Security Directory

G

Grupo La Rabida

grupolarabida.org

0

Grupo La Rabida is an academic collaboration network of Iberoamerican universities focused on fostering academic, scientific, and cultural cooperation among its members. The website presents a professional and content-rich platform primarily in Spanish, targeting universities, researchers, and students in the Iberoamerican region. The organization appears to be medium-sized with a focus on education and scholarship programs. Technically, the site is built on WordPress with modern plugins and frameworks, offering good SEO and mobile responsiveness. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are important for compliance and trust. The WHOIS data is incomplete and malformed, which reduces domain trustworthiness despite the legitimate content and structured data on the site. Overall, the site is functional and professional but would benefit from improved transparency and compliance documentation.

L

La Rotta dei Fenici

fenici.net

0

La Rotta dei Fenici is a cultural tourism website dedicated to promoting a European Council-endorsed itinerary that connects Mediterranean heritage, archaeology, and tourism. The site targets tourists and cultural enthusiasts interested in Mediterranean history and archaeological sites. The business model focuses on cultural promotion and tourism facilitation. Technically, the website is built on WordPress using the Divi theme, with SEO and donation plugins integrated, hosted by Seeweb in Italy. The site is mobile-optimized and uses HTTPS, but lacks advanced security headers and DNSSEC, which are recommended for improved security. Privacy compliance is weak, with no visible privacy or cookie policies, and no explicit contact information is provided, which may affect user trust and regulatory compliance. Overall, the site is professional and content-rich but would benefit from enhanced security and privacy practices.

T

The Hacking Day (THD'S)

thdsecurity.com

0

The Hacking Day (THD'S) is a cybersecurity education platform offering practical workshops and certifications focused on hacking, pentesting, and information security. The website positions itself as a regional leader in Central and South America, providing hands-on training led by experts. The business model revolves around educational services delivered through courses, workshops, and certifications, targeting individuals seeking to enhance their cybersecurity skills. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Owl Carousel, and Google reCAPTCHA, hosted via NameCheap. The site is mobile optimized with good design and navigation, though SEO and accessibility features are basic. No CMS is detected, indicating a custom or static site approach. Security posture is moderate: HTTPS is enforced and reCAPTCHA is used to protect forms, but the absence of DNSSEC and security headers represents gaps. No privacy or cookie policies are present, and no vulnerability disclosure or incident response information is published, which limits compliance and transparency. Overall, the website is professional and functional with moderate trustworthiness. Strategic improvements in privacy compliance, security headers, and transparency would enhance its security posture and user trust.

T

The Hacking Day (THD'S)

thehackingday.com

0

The Hacking Day (THD'S) operates as an educational platform offering practical cybersecurity workshops and certifications primarily focused on hacking, pentesting, and related security disciplines. The website presents a professional and content-rich interface targeting individuals seeking hands-on knowledge in cybersecurity, supported by regional institutional endorsements. Technically, the site uses a modern front-end stack including Bootstrap, jQuery, and Owl Carousel, with some security measures like Google reCAPTCHA implemented. However, there is no visible HTTPS enforcement or security headers in the provided data, which weakens the security posture. The absence of privacy and cookie policies, as well as lack of explicit contact information, further impacts compliance and trust. Critically, the WHOIS data for the domain is missing or unavailable, raising concerns about domain legitimacy and registration status. Overall, the site is functional and informative but requires improvements in security, compliance, and transparency to enhance trust and reduce risk.

The website omniva.lv is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content, business information, or contact details. The domain WHOIS data is unavailable due to query limits, further limiting the ability to verify domain legitimacy or registration details. The technical infrastructure relies on Cloudflare's security and performance services, but no CMS or additional technologies are identifiable from the blocked content. Security posture cannot be properly assessed without access to the full site, and no privacy or compliance policies are visible. Overall, the site appears protected by strong WAF mechanisms, but this also restricts external analysis.

