Retail security reports

B

BMV

bmv.lv

44

BMV.lv is a Latvian e-commerce retailer specializing in tools and power tools, targeting both consumers and professionals within Latvia. The website offers a broad range of products including battery-powered tools, electric tools, measurement instruments, pneumatic tools, garden equipment, ventilation, heating, and household products. The business model is focused on online retail with additional services such as tool rental. The site content is primarily in Latvian and provides clear contact information, including phone, email, and physical address, supporting its credibility as a local business. Technically, the website employs legacy technologies such as jQuery 1.3.2 and includes Google Analytics for user tracking. While HTTPS is enabled, the site lacks modern security headers and uses outdated JavaScript libraries, which may expose it to security risks. The site’s performance and mobile optimization are basic, with room for improvement in accessibility and SEO practices. From a security perspective, the site demonstrates basic best practices like HTTPS usage but lacks advanced security headers and uses outdated libraries, which could be exploited. No incident response or vulnerability disclosure information is found, indicating potential gaps in security maturity. Privacy and cookie policies are present and indicate GDPR compliance, but they are basic in scope. Overall, BMV.lv appears to be a legitimate small Latvian retail business with a functional but dated website. Strategic improvements in security, technical modernization, and enhanced privacy compliance would strengthen its digital maturity and trustworthiness.

RAF Centrs is a modern shopping center located in Jelgava, Latvia, owned by EfTEN Capital, an Estonian real estate investment group. The website provides comprehensive information about the shopping center, including store listings, contact details, news updates, and embedded location maps. The technical infrastructure uses modern front-end technologies such as Foundation, jQuery, and various plugins, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS usage implied, but lacks visible security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliance is indicated. Overall, the website is professional and trustworthy, serving a mature audience with retail offerings including alcohol and tobacco products.

S

SIA KERIO

keriosia.lv

42

SIA KERIO is a Latvian company specializing in the wholesale and distribution of environmentally-friendly vegetables sourced from both domestic and European farms. The company emphasizes quality control, compliance with EU standards, and stable supply chains supported by long-term contracts. Their offerings include organic vegetables and packaging materials such as nets for vegetables. The website targets the Latvian market and European buyers interested in fresh and industrial processing vegetables. Technically, the website is built on the GetSimple CMS platform and uses jQuery libraries. While the design and content quality are good with clear navigation and mobile responsiveness, the site lacks HTTPS encryption and modern security headers, which poses a risk to data security and user trust. The contact form includes CAPTCHA but lacks advanced security features. No privacy or cookie policies are present, indicating poor privacy compliance. WHOIS data could not be retrieved due to query limits, but the website provides consistent business information including VAT number and physical address, supporting legitimacy. Overall, the site is functional but requires significant security and privacy improvements to meet modern standards.

B

Bronte

bronte.lv

53

Bronte is a Latvian-based e-commerce retailer specializing in high-quality Sicilian food products, particularly chocolate combinations. The website targets Latvian consumers seeking premium specialty foods and operates on a WordPress WooCommerce platform. The business appears to be a small-sized niche retailer founded around 2018, with a consistent brand presence and active social media channels on Facebook and Instagram. Technically, the site uses modern e-commerce plugins and SEO tools, but lacks some advanced security headers and privacy compliance features. Security posture is moderate with HTTPS enabled and bot protection via reCAPTCHA, but missing explicit privacy and cookie policies reduce compliance confidence. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

P

prof.lv

uniserviss.lv

66

prof.lv is a leading Latvian e-commerce platform specializing in building materials and home improvement products. The website offers a wide range of products with convenient options for payment, local pickup, and nationwide delivery across Latvia. The business targets both consumers and professionals in the construction and home renovation sectors. The site is multilingual, supporting Latvian, Russian, and English languages, enhancing accessibility for a broader audience. Technically, the website is built on the Magento platform, leveraging modern web technologies and marketing tools such as Google Tag Manager and Klaviyo for analytics and customer engagement. The site demonstrates good design quality, mobile optimization, and SEO practices, contributing to a positive user experience. Security-wise, the site enforces HTTPS and includes several security headers, reflecting a solid security posture. However, the absence of visible privacy and terms of service pages and the lack of WHOIS data limit full trust verification and privacy compliance assessment. Overall, prof.lv presents as a professional and trustworthy online retailer in its sector, with room for improvement in privacy transparency and domain registration disclosure.

S

SIA ALETE

alete.lv

32

Salons "ALETE" is a well-established retail business in Ventspils, Latvia, specializing in household appliances and related products since 1992. The website presents the company as a medium-sized local retailer offering a broad range of well-known brand products. The business targets local consumers seeking household and audio-video equipment. The website content is primarily in Latvian and focuses on product offerings and contact information without advanced e-commerce features or extensive digital marketing integrations. Technically, the website runs on an outdated Joomla! 1.5 CMS platform with legacy JavaScript libraries such as jQuery 1.8 and MooTools. While HTTPS is enabled, the site lacks modern security headers and shows no evidence of advanced security or privacy compliance measures. The site design and user experience are basic, with limited mobile optimization and accessibility features. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. From a security perspective, the use of outdated software versions poses potential vulnerabilities. The absence of security headers and privacy policies further reduces the site's security posture. No incident response or vulnerability disclosure information is available. The WHOIS data could not be retrieved, limiting domain registration trust analysis. However, the website content and business information appear consistent with a legitimate local retail business. Overall, the website is functional but outdated and lacking in security and privacy best practices. Strategic improvements in CMS upgrades, security hardening, and compliance documentation are recommended to enhance trust and reduce risk.

