Security Directory

P

Prototron

prototron.ee

0

Prototron is an Estonian startup funding program established in 2012 that provides equity-free grants up to 35,000€ along with mentoring and acceleration services to innovators and startups. The program supports the development of functional prototypes and aims to foster new technology-driven businesses. The website is professionally designed using WordPress CMS and integrates common web technologies such as jQuery and Yoast SEO for optimization. It demonstrates good mobile responsiveness and clear navigation, supporting a positive user experience. Security posture is solid with HTTPS enforced and secure cookie settings, though it lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. The domain registration is consistent with the business claims, showing legitimacy and stability. Overall, the website reflects a credible and established organization with a clear mission and professional online presence.

The website altex.ee is currently inaccessible due to a bandwidth limit exceeded error (HTTP 509), resulting in no available content for analysis. The domain is newly registered in February 2024 under the Estonian registrar Zone Media OÜ, indicating a recent business or project launch. Due to the lack of accessible content, no business description, contact information, or policies are available. The technical infrastructure appears to be hosted by host.ee, but no further technical or security details can be confirmed. The security posture is weak due to the site being offline, and no security headers or HTTPS status could be verified. Overall, the site currently presents a high risk of unavailability and lacks transparency and compliance indicators.

O

Oribalt Group

oribalt.com

0

Oribalt Group is a regional pharmaceutical logistics and wholesale company operating in the Baltic states of Estonia, Latvia, and Lithuania. Established in 2017 following the acquisition of Baltic operations from Oriola Group, Oribalt continues a legacy dating back to the early 1990s. The company offers a broad range of services including logistics, wholesale, tenders, repackaging, clinical trials, marketing, and pharmacy operations, targeting businesses in the healthcare sector across the Baltics. The website reflects a professional and consistent brand presence with clear navigation and comprehensive contact information for multiple regional offices. Technically, the website employs modern web technologies such as Google Tag Manager, jQuery, and FontAwesome, with good mobile optimization and moderate performance. The site uses HTTPS with a valid SSL configuration and implements CSRF tokens for form security. Cookie consent is managed via an opt-in banner, indicating some level of privacy compliance. However, the absence of a dedicated privacy policy, terms of service, and security policy pages limits full compliance and transparency. From a security perspective, the site shows good practices like HTTPS enforcement and CSRF protection but lacks security headers and explicit incident response contacts. WHOIS data is transparent and consistent with the business claims, enhancing trustworthiness. No WAF or blocking mechanisms were detected, allowing full content accessibility. Overall, Oribalt's digital presence is solid with room for improvement in privacy and security policy disclosures. Strategic enhancements in these areas would strengthen compliance posture and stakeholder trust.

K

Kingivabrik OÜ

kingivabrik.ee

0

Kingivabrik OÜ operates a professional e-commerce website specializing in promotional and corporate gifts, offering a wide range of branded merchandise including writing instruments, souvenirs, gift sets, drinkware, textiles, and sweets. The company targets businesses and organizations looking for customized logo products to enhance brand visibility and employee recognition. With over 13 years of experience and a strong client base exceeding 10,000 companies, Kingivabrik holds a solid position in the Estonian retail market for promotional goods. The website is built on a WordPress platform using WooCommerce, enhanced by the Avia Framework and various plugins for e-commerce functionality, multilingual support, and marketing integrations. The technical infrastructure includes modern tracking and analytics tools such as Google Analytics and Facebook Pixel, alongside a live chat widget for customer support. The site demonstrates good mobile optimization, SEO practices, and user experience design, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and employs Google reCaptcha on its contact form to mitigate spam. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are clearly accessible. However, the site lacks explicit security headers and published security or incident response policies, which could be enhanced to strengthen its security posture. Overall, Kingivabrik's website reflects a trustworthy and professional business with a good balance of content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and transparency around security policies would further enhance its risk profile and customer trust.

S

Semetron AS

semetron.ee

0

Semetron AS is an established Estonian company specializing in the sale, maintenance, and repair of advanced medical technology and supplies. With over 30 years of experience and partnerships with more than 200 brands, Semetron serves healthcare providers and medical institutions primarily in Estonia and the Baltic region. Their business model focuses on B2B sales and service, supported by a professional website that highlights their product range and services. The company also operates an online store and partners with related entities such as mmh.ee for modular field hospital solutions. Technically, the website is built on WordPress with modern JavaScript libraries like Swiper.js and jQuery, and it employs Yoast SEO for search optimization and CookieYes for cookie consent management. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. Security-wise, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms, but lacks explicit security policies or incident response contacts. Overall, the website demonstrates a solid security posture with room for improvement in security headers and formal policies. The domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and improving incident response transparency to further strengthen trust and compliance.

