youth mental health through a comprehensive online portal. The website offers extensive mental health information, e-counseling services, first aid tools, and training programs aimed at improving mental wellbeing among Estonian youth and those working with them. The organization maintains a strong market position as a leading mental health resource in Estonia, supported by multiple partnerships and funding sources. Technically, the site is built on WordPress with a modern tech stack including WooCommerce, Bootstrap, and various analytics and marketing tools, demonstrating a mature digital infrastructure. The website is multilingual and optimized for mobile devices, providing a good user experience and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit cookie consent mechanisms are missing, representing areas for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, though enhancing privacy compliance and security policies would strengthen its risk profile.

L

Lastekaitse Liit

kiusamisestvabaks.ee

0

Kiusamisest vabaks is a non-profit educational platform operated by Lastekaitse Liit, focused on bullying prevention in Estonia. The website offers multilingual educational materials and awareness content targeting nurseries, kindergartens, and grade schools. It collaborates with reputable partners including the Estonian Ministry of Education and Research and international child protection organizations. The platform is well-positioned within its niche, serving educators, parents, and children with relevant resources. Technically, the website is built on WordPress with modern technologies such as Bootstrap, jQuery, and Google services for analytics and tag management. It employs multilingual support via WPML and uses SEO best practices including structured data and Open Graph metadata. The site is mobile-optimized and performs moderately well, with a consistent and professional design. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website demonstrates a solid business credibility and technical foundation with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

N

Norrison OÜ

norrison.ee

0

Norrison OÜ is an established Estonian company specializing in the manufacturing and retail of knitwear, workwear, school uniforms, and fashion apparel. Founded in 2010, it holds a strong market position as the largest school uniform producer and quality knitwear creator in Estonia. The website serves as a professional e-commerce platform targeting Estonian consumers interested in locally produced, ethically made clothing. The company emphasizes quality, local production, and customer satisfaction, supported by testimonials and a consistent brand presence across social media channels. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies including jQuery, Matomo analytics, and Facebook Pixel for marketing and tracking. The site is hosted by Zone Media OÜ, a reputable Estonian hosting provider. The website demonstrates good mobile optimization, SEO practices, and user experience, although accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting compliance with GDPR requirements. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and the extensive use of third-party tracking scripts may raise privacy considerations. No incident response or security policy information is publicly available, indicating an area for improvement. Overall, the website is trustworthy and professionally maintained, with a solid business foundation and digital presence. Strategic enhancements in security headers, privacy transparency, and incident response readiness would further strengthen its security posture and compliance standing.

E

Eesti Maksumaksjate Liit

maksumaksjad.ee

0

Eesti Maksumaksjate Liit (EML) is a well-established Estonian non-profit organization founded in 1995, dedicated to protecting taxpayers' interests, providing tax consultation, education, and advocacy. The website serves as a portal offering news, training, legal advice, and publications related to taxation in Estonia. The organization targets Estonian taxpayers and businesses seeking reliable tax information and support. Technically, the website is built on WordPress, utilizing modern libraries such as jQuery and Slick Slider, with Google Analytics and CookieYes for tracking and consent management. The site is hosted by Radicenter OÜ and uses HTTPS with a good security posture, including a comprehensive cookie consent mechanism. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, accessible, and trustworthy, with good SEO and privacy compliance, supporting EML's role as a credible tax advocacy entity.

E

ETKA Andras

andras.ee

0

ETKA Andras is a well-established Estonian non-profit organization dedicated to adult education and lifelong learning. The website serves as a hub for adult learners and educators, providing information on training, certification, and community events. The organization partners with the Estonian Ministry of Education and Research and benefits from European Social Fund programs, reinforcing its credibility and national importance. The site is multilingual, primarily in Estonian, with English and Russian options, enhancing accessibility for diverse audiences. Technically, the website is built on WordPress with modern plugins and frameworks, offering a good user experience and moderate performance. Security measures include HTTPS and reCAPTCHA integration, though additional security headers and explicit privacy policies are recommended to enhance compliance and trust. Overall, the site reflects a professional, trustworthy educational entity with a clear mission and stable digital presence.