E

Europick

europick.lv

60

Europick is a Latvian e-commerce retailer specializing in a broad range of consumer products including household items, personal care, food, and cosmetics. The website is professionally designed, supports multiple languages (Latvian, English, Russian), and targets general consumers in Latvia. The business model is typical for online retail, focusing on product sales with promotions and discounts. The site demonstrates a moderate level of digital maturity with a custom e-commerce platform (EcomCart.eu) and standard web technologies such as JavaScript and jQuery. Performance and mobile optimization are adequate, providing a good user experience. Security posture is reasonable with HTTPS enforced and cookie consent implemented, though some security headers and anti-CSRF protections are missing. Privacy compliance is supported by a privacy policy and cookie consent banner with opt-in mechanisms, indicating GDPR awareness. However, WHOIS data could not be retrieved, limiting domain trust verification. Overall, Europick presents as a legitimate, medium-sized regional e-commerce business with a solid online presence but room for security and compliance improvements.

T

Tabakas Nams Grupa SIA

tng.lv

54

Tabakas Nams Grupa SIA is a well-established Latvian company specializing in the import, wholesale, distribution, and retail of fast-moving consumer goods (FMCG), including tobacco and alcoholic beverages. Operating since 1994, it holds a strong market position as one of Latvia's largest distributors, with a network covering over 3500 points of sale and a chain of convenience stores under the brands Tabakas Nams and Krustpunkts. The company also has subsidiaries in Lithuania and Estonia, indicating regional expansion. The website reflects a professional digital presence with clear business information and a focus on wholesale and retail services.

S

SIA BALT SEKTORS

baltsektors.lv

40

SIA BALT SEKTORS is a Latvian distribution company specializing in wholesale of packaged sweets, bakery, confectionery products, chocolates, and teas. Founded in 2011, it serves the Baltic region with a focus on the Latvian market, targeting wholesalers and retail store chains. The website presents a clear product catalog with popular and new items, contact information, and social media presence limited to Facebook. The business model centers on wholesale distribution with flexible cooperation terms and nationwide delivery. Technically, the website uses modern frontend libraries such as Bootstrap, jQuery, and Owl Carousel, providing a responsive and user-friendly experience. However, no CMS or backend platform is explicitly detected. Security posture is moderate with HTTPS assumed but lacking explicit security headers and privacy compliance documentation. No WHOIS data was retrievable due to query limits, limiting domain trust verification. Overall, the website is professional and functional but could improve in privacy compliance and security best practices.

S

SIA ''MaxFun''

twjurmala.lv

57

The website www.twjurmala.lv represents SIA ''MaxFun'', a small retail distributor of Tupperware products in Latvia. The business focuses on selling kitchenware and household items, supported by product video descriptions and recipe content. The site targets Latvian consumers interested in Tupperware products and operates an e-commerce model with online product listings and a newsletter subscription. Technically, the website uses a proprietary or custom CMS platform with integrations such as Google Tag Manager and MailerLite for marketing and analytics. The site is secured with HTTPS and implements basic privacy and cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is adequate with no critical vulnerabilities detected, though additional security headers and a vulnerability disclosure policy could enhance trust. Overall, the website is professional, well-branded, and trustworthy, though WHOIS data is unavailable due to query limits, limiting domain registration verification. The business appears legitimate and consistent with a small local distributor profile.

F

Fantastiska Diena, SIA

vissirslikti.eu

47

VissIrSlikti.EU is a Latvian-based small retail business specializing in culturally themed apparel such as T-shirts, hoodies, jackets, and hats featuring Latvian phrases with English explanations. The website also serves as a community platform for users to share personal stories and feelings, enhancing customer engagement beyond simple e-commerce. The business positions itself as a unique niche brand with a strong cultural identity and local market focus, supported by clear company registration and contact information. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and reCAPTCHA for user tracking and security. The site is mobile optimized and offers a good user experience with clear navigation and relevant content.

S

SIA Ariols

ariols.lv

40

Ariols is a small Latvian company specializing in traditional food products such as pelmeni, vareniki, pankūkas, čebureki, and semi-finished products. The company targets general consumers interested in quick and tasty traditional cuisine. The website is built on Joomla! CMS using common frontend libraries like jQuery, Bootstrap, and UIkit, indicating a moderate level of technical maturity. The site design is good with clear navigation and multilingual support, though mobile optimization and accessibility are basic. Security posture is weak due to lack of visible HTTPS enforcement and security headers, and no privacy or cookie policies are present, which raises compliance concerns. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and safe but requires improvements in security and privacy compliance to strengthen trust and regulatory adherence.