The website glassolutions.eu is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks access to the actual content. This prevents a full analysis of the business, security posture, and compliance status. The visible page is a generic security challenge page with no business or contact information, no privacy or cookie policies, and no visible metadata or structured data. The technical infrastructure includes Cloudflare's security services, but no further technology stack details are available. The security posture cannot be fully assessed due to lack of content and security headers visibility. Overall, the site presents a low trust profile in its current state due to inaccessibility and lack of transparency.

I

ITEE Centre of Excellence

it.ee

0

The ITEE Digital Connected Economy website represents a government-affiliated Centre of Excellence in Estonia focused on digital economy research and innovation. The site is modest in content and design, primarily serving as an informational portal with a clear institutional affiliation to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium). The technical infrastructure is based on WordPress with common plugins and libraries, though some components like jQuery are outdated, which may pose security risks. The website uses HTTPS but lacks advanced security headers and privacy compliance mechanisms such as cookie consent or privacy policies. Contact information is limited to a single institutional email address, with no phone numbers or physical addresses provided. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

Adaltum.ee is a small Estonian translation service provider operated by Elkdata OÜ, founded in 2022. The website offers professional translation and localization services targeting businesses and organizations requiring multilingual content adaptation. The site is built on WordPress and uses standard themes and scripts, providing a moderate level of technical maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled but lacks important security headers and formal privacy or cookie policies, which impacts compliance and trust. No direct contact information or incident response policies are published, limiting transparency. Overall, the website is functional and professional but would benefit from enhanced security practices and compliance documentation to improve trust and legal adherence.

H

Harju Elekter AS

harjuelekter.ee

0

Harju Elekter AS is a well-established Estonian industrial group specializing in the design, manufacture, and installation of electrical distribution equipment for energy, industrial, and infrastructure sectors. The company has a strong market position supported by multiple awards and contracts with major entities such as Eesti Energia and CERN. Their website reflects a mature digital presence built on WordPress with modern plugins and frameworks, offering good SEO and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website and business demonstrate high professionalism and trustworthiness.

F

Feministeerium

feministeerium.ee

0

Feministeerium is an Estonian feminist media platform established in 2015, offering well-argued articles on politics, culture, and personal experiences. The website targets Estonian-speaking audiences interested in feminist perspectives and social issues. It operates a content publishing model supplemented by an online store and donation options, positioning itself as a niche media outlet in Estonia. Technically, the site is built on WordPress with WooCommerce, leveraging popular plugins like Yoast SEO for optimization. The infrastructure is hosted by Elkdata OÜ, a reputable Estonian hosting provider. Security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks visible security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

A

Altex

altex.ro

0

Altex.ro is a well-established Romanian e-commerce platform specializing in the sale of electronics and household appliances. Founded in 2001, it holds a strong market position as a leading retailer in Romania, offering a wide range of products including phones, laptops, TVs, and home appliances. The website features a comprehensive product catalog and supports fast delivery and installment payment options, targeting Romanian consumers seeking competitive prices and convenience. Technically, the website is built using modern web technologies such as React and Next.js, hosted on Akamai's infrastructure, and integrates analytics and marketing tools like Google Tag Manager, Hotjar, and Cookiebot for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies. No critical vulnerabilities or blocking mechanisms were detected. However, the absence of a visible privacy policy, terms of service, and direct contact information for security incidents indicates areas for improvement in compliance and transparency. Overall, Altex.ro demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic enhancements in privacy documentation, security policy publication, and contact transparency would further strengthen its security posture and regulatory compliance.

T

Tanel Teemusk

teemusk.com

0

The website teemusk.com represents a seasoned freelance iOS developer and technical team lead, Tanel Teemusk, showcasing his portfolio, resume, and contact information. The site targets businesses and clients seeking expert iOS development and technical leadership services. The business model is freelance consultancy with a strong emphasis on technical expertise and project leadership. The website is professionally designed using WordPress with Divi Builder and SEO optimizations, providing a good user experience and clear navigation. Social media presence is leveraged for contact and trust building. Technically, the site employs modern web technologies including HTTPS, Google Analytics, and Google reCAPTCHA for security and analytics. The CMS is WordPress, with plugins enhancing SEO and form functionality. Performance is moderate with good mobile optimization. However, some security best practices such as DNSSEC and security headers are missing, which could be improved. Security posture is solid with HTTPS and anti-bot measures, but lacks published security or privacy policies, which impacts privacy compliance. No direct company emails or phone numbers are disclosed, relying on contact forms and social media. The domain registration data is consistent with the business claims, showing a long-standing domain without privacy protection, supporting legitimacy. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

