Security Directory

L

Loovuskohvik OÜ

loovuskohvik.ee

0

Loovuskohvik OÜ operates a creative wellbeing studio website focused on personal development, creativity, and empowerment. The company offers workshops, trainings, and creative therapy services targeting individuals and teams interested in holistic growth. The website is professionally designed using WordPress with Elementor and Astra theme, showing moderate technical maturity and good mobile optimization. Security posture is adequate with HTTPS enabled and nonce tokens in forms, but lacks some security headers and explicit privacy and cookie policies. The domain is well-established since 2010, registered with a reputable Estonian registrar, consistent with the business profile. Overall, the site is trustworthy but would benefit from enhanced privacy compliance and security hardening.

O

Olerex

olerex.ee

0

Olerex is an established energy company based in Estonia, primarily engaged in fuel sales and energy solutions targeting private clients and businesses. The website is built on Drupal 10 CMS and incorporates modern analytics tools such as Google Tag Manager and Facebook Pixel, indicating a moderate level of digital maturity. The website content is primarily in Estonian and focuses on providing information to its customer base. Security-wise, the site uses HTTPS and some tracking technologies but lacks explicit security headers and formal privacy or cookie policies, which are critical for compliance and trust. Overall, the site is functional but would benefit from enhanced privacy and security measures to improve compliance and user trust.

T

Tallinna Teeninduskool

teeninduskool.ee

0

Tallinna Teeninduskool is a well-established vocational education institution in Estonia specializing in hospitality, catering, spa services, and commerce. The website reflects a medium-sized educational entity with a strong focus on practical training and international cooperation, including Erasmus+ projects. The digital infrastructure is built on WordPress with modern plugins and analytics tools, providing a good user experience and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is robust, with clear policies and GDPR adherence. Overall, the website presents a trustworthy and professional image consistent with its educational mission.

C

Cuu Club

cuuclub.ee

0

Cuu Club is a small Estonian e-commerce business specializing in lighting design products, leveraging a WordPress WooCommerce platform to provide an online retail experience. The website highlights partnerships with several professional lighting brands, positioning itself as a niche player in the lighting design market. The site targets professionals and consumers interested in lighting solutions, offering product search, shopping cart, and account management functionalities. Technically, the website is built on a modern WordPress CMS with WooCommerce and uses common web technologies such as jQuery and Google Tag Manager. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO optimization. The presence of multiple third-party scripts indicates active marketing and analytics efforts. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and a cookie consent mechanism, which impacts GDPR compliance. No direct contact information or security policies are published, which may affect user trust and incident response readiness. No vulnerabilities or malicious content were detected in the provided data. Overall, the website presents a professional e-commerce presence with moderate security and privacy compliance. Strategic improvements in security headers, privacy compliance, and contact transparency would enhance trust and reduce risk.

A

AS Orient Office

kontorikaubad.ee

0

AS Orient Office operates a professional e-commerce website offering a broad range of office supplies, paper goods, household items, food products, and electronics primarily targeting Estonian businesses and consumers. The company has an established market presence since 2011 and provides a comprehensive product catalog with clear navigation and a consistent brand presentation. The website is built on Drupal CMS and leverages common web technologies including jQuery, Bootstrap, and Google Analytics for tracking and marketing purposes. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and incident response contacts indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which poses a compliance risk under GDPR. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security practices to strengthen user trust and regulatory compliance.