U

UAB Marketing Investment Group Lietuva

50style.lt

37

50style.lt is a Lithuanian-based retail and e-commerce business specializing in sports, outdoor, and casual apparel from well-known brands. The company operates both online and through physical stores, targeting active consumers who value comfort and style. The website currently informs visitors about the cessation of its online store operations as of February 29, 2024, while maintaining customer support and providing detailed legal and privacy information. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and Adobe Typekit fonts, with moderate performance and good mobile optimization. Security posture is adequate but could be improved with additional security headers and explicit incident response policies. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the website presents a professional and trustworthy image consistent with its business operations and domain registration data.

S

SIA Māris & Co

marisco.lv

57

The website www.marisco.lv represents SIA Māris & Co, a Latvian multi-sector company operating a retail chain 'Mājai Dārzam' specializing in building materials, household goods, and garden supplies. The company has physical stores in Lielvārde and Jumprava, targeting local customers seeking home and garden products. The website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts and jQuery, and includes multimedia content like embedded YouTube videos. The site is well-structured with clear navigation and contact information, supporting a positive user experience. From a security perspective, the website uses HTTPS and CDN hosting but lacks explicit security headers and cookie consent mechanisms, indicating room for improvement in compliance and security posture. No WHOIS data was available due to query limits, limiting domain registration verification. The site does not expose sensitive data or show signs of vulnerabilities but would benefit from publishing security policies and incident response information. Overall, the website is professional and trustworthy for its business domain, with good content quality and moderate technical implementation. Strategic improvements in privacy compliance, security headers, and transparency would enhance its security and trustworthiness.

K

KAREL"S

karelsshop.com

55

KAREL"S operates an e-commerce platform specializing in handmade 100% silk scarves and related artisanal silk products, targeting customers primarily in Latvia. The business offers additional services such as photo sessions and silk printing, positioning itself as a niche retailer in the fashion accessories market. The website is built on the Mozello CMS platform and leverages Amazon Cloudfront CDN for content delivery, incorporating common JavaScript libraries and marketing tools including Google Analytics and Engaga for user engagement. From a technical perspective, the website demonstrates moderate digital maturity with a functional design, mobile responsiveness, and basic SEO optimization. However, the absence of advanced security headers and limited visible security controls on login forms indicate room for improvement in security posture. Privacy compliance is basic, with cookie consent mechanisms and a privacy policy present but lacking comprehensive GDPR indicators. Security-wise, the site uses HTTPS and implements cookie consent, but lacks explicit security headers such as CSP or HSTS, and no incident response or vulnerability disclosure information is available. The missing WHOIS registration data raises concerns about domain legitimacy, although the active social media presence and business content suggest a legitimate small business operation. Overall, the website scores moderately on content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic improvements in security practices, domain registration transparency, and enhanced privacy compliance would strengthen trust and reduce risk.

S

SIA Elitera

elitera.lv

41

SIA Elitera operates as a Latvian home textile manufacturer and online retailer specializing in embroidered and personalized textile products. The website presents a well-structured e-commerce platform targeting consumers interested in home textiles and gifts within Latvia. The company leverages common web technologies including OpenCart CMS, jQuery, Bootstrap, and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. The website is accessible without any WAF or security challenges, indicating good availability. However, the absence of visible privacy and cookie policies, as well as missing WHOIS data due to query limits, limits full trust verification. Security posture is moderate with HTTPS enabled but lacking explicit security headers. Overall, the site demonstrates a professional retail presence with room for improvement in privacy compliance and security best practices.

S

SmartSushi

smartsushi.lv

42

SmartSushi is a Riga-based sushi preparation and delivery company focusing on quality ingredients, professional preparation, and fresh delivery service. The website is built on Joomla CMS with VirtueMart e-commerce integration, providing a user-friendly shopping experience with clear product descriptions and promotional offers. The company targets consumers in Riga seeking premium sushi delivery. The site includes contact information and social media links, enhancing customer trust. However, the absence of privacy and cookie policies and lack of visible security headers indicate areas for compliance and security improvement. WHOIS data was unavailable due to query limits, limiting domain legitimacy verification. Overall, the site is functional and professional but could benefit from enhanced security and privacy practices.

S

SIA " ELAMA"

divinol.lv

46

The website divinol.lv represents SIA " ELAMA", the official representative of the German DIVINOL brand in Latvia, specializing in automotive lubricants, oils, and chemical products. The site offers an e-commerce platform with a broad product range targeting vehicle owners and professionals in Latvia. The business positions itself as a trusted distributor with over 150 years of German quality heritage. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies including React components for WooCommerce blocks, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is basic with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-structured, though WHOIS data is unavailable due to query limits, limiting domain registration verification.

B

BILANS i-veikals

bilans.lv

47

Bilans.lv is a Latvian e-commerce retailer specializing in the sale of tires, wheels, and related automotive products, alongside cooking equipment such as tandirs and kazans. The website targets vehicle owners and businesses within Latvia, offering a broad catalog with over 82,000 tire products and 32,000 wheel products. The business model combines online retail with physical service offerings including consultations and tire servicing. The company maintains a moderate market position within the Latvian automotive retail sector, supported by delivery services across the country and leasing options. Technically, the website employs modern web technologies including Laravel Livewire, Bootstrap, and JavaScript libraries for interactive UI components. It integrates Google Analytics and Facebook Pixel for marketing and tracking purposes. Security posture is good with HTTPS enforced and some security headers present, though improvements are recommended in cookie consent and security policy disclosures. Overall, the site presents a professional and trustworthy front for a small retail business, though WHOIS data is unavailable for full domain legitimacy verification.