G

Gabriel Scientific OÜ

sleepangel-medical.com

0

Gabriel Scientific OÜ operates the SleepAngel Medical website, offering innovative medical barrier bedding products featuring patented PneumaPure® filter technology. Their products are certified as Class I Medical Devices in the EU, registered with the FDA, and approved by the SFDA, positioning them as a niche innovator in healthcare infection control. The company targets healthcare facilities and distributors, emphasizing sustainability and hygiene. The website is professionally designed using WordPress with Divi and Elementor, featuring multimedia content and clear navigation. Technical infrastructure includes modern web technologies, Google Analytics, and Facebook Pixel for marketing insights. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site reflects a trustworthy and credible business with room for enhanced privacy and security disclosures.

F

FB Asset Management

fbassets.eu

0

FB Asset Management is a small Estonian investment fund management company established in 2013. The company manages investment funds licensed by the Estonian Financial Supervision Authority and targets professional and experienced investors with funds such as FB Opportunity Fund and FB Corporate Bond Fund. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. Google Analytics is used for visitor tracking, but no cookie consent mechanism or privacy policy is present, representing a compliance gap. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks security headers and incident response information. Overall, the website is professional and trustworthy but should improve privacy compliance and security transparency.

AS Eesti Pagar is a well-established Estonian bakery company founded in 2010, specializing in a wide range of bread, pastry, and frozen bakery products. The company serves retail consumers and export markets, positioning itself as a key player in the Estonian bakery sector. Their website reflects a professional and consistent brand image with clear product categorization and marketing efforts. Technically, the website is built on WordPress using modern frameworks and libraries such as Foundation, jQuery, and Slick Slider, with integrated marketing and analytics tools including Google Analytics, Facebook Pixel, and Mailchimp. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS with a cookie consent mechanism compliant with GDPR, but lacks explicit security policies and some security headers. WHOIS data confirms the domain's legitimacy and long-term presence, matching the business profile. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and incident response readiness.

O

OÜ MyFinancier

myf.ee

0

MyFinancier is a small Estonian company providing an intelligent personal finance assistant service that helps users analyze cash flows and gain detailed insights into asset distribution. The website is professionally designed using WordPress with Elementor and optimized for SEO and mobile devices. It targets Estonian individuals seeking financial management tools. The company maintains a consistent brand presence with active social media profiles on Facebook, LinkedIn, and YouTube. The domain is registered with Elkdata OÜ since 2018, aligning with the business age and location. Technically, the site uses modern web technologies, including Google Analytics and Facebook Pixel for analytics and marketing, with a compliant cookie consent mechanism.

The website bevscottbrown.com currently presents no accessible content, metadata, or business information, rendering it effectively non-functional from a user and security perspective. The domain is long-registered since 2006 with no privacy protection, indicating a stable registration history, but the lack of visible content severely limits any meaningful business or security analysis. Technically, the site lacks any detectable technologies, scripts, or security configurations, and no privacy or cookie policies are present. This absence of content and security posture represents a significant risk and undermines trust and credibility. Strategic recommendations include immediate deployment of HTTPS, development of comprehensive privacy and cookie policies, addition of contact and business information, and implementation of security best practices to improve the site's security and compliance posture.

P

Puidukoda OÜ

puidukoda.eu

0

Puidukoda OÜ is a medium-sized Estonian manufacturing company specializing in high-quality planed softwood timber products, founded in 1997 and part of the French Groupe Rose. The company operates modern automated production lines with a capacity exceeding 225,000 m³ annually and offers additional finishing services such as painting and impregnation. Their market position is strong in Europe, supported by a professional website with multilingual support and e-commerce capabilities. Technically, the website is built on WordPress with WooCommerce and employs modern SEO and privacy compliance tools, including GDPR cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the company demonstrates a professional digital presence aligned with its business operations and compliance requirements.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) which serves as an offline or error display within the Chrome browser. It includes embedded JavaScript and CSS for the Chrome Dinosaur game, but contains no actual business or website content. There is no evidence of a commercial entity, business description, or contact information. The page is not accessible as a public website and does not provide privacy, cookie, or terms of service policies. Technically, the page uses standard HTML5, CSS3, and JavaScript with Canvas and Web Audio APIs to render the game. Security posture is minimal but acceptable given the lack of external inputs or forms. Overall, this is not a live website but a browser error page, and thus cannot be evaluated as a business website.