L

Luwi OÜ

luwi.ee

0

Luwi OÜ operates as a specialized training center in Estonia, providing a broad range of educational services including group and individual training courses, psychological and addiction counseling, and supervision services. The company is recognized as a partner of the Estonian Unemployment Insurance Fund's training card program, which enhances its credibility and market position. The website is professionally designed, multilingual, and offers clear navigation to various training categories and services, targeting individuals and organizations seeking professional development in Estonia. Technically, the website is built on WordPress with a modern technology stack including Bootstrap, jQuery, and several optimization and security plugins. It employs Google reCAPTCHA v3 for form protection and uses cookie consent mechanisms to comply with privacy regulations. The site is hosted by Zone Media OÜ, a known Estonian hosting provider, and demonstrates moderate performance and good mobile optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a privacy policy and cookie consent banner. Business credibility is strong with clear contact information, company registration details, and trust signals such as partnerships and certifications. Overall, Luwi OÜ's website presents a trustworthy and professional online presence with room for improvement in security header implementation and formal security policies. The risk level is moderate with no critical issues detected, making it a reliable platform for its users.

M

Mineflow

mineflow.ai

0

Mineflow is a newly founded AI-driven mineral exploration startup focused on transforming exploration site data into accurate 3D and 2D models of mineral deposits such as gold and copper. The company targets mining professionals and geologists with a SaaS platform leveraging advanced AI technologies. The website is built using modern web technologies including React and Next.js, providing a good user experience with responsive design and clear navigation. Analytics are implemented via PostHog, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks DNSSEC and security headers, and no privacy or cookie policies are published, which are critical for compliance and trust. The domain is privacy protected and very new, consistent with a startup profile. Overall, the website is professional but would benefit from enhanced privacy compliance and security hardening.

ČSOP Tilia is a small Czech non-profit organization dedicated to ecological education and youth engagement, focusing on renewable energy and environmental projects. The website provides information about their activities, projects, and contact details, targeting children, youth, and educators in the Ústecký region. The organization appears to be supported by regional and EU funding, as indicated by logos and project descriptions. Technically, the website is built on the eStránky.cz platform using older JavaScript libraries and includes basic social media integration via Facebook SDK. Security posture is limited with no visible security headers and unknown SSL configuration. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data is unavailable, which reduces domain trust but does not necessarily indicate malicious intent given the nature of the organization. Overall, the website is functional but basic in design and security, suitable for a small non-profit but requiring improvements in security and compliance.

W

Wellness Hotel Lužan

hotelluzan.cz

0

Wellness Hotel Lužan is a small hospitality business offering luxury accommodation, wellness services, and dining near the Czech Switzerland region. The website presents a professional and consistent brand image with clear navigation and relevant content targeting tourists seeking comfort and relaxation. The technical infrastructure leverages ASP.NET WebForms with modern front-end libraries such as jQuery, Bootstrap, and Google Maps API, supporting a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy and cookie policies exist but could be enhanced with explicit consent mechanisms. Overall, the website is trustworthy and functional, but the absence of WHOIS data limits domain legitimacy verification.

D

Dráha národního parku

drahanp.cz

0

Dráha národního parku operates as a specialized regional tourism and transportation information platform focused on the Czech and Saxon Switzerland national parks and surrounding protected areas. The website provides comprehensive travel information including railway routes, bus connections, trip recommendations, ticketing, and timetables, targeting tourists and visitors interested in exploring these natural regions. The business model centers on promoting sustainable travel experiences by train and bus, supported by partnerships with regional transport and tourism organizations. Technically, the website is built on WordPress with common plugins such as LayerSlider, Contact Form 7, and Yoast SEO, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy and incident response policies are absent. Overall, the website is professional and trustworthy, though it would benefit from enhanced privacy documentation and security best practices to improve compliance and user trust.