A

Almego SIA

almego.lv

42

Almego SIA operates as a specialized retail e-commerce platform based in Latvia, offering exclusive gifts and souvenirs featuring Swarovski crystals, along with gold-plated and rhodium-plated jewelry. The company positions itself as the sole distributor of CRYSTOCRAFT products in Latvia, emphasizing quality and a 5-year warranty on its products. The website targets consumers looking for luxury gifts, including individual buyers and corporate clients seeking business accessories. The business model combines direct retail sales with wholesale options, focusing on a niche luxury market segment. Technically, the website is built on the OpenCart platform, utilizing Bootstrap and jQuery libraries, providing a moderate level of mobile optimization and user experience. However, the site lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS but lacks important security headers and privacy compliance documentation, which are critical for GDPR adherence and user trust. No WHOIS data could be retrieved due to query limits, but the site shows consistent branding and legitimate business information. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

S

SIA BEST PLUS

durvisrezekne.lv

42

Durvisrezekne.lv is a small retail business specializing in the sale, delivery, and installation of metal doors for apartments and houses primarily in the Rēzekne and Latgale region of Latvia. The company operates a WooCommerce-based e-commerce website built on WordPress with the Enfold theme, offering a catalog of door models with pricing and product images. The website provides clear contact information including phone numbers, email, and a physical address, supporting customer engagement and trust. Privacy and cookie policies are implemented, indicating awareness of GDPR compliance requirements. Technically, the website uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and Yandex Metrika for analytics and marketing. The site is mobile responsive and well structured with SEO-friendly metadata and JSON-LD structured data. However, security headers are not detected, which could be improved to enhance security posture. The absence of WHOIS data limits domain registration trust analysis, but the website content and business information appear consistent and legitimate for a local retail business. Security posture is moderate with HTTPS enabled and cookie consent mechanisms in place, but lacking advanced security headers and incident response information. Tracking is moderate, with standard analytics and marketing pixels active. Overall, the website is professional, trustworthy, and functional, serving its target audience effectively with room for security and compliance enhancements.

A

AR Global Parts

arglobalparts.com

67

AR Global Parts operates an e-commerce website specializing in replacement parts for coffee machines, targeting consumers and businesses seeking such components. The business leverages an existing eBay presence and extends its reach through an independent website built on the Ecwid platform. The company appears to be a small, niche retailer founded recently in 2023, focusing on a specialized market segment. The website content is relevant and professionally presented, with clear navigation and product listings linked to eBay items. Contact information including email and phone number is provided, enhancing business credibility. Technically, the website uses modern e-commerce infrastructure including Ecwid Instant Site, Amazon Cloudfront CDN, Vue.js framework, and Google Tag Manager for analytics. The site is mobile optimized and loads with moderate performance. However, SEO and accessibility features are basic, and no structured data markup was detected. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is weak due to the absence of privacy and cookie policies. Security evaluation shows no blocking or WAF challenges, and no critical vulnerabilities were detected from the content. The domain is newly registered but consistent with the business age and model. The lack of published security policies or incident response information is a gap. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing a vulnerability disclosure mechanism. These steps will improve compliance, security posture, and customer trust.

K

Krista Elsta

kristaelsta.com

68

Krista Elsta is a niche luxury e-commerce retailer specializing in handcrafted cashmere knitwear including sweaters, cardigans, and scarves. The website presents a professional and elegant brand image targeting consumers interested in high-quality fashion apparel. The business appears to have been founded around 2019, with a focused product offering and active social media presence. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and marketing tools such as Google Analytics, Facebook Pixel, and Sendinblue. The site is secured with HTTPS and implements a cookie consent mechanism indicating GDPR awareness. However, the absence of WHOIS data for the domain raises questions about domain registration transparency. Security headers are not fully implemented, and no explicit privacy policy or terms of service pages were detected in the provided content. Overall, the site is functional, professional, and secure but could improve transparency and security posture.

V

VYNOTEKA

vynoteka.lv

53

VYNOTEKA is a Latvian retail company specializing in alcoholic beverages including wines, spirits, beers, and ciders, complemented by related food products. The company operates both physical stores and an online platform, targeting adult consumers in Latvia. The website is professionally designed with clear navigation, age verification for alcohol sales, and comprehensive privacy and cookie policies, reflecting compliance with local regulations. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates marketing and analytics tools like Google Analytics, Inspectlet, and Omnisend. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. WHOIS data was unavailable due to query limits, limiting domain trust verification, but the website content and contact information appear legitimate and consistent with a reputable retail business. Overall, the site presents a trustworthy and professional online presence for VYNOTEKA's retail operations.

L

Lauru dārzi

lauri.lv

53

Lauru dārzi is a small local retail business based in Latvia specializing in the sale of gardening products such as flower pots, Samteņu seedlings, and cucumbers. The website provides basic product pricing and contact information, targeting local customers interested in gardening supplies. The business appears to have been founded in 2021 and operates primarily through direct retail sales. The website is built using the Webnode CMS platform and is hosted on AWS Cloudfront CDN, indicating a modern but basic technical infrastructure. Google Tag Manager is used for analytics and tracking, but no advanced frameworks or e-commerce platforms are detected. Security posture is moderate with HTTPS enabled, but lacks important security headers and privacy policy documentation. Contact information is limited to a phone number and physical location, with no email or social media presence found. Overall, the website is functional but basic, with room for improvement in privacy compliance and security best practices.