V

Vanalinna Ehitus

vanalinnaehitus.ee

0

Vanalinna Ehitus is an established Estonian construction company specializing in building construction under main contracting agreements. Founded in 2010, the company emphasizes flexibility, client-centric approaches, and quality workmanship. Their website reflects a professional and modern digital presence with multilingual support for Estonian, Finnish, and Swedish audiences. The company showcases a portfolio of projects and maintains active social media channels, reinforcing their market position. Technically, the site is built on WordPress with modern libraries and optimizations, delivering good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is addressed with a privacy policy and cookie consent mechanism. Overall, the website supports the company's credibility and business goals effectively.

V

Vincent Holding OÜ

vholding.ee

0

Vincent Holding OÜ is a sales and distribution company specializing in consumer products such as Batiste dry shampoo, Moxie tampons, Andmetics, Foreo, and Purederm masks. The company positions itself as a major player in the retail sector within Estonia. The website is built using the Wix platform, leveraging Wix Thunderbolt and standard web technologies including JavaScript and Webpack. The technical infrastructure is modern and supports mobile optimization, though performance is moderate. Security posture is adequate with HTTPS enabled and some cookie handling mechanisms, but lacks comprehensive security headers and policies. Privacy compliance is minimal with no visible privacy or cookie policies, and no contact information is provided on the site, which limits user trust and regulatory compliance. Overall, the website is functional and professionally designed but requires improvements in privacy, security policies, and contact transparency to enhance trust and compliance.

E

Estateguru OÜ

estateguru.eu

0

Estateguru OÜ operates a leading European online marketplace platform specializing in short-term, property-backed business loans. The platform targets investors seeking secure investment opportunities backed by real estate mortgages across Europe. The company has an established market presence since 2013 and offers a digital investment service that connects businesses needing loans with investors. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted likely on SiteGround, and employs modern tracking and marketing tools such as Google Tag Manager and Intercom. The site is HTTPS secured with Cloudflare DNS but lacks DNSSEC and some security headers, indicating room for security enhancements. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, and no direct contact information or incident response details are provided. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures to enhance compliance and user trust.

Z

Zone Media OÜ

eventcenter.ee

0

Event Center is a small Estonian company specializing in the rental of event technology equipment such as sound, lighting, video technology, and stages. The website is built on WordPress using WooCommerce for e-commerce capabilities, supported by Elementor and Jet Menu plugins. The technical infrastructure is modern and moderately optimized for performance and mobile devices. However, the site lacks critical privacy and cookie policies, which impacts its compliance posture. Security measures such as HTTP security headers are absent, and no explicit contact or incident response information is provided, which could affect trust and user confidence. Overall, the website serves its business purpose but requires improvements in privacy, security, and transparency to enhance its credibility and compliance.

Meidron is a small Estonian company founded in 2011, offering IT support and consulting services, EU funding project management, and environmental consulting. The company targets businesses and organizations requiring specialized consulting and support services. The website is simple and functional, providing basic business information and contact details, including email, phone, and LinkedIn profile. The market position appears niche and regional with a focus on professional service delivery. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. Hosting appears to be on Oracle Cloud infrastructure. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. No CMS or frameworks are detected, indicating a custom or static site. From a security perspective, the domain is well-registered with a long history and transfer protection. However, the site lacks DNSSEC, visible HTTPS enforcement, and security headers. No privacy or cookie policies are present, and no consent mechanisms are implemented, indicating GDPR compliance gaps. The use of Google Analytics without cookie consent further impacts privacy compliance. No incident response or vulnerability disclosure information is provided. Overall, the website presents a moderate risk profile with good business credibility but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

K

KaminaKeskus

kaminakeskus.ee

0

KaminaKeskus is an established Estonian retailer specializing in fireplaces, stoves, ovens, sauna stoves, chimneys, and boilers, operating since 1997. The company offers a wide selection of heating appliances with a focus on quality, competitive pricing, and customer convenience including free home delivery. Their market position is strong within Estonia, supported by multiple physical stores and an active online presence. Technically, the website is built on WordPress with the Avada theme, utilizing modern SEO and multilingual plugins, and integrates Google Analytics and Facebook SDK for tracking. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers like CSP and HSTS, and is missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the site is professional and user-friendly but should improve privacy compliance and security policies to enhance trust and regulatory adherence.