E

Eesti Kontsert SA

concert.ee

0

Eesti Kontsert SA is Estonia's largest concert organizer, with a rich history dating back to 1941 as the successor of the Estonian State Philharmonic. The organization operates extensively in the cultural and musical sector, offering a wide range of concerts, festivals, and related services such as venue booking and catering. Their market position is strong within Estonia's cultural landscape, targeting music lovers and cultural event attendees. The website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to their audience. Technically, the website is built on WordPress, utilizing common plugins such as Contact Form 7, WPML for multilingual support, and PixelYourSite for marketing and tracking. The site is served over HTTPS with a valid SSL certificate, ensuring secure communications. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent mechanisms, and no visible exposure of sensitive data. However, there is room for improvement by implementing additional HTTP security headers and publishing explicit security policies or incident response contacts. No critical vulnerabilities or WAF blocking were detected. Overall, the website and business present a trustworthy and professional front with strong compliance to privacy regulations such as GDPR. Strategic recommendations include enhancing security headers, adding incident response information, and maintaining up-to-date software to further strengthen security posture.

Tallinna Tervishoiu Kõrgkool is a nationally recognized public higher education institution in Estonia specializing in health and wellbeing education. It offers a wide range of applied higher education and vocational programs in nursing, midwifery, optometry, pharmacy, and other health-related fields. The institution is one of only two healthcare higher education providers in Estonia, positioning it as a key player in the national healthcare education sector. The website reflects a professional and comprehensive digital presence, supporting both prospective and current students with detailed program information, news, and multimedia content. Technically, the website is built on Drupal 11, utilizing modern JavaScript libraries and APIs such as Google Maps and ManyChat for enhanced user engagement. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and multilingual support (Estonian and English). Analytics and tracking are implemented via Google Analytics and ManyChat, though a cookie consent mechanism is notably absent. From a security perspective, the site enforces HTTPS and uses secure Drupal forms with CSRF protection. However, it lacks explicit security policies, incident response information, and advanced security headers. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the institution's identity, confirming legitimacy and consistent registration details. Overall, the website demonstrates a strong business credibility and technical foundation with room for improvement in privacy compliance and security transparency. Strategic enhancements in cookie consent and security policy publication would further strengthen trust and regulatory adherence.

S

SA Estonian Business School

ebs.ee

0

Estonian Business School (EBS) is a reputable educational institution based in Estonia, specializing in business and entrepreneurship education. The website reflects a mature organization with a broad offering including bachelor, master, doctoral, executive education, and micro-credentials. The institution also operates a gymnasium and has an international presence in Helsinki. The site is well-structured, professionally designed, and provides comprehensive content relevant to its audience of students, alumni, and business professionals. Technically, the site is built on Drupal 9 and integrates multiple modern analytics and marketing tools, ensuring good digital maturity. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms including GDPR-aligned cookie consent and privacy policy. WHOIS data confirms legitimacy with a government-related registrar and consistent domain age. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy and security best practices.

S

SELF II

self.ee

0

SELF II is an established Estonian training and development company operating since 1989, specializing in practical, activity-based training, consulting, and coaching services aimed at individuals, teams, and organizations. The company offers a broad range of services including leadership development, personnel consulting, and change management support. Their market position is that of a trusted, small-sized education provider with a long-standing presence in Estonia. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by Zone Media OÜ, and employs modern web technologies with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the site lacks published security policies and security headers. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency.

U

United Partners Group OÜ

unitedpartners.ee

0

United Partners Group OÜ is an Estonian investment company specializing in providing growth capital to small and medium-sized enterprises in the Baltic region, with a focus on private equity and real estate sectors including commercial and residential properties. The company positions itself as a regional growth capital fund with a clear business model centered on investment and asset management. The website reflects a professional and consistent brand image, targeting investors and Baltic SMEs seeking capital for growth. Technically, the website is built on WordPress and employs modern web technologies such as lazy loading scripts and Google Fonts. The site is mobile optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent with the company's Estonian location, and the domain age supports the legitimacy of the business. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. There is no incident response or vulnerability disclosure information available, which could be improved to enhance trust and security posture. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency to reduce risk and improve user confidence.