B

Bonusukarte.lv

bonusukarte.lv

0

Bonusukarte.lv operates a specialized employee motivation platform in Latvia, offering personalized prepaid bonus cards that enable employers to provide tax-efficient benefits such as meals, healthcare, and transport expense coverage. The website is professionally designed with clear navigation, client testimonials, and comprehensive information about the service, targeting medium-sized businesses seeking to enhance employee satisfaction and loyalty. Technically, the site uses modern JavaScript libraries and frameworks, ensuring a responsive and user-friendly experience. Privacy and cookie policies are well implemented, reflecting GDPR compliance. However, WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Security posture is adequate but could be improved by adding explicit security headers and incident response information.

The website socialenergy.es is currently inaccessible to normal visitors due to a proof-of-work CAPTCHA challenge page designed to verify the visitor is not a bot. This security mechanism effectively blocks access to the actual website content, preventing any meaningful analysis of business information, services, or user experience. The page is served with assets from Cloudfront CDN and uses advanced JavaScript to perform cryptographic challenges. WHOIS data for the domain is unavailable due to IP authorization restrictions imposed by the .es registry, limiting transparency about domain ownership and registration details. From a technical perspective, the site employs modern JavaScript features and a CDN for content delivery, but lacks visible SEO, accessibility, or privacy compliance features. The security posture is partially demonstrated by the presence of a proof-of-work CAPTCHA, but no other security headers or policies are observable. The absence of contact information, privacy policies, or terms of service further reduces trust and compliance confidence. Overall, the site’s risk profile is elevated due to the lack of accessible information, inability to verify domain legitimacy, and absence of compliance indicators. The security challenge page, while protecting the site from automated abuse, also hinders legitimate user access and third-party assessments. Strategic recommendations include improving transparency by enabling WHOIS access, publishing privacy and cookie policies, providing clear contact details, and enhancing SEO and accessibility to improve user trust and compliance.

The website cruzcampo.es is currently inaccessible due to a CloudFront 403 error indicating a Web Application Firewall (WAF) block or configuration issue. This prevents any meaningful content or metadata extraction, severely limiting the ability to analyze the business, technical infrastructure, or security posture. The WHOIS data for the domain is also unavailable due to query restrictions imposed by the .es domain registry (Red.es), further complicating legitimacy and ownership verification. As a result, the overall risk assessment is elevated due to lack of transparency and accessibility. From a technical perspective, the site is hosted behind Amazon CloudFront, but the current configuration or traffic conditions are causing access denial. No information about the technology stack, CMS, or performance can be determined. Security headers, SSL configuration, and compliance indicators cannot be evaluated due to the blocked content. Security posture evaluation is limited by the absence of accessible content and metadata. The presence of a WAF block suggests some level of security control, but the inability to access the site hinders assessment of vulnerabilities, incident response readiness, or data protection practices. No contact or policy information is available to assess GDPR compliance or incident response capabilities. Overall, the site’s inaccessibility and lack of WHOIS transparency pose significant challenges for trust and security evaluation. Strategic recommendations include resolving the WAF or CloudFront configuration issues to restore access, implementing comprehensive security headers and HTTPS enforcement, and ensuring public availability of privacy and contact information to improve compliance and trustworthiness.

The website solidi.com is a personal homepage for the Plymouth Buckley Family, operating under the name Solidus Systems. It does not represent a commercial business entity and lacks business-related content or services. The site is built on WordPress with standard themes and plugins, hosted by InMotion Hosting. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is minimal, with HTTPS enabled but no advanced security headers or policies. Privacy compliance is absent, with no privacy or cookie policies found. Overall, the site presents low business credibility and trustworthiness due to its personal nature and lack of professional content or contact information.

