Retail security reports

F

Feelgreen

feelgreen.lv

50

Feelgreen.lv is an e-commerce retailer specializing in ecological and natural products aimed at families and individuals seeking a healthier lifestyle. The website is professionally designed with multilingual support and offers a range of product categories including cosmetics, nutrition supplements, and home care products. The business appears to be a small-sized entity operating primarily in Latvia with a focus on sustainable and eco-friendly goods. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks some advanced security headers and explicit security policies. WHOIS data was unavailable due to query limits, limiting domain registration verification. Overall, the site presents a trustworthy and professional e-commerce platform with room for improvement in privacy and security transparency.

Lsablatvia.lv is an online retail e-commerce platform primarily targeting Latvian consumers, offering a wide range of products including clothing, electronics, toys, home decor, and tools. The website emphasizes fast delivery, customer support, and customer satisfaction guarantees such as money-back and return policies. The business model is typical for small to medium-sized online retail operations, focusing on direct-to-consumer sales through a web storefront. The site content is primarily in Latvian with options for other languages, catering to a general consumer audience. Technically, the website uses a combination of popular front-end libraries and frameworks such as jQuery, Bootstrap, Font Awesome, and various slider/carousel plugins. The site appears moderately optimized for mobile devices and has a functional search and shopping cart system. However, no CMS or backend platform is explicitly identified. Performance is moderate with no evident critical technical issues, but SEO and accessibility features are basic. From a security perspective, the site uses HTTPS but lacks visible security headers and advanced protections. There is no evidence of privacy or cookie policies, GDPR compliance, or incident response contacts, which are critical for e-commerce sites handling user data. The absence of WHOIS data due to query limits limits the ability to verify domain legitimacy and registrant information, reducing overall trust. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the website is functional and serves its business purpose but has gaps in privacy, security, and compliance that should be addressed to improve trustworthiness and regulatory adherence. Strategic improvements in security headers, privacy policies, and domain transparency are recommended.

G

Gardu Muti

gardumuti.lv

53

Gardu Muti is a small Latvian business specializing in organic and traditional Latvian food and beverage products, including syrups and zelteris. The website serves as a platform to showcase their products, share recipes, and promote cultural events. The brand emphasizes local heritage and organic quality, targeting consumers interested in authentic Latvian flavors. Technically, the site is built on the Squarespace platform, leveraging modern web technologies and fonts, with a responsive design suitable for mobile users. However, the site lacks some advanced SEO and accessibility features. Security-wise, the site uses HTTPS but misses important security headers that could improve protection against common web attacks. Privacy and cookie policies are not explicitly present, which may affect compliance with GDPR and other regulations. Overall, the site appears legitimate and professionally maintained, but the absence of WHOIS data limits full trust verification. Strategic improvements in security headers and privacy compliance would enhance the site's trustworthiness and user confidence.

Evinni.lv is a Latvian-based company specializing in the wholesale and retail of decorative finishing materials, including stretch ceilings, glass blocks, switches, sockets, and decorative tiles. With over 15 years of experience representing manufacturers in Latvia, the company offers both products and installation services, targeting customers interested in interior design and home improvement. The website is multilingual, supporting Latvian, Russian, and English, and features an e-commerce platform powered by WooCommerce. The site includes customer testimonials and detailed product catalogs, enhancing business credibility. Technically, the website is built on WordPress with WooCommerce and uses modern web technologies such as jQuery, Visual Composer, and Google Fonts. It employs HTTPS for secure communication but lacks some advanced security headers. Google Analytics is integrated but not fully configured, indicating moderate digital maturity. The site is mobile-optimized with good navigation and content quality. From a security perspective, the site uses HTTPS and secure login forms but lacks explicit security policies, incident response information, and security headers like CSP or HSTS. No WAF or blocking mechanisms are detected, and no vulnerabilities are evident from the HTML content. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, Evinni.lv presents a professional and trustworthy online presence for a small Latvian retail business. The main risks relate to privacy compliance and security hardening. Strategic improvements in these areas would enhance trust and regulatory adherence.