M

Metaprint AS

metaprint.com

0

Metaprint AS is an international manufacturing group specializing in metal containers, with a well-established presence since 2006. The company targets industrial clients requiring metal packaging solutions, positioning itself as a reliable medium-sized manufacturer in the sector. Their website reflects a professional and consistent brand image, providing clear business information and contact details. Technically, the site is built on WordPress with modern libraries such as jQuery and Bootstrap, and integrates Google Analytics and Tag Manager for marketing insights. The site is mobile-optimized and SEO-friendly, though performance is moderate. From a security perspective, the website employs HTTPS and a comprehensive cookie consent mechanism that supports GDPR compliance. However, there is room for improvement in security headers and explicit security policies. No incident response or vulnerability disclosure information is provided, which could enhance trust and preparedness. The WHOIS data confirms the domain's legitimacy and consistency with the business claims, with no privacy protection masking registrant details. Overall, the website demonstrates a solid digital maturity with good privacy compliance and business credibility. The main risks relate to the absence of detailed security policies and vulnerability disclosure mechanisms. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security and incident response policies, and introducing terms of service to strengthen legal and compliance posture.

The website airport.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge page, which blocks access to the actual content. This prevents a full analysis of the website's business, security, and compliance posture. The domain is registered since 2010 with an Estonian registrar, indicating a stable and legitimate registration consistent with the domain's country code. However, no business or contact information, privacy policies, or terms of service are accessible on the challenge page. The technical infrastructure relies on Cloudflare services for security and analytics, but the lack of accessible content limits assessment of performance, SEO, and user experience. Security posture cannot be fully evaluated, though the use of Cloudflare indicates some level of protection. Overall, the site appears to be related to the transportation sector in Estonia but requires removal of access restrictions for a comprehensive evaluation.

T

Trustek

trustek.eu

0

Trustek is a medium-sized European manufacturing company specializing in roof trusses and construction materials. The company targets construction professionals and contractors across multiple European countries, as evidenced by its multilingual websites. The business model focuses on B2B manufacturing and supply with additional services such as delivery and installation. The website is professionally designed using WordPress with the Divi theme, integrating modern analytics and consent management tools. Security posture is good with HTTPS enforced, security headers present, and use of reCAPTCHA on forms. However, the absence of a public security policy and incident response information indicates room for improvement in transparency and preparedness. Overall, the website and business appear legitimate and trustworthy, though WHOIS privacy limits domain registration transparency.

A

Error

acornblu.ee

0

The domain acornblu.ee currently hosts only a Wix error placeholder page indicating that the domain is not connected to an active website. There is no business-related content, contact information, or policies present. The site is built on the Wix platform using AngularJS and jQuery libraries, but lacks any custom content or branding beyond the default Wix error page. The technical infrastructure is basic and standard for Wix-hosted sites, with no advanced security headers or analytics detected. Security posture is minimal, with no HTTPS or security headers verifiable from the data provided. Overall, the site is non-operational and does not provide any business or compliance information, resulting in a low trust and credibility score.

I

Ingenium Baltic

ingenium.ee

0

Ingenium Baltic is a specialized engineering company focused on delivering solutions for the Oil & Gas industry, particularly in subsea and marine equipment. Their services span the entire project lifecycle from concept to installation support, targeting offshore sector challenges. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published policies. No contact or privacy-related policies are found, which impacts compliance and trust. Overall, the site presents a professional business presence but would benefit from enhanced transparency and security practices.

U

Unique Hotels Group

uhotelsgroup.com

0

Unique Hotels Group operates a small portfolio of lifestyle hotels in Estonia, focusing on boutique hospitality experiences with historical ambiance and modern amenities. Their services include hotel accommodations, dining, spa treatments, seminars, and gift cards, targeting tourists and business travelers. The website is professionally designed using WordPress with modern technologies and supports multiple languages. Privacy and cookie policies are implemented, and contact information is clearly provided. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, though the website content and business information appear authentic. Security posture is generally good with HTTPS enforced, but security headers are missing, and no incident response or vulnerability disclosure information is provided. Overall, the website is functional, trustworthy, and well-positioned in the hospitality market in Estonia.