M

MTÜ Eesti Sukeldujate Klubi

sukeldujad.ee

0

Eesti Sukeldujate Klubi is a small non-profit diving club based in Estonia, providing diving courses, trial dives, and organizing diving-related projects and events. The website serves as an informational portal for diving enthusiasts in Estonia, with a focus on community engagement and education. The club encourages support for its activities, such as purchasing a new bus, indicating active community involvement. Technically, the website is built on WordPress with common plugins like Events Manager, uses HTTPS, and includes social media integration with Facebook and Instagram. However, the site lacks advanced security headers and privacy compliance documentation, which are areas for improvement. The absence of explicit contact emails and phone numbers on the homepage limits direct communication channels. Overall, the site is functional with basic content and navigation but could benefit from enhanced security and privacy features to improve trust and compliance.

The website pmt.ee represents a small manufacturing company specializing in industrial machines and structures, offering engineering, manufacturing, and assembly services. The company appears established since 2010 and targets industrial clients requiring specialized manufacturing solutions. The website is built on WordPress with basic SEO optimization via Yoast SEO plugin and uses legacy JavaScript libraries such as jQuery 1.8.3. The technical infrastructure is moderate with room for modernization and improved mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and uses outdated libraries, which could expose the site to vulnerabilities. Privacy compliance is minimal with no visible privacy or cookie policies and no consent mechanisms. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the site is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

A

As Balsnack International Holding

balsnack.ee

0

Balsnack is an established Estonian snack food company founded in 2010, specializing in unique snack products such as potato waffles, popcorn, and breakfast cereals. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting both local consumers and export markets. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including jQuery and Google APIs, hosted by Elkdata OÜ, a local Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable and accessible site. Overall, the website demonstrates a medium-sized retail business with a solid online presence but could improve privacy compliance and security transparency.

Z

Zlick Ltd

zlick.it

0

Zlick Ltd operates a specialized paywall software service designed for WordPress subscription sites, targeting content creators, bloggers, podcasters, and media corporations. The company positions itself as an easy-to-use, high-conversion paywall solution that requires minimal technical setup, emphasizing a 10-minute integration and no need for developers. Their business model is subscription and transaction-based, with integrated CRM and analytics tools to help customers optimize monetization. The website reflects a professional and consistent brand image with clear messaging and trust indicators such as customer earnings and testimonials. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern JavaScript libraries and Google Analytics for tracking. The site demonstrates good SEO optimization, mobile responsiveness, and moderate performance. Security best practices are observed with HTTPS enforcement and security headers, though some privacy compliance aspects like cookie consent are lacking. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's claims, showing consistent registration details and no privacy protection, supporting legitimacy. Overall, Zlick's website is a credible and professional platform with a strong business focus and good technical implementation. Enhancements in privacy compliance and security transparency would further strengthen its position and user trust.

E

Eedo & Partnerid OÜ

united-loggers.ee

0

United Loggers is a small Estonian company specializing in wood chip production, round timber material supply, and wood chipping services. The company operates a professionally designed website built on WordPress with the Astra theme, indicating a moderate level of digital maturity. The website includes a GDPR-compliant cookie consent mechanism and uses privacy-friendly Plausible Analytics for visitor tracking. However, it lacks explicit privacy policy, terms of service, and security policy pages, which are important for compliance and trust. Technically, the website uses modern web technologies and plugins but does not show advanced security headers or incident response information. The domain is well-established since 2010, registered to a local Estonian company consistent with the website's business focus. No signs of blocking or WAF interference were detected, allowing full content access. Security posture is adequate with HTTPS enforced and cookie consent implemented, but improvements are recommended in publishing security policies, adding security headers, and providing incident response contacts. Overall, the website is functional and professional but could enhance compliance and security transparency to improve trust and reduce risk.

R-Systems is an Estonian software development company specializing in hydrography and spatial data software solutions, founded in 1989. The company offers services including hydrographic survey software, spatial data processing, and sensor integration, targeting sectors such as military, air surveillance, logistics, and GIS. The website reflects a small, niche technology business with a long operational history but limited online presence and content depth. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. The site lacks modern frameworks or CMS and shows basic performance and SEO optimization. Mobile optimization and accessibility are minimal, indicating room for improvement in digital maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response details are provided, limiting transparency and trust. The use of Google Analytics without a consent mechanism further impacts privacy compliance. Overall, the website presents a moderate risk profile with no critical security issues detected but several compliance and usability gaps. Strategic improvements in privacy policies, security headers, mobile optimization, and contact transparency are recommended to enhance trust and compliance.