Z

Ziarul Argeşul - ediţia online

ziarulargesul.ro

0

Ziarul Argeşul is a regional online news media outlet focused on delivering local news, events, and useful information to residents of Pitesti and Arges county in Romania. The website serves as a primary source of community news and cultural events, targeting local audiences interested in regional developments. The business operates on a digital publishing model, leveraging WordPress CMS and common SEO and analytics tools to maintain an accessible and content-rich platform. Technically, the site is built on WordPress 5.4 with integrations such as Google Analytics and Google AdSense for traffic monitoring and monetization. The site demonstrates good mobile responsiveness and SEO optimization, with structured data implemented for enhanced search engine visibility. Security-wise, the website enforces HTTPS and employs basic security best practices but lacks advanced headers like Content-Security-Policy and does not provide explicit security policies or incident response contacts. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

S

Ştiri de Cluj

stiridecluj.ro

0

Ştiri de Cluj is a Romanian regional news website providing comprehensive news coverage focused on Cluj and surrounding localities. The site offers news in various categories including social, education, politics, economy, legal, sport, national/international, tourism, weather, and entertainment. It targets local residents and interested readers seeking timely updates and multimedia content. The business model relies primarily on advertising revenue, supported by Google Adsense and Adform networks. The website demonstrates a good level of digital maturity with modern frontend technologies such as Bootstrap, Owl Carousel, and integration of Google Tag Manager and Facebook SDK for analytics and marketing. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks visible security headers and formal security policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. WHOIS data is privacy protected, which is common for media sites, but limits trust verification. Overall, the site is functional, professionally designed, and serves its regional news purpose effectively.

R

RENAISSANCE NOW

renaissancenow-cai.org

0

The website 'RENAISSANCE NOW' is a small-scale arts and culture initiative focused on promoting art as a renewable human resource. It offers educational content such as a certificate program for cities on arts and policy, collections on arts in public service, and a public engagement platform. The target audience includes cultural organizations, policymakers, artists, and the general public interested in societal challenges addressed through art. The business model appears to be non-profit or educational, with a niche market position in arts advocacy and cultural policy education. Technically, the website is built using standard web technologies including HTML5, CSS3, JavaScript, and jQuery, hosted on Bluehost with WordPress inferred from URL patterns. It uses Google Analytics for visitor tracking and includes video backgrounds for visual engagement. Mobile optimization and accessibility are basic but functional. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There are no forms or input fields to assess for secure handling. Privacy and cookie policies are absent, and no contact or incident response information is provided, indicating gaps in compliance and transparency. Overall, the website is legitimate and consistent with a small arts organization but lacks comprehensive privacy, security, and contact information. Recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact and incident response details to improve trust and compliance.

S

SOGEON

artsmg.nl

0

SOGEON is a Dutch non-profit foundation dedicated to the innovation and quality assurance of medical specialty training in the field of Arts Maatschappij + Gezondheid (M+G) and related disciplines. The organization collaborates with multiple educational and professional institutes to provide training, organize events, and disseminate information to medical professionals. The website serves as a comprehensive resource for doctors interested in public health and medical specialty education in the Netherlands, featuring news, training program details, and community engagement tools such as newsletters and social media channels. Technically, the website is built on WordPress using the Avada theme and integrates several modern marketing and analytics tools including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Microsoft Clarity. The site is mobile optimized and employs SEO best practices through the Yoast SEO plugin. However, the WordPress core and some JavaScript libraries are outdated, which may pose security risks. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security policies and incident response information are not present, the site shows good privacy compliance with a comprehensive privacy policy and terms of service. The WHOIS data confirms the legitimacy of the domain registration, consistent with the foundation's Dutch healthcare education focus. Overall, the website demonstrates a solid business and technical foundation with room for improvement in security patching and explicit security documentation. The site effectively supports its mission to educate and engage medical professionals in public health specialties.

The website nectoday.com is currently inaccessible due to a JavaScript-based proof-of-work CAPTCHA challenge page designed to verify client connection security before granting access. This security mechanism effectively blocks automated access and prevents direct content retrieval, resulting in minimal visible content limited to a robot challenge screen. The domain is registered with GoDaddy.com, LLC since 2008, indicating a mature domain age and stable registration status. However, no business, contact, or policy information is exposed on this page, limiting the ability to assess the company's market position or services. The technical infrastructure includes custom JavaScript for CAPTCHA proof-of-work and uses AWS Cloudfront CDN for content delivery. Security best practices such as DNSSEC and security headers are not evident. Overall, the site’s security posture is moderate due to the challenge mechanism but lacks transparency and compliance documentation.