A

AS Hekotek

hekotek.ee

0

AS Hekotek is a well-established Estonian manufacturing company specializing in equipment and technological solutions for sawmills, pellet plants, and wood and wood pellet boiler houses. With over 30 years of market presence, 155 employees, and a broad international footprint, the company serves industrial clients primarily in the woodworking and bioenergy sectors. Their product portfolio includes log sorting lines, conveyor systems, pellet plants, and aspiration systems, positioning them as a key player in their niche. The website reflects a professional and consistent brand image with comprehensive business information and multilingual support. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, enhanced with modern plugins such as Rank Math SEO and CookieYes for privacy compliance. The site leverages Cloudflare for DNS and CDN services, ensuring good performance and security. Mobile optimization and SEO practices are well implemented, though accessibility features are basic. Analytics and tracking are managed via Google Analytics and Tag Manager, with a cookie consent mechanism in place. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers like CSP or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing a domain registered since 2010 under ALMIC OÜ, matching the Estonian business location. No WAF or blocking mechanisms interfere with content accessibility. Overall, AS Hekotek's digital presence is solid, reflecting a mature business with good technical infrastructure and privacy compliance. Security posture is adequate but could be improved with additional headers and policies. The site effectively supports business credibility and user trust.

Levercode.com is a domain registered since 2018 and currently displays a permanent closure notice with no active business content or services. The website provides only a single contact email address that does not match the domain, indicating minimal operational presence. The technical infrastructure is minimal, with Cloudflare DNS used for hosting, but no CMS, analytics, or advertising technologies detected. The site lacks privacy, cookie, or terms of service policies, and no security headers or HTTPS status information is available from the provided data. Overall, the website is inactive and does not present a professional or trustworthy online presence.

G

GT Tarkvara

soft.ee

0

GT Tarkvara is a well-established Estonian technology company specializing in software and cloud solutions, with over 25 years of market presence. The company positions itself as the largest software and related services provider in Estonia, targeting businesses and educational institutions. Their offerings include cloud solutions, software licensing, consulting, implementation, and ongoing support. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the website is built on WordPress with a modern tech stack including Gravity Forms, Google Analytics, Google Tag Manager, and LinkedIn Insight Tag. Hosting is managed via Azure DNS, indicating a reliable infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, the site uses HTTPS with good SSL configuration and employs reCAPTCHA v3 to protect forms. However, explicit security headers and published security policies are absent, and no incident response or vulnerability disclosure information is provided. Privacy compliance is partially addressed with a privacy and cookie policy present, but no active consent mechanism is implemented. Overall, GT Tarkvara's website demonstrates a strong business credibility and technical foundation with room for improvement in security policy transparency and privacy compliance mechanisms.

emu.ee is a domain registered and managed by the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) through EENet, indicating its role as a governmental or educational resource in Estonia. The website is currently inaccessible due to a Cloudflare Turnstile captcha challenge, which blocks direct content access and prevents detailed content analysis. The domain is well-established since 2010, consistent with a stable government entity. The technical infrastructure leverages Cloudflare services for security and performance, but the visible content is limited to a security verification page without business or contact information. Privacy and cookie policies are not present on the accessible page, and no forms or data collection mechanisms are visible. Overall, the site demonstrates a moderate security posture through Cloudflare's WAF but lacks transparency in privacy compliance and user engagement due to the blocking mechanism.

Metus Laenud is a small Estonian finance-focused informational website providing content about various loan types including quick loans, small loans, and general loans. The site targets Estonian-speaking individuals seeking financial solutions and loan information. The business model is content-driven, relying on informational articles rather than direct financial services. The website is built on WordPress, utilizing common plugins such as Contact Form 7 and Rank Math SEO, hosted behind Cloudflare DNS services. The technical infrastructure is modern and moderately performant with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and incident response information. Privacy compliance is poor due to absence of privacy and cookie policies. The domain registration data is suspicious due to a future creation date and lack of registrant details, which impacts overall trustworthiness. Strategic improvements in privacy compliance, security policies, and business transparency are recommended.