S

SIA GARS S

shoesgars.eu

43

The website shoesgars.eu represents SIA GARS S, a small Latvian company specializing in handmade shoes, clothing, and leather goods repair and customization since 1990. The business targets customers valuing unique, high-quality leather and textile products and services. The website is professionally designed with clear navigation and content focused on the company's key services including shoe and clothing tailoring, furniture upholstery, and repair services. Contact information is prominently displayed, supporting customer engagement. Technically, the website uses standard web technologies such as jQuery, FontAwesome, and Google Fonts, hosted via GoDaddy.com, LLC. The site is mobile-optimized and performs moderately well, though accessibility and SEO could be improved. No CMS or advanced frameworks are detected, indicating a custom or lightweight implementation. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No vulnerability disclosures or incident response contacts are provided. The absence of tracking or analytics scripts suggests minimal user data collection, which reduces privacy risks but also limits marketing insights. Overall, the website is safe, professional, and credible for its business scope but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve trust and regulatory adherence.

V

Veikals Saimnieks – Preces lauksaimniekiem

veikalssaimnieks.lv

41

The website www.veikalssaimnieks.lv is an e-commerce platform focused on selling agricultural products to farmers, primarily targeting the Latvian market. The site is built on WordPress using the Oxygen Builder and Gutenberg editor, indicating a moderate level of technical maturity. The content is relevant but minimal, with no detected contact information or privacy policies, which limits user trust and compliance. The site uses HTTPS, ensuring basic encryption, but lacks advanced security headers and visible security policies. No WHOIS data was retrievable due to query limits, which reduces transparency about domain ownership. Overall, the site appears functional but would benefit from enhanced security, privacy compliance, and business transparency to improve trust and user confidence.

C

C MĀJO Ltd

maajo.lv

43

MAAJO is a Latvian design company specializing in handcrafted lighting, furniture, and decorative objects inspired by Latvian nature and traditional crafts. The company targets consumers who appreciate quality design with cultural heritage influences. Their products are distributed through select retailers and online platforms, positioning them as a niche player in the design retail sector. Technically, the website is built on the Berta.me CMS platform, uses standard web technologies, and integrates Google Analytics for visitor tracking. The site is mobile responsive with good navigation and content quality. Security posture is moderate with HTTPS implied but lacks advanced security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No contact emails or phone numbers are explicitly provided, which may affect user trust and compliance. WHOIS data could not be retrieved, limiting domain legitimacy assessment. Overall, the website is professional and functional but requires improvements in privacy, security, and contact transparency to enhance trust and compliance.

D

Dārza studija

darzastudija.lv

57

Dārza studija is a Latvian wholesale supplier specializing in gardening products such as bulbs, fertilizers, garden tools, soil substrates, and irrigation equipment. The company targets B2B customers including garden centers and landscapers, offering an online catalog and ordering platform built on WordPress and WooCommerce. The website is professionally designed with consistent branding and clear navigation, supporting a good user experience for its target audience. Technically, the site leverages popular WordPress plugins including B2BKing for business-to-business functionality, WPBakery for page building, and Slider Revolution for visual content. While the site is secured with HTTPS and includes privacy and cookie policies, there is room for improvement in security headers and vulnerability management. No WHOIS data was available due to query limits, but the domain and website content appear legitimate and consistent with a small regional business. Overall, the site demonstrates a moderate to good level of digital maturity and security posture.

K

Kristīne RR SIA

apavivisiem.lv

54

Kristīne RR SIA operates the website apavivisiem.lv, an e-commerce platform specializing in branded footwear retail with discounts up to 80%. The site targets Latvian consumers and offers a wide range of women's, men's, girls', and boys' shoes. The business model focuses on online sales with delivery across Latvia and in-store pickup options. The company has been active since at least 2013, maintaining a consistent brand presence and leveraging social media channels such as Facebook and Instagram for marketing. Technically, the website is built on WordPress with WooCommerce, utilizing modern plugins for SEO, GDPR compliance, and marketing integrations like Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security measures include HTTPS encryption and reCAPTCHA for forms, although some security headers could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site appears trustworthy and professionally managed. Recommendations include enhancing security headers, maintaining up-to-date software, and considering the addition of a terms of service page to improve legal clarity. Regular security audits and accessibility improvements would further strengthen the platform.

S

SIA "VMD"

vmd.lv

34

SIA VMD operates a Latvian e-commerce website specializing in the manufacturing and retail of towel warmers and related stainless steel accessories. The company targets consumers and businesses seeking quality towel drying solutions, offering a range of products including towel dryers, fittings, decorative pipe covers, and custom orders. The website is professionally designed with clear navigation and multilingual support in Latvian and Russian, reflecting a regional market focus. Technically, the site leverages common web technologies such as jQuery, Bootstrap, and Swiper.js, and appears to be built on the OpenCart platform. While HTTPS is enabled ensuring secure communication, the absence of key security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. Contact information is clearly presented, enhancing business credibility. Overall, the site demonstrates a good balance of content quality and technical implementation suitable for a small retail business.