I

Institute of National Anti-Doping Organisations

inado.org

0

The Institute of National Anti-Doping Organisations (iNADO) is a non-profit international membership organization dedicated to supporting National Anti-Doping Organisations (NADOs) and Regional Anti-Doping Organisations (RADOs). It promotes best practices, fosters community collaboration, and serves as a global voice advocating for clean sport. The website reflects a professional and well-structured platform that provides resources, news, and event information relevant to anti-doping experts and stakeholders. Technically, the website is built on the TYPO3 CMS platform, integrating modern tools such as Google Tag Manager for analytics and Usercentrics for consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. However, some security headers are missing, and there is no publicly visible security policy or incident response information. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, aligning with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the site demonstrates a solid security posture but could improve transparency around security policies and incident response. The overall risk assessment is low, with recommendations focusing on enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

The website 'Spordin puhtalt!' is an Estonian e-learning platform dedicated to educating amateur athletes about antidoping rules, prohibited substances, and healthy sports practices. It is operated by SA Eesti Antidoping and supported by notable Estonian sports figures and international partners such as UNESCO. The platform offers educational content, exercises, videos, and testimonials to promote clean sports. Technically, the site is built on WordPress with common plugins and uses HTTPS with a moderate performance profile. However, it lacks visible privacy and cookie policies and security headers, which are areas for improvement. The absence of explicit contact emails or phone numbers limits direct communication channels, though a contact form is present. Overall, the site is trustworthy and professionally presented but could enhance its privacy compliance and security posture.

Oxiapps.com presents a professional website offering a Shopify app focused on social login integration to simplify customer authentication and improve signup rates. The business targets e-commerce store owners seeking to enhance user experience through social media login options. The website is built on WordPress using WPBakery Page Builder and includes modern UI elements such as sliders and responsive design. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. No privacy, cookie, or terms of service policies are present, and no contact information is provided, which impacts compliance and user trust. Security posture is moderate with no visible security headers or incident response information. Overall, the site is functional and well-designed but lacks critical compliance and trust elements.

P

PR-room

pr-room.cz

0

PR-room is a small Czech Republic based business specializing in custom WordPress website development and graphic design services. The company is led by Ing. Kristýna Včeláková, who has extensive experience since 2014 and formal training in web development and graphic design. The website demonstrates a professional service offering with references to client sites and a clear contact section including email, phone, and LinkedIn profile. Technically, the site uses modern WordPress and WooCommerce versions, integrates Google Analytics, and is served over HTTPS, indicating a reasonable digital maturity level. However, the absence of privacy and cookie policies, lack of security headers, and missing WHOIS registration data present compliance and trust concerns. Overall, the security posture is moderate but could be improved with better policy disclosures and security headers.

Tady Chutná is a hospitality business operating four distinct restaurants in the heart of Prague, specializing in traditional Czech and Austro-Hungarian cuisine. The brand emphasizes quality food, regional wines, and a rich historical ambiance, targeting both locals and tourists seeking authentic dining experiences. The parent company, Husičky s.r.o., manages these establishments with a focus on culinary heritage and customer satisfaction. The website serves as a central hub linking to each restaurant's dedicated site and provides daily menu offerings and contact information. Technically, the website is built on WordPress 6.8.1, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing, alongside Cookiebot for GDPR-compliant cookie consent management. Hosting is provided by Webglobe, consistent with the domain's WHOIS data. The site is mobile-optimized and SEO-friendly, with structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies. No forms are present for direct data collection, reducing attack surface, but the absence of privacy and terms of service documents represents a compliance gap. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and preparedness. Overall, the website presents a professional and trustworthy front for a medium-sized hospitality business, with good technical implementation and moderate privacy compliance. Strategic improvements in policy transparency and security posture would further strengthen its risk profile and customer confidence.

E

Ettevõtja infovärav Aktiva

aktiva.ee

0

Aktiva.ee is an Estonian business information portal focused on supporting entrepreneurs at various stages, including startups, operating companies, and those expanding internationally. The platform offers practical guidance, resources, and insights to help businesses succeed, with content tailored to the Estonian market and language. The website is positioned as a trusted resource for business knowledge and development in Estonia, with a clear focus on entrepreneurship and business growth.