The website astangu.ee is currently inaccessible beyond a Cloudflare Turnstile security challenge page, which prevents access to any substantive content. The domain is registered since 2010 with an Estonian registrar, indicating a legitimate and established domain. However, no business information, contact details, or policies are available on the accessible page. The technical infrastructure relies on Cloudflare for security and performance, but no CMS or additional technologies are detected. The security posture is limited to Cloudflare's WAF and captcha challenge, with no further visible security headers or configurations. Due to the content being blocked, a full analysis of business, compliance, and security posture is not possible, resulting in a low overall AI score.

The website mkm.ee is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. Due to this, no actual business content, policies, or contact information is available for analysis. The domain is registered since 2010 with Zone Media OÜ, an Estonian registrar, indicating a legitimate and stable domain ownership. The technical infrastructure relies on Cloudflare services for security and performance. However, the lack of accessible content and policies limits the ability to assess the business model, security posture, and compliance status. The site appears to be protected by a robust WAF, but this also restricts external analysis.

The Archimedes Foundation website serves as a minimal informational page indicating that as of January 1, 2021, its activities were transferred to the Estonian Education and Youth Board and the Erasmus+ and European Solidarity Corps Agency. The foundation historically managed European educational and youth programs such as Erasmus+. The website content is very limited, with no privacy, cookie, or terms of service policies, and no contact information provided. Technically, the site uses basic HTML and CSS with Google Fonts, hosted under an Estonian registrar. No advanced security headers or analytics tools are detected, and the site lacks modern SEO and accessibility features. Security posture is minimal but no critical vulnerabilities are evident. Overall, the site appears to be a legacy informational page rather than an active service platform.

S

Softrend

softrend.ee

0

Softrend is an established Estonian furniture company specializing in sofas, beds, and home accessories, with a strong emphasis on sustainability and quality craftsmanship. The company operates a professional e-commerce website built on WordPress, featuring modern technologies such as Google Tag Manager, reCAPTCHA, and performance optimizations via WP Rocket. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is strong with HTTPS and bot protection, but could be improved with additional security headers and a vulnerability disclosure policy. Overall, the domain registration data supports the legitimacy of the business, and the website reflects a credible and professional retail operation.

H

Heateo Sihtasutus

heategu.ee

0

Heateo Sihtasutus operates as a non-profit organization in Estonia, focusing on promoting social change and charitable activities. The website serves as a platform to engage the Estonian community in good deeds and social initiatives. The organization has an established presence since 2010, supported by a professionally designed website built on WordPress and hosted by a reputable Estonian provider. The technical infrastructure is modern and secure, with HTTPS and security headers properly configured. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. No explicit contact information or incident response details are provided, limiting direct communication channels. Overall, the website demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and transparency to enhance trust and regulatory adherence.

The website bytetrain.com currently serves as a login portal for konsoleH, a server and account administration interface likely associated with the Hetzner hosting provider. The site provides minimal content focused on navigation to webmail and account administration services, with no direct business description or contact information visible. The domain is well-established, registered since 2012, and shows stable registration status, but the website itself lacks modern security and privacy features. Technically, the site uses basic HTML and CSS without any detected modern frameworks or CMS. It is hosted likely by Hetzner, as inferred from URLs and copyright notices. The site lacks HTTPS, DNSSEC, security headers, and any form of privacy or cookie policy, indicating a low level of digital maturity and security posture. No analytics or tracking technologies are present, and the site is not optimized for mobile or accessibility. From a security perspective, the absence of HTTPS is a critical issue, exposing users to potential interception risks. The lack of security headers and privacy policies further reduces trust and compliance with GDPR. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent and legitimate, but the website's security and privacy posture require significant improvement. Overall, the site scores low on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic recommendations include immediate HTTPS enablement, publishing privacy and cookie policies, adding security headers, and improving content and contact transparency to enhance trust and compliance.