Sveču Namiņš is a Latvian small business specializing in retail sales of candles, candle holders, outdoor lanterns, personalized gift sets, and decorative accessories. The website positions itself as a local niche e-commerce platform targeting general consumers interested in home decor and gifts. The business appears to have been founded around 2020, with the current domain registered in 2023, indicating possible recent domain acquisition or rebranding. The site leverages WordPress with WooCommerce and Elementor, reflecting a modern and flexible digital infrastructure suitable for small to medium e-commerce operations. SEO practices are well implemented with Yoast SEO, and social media presence is established on Facebook and Instagram.

I

InteriorStore.eu

interiorstore.eu

43

InteriorStore.eu is an Estonian-based e-commerce retailer specializing in home interior and furnishing products, including furniture, lighting, wallpapers, paints, mirrors, textiles, and accessories. The website targets consumers interested in comprehensive interior solutions and offers a broad product catalog with pricing and financing options. The business appears to be small-sized and founded around 2017, with a consistent brand presence and professional online storefront. Technically, the website is built on WordPress with WooCommerce, utilizing modern plugins such as WPBakery Page Builder, Slider Revolution, and multilingual support via WPML. It integrates Google Analytics and Facebook Pixel for marketing and tracking purposes. The site is served over HTTPS with a good SSL configuration, though some security headers are not explicitly detected. Performance and mobile optimization are good, with a clear navigation structure and SEO best practices implemented. From a security perspective, the site follows basic best practices including HTTPS and reCAPTCHA usage, but lacks explicit security policies, vulnerability disclosure, and comprehensive privacy and cookie policies. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business location and domain age, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

S

SIA “ARDEKO.LV”

ardeko.lv

56

ARDEKO is a small Latvian company specializing in window dressing products such as curtains, blinds, mosquito nets, awnings, and curtain rods, offering measurement, manufacturing, and installation services primarily in Jelgava. The website is built on WordPress with WooCommerce and Elementor, indicating a moderate level of digital maturity suitable for e-commerce and informational purposes. The site is well-branded, mobile-optimized, and provides clear contact information and social media links, supporting business credibility. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance documentation, which are areas for improvement. WHOIS data could not be retrieved due to query limits, limiting domain registration trust analysis. Overall, the website presents a professional local business with room to enhance security and compliance.

EASTCON HOLDING GmbH is a medium-sized German company founded in 1989, specializing in direct sales of household and health-related products. The company operates internationally with subsidiaries in several European countries, focusing on improving customers' quality of life through quality products. Their business model centers on direct customer contact and sales, supported by an online presence and multilingual websites. Technically, the website employs modern JavaScript libraries, Google Analytics, and reCAPTCHA for security and user interaction. The site is mobile-optimized and provides clear navigation and contact information. Security posture is solid with HTTPS and captcha protections, but lacks some advanced security headers and explicit security policies. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces domain trustworthiness. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations.

Ahmad Tea Baltic represents the British tea brand Ahmad Tea in the Baltic States, offering a wide range of tea products including black, green, herbal, and gift sets. The company positions itself as a quality-focused distributor with a history dating back to 1998. The website serves as an informational and representative platform with links to an official online shop. Technically, the site uses a variety of established JavaScript libraries and frameworks such as jQuery, Bootstrap, and Slider Revolution, hosted by Inova Group SIA. While the site is functional and professionally designed, it lacks some modern security and privacy features such as security headers, cookie consent mechanisms, and published privacy policies. The domain registration is consistent and legitimate, supporting the business claims. Overall, the site is trustworthy but could improve in privacy compliance and security hardening.

Eastcon is a well-established direct sales company founded in 1989 in Germany with active subsidiaries in the Baltic region and other countries. The company specializes in household and wellness products including sleep systems, kitchenware, steam cleaning, air purification, and travel services. The website is professionally designed, mobile-optimized, and provides clear contact information and customer engagement features such as social media links and online store access. Technically, the site uses modern JavaScript libraries and Google services for analytics and spam protection, but lacks some advanced security headers and explicit security policies. Privacy and cookie policies are present with consent mechanisms, indicating a basic level of GDPR compliance. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site presents a credible business with moderate technical maturity and a good security posture.

P

Pakella

pakella.lv

50

Pakella.lv is a Latvian e-commerce website specializing in the sale of various packaging products including food packaging, cardboard packaging, industrial packaging, and packaging equipment. The site targets businesses and consumers seeking packaging solutions and offers a broad catalog of products and related services such as equipment servicing and packaging customization. The website is built on the OpenCart CMS platform and utilizes modern web technologies including jQuery, Bootstrap, FontAwesome, and Slick Carousel. It is secured with HTTPS and implements a GDPR-compliant cookie consent mechanism. However, explicit contact information and detailed business registration data are not present on the site, which slightly limits business credibility assessment. The WHOIS data could not be retrieved due to query limits, restricting domain legitimacy verification. Overall, the site presents a professional and functional e-commerce platform with moderate technical maturity and a good security posture.