U

Universidad de Córdoba

uco.es

0

The Universidad de Córdoba website serves as the official online presence of a large public university in Spain, providing academic, research, and community information primarily targeted at students, faculty, and prospective students. The site features a professional design with consistent branding and good content quality, including news, events, and multimedia resources. Technically, the site employs a traditional tech stack with Bootstrap and jQuery, Google Fonts, and integrates analytics tools such as Google Analytics and Facebook Pixel for user tracking. Mobile optimization is good, though accessibility features are basic. From a security perspective, the site uses HTTPS and trusted external services but lacks visible security headers and uses an outdated jQuery version, which could pose risks. No privacy or cookie policies were found in the provided content, indicating room for improvement in compliance with GDPR and related regulations. The WHOIS data is restricted due to Red.es policies, but the domain appears legitimate and consistent with the university's identity. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced security headers, updated libraries, and explicit privacy and cookie policies to improve compliance and user trust. Strategic recommendations include implementing security headers, updating JavaScript libraries, publishing privacy and cookie policies with consent mechanisms, and enhancing accessibility and incident response information.

The website bulta.lv serves as an event portal for a running and Nordic walking competition held in Latvia, specifically the Sigulda-Nurmiži-Sigulda 21km event. It provides registration forms, event results, photos, and competition rules primarily targeting local sports enthusiasts and participants. The site uses a simple HTML5 UP template with JavaScript and jQuery for interactive form handling, indicating a modest technical infrastructure suitable for small-scale event management. The content is basic but functional, with clear navigation links to event results and documentation. However, the site lacks comprehensive privacy, cookie, and terms of service policies, which are critical for GDPR compliance given its European audience. Security posture is moderate with no visible advanced security headers or protections, and no WHOIS data could be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is functional for its purpose but requires improvements in security, privacy compliance, and business transparency to enhance trust and professionalism.

The website universidadesdeinvestigacion.com is a domain parking page currently offering the domain for sale via Sedo. It does not provide any business services, contact information, or content beyond domain sale information. The site is primarily targeted at domain investors or buyers interested in acquiring this domain. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with Google Ads and Sedo's domain parking platform. The site is served over HTTPS but lacks advanced security headers and DNSSEC, indicating a minimal security posture. Privacy compliance is limited to a basic cookie banner and a generic privacy policy hosted by Sedo. Overall, the site has poor content quality and low business credibility due to lack of information and branding.

P

Pacto Mundial ONU España

pactomundial.org

0

Pacto Mundial ONU España is a prominent non-profit organization dedicated to advancing corporate sustainability and responsible business practices in Spain. Affiliated with the United Nations Global Compact, it serves as a key platform for Spanish companies to align with global sustainability goals. The website reflects a professional and consistent brand image, targeting businesses and organizations interested in environmental, social, and governance (ESG) initiatives. Key services include sustainability guidance, training, networking, and resource provision. Technically, the website is built on WordPress, leveraging modern web technologies such as JavaScript libraries, Google Fonts, and Font Awesome icons. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes essential security headers, indicating a solid baseline security posture. However, there is no dedicated security policy or incident response information publicly available, which could enhance transparency and trust. Privacy compliance is strong, with clear privacy and cookie policies and a visible data protection officer contact. Overall, the website presents a trustworthy and credible digital presence for a non-profit sustainability organization. Strategic improvements in security transparency and performance optimization could further strengthen its position.