F

FCI Levadia

fcilevadia.ee

0

FCI Levadia is an Estonian football club with an online presence primarily focused on providing football-related content and engaging with local sports fans. The website is built on WordPress and utilizes common plugins such as Yoast SEO and WP Rocket to enhance SEO and performance. The technical infrastructure is moderate, hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. The site is accessible without any WAF or security challenge blocking content. However, the website lacks critical privacy and cookie policies, contact information, and published security or incident response policies, which are important for compliance and trust. Security posture is basic with no advanced headers or vulnerability disclosures evident. Overall, the site is functional but would benefit from improvements in privacy compliance, security best practices, and business transparency.

C

Citadele pank

citadeleleasing.ee

0

Citadele pank is a well-established financial institution in Estonia offering leasing services primarily focused on vehicle financing. The website provides detailed leasing options, including a calculator and a dedicated leasing portal for customers to manage their contracts and applications. The business targets private individuals seeking flexible leasing solutions with personalized interest rates and competitive terms. The company is part of the larger Citadele Group, indicating a strong market position in the Baltic financial sector. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, with a CMS likely being October CMS. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, the site enforces HTTPS, uses security headers, and implements cookie consent mechanisms, though explicit security and incident response policies are not publicly available. WHOIS data confirms the domain's legitimacy and consistency with the business identity. Overall, the website reflects a professional and trustworthy financial service provider with room for improvement in transparency around security policies and incident response.

F

Fabricca

btsaf.com

0

Fabricca is an international, award-winning creative design and branding agency founded in 2013 and based primarily in North Macedonia with presence in Munich and Vienna. The agency offers a broad range of creative services including design, branding, web development, motion graphics, digital marketing, copywriting, video production, and photography. With a team of about 20 professionals and over 1000 clients served globally, Fabricca positions itself as a multi-disciplinary agency focused on delivering high-quality creative solutions. The website reflects a mature digital presence built on WordPress with modern frontend technologies and SEO optimizations. Hosting is provided by DreamHost, and the domain is registered via NameCheap with a consistent registration history. Security posture is good with HTTPS enforced and domain transfer protection, but lacks some security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-structured, but could improve compliance and security transparency.

A

Artis Zelmenis

artiszelmenis.lv

0

Artis Zelmenis operates a small Latvian-based business website offering a variety of services including web development, SEO, legal assistance, photography, advertising, and educational content. The site targets local SMEs, individuals, and students, providing multilingual content in English, Latvian, and Russian. The business appears niche-focused with a stable presence since 2012. Technically, the website uses standard JavaScript libraries and social media SDKs for Facebook, Twitter, VK, and Draugiem.lv, alongside Google Analytics for traffic monitoring. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. SEO is reasonably addressed with meta tags and multilingual support. Security posture is moderate but with notable gaps: no visible HTTPS enforcement, absence of security headers, and use of some HTTP resources that may cause mixed content issues. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is functional and professional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user safety.

Baltic Legal operates a specialized immigration and legal consultancy website focused on residence permits and immigration services in Latvia and the broader European Union. The company offers services including residence permits via real estate investment, business investment, and bank deposits, alongside legal assistance in corporate and immigration law. The website is well-structured, multilingual, and provides detailed information about immigration policies, visa requirements, and investment options. Technically, the site uses standard web technologies with Google Analytics and Tag Manager for tracking, but lacks advanced security headers and cookie consent mechanisms. The WHOIS data is fully redacted as per EURid policy, which is typical for .eu domains and does not raise immediate concerns. Overall, the site presents a professional image with moderate technical maturity and some room for security and privacy improvements.

The website kul.ee is registered to Haridus- ja Teadusministeerium (EENet), an Estonian government entity, with a domain age dating back to 2010. The site is currently inaccessible due to a Cloudflare security challenge page requiring human verification, which blocks access to actual website content. Consequently, no business description, contact information, or user-facing content is available for analysis. The technical infrastructure relies on Cloudflare services for security and performance, including the Turnstile captcha and Cloudflare Insights for analytics. Security posture cannot be fully assessed due to the blocked content, but the use of Cloudflare indicates a baseline security approach. Privacy and cookie policies are not detectable on the challenge page, and no forms or data collection mechanisms are visible beyond the security verification. Overall, the domain registration data supports legitimacy as a government entity website, but the lack of accessible content limits comprehensive evaluation.