M

MUNDURS

mundurs.lv

57

MUNDURS is an e-commerce retailer specializing in professional and amateur tools and instruments, primarily serving the Latvian market. The website offers a wide range of products including hand tools, power tools, measuring instruments, and safety equipment. The business model focuses on online sales with delivery services and customer account management. The site is well-branded and targets professionals and hobbyists in the tools sector. Technically, the website is built on the EcomCart.eu CMS platform and utilizes modern web technologies such as JavaScript, jQuery, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and search functionality. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a professional and trustworthy front for its business, but the lack of WHOIS data due to query limits limits the ability to fully verify domain legitimacy. Strategic improvements in security headers and transparency policies would enhance trust and compliance.

S

SIA Lauku apgāds un meliorācija

lam.lv

52

SIA Lauku apgāds un meliorācija is a Latvian company established in 1994, specializing in retail and services related to household goods, construction materials, garden equipment, fuel retail, and melioration services. It holds a strong regional presence in the Vidzeme region and operates multiple physical and online stores, including partnerships with well-known brands such as Circle K. The website reflects a mature digital presence with clear business information and customer contact channels. Technically, the site uses modern web technologies, including HTTPS, hCaptcha for form protection, and Google Analytics for tracking, indicating a reasonable level of digital maturity. Security posture is good with encrypted connections and spam protection, though some security headers could be improved. Privacy compliance is evident with a dedicated privacy policy and cookie consent mechanisms. Overall, the business appears credible and trustworthy, though WHOIS data is unavailable due to query limits, limiting domain registration verification.

N

NUUK

nuukchair.com

70

NUUK is an e-commerce retailer specializing in Nordic style lounge furniture designed for home, garden, office, and terrace use. The company emphasizes comfort, durability, and practical design, targeting consumers who appreciate minimalist and industrial aesthetics. The website is built on the Shopify platform, leveraging modern web technologies and third-party integrations for analytics, marketing, and customer reviews. The technical infrastructure is solid, with good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and security headers present, though explicit security policies and incident response information are not published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The domain WHOIS data is unavailable, likely due to privacy protection, which is common for small e-commerce businesses. Overall, NUUK presents a professional and trustworthy online presence with moderate risk and room for improvement in transparency around security and contact information.

S

Sirekar Hulgi OÜ

40den.eu

45

40den.eu is an established Estonian e-commerce retailer specializing in hosiery, lingerie, and related apparel products. Founded in 2011 and operated by Sirekar Hulgi OÜ, the website offers a broad selection of well-known European brands, targeting primarily Estonian-speaking customers including women, men, and expectant mothers. The platform emphasizes a user-friendly shopping experience with secure payment options and timely delivery within the Baltic region. Technically, the site employs a modern but custom-built infrastructure leveraging popular JavaScript libraries, Google Fonts, and marketing integrations such as Google Analytics and Facebook Pixel. Security measures include HTTPS enforcement and use of Google reCAPTCHA for form protection, though some HTTP security headers are missing. Privacy compliance is addressed with visible privacy and cookie policies, and GDPR considerations appear to be met. Overall, the website demonstrates a solid business presence with good technical and security practices, though there is room for improvement in formal security policies and header configurations.

B

babymar.lv

babymar.lv

60

babymar.lv is a Latvian e-commerce retailer specializing in children's products, including car seats, strollers, toys, furniture, and other baby care items. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party integrations such as Judge.me for customer reviews and Translation Lab for multilingual support. The site targets parents and families in Latvia, offering a broad catalog of baby-related products with a focus on convenience and accessibility. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with appropriate security headers, indicating a solid security posture. However, the absence of visible cookie consent mechanisms and terms of service pages suggests room for improvement in privacy compliance. WHOIS data was unavailable due to query limits, but the site's professional presentation and consistent branding support its legitimacy. Overall, babymar.lv presents a trustworthy and functional online store with moderate technical maturity and good security practices.