The website unionavatars.com currently serves a robot challenge screen that implements a client-side proof-of-work CAPTCHA mechanism to verify visitor legitimacy before granting access. This indicates the presence of a Web Application Firewall (WAF) or security challenge that blocks direct content access. Due to this, no business-related content, contact information, or policies are accessible on the page. The domain is registered with Amazon Registrar, Inc. since 2021 and uses AWS DNS and CloudFront CDN for hosting and delivery. The technical infrastructure shows moderate maturity with advanced JavaScript usage but lacks visible security headers and DNSSEC, which are recommended for enhanced security. Privacy and cookie policies are absent, and no contact or business details are provided, limiting trust and compliance assessment. Overall, the site’s security posture is minimal but benefits from the CAPTCHA challenge to mitigate automated abuse. The analysis is limited by the blocking mechanism, resulting in a low overall AI score and incomplete visibility into the website’s full content and business operations.

B

Blogthinkbig.com

blogthinkbig.com

0

Blogthinkbig.com is a professional innovation and technology blog operated under the Telefónica brand, targeting Spanish-speaking audiences interested in AI, sustainability, education, and responsible technology use. The website serves as a content publishing platform to disseminate knowledge and insights related to technological transformation and connectivity. Technically, the site is built on WordPress using the Astra theme and integrates modern SEO tools like Yoast SEO Premium and Google Tag Manager. It employs cookie consent mechanisms via OneTrust and Utiq, reflecting a commitment to privacy compliance, although no explicit privacy policy or terms of service were found in the provided content. Security posture is solid with HTTPS enabled and good practices observed, but DNSSEC is not enabled and additional security headers could enhance protection. Overall, the site is well-branded, professionally designed, and trustworthy, with a strong alignment between domain registration and business identity.

P

Polo88

arpahesolutions.com

0

Polo88 is an Indonesian online gambling affiliate or proxy platform offering access to various gambling games including slots, live casino, sportsbook, arcade, togel, and poker. The website positions itself as the number one entertainment platform for Polo88 games in Indonesia, targeting local online gambling players. The business model appears to be focused on providing alternative access links and promoting gambling services, with key services centered around popular gambling game categories. Technically, the website is built on WordPress CMS with AMP for mobile optimization and uses Yoast SEO for search engine optimization. Hosting is provided by NameCheap. The site demonstrates good mobile responsiveness and navigation clarity but lacks comprehensive accessibility features. Security posture is basic with HTTPS enabled but no DNSSEC or security headers detected. The domain WHOIS data is suspicious due to a future creation date and lack of registrant information, which undermines trust. Contact and login functionalities redirect users to an external domain, pestabetexpert.com, which raises concerns about operational transparency and security. No privacy, cookie, or terms of service policies are present, indicating poor privacy compliance. Overall, the site shows moderate content quality and technical implementation but suffers from significant security and compliance gaps.

E

Ethical Hack

ehack.mx

0

Ethical Hack is a small Mexican technology consultancy specializing in cybersecurity and compliance services, alongside distribution of specialized security books from Editorial 0xWord. The company targets businesses and professionals seeking IT security solutions and educational resources in Spanish. Their market position is that of a niche provider with partnerships with recognized security vendors such as Sophos and Fortinet. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and Google reCAPTCHA implemented, though lacking some security headers and explicit security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy with clear contact information and social media presence.

IT FORENSIC COMPANY is a cybersecurity firm established in 2008, positioned as a leader in Latin America offering consulting, products, and training services. The company emphasizes protecting information assets and has an international presence across multiple Latin American countries. Their partnership with The Hacking Day enhances their training offerings, reinforcing their market position. Technically, the website uses modern frameworks such as Materialize CSS and integrates Google Analytics for user tracking. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate; while HTTPS is implied, no security headers or incident response information are published, and privacy compliance is lacking. The WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is functional and professional but would benefit from enhanced security and privacy practices.

I

International Academic Program (IAP)

iapsymposia.com

0

The International Academic Program (IAP) is a small, education-focused non-profit initiative established in 2019, dedicated to fostering lifelong learning through symposia, workshops, and collaborative research projects. It targets university professors and researchers primarily from Latin America, Spain, and the broader international academic community. The program is well-positioned with partnerships including Harvard and MIT, and recognized by the Global Compact United Nations Spanish Network. Technically, the website employs modern front-end technologies such as Bootstrap, jQuery, and AOS, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is basic, with no visible privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and content-rich, supporting its academic mission effectively.