1

101domain GRS Limited

acino-pharma.com

0

The website acino-pharma.com is currently a parked domain managed by 101domain GRS Limited, a domain registrar and service provider established in 1999. The site does not host any active business content related to Acino Pharma but instead displays a placeholder page offering domain management and upsell services such as Google Workspace, web hosting, and corporate brand services. The target audience appears to be individuals or businesses interested in acquiring or managing domain names. The business model is that of a domain registrar and related service provider with a moderate market presence. Technically, the site uses standard HTML5, CSS3, and JavaScript technologies including jQuery and Modernizr. It is hosted on infrastructure associated with 101datacenter.net. The site is moderately optimized for mobile devices and has basic accessibility and SEO features. However, it lacks HTTPS, security headers, and advanced technical frameworks or CMS platforms. From a security perspective, the site has several weaknesses including the absence of HTTPS, no DNSSEC enabled, and no visible security policies or incident response contacts. The domain is locked against transfer but is not actively used for business purposes. No privacy or cookie policies are present, and no contact information is provided, limiting compliance with GDPR and other regulations. Overall, the security posture is weak, and the site is primarily a parked domain with minimal risk but also minimal trust signals. The overall risk assessment is low due to the lack of active business operations on the domain. Strategic recommendations include enabling HTTPS, adding privacy and cookie policies, implementing DNSSEC, and providing clear contact and security information to improve trust and compliance if the domain is to be used actively in the future.

I

ITT Group

ittgroup.ee

0

ITT Group is a small Estonian company specializing in education-related innovative mechatronic products, training, and e-solution development, primarily targeting educational institutions in Estonia, Scandinavia, and Europe. With over 20 years of experience, the company has evolved to include consulting and development services in autonomous systems, collaborating with European and US higher-education institutions. The website is built on Joomla CMS, featuring a consistent and professional design with moderate performance and good mobile optimization. However, it lacks critical compliance documentation such as privacy and cookie policies, and no contact information is provided, which impacts trust and compliance perception. Security posture is basic with HTTPS enabled but missing advanced security headers and incident response details. Overall, the site is functional and informative but requires improvements in compliance and security transparency to enhance trustworthiness and regulatory adherence.

The website www.esplan.ee is currently non-functional due to a fatal PHP error caused by an outdated WordPress plugin (wpml-string-translation). This prevents any content from being displayed, including business information, policies, or contact details. The domain is registered in Estonia with consistent WHOIS data, suggesting legitimacy, but the website itself lacks operational status and visible content. The technical infrastructure relies on WordPress CMS but suffers from plugin compatibility issues that must be addressed to restore functionality. Security posture is weak due to lack of visible security headers, unknown SSL status, and absence of privacy or cookie policies. Overall, the website presents a high risk due to inaccessibility and lack of compliance indicators.

A

AS Kevelt

kevelt.ee

0

AS Kevelt is an established Estonian pharmaceutical company specializing in the manufacturing, resale, and subcontracting of pharmaceuticals. The company emphasizes scientific approaches and strict quality controls to produce original and generic medicines, with ongoing research and innovation efforts to support long-term growth. The website targets healthcare industry stakeholders, partners, and investors, presenting a professional and consistent brand image with multilingual support in English, Russian, and Estonian. The business model focuses on pharmaceutical production and related services, positioning AS Kevelt as a reputable player in the Estonian healthcare sector. Technically, the website is built on WordPress CMS using a modern tech stack including Bootstrap, jQuery, Google Maps API, and several plugins such as Yoast SEO and Contact Form 7. The site is mobile-optimized with good SEO practices and moderate performance. Hosting and domain registration are managed by Zone Media OÜ, a legitimate Estonian registrar, with the domain active since 2010, aligning with the company's history. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA v3 for form protection. However, it lacks several security headers and does not publish a security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with no cookie consent mechanism or detailed privacy policy visible, which could be improved to meet GDPR standards fully. Overall, AS Kevelt's website demonstrates a solid business presence with good technical implementation and a moderate security posture. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence, supporting the company's professional image and operational security.