HEREDITAS is a Dutch company specializing in inheritance and incapacity planning services, targeting seniors and their families. The company offers advisory and execution services including testament preparation and practical support after death or incapacity. The website reflects a niche market position with partnerships in the Dutch care sector. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Swiper, hosted by Hosting Concepts B.V. The site is mobile optimized and has good navigation and content quality but lacks privacy and cookie policies, security headers, and visible GDPR compliance indicators. Security posture is moderate with no DNSSEC and no visible security headers, and no analytics or tracking scripts detected, indicating minimal user tracking. Contact information is limited to a phone number and physical address with no email or contact forms visible. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

Media Menu International AS is a Swedish-Estonian digital media production studio specializing in online and mobile advertising assets including HTML5 banners, landing pages, email templates, web design, video production, and graphic design. Established in 2010, the company serves a global client base with a strong presence in Europe and the USA, supported by long-term partnerships and positive client testimonials. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap and Leaflet.js, ensuring good mobile optimization and user experience. However, the absence of privacy and cookie policies, security headers, and incident response information indicates areas for improvement in compliance and security posture. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security disclosures to align with best practices.

T

SEO Optimeerimine | Teie Ettevõte

taddy.ee

0

The website www.taddy.ee is a small Estonian SEO service provider specializing in both internal and external SEO optimization, competitor analysis, and targeted advertising. The business targets companies seeking to improve their search engine visibility and website traffic. The site presents clear service packages with pricing and showcases client examples, indicating a focused and professional approach. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics, with a responsive design and good navigation. However, there are gaps in privacy compliance, as no privacy or cookie policies are published, and contact information is limited to a web form without direct emails or phone numbers. Security posture is moderate with HTTPS enabled but lacking explicit security headers and vulnerability disclosures. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

The website harno.ee is registered to the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) and appears to be a government-related domain. However, the actual website content is inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. This prevents a full analysis of the website's offerings, policies, and user interface. The domain is relatively new, created in 2020, which aligns with possible recent governmental digital initiatives. Technically, the site uses Cloudflare for security and performance, but no DNSSEC is enabled, and no security headers are visible in the provided data. The lack of visible privacy, cookie, or terms of service policies, as well as absence of contact information, limits the assessment of compliance and user support. The site does not expose any forms or data collection fields beyond the captcha mechanism. From a security perspective, the use of Cloudflare's WAF and captcha indicates a proactive approach to mitigate automated threats and abuse. However, the absence of DNSSEC and security headers suggests room for improvement in hardening the domain's security posture. The lack of visible compliance documentation and contact channels is a concern for transparency and user trust. Overall, the site is legitimate and consistent with a government entity but currently inaccessible for detailed content and compliance evaluation. Strategic recommendations include enabling DNSSEC, publishing clear privacy and cookie policies, adding contact and incident response information, and implementing security headers to enhance trust and security.

The website cityntel.com represents a small Chinese company specializing in the rental, leasing, sales, and recycling of diesel generators ranging from 30KW to 2000KW, focusing on imported brands such as Cummins, Mitsubishi, and Caterpillar. The target audience includes infrastructure sectors such as railway, transportation, municipal engineering, real estate, factories, hotels, and construction sites. The business model is primarily service-oriented, providing equipment solutions tailored to client needs. The website content is primarily in Simplified Chinese and provides product listings, case studies, team introductions, and news updates related to diesel generators. Technically, the website is built on the EmpireCMS platform, utilizing standard web technologies including HTML5, CSS, JavaScript, and libraries such as Blazy for lazy loading and WOW.js for animations. The site has basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. There is no evidence of modern frameworks or advanced hosting details. The WHOIS data shows inconsistencies, including a domain creation date in the future and minimal registrant information, which raises legitimacy concerns. From a security perspective, the website lacks critical security headers, DNSSEC is not enabled, and there is no visible HTTPS enforcement information. Privacy and cookie policies are absent, and no incident response or vulnerability disclosure information is provided. These gaps indicate a low security maturity level and potential compliance issues with data protection regulations such as GDPR. Overall, the website presents a functional but basic online presence for a niche diesel generator rental business. The main risks relate to domain legitimacy concerns and insufficient security and privacy practices. Strategic improvements in security posture, compliance documentation, and WHOIS transparency are recommended to enhance trust and reduce operational risks.