A

Areaal.lt

areaal.lt

0

Areaal.lt is a Lithuanian-based e-commerce retailer specializing in electronics, audio equipment, and household appliances. The company offers a broad range of products from well-known brands and targets consumers in Lithuania and the Baltic region. The website is professionally designed with clear navigation, multiple language support, and a comprehensive product catalog. The business model focuses on online retail with features such as multiple payment options and order tracking, positioning itself as a reliable regional player with over 30,000 completed orders. Technically, the website is built on WordPress with WooCommerce, leveraging modern web technologies and third-party integrations such as Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good mobile optimization and moderate performance, with standard SEO and accessibility features. From a security perspective, the site enforces HTTPS, uses security headers, and secures forms with nonce tokens. However, it lacks a dedicated security policy or incident response information, and no vulnerability disclosure mechanism is present. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though GDPR compliance indicators could be enhanced. Overall, Areaal.lt presents a trustworthy and professional online retail presence with a solid technical foundation and good security practices. Strategic improvements in security transparency and privacy compliance would further strengthen its posture.

A

Areaal.ee

areaal.eu

0

Areaal.eu is a professional e-commerce website specializing in electronics, audio equipment, and home appliances, targeting Russian-speaking customers primarily in the Baltic region. The business operates multiple country-specific domains, indicating a regional market approach. The website uses a modern WordPress and WooCommerce infrastructure with common plugins and tracking tools such as Google Tag Manager and Facebook Pixel. Contact information is clearly provided, enhancing customer trust. However, the site lacks explicit cookie consent mechanisms and incident response disclosures, which are important for privacy compliance and security transparency. The domain registration is consistent with the business claims, registered under an Estonian registrar, Zone Media OÜ, and the domain age aligns with the business founding date in 2020.

M

m79.lv

m79.lv

0

M79.lv is a Latvian-based e-commerce retailer offering a broad range of products including electronics, home appliances, office supplies, cosmetics, sports equipment, and more. The website targets Latvian and Baltic consumers seeking competitive prices and convenient online shopping with delivery services. The business model is a traditional online retail store with additional services such as credit and installment payment options. The company maintains a consistent brand presence with active social media channels and structured data to enhance search visibility. Technically, the website employs modern web technologies including jQuery UI, Bootstrap, FontAwesome, and Google Fonts, hosted behind Cloudflare DNS which likely provides CDN and security benefits. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with room for improvement. From a security perspective, the site benefits from Cloudflare's infrastructure but lacks explicit security headers and publicly available security policies. No privacy or cookie policies were found, indicating a gap in compliance with GDPR and related regulations. Forms for login, registration, and contact collect user data but lack visible advanced security disclosures or protections. No vulnerability disclosure or incident response information is provided. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and transparency to improve trust and regulatory adherence. Strategic improvements in these areas will strengthen the site's security posture and user confidence.

L

Galvena

labsveikals.lv

0

Labsveikals.lv is an active Latvian e-commerce website offering a broad range of products primarily focused on digital technologies, electronics, household appliances, beauty and health products, toys, and clothing. The site features a structured product catalog with detailed categories and a shopping basket functionality, targeting consumers and businesses in Latvia. The website demonstrates a moderate level of digital maturity with a custom or proprietary CMS, usage of modern web technologies such as JavaScript and Google Fonts, and mobile optimization. Security posture is adequate with HTTPS enforced and a GDPR consent banner present, though there is a lack of explicit privacy policy, terms of service, and security incident contact information. Overall, the site appears legitimate and professionally maintained but could improve in privacy compliance and security best practices.