Z

Pet Shop – ZuZu.land

zuzu.land

71

ZuZu.land operates as an online pet shop specializing in pet food and accessories for dogs and cats. The business is positioned as a niche e-commerce retailer targeting pet owners primarily in Europe, as indicated by the multiple hreflang tags and the Finnish locale setting. The website is built on the Shopify platform, leveraging its e-commerce capabilities and CDN hosting for performance and reliability. The technical infrastructure includes modern web technologies such as JavaScript modules, Google Tag Manager for analytics, and Cloudflare DNS services, indicating a mature digital presence for a small business founded in 2022. Security posture is solid with HTTPS enforced and domain locking via EPP statuses, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Overall, the website is professional and safe for general audiences but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

P

Pašvaldības SIA “Ventspils nekustamie īpašumi”

ventspilstirgus.lv

55

Ventspils tirgus is a municipal market platform operated by Pašvaldības SIA “Ventspils nekustamie īpašumi” in Latvia, providing a venue for local producers, artisans, and vendors to sell fresh produce, crafts, and other goods. The website serves as an information hub for market events, vendor registration, and community engagement. Technically, the site uses a Mozello CMS platform with Amazon CloudFront CDN, leveraging common JavaScript libraries such as jQuery and Fancybox. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and incident response information. Privacy compliance is adequate with a privacy policy and cookie banner present. Overall, the site is legitimate and trustworthy, though WHOIS data is unavailable due to query limits, limiting full domain trust verification.

L

Logi24.lv

logi24.lv

38

Logi24.lv is a Latvian-based company specializing in the sale and installation of windows, doors, blinds, and related home comfort products. With approximately 28 years of experience in the EU market, the company offers a range of products including series windows, metal doors, and ventilation solutions, complemented by certified installation services and a warranty of up to 5 years. Their business model combines e-commerce with physical services, targeting homeowners and construction professionals primarily in Latvia and the broader EU region. Technically, the website employs modern web technologies such as Vue.js components, Google Fonts, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and features a clear navigation structure. However, no explicit security headers were detected in the provided data, and WHOIS information was unavailable due to query limits, limiting full domain trust verification. From a security perspective, the site uses HTTPS and includes CSRF tokens for form security, but lacks visible advanced security headers. Privacy and cookie policies are present and indicate GDPR compliance. No incident response or vulnerability disclosure information is found, which could be improved to enhance trust. Overall, the website presents a professional and trustworthy front for its business, with good content quality and user experience. The lack of WHOIS data and some missing security policies slightly reduce the confidence score. Strategic recommendations include enhancing security headers, publishing incident response contacts, and ensuring WHOIS transparency.

S

SIA Kraftlager

kraftlager.lv

60

SIA Kraftlager operates an e-commerce platform focused on retailing design radiators and home, repair, and garden products primarily in Latvia. The company positions itself as a competitive regional retailer with partnerships across Europe, offering a broad product catalog. The website is built on WordPress with WooCommerce, leveraging modern web technologies and plugins to provide a functional and visually appealing user experience. Structured data implementation enhances search engine visibility and provides clear contact and business information. Security posture is adequate with HTTPS enforced and no visible critical vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is basic, with a cookie consent mechanism present but lacking explicit privacy and terms of service pages. Overall, the website reflects a legitimate small retail business with moderate digital maturity and a good foundation for further security and compliance enhancements.

S

SIA COFFEE FACTORY

coffeefactory.lv

58

SIA COFFEE FACTORY operates a retail website focused on selling coffee products, coffee machines, and water equipment primarily targeting consumers in Latvia. The website presents a professional and consistent brand image with clear contact information and product offerings. The business appears to be a small local retailer with an online presence built on the Webnode platform and hosted via Cloudfront CDN. The site uses Google Analytics and Google Tag Manager for visitor tracking and marketing purposes. From a technical perspective, the website employs modern web technologies and is mobile optimized with moderate performance. However, the site lacks some advanced security headers and does not provide visible privacy policy or terms of service pages, which are important for compliance and user trust. The cookie consent mechanism is implemented with options for users to accept necessary or all cookies, indicating some level of privacy awareness. Security posture is adequate with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to query limits restricts full domain legitimacy verification, but the website content and business information are consistent with a legitimate small business. There are no indications of adult or explicit content, making the site safe for general audiences. Overall, the website scores moderately well in content quality, technical implementation, security, privacy compliance, and business credibility. Strategic improvements in privacy documentation, security headers, and vulnerability disclosure would enhance trust and compliance.