A

Alarmeco

alarmeco.ee

0

Alarmeco is an Estonian company specializing in low-voltage, building automation, and security systems. Positioned as a domain expert, it offers modern technical solutions primarily targeting businesses and organizations within Estonia. The website reflects a professional and consistent brand image with clear contact information and relevant business descriptions. Technically, the site uses standard web technologies including Google Tag Manager for analytics, and it is well-optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

R

Respo Haagised AS

respo.ee

0

Respo Haagised AS is a well-established Estonian company founded in 1990, specializing in the manufacturing and sale of trailers, accessories, and spare parts. It holds a market leader position in Estonia and is a significant player in the Baltic and Scandinavian regions. The company operates a modern e-commerce platform with multi-language support and offers innovative services such as 24/7 self-service trailer sales points. The website reflects a mature digital infrastructure built on Magento, integrating advanced tracking and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, user-friendly, and trustworthy, supporting the company's business credibility and market presence.

T

Tallinna Linnateater

linnateater.ee

0

Tallinna Linnateater operates as a cultural institution providing theatrical performances and related visitor services primarily to the Estonian audience. The website serves as an official portal for event information, ticket sales, and theatre news, positioning itself as a reputable and established player in the local media and cultural sector. The domain has been registered since 2010, indicating a stable presence in the market. The site content is professionally presented with good navigation and mobile optimization, supporting a positive user experience.

I

Islamic Azad University | Dubai Branch

iau.ae

0

Islamic Azad University Dubai Branch is an educational institution offering fourteen quality and cost-effective degree programs with English as the medium of instruction. The university aligns its curricula with nationally approved standards, targeting students in Dubai and the UAE region. The website is built on a WordPress platform using Elementor, indicating a modern and maintainable technical infrastructure. SEO practices are implemented, and the site is mobile optimized with good user experience. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and incident response information. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the site is professional and credible but would benefit from enhanced privacy and security disclosures.

R

RTT AS

rtt.ee

0

RTT AS is an established Estonian company specializing in retail technology and office supplies, with over 28 years of experience. The company offers a broad range of products including cash registers, printers, copiers, and consumables, alongside installation, maintenance, and training services. Their market position is that of a trusted local provider catering primarily to business customers in Estonia. The website reflects a mature e-commerce platform built on WordPress and WooCommerce, featuring multilingual support and a comprehensive product catalog. Technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and CookieYes for consent management. Security posture is solid with HTTPS enforced and reCAPTCHA integration, although explicit security policies and incident response contacts are not published. Privacy compliance is supported by a detailed cookie consent mechanism, but lacks a visible privacy policy page. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in formal policy disclosures and security header implementation.

Advoco Konsultandid OÜ is a small Estonian company founded in 2010, providing professional and personalized accounting services primarily targeting small and medium-sized enterprises in Tallinn. The website reflects a clear business focus on flexible and reliable bookkeeping services, with content tailored to the local market. The company maintains a consistent brand presence and provides clear contact information, enhancing business credibility. Technically, the website is built on the Voog CMS platform, utilizing common web technologies such as jQuery and lazy loading scripts. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO is implemented at a basic level with appropriate meta tags and Open Graph data. From a security perspective, the site benefits from HTTPS encryption but lacks important security headers and formal security policies. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No forms or data collection mechanisms are detected on the homepage, reducing immediate data protection risks. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

Addenda OÜ is an Estonian-based professional training and consulting company established in 2010. The company offers a wide range of training courses, including construction, occupational safety, accounting, and legal topics, both in-person and via an e-learning platform called Addenda e-akadeemia. The website targets Estonian professionals and organizations seeking continuing education and compliance training. The business maintains a stable market position with a comprehensive course catalog and partnerships with local organizations. Technically, the website uses a custom CMS with legacy JavaScript libraries such as jQuery 1.11.1, and integrates common analytics and advertising tools like Google Analytics and Facebook Pixel. The site is mobile optimized and SEO friendly but lacks modern security headers and updated libraries. Security posture is moderate with HTTPS enabled but missing explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

A

Arme Oy

arme.fi

0

Arme Oy is a well-established Finnish industrial service and contracting company specializing in insulation and scaffolding services for various heavy industries including oil and gas, petrochemical, energy, and pulp and paper sectors. The company offers flexible service models ranging from standalone services to turnkey project deliveries and maintenance contracts, positioning itself as a leading provider in the Finnish market with international reach. The website reflects a professional digital presence built on WordPress with modern SEO and privacy compliance features, including a comprehensive cookie consent mechanism and detailed privacy policies. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though additional security headers and incident response contacts could enhance resilience. Overall, Arme Oy demonstrates a mature business and digital infrastructure with trustworthy domain registration and consistent branding.