T

Tava Tehnika

tava-tehnika.lv

0

Tava Tehnika is a Latvian e-commerce retailer specializing in tools, garden and forest equipment, and both hand and power tools. The company operates an online store with a broad product assortment and offers nationwide delivery within Latvia. The website is professionally designed, featuring clear navigation and multiple contact channels including phone, email, and a contact form. Social media presence is integrated via Facebook. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and OpenCart CMS, supported by Google Tag Manager and Facebook Pixel for analytics and marketing. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No blocking or WAF mechanisms were detected, allowing full content access. Privacy and cookie policies are present and GDPR compliant. Overall, the website demonstrates a mature digital presence suitable for its market segment.

B

Baltic Data

balticdata.lv

0

Baltic Data operates as a specialized retail and wholesale network for computer hardware and electronics in Latvia, with 18 physical stores and an active e-commerce platform. The website presents a professional and well-structured online store offering a wide range of products including computers, peripherals, accessories, and related services such as repair and business software solutions. The target audience includes both individual consumers and business clients within Latvia. The business model combines physical retail presence with online sales, positioning Baltic Data as a significant regional player in the technology retail sector. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, slick sliders, and intl-tel-input for phone input validation, with resources loaded from reputable CDNs. The site is mobile-optimized and includes SEO best practices such as meta tags and Open Graph data. Performance is moderate, with room for improvement in accessibility and security headers. Privacy compliance is addressed through a cookie consent banner and a privacy policy page, indicating GDPR awareness. Security posture is generally good with HTTPS enforced and input validation scripts present. However, the absence of explicit security headers and public security policies, as well as no visible incident response or vulnerability disclosure information, suggests areas for enhancement. The lack of WHOIS data limits domain legitimacy verification, but the website content and structure do not raise immediate concerns. Overall, Baltic Data's website reflects a mature retail business with a solid digital presence but could benefit from improved security transparency and enhanced contact information visibility to strengthen trust and compliance.

I

iDrone.lv

idrone.lv

0

iDrone.lv is a Latvian-based e-commerce platform specializing in the sale of industrial, professional, and hobby drones along with related accessories such as batteries. The company targets a diverse audience including commercial drone operators, hobbyists, and industrial clients, positioning itself as a leading online drone retailer in Latvia. The website offers worldwide delivery and flexible payment options, enhancing its market reach. Technically, the website is built on the OpenCart CMS platform, utilizing a combination of Bootstrap, jQuery, and various JavaScript libraries for UI components and tracking. The site is mobile-optimized with good navigation and SEO practices, although some older libraries like jQuery 2.1.1 are in use, which may pose security risks. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, privacy policy, and terms of service pages, indicating a basic level of compliance with GDPR. However, the absence of visible security headers and the use of outdated libraries suggest room for improvement. No explicit security or incident response policies are found, and WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, iDrone.lv presents a professional and functional e-commerce presence with moderate security and privacy compliance. Strategic improvements in security headers, library updates, and enhanced transparency on security policies would strengthen its posture and trustworthiness.

A

Areaal.ee

areaal.ee

0

Areaal.ee is a medium-sized Estonian e-commerce retailer specializing in electronics, home appliances, beauty, and health products. The company operates a professional online platform with a broad product catalog sourced from top brands, targeting Estonian consumers seeking quality products with flexible payment and fast delivery options. The website is well-structured, mobile-optimized, and integrates modern technologies such as WordPress, WooCommerce, Google Tag Manager, and Facebook Pixel to support marketing and analytics efforts. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though improvements are recommended in DNS security and HTTP security headers. Privacy compliance is basic with cookie consent mechanisms and privacy policies present but lacking explicit GDPR statements. Overall, the business demonstrates credible market positioning with consistent domain registration and a trustworthy online presence.

The domain ksd-images.lt is registered to UAB "Interneto vizija", a Lithuanian company established in 2017. The website currently serves only a minimal 404 error page with no accessible content, metadata, or business information. This severely limits the ability to assess the company's market position, services, or digital maturity. Technically, the site is hosted behind Cloudflare nameservers with HTTPS enabled, but lacks any advanced security headers or content. No privacy, cookie, or terms policies are present, indicating poor compliance posture. Overall, the website quality and professionalism are very low, and the lack of content and contact information reduces trust and business credibility.