A

AJ STUDIJA, SIA

4istabas.lv

56

4istabas.lv is an online furniture retail store operating in Latvia, offering quality furniture for kitchens, living rooms, bedrooms, and offices with nationwide delivery. The business is identified as AJ STUDIJA, SIA, founded in 2021, targeting Latvian consumers seeking quality furniture through an e-commerce platform. The website is built on WordPress with WooCommerce, leveraging modern web technologies including Bootstrap, jQuery, and Font Awesome, and integrates payment facilitation via Klix Pay Later. The site demonstrates good design quality, mobile optimization, and SEO practices, though some accessibility features are basic. Security posture is solid with HTTPS and cookie consent mechanisms, but could be improved by adding explicit security headers and documented security policies. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy or terms of service in the provided content. WHOIS data was unavailable due to query limits, limiting domain registration trust analysis. Overall, the site is professional and trustworthy for its business purpose.

M

Mezadarzs.lv

mezadarzs.lv

52

Mezadarzs.lv is a Latvian-based e-commerce retailer specializing in garden equipment and tools, including lawn mowers, garden tractors, hedge trimmers, and irrigation systems. The company targets gardeners, landscaping professionals, and homeowners within Latvia, positioning itself as a local specialist in garden machinery and accessories. The website is built on WordPress with WooCommerce, leveraging modern plugins and technologies to provide a user-friendly shopping experience. Social media integration and cookie consent mechanisms indicate a moderate level of digital maturity and GDPR awareness. Security posture is solid with HTTPS and security headers in place, though explicit privacy and security policies are missing. Overall, the website presents a professional and trustworthy front for a small retail business.

E

Tel. 20207488 – ĒRTAS UN GAUMĪGAS MĒBELES

egmebeles.lv

43

The website egmebeles.lv represents a small Latvian furniture retailer specializing in a wide range of furniture products including beds, sofas, wardrobes, tables, chairs, and kitchen equipment. The business operates an e-commerce platform built on WordPress and WooCommerce, targeting general consumers in Latvia. The site offers a credit payment option through a partnership with Holm Bank Latvia SIA, indicating some level of business maturity and customer financing options. The website content is primarily in Latvian with some Russian language support, reflecting the local market demographics. From a technical perspective, the website uses a modern WordPress theme (Neve) and common plugins such as WooCommerce, jQuery, and Owl Carousel for UI enhancements. The site is mobile optimized and provides a good user experience with clear navigation and product categorization. Performance is moderate, with no major issues detected in the HTML structure or loading behavior. However, there is room for improvement in SEO and accessibility features. Security posture is adequate with HTTPS enabled, but the absence of security headers and privacy/cookie policies indicates gaps in compliance and best practices. No WHOIS data was available due to query limits, limiting domain legitimacy verification. No signs of malicious content or blocking mechanisms were detected, and the site appears safe for general audiences. Overall, egmebeles.lv is a functional and moderately professional e-commerce site for furniture retail in Latvia. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance trust and security posture.

T

Tili Studio

tilistudio.eu

51

Tili Studio is a Latvian-based e-commerce retailer specializing in modern, sustainable children's clothing inspired by northern nature. The website targets parents seeking slow fashion options for their children, offering a curated collection of elegant and unique apparel. The business operates a professional online store with multilingual support and integrates popular payment gateways to facilitate smooth transactions. The brand maintains an active social media presence on Facebook, Instagram, and Pinterest, enhancing its market reach and customer engagement. Technically, the website is built on WordPress with WooCommerce, leveraging modern plugins and themes to deliver a responsive and user-friendly experience. The site includes comprehensive privacy and cookie policies with a consent mechanism, reflecting good GDPR compliance. Security posture is strong with HTTPS enforced and secure form handling, though some HTTP security headers are not explicitly detected. Overall, the website demonstrates a mature digital infrastructure suitable for a small retail business, with good content quality and trust indicators. Recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen compliance and user experience.