H

Hansabuss AS

hansabuss.ee

0

Hansabuss AS is an established Estonian transportation company specializing in bus services including charter, line routes, employee transport, school transport, and city tours. With over 30 years of experience, the company positions itself as a reliable and caring bus partner in Estonia and neighboring regions. The website reflects a mature digital presence with multilingual support and active social media engagement. Technically, the site is built on WordPress with modern plugins and SEO tools, offering a good user experience and mobile optimization. Security posture is strong with HTTPS, security headers, and spam protection on forms, though explicit security policies and incident response contacts are not published. Privacy compliance is basic with cookie consent mechanisms and privacy policy presence, but lacks detailed GDPR documentation or data protection officer contact. Overall, the website and domain registration data indicate a legitimate and professional business with moderate to high trustworthiness.

O

olgatessari

olgatessari.com

0

Olga Tessari is a small Brazilian business focused on personal development, psychology, and behavioral consulting. The website provides guidance and information aimed at helping individuals improve themselves and achieve happiness across various life areas. The business operates primarily through content dissemination and consulting services, targeting individuals interested in self-improvement. The site is built on WordPress using common plugins and themes, indicating a moderate level of digital maturity. The technical infrastructure supports good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. The absence of privacy and cookie policies indicates compliance gaps. WHOIS data is unavailable, which raises some trust concerns, but the website content and social media presence support legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies, and improving incident response transparency.

The website bkry.org is a personal or small-scale blog site operated by an individual named Adam Saynuk. The site primarily serves as a platform for philosophical blog content with minimal additional business or commercial services. The domain is registered since 2011 under the organization 'studio_saynuk' in the US, consistent with the website owner’s identity. The site uses WordPress CMS with standard plugins and minimal customization. Technical infrastructure is basic but functional, with HTTPS enabled and moderate performance. However, the site lacks advanced security measures such as DNSSEC and security headers, and no privacy or cookie policies are present, indicating limited compliance with privacy regulations. Contact information is not explicitly provided, reducing business credibility and user trust.

C

Cedo Ltd

cedo.com

0

Cedo Ltd is a well-established manufacturer and supplier of household essentials, operating for over 60 years with a significant presence in Europe. The company focuses on producing goods such as refuse sacks, biodegradable bin liners, aluminium foil, freezer bags, cling film, and baking paper, serving both leading retailers and B2B operators. Sustainability and recycling are core to their business strategy, with a strong emphasis on reducing plastic waste and promoting circular economy principles. Their market position is supported by multiple production sites and a large workforce, reflecting a mature and stable business model. Technically, the website is built on a modern CMS platform (OctoberCMS) with standard web technologies including HTML5, CSS3, and JavaScript. The site is mobile-optimized and presents a professional design with good user experience. However, some technical improvements could enhance performance and accessibility further. The hosting provider is inferred from DNS records, and the domain is secured with HTTPS, though DNSSEC is not enabled. From a security perspective, the site uses HTTPS and domain registration protections but lacks advanced security headers and explicit security policies. No incident response or vulnerability disclosure information is published, and no contact information for security issues is provided. Privacy compliance is partially addressed with a comprehensive privacy policy available as a PDF, but no cookie consent mechanism is present. The absence of visible contact details on the site may impact user trust and compliance. Overall, the website demonstrates a solid business credibility and technical foundation but would benefit from enhanced security practices and improved privacy compliance mechanisms. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, publishing security policies, and providing clear contact information to improve trust and compliance.

K

Kolmeks Group

kolmeks.fi

0

Kolmeks Group is a Finnish family-owned industrial company established in 1945, specializing in high-quality pump technology and contract manufacturing services. With operations spanning Finland, Estonia, China, and India, Kolmeks serves a diverse industrial clientele, focusing on durable products and long-term customer relationships. The website reflects a mature digital presence built on WordPress with WooCommerce and Yoast SEO, supporting both Finnish and English languages and providing comprehensive information about products, services, and corporate responsibility. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled, representing a minor security gap. No blocking or WAF challenges were detected, allowing full content accessibility.