M

Mydecor24.com

mydecor24.com

50

Mydecor24.com is a Latvian-based small retail business specializing in home decor products and services. The company emphasizes creativity, fast order execution, and modern manufacturing technologies such as laser cutting and CNC processing. The website is built on the Craftum CMS platform and hosted via 101domain GRS Limited. It offers customers multiple delivery options and maintains active social media profiles on Instagram, Facebook, and Etsy. Technically, the website is moderately optimized with good mobile responsiveness but lacks advanced security headers and privacy compliance documentation. Security posture is basic with room for improvement, especially in implementing security headers and GDPR-compliant policies. Overall, the business appears legitimate with consistent WHOIS data and a domain age appropriate for its market presence.

M

MagMaster

magmaster.lv

57

MagMaster is a Latvian e-commerce retailer specializing in children's toys, educational products, musical instruments, sports equipment, and fitness/yoga items. The website is built on the Shopify platform using the Empire theme, providing a modern and mobile-optimized shopping experience. The company targets parents and families in Latvia, offering a range of products with free shipping and a customer satisfaction guarantee. Technical infrastructure leverages Shopify's CDN and includes bot protection via hCaptcha, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and standard security headers likely present, though explicit security policies and incident response information are not published. Privacy and cookie policies are available and indicate GDPR compliance. Overall, the website is professional, trustworthy, and well-structured, but the lack of WHOIS data limits full verification of domain legitimacy.

C

Curonia Coffee Roasters

curoniacoffee.com

56

Curonia Coffee Roasters is a small Latvian coffee roasting company based in Kuldīga, Latvia, specializing in quality coffee products and related services such as coffee brewing equipment sales and machine servicing. The website presents a professional and consistent brand image targeting coffee enthusiasts primarily in Latvia. The business operates a retail e-commerce model with additional offerings like coffee tours. Technically, the website uses a Mozello CMS platform with a modern but basic tech stack including jQuery and Cloudfront CDN, delivering moderate performance and good mobile optimization. Security posture is moderate with HTTPS usage but lacks explicit security headers and advanced login protections. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. The domain WHOIS data is missing, which raises concerns about domain legitimacy despite the professional website presence.

S

Santehnikas internet veikals

santehnikaduschy.lv

52

The website santehnikaduschy.lv is a Latvian e-commerce platform specializing in bathroom and shower products, including shower cabins, panels, accessories, and related items. It targets general consumers in Latvia seeking plumbing and bathroom supplies online. The business appears to be a small local retailer with a focused product catalog and a clear market niche. Technically, the site is built on WordPress with WooCommerce and uses the Astra theme, indicating a standard modern e-commerce infrastructure. The site is mobile-optimized and has moderate performance, with good SEO and basic accessibility features. Security posture is adequate with HTTPS enabled and good SSL configuration, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and terms of service pages, although a cookie consent banner is present. WHOIS data could not be retrieved due to query limits, limiting domain trust assessment. Overall, the site is functional and professional but would benefit from enhanced security and compliance documentation to improve trust and regulatory adherence.

V

Veikals Poga

tavapoga.lv

43

Veikals Poga is a Latvian retail business specializing in sewing supplies, garment accessories, fabrics, and Bernina sewing machines. With over 30 years of experience in garment sewing and repair, the company offers both products and professional consultation services. The website serves as an e-commerce platform showcasing a broad product range and providing contact channels for customer support. Technically, the site is built on WordPress using WooCommerce and Elementor, with SEO optimization via Yoast and tracking through Google Analytics. Security posture is adequate with HTTPS enabled but lacks some advanced security headers and explicit privacy policies. Overall, the business presents a trustworthy and professional image with clear contact information and social media presence.

S

SIA "ŠĶIRSTS D"

monument.lv

43

The website monument.lv represents a small local business, SIA "ŠĶIRSTS D", specializing in the design, manufacturing, and installation of granite memorial products in Riga, Latvia. The site offers a comprehensive catalog of granite monuments, memorial plaques, and related services including storage, delivery, and installation. The business targets general consumers seeking memorial products with a retail and manufacturing business model. Technically, the website is built on the Bitrix CMS platform, utilizing jQuery 1.12.4 and other JavaScript libraries such as Flexslider and Spectrum color picker. The site is moderately optimized for mobile devices and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and modern JavaScript libraries, which could be improved. Privacy and cookie policies are not found, indicating a gap in compliance with GDPR and related regulations. Overall, the website is functional and professional but would benefit from enhanced security and privacy measures to improve trust and compliance.

M

MAISON DE BEAUTE – labāka kosmētika, kurai nav analogu / JŪRMALA

maisondebeaute.lv

50

Maison de Beaute is a small luxury cosmetics and beauty services provider based in Jūrmala, Latvia. The website offers a range of facial and body procedures combining manual, apparatus, and invasive methods, enhanced by exclusive cosmetic brands such as Margy’s Monte Carlo. The business targets customers seeking high-end skincare and spa treatments, with an e-commerce component for product sales and delivery options across Latvia, Lithuania, and Estonia. The site is built on the Tilda platform, leveraging modern web technologies and integrated payment processing via Stripe. Technical infrastructure is adequate for a small business, with good mobile optimization and a professional design. Security posture is moderate, with HTTPS usage but lacking visible security headers and formal privacy or cookie policies. WHOIS data is unavailable due to query limits, limiting domain registration verification. Overall, the website is safe, professional, and suitable for its market niche but would benefit from enhanced privacy compliance and security best practices.