V

VEVOR Instrumenti un Citi Darbarīki | Pieejami. Uzticami. Mājas uzlabošanai

vevorshop.lv

0

VEVORshop.lv is an established Latvian e-commerce platform specializing in the retail of tools and home improvement equipment. The website targets both individual consumers and businesses within Latvia, offering a broad range of product categories including automotive, machining, construction, agriculture, and more. The business model is primarily online retail, leveraging WooCommerce on WordPress to manage its product catalog and sales. The company maintains a consistent brand presence with active social media channels and a professional website design that supports user engagement and conversion. From a technical perspective, the website employs a modern technology stack including WordPress, WooCommerce, and several plugins for multilingual support, cookie consent management, and analytics. Hosting is provided via bunny.net, as indicated by the nameservers. The site demonstrates good SEO practices with structured data and meta tags, and it is optimized for mobile devices, ensuring accessibility for a wide audience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, aligning with GDPR requirements. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure information, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected, and the site uses reputable third-party analytics and marketing tools responsibly. Overall, VEVORshop.lv presents a trustworthy and professional online retail platform with good technical and privacy compliance foundations. Strategic enhancements in security transparency and incident response readiness would further strengthen its risk profile and customer trust.

0

0808.lv

0808.lv

0

0808.lv is a Latvian-based e-commerce website specializing in the sale of electronic components, computer parts, and accessories. The site targets Latvian-speaking consumers and offers multilingual support including English, Russian, and Lithuanian. It operates on the PrestaShop platform and is hosted by Beget, a known hosting provider. The website demonstrates a moderate level of digital maturity with integration of Google Analytics, Google Tag Manager, and Klaviyo for marketing and analytics purposes. The site structure is well-organized with extensive product categories and a professional design, providing a good user experience and navigation clarity. However, the absence of visible privacy and cookie policies, as well as lack of explicit contact information, limits its privacy compliance and business transparency.

M

Maxtrade.lv

maxtrade.lv

0

Maxtrade.lv is a Latvian-based e-commerce retailer offering a broad range of products including computer components, office supplies, electronics, household goods, garden and repair items, furniture, sports equipment, and beauty products. The website targets consumers and businesses primarily in Latvia and the Baltic region, providing an online shopping platform with diverse product categories. The business model is focused on online retail with customer support via phone and email. The site demonstrates moderate branding consistency and good content quality, with clear navigation and product categorization.

Super Selection appears to be an e-commerce website likely targeting Latvian customers, as indicated by the domain and language settings. The site uses the OpenCart platform with the Journal3 theme and integrates common marketing and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The website is accessible without any WAF or security challenge blocking content. However, the site lacks visible business descriptions, contact information, and privacy or cookie policies, which limits transparency and trustworthiness. The absence of WHOIS data due to query limits further restricts the ability to verify domain legitimacy and registrant details. Technically, the site is moderately optimized for mobile and performance but lacks advanced security headers and explicit privacy compliance mechanisms.

DAROT.lv is a Latvian e-commerce retailer specializing in household items, garden products, kitchenware, cosmetics, and children's goods. The website targets Latvian consumers with a broad product catalog and offers delivery services across Latvia. The business operates a local online store with a focus on convenience and product variety. Technically, the website uses a range of JavaScript libraries and frameworks including jQuery, Semantic UI, and various UI components to provide a functional and visually appealing user experience. The site is built on DIRcms and includes standard e-commerce features such as product carousels, search, and shopping cart functionality. Security-wise, the site uses HTTPS but lacks important security headers and explicit incident response or security policies. Privacy compliance is limited, with no cookie consent mechanism and a basic privacy policy that does not clearly address GDPR requirements. Overall, the website is functional and credible as a small local retailer but would benefit from enhanced security and privacy practices to improve trust and compliance.