Eolane France was an electronics manufacturing services company operating production sites in France and Morocco. The company has ceased operations and is undergoing judicial liquidation, with its activities acquired by the Cicor Group, a pan-European EMS provider. The website serves primarily as an informational notice about this transition and does not provide active business or customer engagement features. The technical infrastructure appears minimal, with no detected CMS, scripts, or advanced technologies. The site lacks privacy, cookie, and terms of service policies, and no contact information is provided, limiting user engagement and transparency. Security posture is basic with no DNSSEC and no visible security headers, though the domain registration is consistent and legitimate with a long history dating back to 2000. Overall, the website functions as a static notice rather than an active business platform.

D

DUX

dux.ee

0

DUX is a small, established UX and UI design studio based in Estonia, founded in 2014. They specialize in creating digital experiences including mobile and desktop applications, websites, e-commerce platforms, and SaaS products. Their portfolio showcases over 200 projects, targeting NGOs, startups, SMEs, and global/local leaders, positioning them as a reputable design partner in the technology sector. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Tag Manager, hosted by Elkdata OÜ, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

B

Bellcom Estonia

bellcom.ee

0

Bellcom Estonia is a small but established technology service provider specializing in custom website development, hosting, and technical support. Founded in 2013, the company serves businesses and organizations seeking agile and innovative digital solutions. Their market position is supported by a portfolio of case studies and client testimonials, emphasizing their expertise in Drupal and other web technologies. Technically, the website is built on Drupal 8 with modern frontend libraries such as Bootstrap and jQuery, and integrates Google Analytics with IP anonymization for user tracking. The site is mobile optimized and presents a professional user experience. Security posture is moderate; while HTTPS usage is assumed but not confirmed, no security headers or explicit security policies are published, representing an area for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is credible and trustworthy but would benefit from enhanced security and privacy disclosures.

E

East West Connection – Official Website

ewcmeetings.com

0

East West Connection's website is a WordPress-based site using the Astra theme and Divi builder compatibility, hosted via GoDaddy.com, LLC. The domain is mature, registered since 1998, indicating a long-standing presence. However, the website content is minimal, lacking critical business descriptions, contact information, and privacy or cookie policies. Technically, the site uses modern CMS technologies but lacks advanced security headers and comprehensive privacy compliance mechanisms. The security posture is basic with HTTPS enabled but missing other best practices. Overall, the site presents a low level of trustworthiness and professionalism due to missing policies and contact details, which could impact user confidence and regulatory compliance.

T

Tammiste Personalibüroo OÜ

tammistepersonal.ee

0

Tammiste Personalibüroo OÜ is an established Estonian recruitment and training company with over 25 years of experience. The company specializes in recruitment services, training programs, emotional intelligence assessments, coaching, and outplacement services. Their website reflects a professional and consistent brand image, targeting Estonian businesses and job seekers. The technical infrastructure is based on WordPress with Elementor, leveraging modern web technologies and tracking tools such as Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though some security headers are missing. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected. Overall, the website is trustworthy and well-positioned in its market segment, though improvements in privacy and security documentation are recommended.

B

BCS Itera

itera.ee

0

BCS Itera is a medium-sized Estonian technology company specializing in consulting and implementing business software solutions including ERP, HRM, CRM, and BI systems. The company has a solid market position in the Baltic region, supported by partnerships and certifications such as the LS Retail Platinum Partner status. Their website reflects a professional and consistent brand image with good content quality and active client engagement. Technically, the site is built on WordPress with modern SEO and analytics tools, and it demonstrates good performance and mobile optimization. Security posture is strong with HTTPS and consent management in place, though explicit security headers and policies could be improved. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.