U

udensakademija.lv

udensakademija.lv

51

The website www.udensakademija.lv is an e-commerce platform specializing in plumbing and bathroom products, including faucets, bathtubs, shower cabins, sanitary ceramics, and bathroom furniture. It targets consumers and businesses in Latvia seeking these products, offering online sales and delivery services. The site is built on the OXID eShop CMS platform and uses common web technologies such as jQuery. The product catalog is extensive, and the site provides clear contact information and product details, positioning itself as a reliable retailer in its niche market. From a technical perspective, the website employs HTTPS for secure communications but lacks advanced security headers that could enhance protection against common web vulnerabilities. The site does not implement cookie consent mechanisms or comprehensive privacy compliance features, which are important for GDPR adherence given its European location. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, but the website content and contact details appear consistent with a legitimate Latvian retail business. Security posture is moderate; while HTTPS is enforced, the lack of security headers and privacy compliance features presents areas for improvement. No signs of malware, phishing, or adult content were detected, and the site is accessible without WAF or security challenges. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices to improve trust and compliance. Strategic recommendations include implementing security headers, adding cookie consent and GDPR-compliant privacy policies, publishing vulnerability disclosure information, and improving accessibility and mobile optimization to enhance user experience and regulatory compliance.

P

Perfectnails Latvia

perfectnails.lv

58

Perfectnails Latvia operates an e-commerce platform specializing in nail care products, cosmetics, and accessories targeting Latvian consumers. The website offers a range of products including UV/LED gel polishes, nail design tools, and training services. The company maintains an active social media presence and uses modern marketing tools such as MailerLite and Facebook Pixel to engage customers. Technically, the site is built on WordPress with WooCommerce and Elementor, providing a solid foundation for e-commerce operations. The site is mobile optimized and SEO friendly, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security headers and formal security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. WHOIS data could not be retrieved, limiting domain trust verification. Overall, the site is professional and functional but would benefit from enhanced privacy and security disclosures.

S

SIA Miredo

ranele.lv

46

SIA Miredo operates the website www.ranele.lv, presenting itself as a Latvian confectionery manufacturer specializing in a variety of bakery products including cookies, waffles, prjaņiki, and related items under the brand RANELE. Founded in 2014, the company emphasizes quality, GMO-free products, and stable partnerships. The website offers a comprehensive product catalog with images and descriptions, targeting retail and wholesale customers interested in confectionery goods. Technically, the site uses older but functional technologies such as jQuery 1.11.3 and Bootstrap, with moderate performance and good mobile optimization. However, security posture is limited due to lack of visible HTTPS confirmation, absence of security headers, and missing privacy and cookie policies. No WHOIS data was available due to query limits, restricting domain legitimacy verification. Overall, the site is professional and trustworthy for its business scope but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

A

Altus LTD

altus.lv

50

Altus LTD is a Latvian coffee roastery established in 1994, operating under the Kingston brand. The company specializes in roasting over 15 tons of green coffee monthly, sourcing beans from more than 25 countries with reputable suppliers from Germany, Great Britain, and Switzerland. They offer a diverse product range including single origin and flavored coffees, as well as private label coffee production services for businesses such as cafes, online stores, and vending operators. The website reflects a professional and consistent brand presence with good content quality and user experience. Technically, the site is built on the Tilda CMS platform, leveraging modern web technologies and optimized for mobile devices. Security posture is moderate with HTTPS usage but lacks explicit security headers and privacy policies. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the site is safe, business credible, and well-positioned in the retail coffee sector.

F

Forest World Ltd

zageriem.lv

45

The website zageriem.lv is an e-commerce platform specializing in the retail of chainsaw and trimmer spare parts, primarily targeting customers in Latvia. The business operates under the name Forest World Ltd and offers a wide range of products including parts for brands like Husqvarna, Stihl, Jonsered, and Makita. The site emphasizes fast delivery and professional consultation services, positioning itself as a niche supplier with a focus on quality and availability. The website content is primarily in Latvian with options for English and Russian, catering to a regional audience. Technically, the website uses a traditional stack including jQuery and Bootstrap for UI components, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site appears moderately optimized for performance and mobile use but lacks advanced accessibility features. The presence of CSRF tokens in forms indicates some security awareness, though no explicit security headers were detected in the HTML content. The site uses HTTPS, but SSL configuration details are not available from the provided data. From a security and compliance perspective, the website has a basic privacy policy and terms of service pages but lacks a cookie consent mechanism, which is important for GDPR compliance given its European audience. No incident response or security policy information is publicly available. WHOIS data could not be retrieved due to query limits, limiting the ability to verify domain registration legitimacy. Overall, the site shows moderate security posture but would benefit from enhanced security headers, explicit cookie consent, and published security policies. The overall risk assessment suggests a legitimate small business with a functional e-commerce presence but with room for improvement in security and privacy compliance. Strategic recommendations include implementing security headers, adding cookie consent, improving mobile and accessibility features, and publishing incident response information to enhance trust and compliance.