I

Instant Noma

instantnoma.lv

39

Instant Noma is a small Latvian business specializing in the rental and sale of instant photo cameras and accessories, targeting individuals and event organizers for weddings, parties, and celebrations. The website presents a clear business model focused on providing various Instax and Polaroid camera models, photo frames, guest books, and instant photo printers. The company maintains an active social media presence and provides clear contact information, enhancing customer trust and engagement. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics, ensuring a responsive and user-friendly experience. The site is well-optimized for mobile devices and SEO, with appropriate meta tags and structured content. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks advanced security headers and a formal security policy or incident response contact. Privacy compliance is addressed with visible privacy and cookie policies, indicating GDPR awareness. WHOIS data could not be retrieved due to query limits, limiting domain registration trust analysis. Overall, the site is professional, trustworthy, and well-suited for its niche market, with room for security enhancements.

S

SIA "DS AKĀCIJAS"

aluksnessaulespuke.lv

46

The website represents SIA "DS AKĀCIJAS", a small Latvian company founded in 2020, operating a flower and gift shop named "Saulespuķe" in Alūksne. The business offers fresh cut flowers, bouquets, balloon decorations, wedding and funeral floristry, and event equipment rental. The company aims to be a preferred local service provider in its sector. Technically, the website is built on Webflow CMS with integration of Google Fonts and Google Maps API, providing a modern and mobile-optimized user experience. However, the site lacks visible security headers and privacy-related policies, which are critical for GDPR compliance and user trust. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

R

RIGHTBERG SIA

in2house.lv

58

In2House is a Latvian-based company specializing in interior design, custom kitchen furniture, soft furniture, and lighting solutions. With over 30 years of market presence, it represents premium European furniture brands and serves both residential and commercial clients. The company operates physical showrooms in Riga and supports e-commerce through partner websites. The website is professionally designed, multilingual, and provides comprehensive contact information and business details. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and service workers, hosted on a CDN platform. Security posture is good with HTTPS enforced and secure form handling, though explicit security headers and cookie consent mechanisms are missing. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the business appears credible and well-established with a solid digital presence.

R

ROTUPASAULE.LV

rotupasaule.lv

52

ROTUPASAULE.LV is a Latvian online retail store specializing in imported jewelry and accessories from England, offering unique single-piece items including vintage and pearl collections. The website targets women seeking exclusive and stylish jewelry to enhance their personal style. The business operates primarily in the retail and e-commerce sectors with a small company size. Technically, the website is built on OpenCart CMS and uses modern JavaScript libraries and tracking tools such as Yandex Metrika and Mail.ru counters. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is moderate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. WHOIS data is unavailable due to query limits, limiting domain trust assessment. Overall, the website is professional and trustworthy but could improve in security and privacy compliance.

V

VARIS Toys SIA

varistoys.lv

46

VARIS Toys SIA operates a B2B e-commerce platform specializing in toys and related products, targeting business customers primarily in Latvia and the Baltic region. The website offers a broad catalog of products across multiple categories including baby items, creative kits, games, puzzles, and accessories. The company positions itself as a regional toy supplier with a medium-sized business footprint. Technically, the website uses modern web technologies such as HTML5, CSS3, JavaScript, and integrates Google Fonts and FontAwesome for styling and icons. The site is mobile-optimized with good navigation and user experience, although accessibility features are basic. Security posture is decent with HTTPS enforced and CSRF tokens implemented, but lacks some security headers and a security.txt file for vulnerability disclosure. Privacy compliance is limited as no privacy policy was detected, though a cookie consent mechanism is present. Contact information is not explicitly found in the provided content, which may impact business credibility. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website is functional and professional but could improve privacy transparency and security best practices.

S

Sa.adi

saadiknitting.com

56

Sa.adi is a small Latvian-based artisan knitting business specializing in handmade knitwear products for women, children, and accessories. The company operates an e-commerce website targeting Latvian-speaking customers, emphasizing craftsmanship and personalized orders. The website is professionally designed with good navigation and mobile optimization, supported by modern JavaScript libraries and hosted on a reliable CDN. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and a privacy policy page. The absence of WHOIS registration data raises concerns about domain legitimacy, although the active website and social media presence support business credibility. Overall, the site is functional and trustworthy for its niche market but would benefit from improved compliance and security transparency.