K

Kultuurkapital

kulka.ee

0

Kultuurkapital is a key Estonian non-profit government-related institution dedicated to supporting culture and cultural heritage through targeted funding and grants. The website provides extensive information about various cultural programs, expert groups, and funding opportunities, primarily targeting Estonian cultural organizations and artists. The domain is well-established since 2010 and registered with a reputable Estonian registrar, supporting the legitimacy of the organization. Technically, the website uses the Voog CMS platform and integrates Google Analytics and Tag Manager for user tracking. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and professional design. However, explicit privacy and cookie policies are missing, and no contact emails or phone numbers are directly visible in the HTML content, which may impact user trust and privacy compliance. Security headers are not detected, indicating room for improvement in security posture. Overall, the website is professional and trustworthy but could enhance privacy compliance and security best practices.

R

Rollmer OÜ

rollmer.ee

0

Rollmer OÜ is an established Estonian company specializing in the sale of industrial accessories including bearings, seals, and power transmission products. The company operates both retail and wholesale channels with physical stores located in Tallinn and Tartu, targeting industrial, agricultural, forestry, service, and retail businesses. The website reflects a professional presence with clear product categories and consistent branding, supporting its market position as a regional supplier. Technically, the site is built on WordPress using the Enfold theme and Yoast SEO plugin, indicating moderate digital maturity. However, the absence of HTTPS enforcement and security headers represents a significant security gap. Privacy compliance is weak, with no visible privacy or cookie policies and no consent mechanisms. The site lacks active analytics tracking despite plugin presence, suggesting limited user data collection. Overall, the security posture is moderate but requires improvements to meet modern standards. Strategic recommendations include implementing HTTPS, adding security headers, establishing privacy and cookie policies, and enhancing incident response capabilities to strengthen trust and compliance.

E

Eesti Olümpiakomitee

eok.ee

0

Eesti Olümpiakomitee is the official umbrella organization for sports and Olympic activities in Estonia, providing support to athletes, organizing events, and promoting sports culture nationally. The website reflects a well-established non-profit entity with strong partnerships and sponsorships, targeting the Estonian sports community and general public interested in Olympic sports. Technically, the site uses a modern stack including Bootstrap, jQuery, and Voog CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some improvements in security headers and library updates are recommended. Privacy compliance is moderate with a clear cookie consent mechanism but lacking explicit privacy policy and terms of service pages. Overall, the site is professional, trustworthy, and functional with room for technical and compliance enhancements.

E

Eesti Antidopingu ja Spordieetika Sihtasutus

eadse.ee

0

Eesti Antidopingu ja Spordieetika Sihtasutus is a government-affiliated non-profit organization dedicated to promoting fair play, anti-doping measures, and ethical conduct in sports within Estonia. The organization provides education, prevention, and regulatory oversight services to athletes, sports organizations, and the public. The website serves as an informational and educational platform with resources, news, and training offerings related to sports ethics and anti-doping. Technically, the website is built on WordPress using the Avada theme and integrates modern plugins such as Yoast SEO and Revolution Slider. It employs Google Analytics for visitor tracking but lacks visible cookie consent mechanisms and privacy policy disclosures, which are critical for GDPR compliance. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but security headers and incident response information are absent. Overall, the website is professional, well-branded, and trustworthy, though it would benefit from enhanced privacy compliance and explicit contact details.

P

PD Instore

neoinstore.com

0

NEO Retail Displayware is a specialized retail merchandising company offering innovative pegboard hardware and signage solutions under the patented neoPEGS™ brand. Their products target retail businesses seeking modern, customizable, and cost-effective displayware. The website is built on WordPress using WPBakery Page Builder and includes standard web technologies such as jQuery and FontAwesome. The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security practices.