The website sunufrizieris.lv represents a small local business, SIA AIKORA Pet, specializing in professional dog and cat grooming services and retailing pet products in Valmiera, Latvia. The site offers detailed service descriptions including grooming, paw SPA, and a self-service grooming facility, alongside an e-commerce shop for pet food and accessories. The business targets pet owners in the local region, positioning itself as a trusted and professional pet care provider with a clear local presence and active social media engagement. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and SEO tools such as Yoast SEO Premium. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with deferred loading of scripts and use of CDN resources for fonts and libraries. From a security perspective, the site uses HTTPS and includes secure login forms with nonce tokens. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no cookie consent mechanism is present, which is a compliance gap given GDPR relevance. Facebook Pixel is used for marketing and tracking, indicating moderate user tracking. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the website is safe, professional, and trustworthy with minor recommendations to improve security headers and privacy compliance. The business appears legitimate and well-positioned locally, but domain registration details should be verified when possible to strengthen trust.

B

Beauty Pro

beautypro.lv

60

Beauty Pro is a Latvian-based small business specializing in retailing eyelash extension products and providing related training courses. The company targets professional eyelash extension artists and eyebrow specialists, offering a range of products including lashes, glues, fluids, salon equipment, and educational courses. The website is multilingual, supporting Latvian, English, and Russian, indicating an intent to serve a broader regional audience. The business model is primarily e-commerce combined with educational services, positioning Beauty Pro as a niche market player in the beauty retail sector in Latvia. Technically, the website is built on WordPress using WooCommerce for e-commerce functionality and Elementor for page building. It integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Sendinblue, reflecting a moderate level of digital maturity. The site is mobile-optimized and includes SEO best practices, although accessibility features are basic. Performance is moderate, with a professional design and clear navigation. From a security perspective, the website enforces HTTPS and includes several important security headers, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy and cookie policies and lack of incident response or vulnerability disclosure information represent compliance and transparency gaps. The WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, Beauty Pro presents as a legitimate, professional small business with a solid online presence but could improve privacy compliance and transparency. The risk level is moderate with recommendations to enhance privacy policies, incident response readiness, and accessibility to strengthen trust and compliance.

Ē

Ēvele Mēbele SIA. (Koka Mebeles)

evelemebeles.lv

63

Ēvele Mēbele SIA is a Latvian small business specializing in the manufacturing and retail of solid wood furniture, including pine chests of drawers and children's bedroom furniture. The company targets residential and business customers within Latvia, positioning itself as a local trusted furniture maker. The website is built on WordPress with WooCommerce and Elementor, enhanced by NitroPack for performance optimization and monitored by New Relic Browser for analytics. The site is well-structured with good SEO metadata and mobile optimization, providing clear contact details and social media presence. Security posture is strong with HTTPS and security headers, though explicit privacy and terms policies are missing. Overall, the business demonstrates a professional online presence with room for improvement in privacy compliance and security transparency.

S

Saules Kliņģeris

saulesklingeris.lv

53

Saules Kliņģeris is a small local bakery and confectionery business based in Valmiera, Latvia, specializing in the production and sale of various bakery products including cookies, savory and sweet pastries, cakes, and pizzas. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard JavaScript polyfills, indicating a moderate level of technical maturity. The site is mobile optimized and provides essential business contact information but lacks comprehensive privacy and cookie policies, which impacts its compliance posture. Security-wise, the site uses HTTPS but does not implement additional security headers or incident response contacts, suggesting room for improvement in security best practices. Overall, the website presents a professional and trustworthy image for a local bakery but would benefit from enhanced privacy compliance and security measures.

S

SIA KITTY TIME

kittytime.lv

40

Kitty Time® is a Latvian small business specializing in the manufacture and retail of professional replaceable pet toilets designed primarily for cats and small pets. The company emphasizes product convenience, hygiene, and environmental responsibility, using recycled plastics and eco-friendly packaging. The website is built on WordPress and incorporates common web technologies such as jQuery, Google Analytics, and Facebook Pixel for tracking. The site is well-structured with clear navigation and good mobile optimization, providing detailed product information and multiple retail locations in Latvia. However, it lacks visible privacy and cookie policies, which is a compliance gap. Security posture is moderate with HTTPS enabled but missing security headers and incident response contacts. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website presents a professional and trustworthy image for a niche retail business but should improve privacy compliance and security practices.

M

Māras Mēbeles

marasmebeles.lv

45

Māras Mēbeles is a Latvian furniture retailer offering a variety of furniture products for living rooms, bedrooms, kitchens, offices, and children's rooms. The company operates an e-commerce website built on the OpenCart platform, targeting local consumers in Latvia. The website provides a product catalog with shopping cart functionality and basic company information including contact phone and physical address. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Google Analytics, and is mobile responsive with moderate performance. Security posture is basic with HTTPS enabled but lacking important security headers and cookie consent mechanisms. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site appears legitimate and functional for a small retail business but would benefit from enhanced security and privacy compliance measures.

S

SIA “Makasars”

makasars.lv

43

Makasars is a Latvian small business specializing in the manufacturing and retail of custom wooden furniture. Their website presents a professional and visually appealing platform showcasing various furniture categories such as living room, kitchen, youth, children's, bathroom, outdoor, and commercial furniture. The company targets consumers seeking quality and unique furniture solutions. Technically, the website is built on WordPress using popular plugins like Revolution Slider, Essential Grid, and WPML for multilingual support. The site is mobile-optimized and uses HTTPS, but lacks advanced security headers and privacy policies. The absence of WHOIS data limits full trust assessment, but the presence of clear contact information and physical addresses supports legitimacy. Overall, the website is functional and credible for its business scope.

S

Saules Rasa

saulesrasa.lv

53

Saules Rasa is a small Latvian business specializing in the production and sale of natural plant hydrolats used for skincare, aromatherapy, and wellness. The company emphasizes traditional Latvian herbal knowledge and natural ingredients, targeting local consumers interested in natural and holistic health products. The website is built on the Mozello CMS platform, leveraging common JavaScript libraries and Amazon Cloudfront CDN for hosting. It features product information, usage guidance, and direct contact details for the owner, Vita Ozerinska. Social media presence on Facebook and Instagram supports customer engagement. Security posture is moderate with HTTPS enabled but lacks advanced security headers and enhanced login protections. Privacy compliance is basic with no explicit privacy or cookie policies found, though cookie consent mechanisms are implemented. WHOIS data is unavailable due to query limits, but the website content and contact information support legitimacy. Overall, the site is functional, well-branded, and serves its niche market effectively.

S

SIA OLDANA

zoobums.lv

39

The website www.zoobums.lv/internetveikals is an online retail store specializing in pet supplies, operated by the Latvian company SIA OLDANA since at least 2019. It offers a broad catalog of products for various pets including dogs, cats, rodents, parrots, and fish, with clear pricing and stock availability. The site targets Latvian pet owners and operates primarily in the Latvian language with some Russian language support. The business model is straightforward e-commerce retail with online ordering and delivery services. The presence of payment logos and partner links indicates a legitimate and operational business. Technically, the website uses common web technologies such as jQuery and PhotoSwipe for UI and image handling. The site is desktop-oriented with basic mobile optimization and accessibility features. SEO is basic but includes meta tags and Open Graph data. No advanced CMS or hosting provider details are evident. Performance is moderate with no critical errors detected. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. From a security perspective, HTTPS is used as indicated by the Open Graph URL, but no security headers were detected in the provided data. There is no visible incident response or security policy publicly available. No vulnerabilities or malicious content were found, but the absence of direct contact information and WHOIS transparency slightly reduces trust. Overall, the security posture is moderate but could be improved with better headers, explicit policies, and contact details. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include enhancing security headers, improving mobile and accessibility features, publishing security and incident response policies, and providing clear contact information. These steps would improve trust, compliance, and user experience, supporting business growth and resilience.

Saimniecība Kunturi is a small Latvian farm specializing in pork production with a full production cycle from piglets to various pork products. The website serves as an online storefront and informational portal primarily targeting local consumers interested in fresh pork meat. The site is built on WordPress with WooCommerce, utilizing common web technologies such as jQuery and Google Analytics for tracking. While the site is functional and provides essential business information including contact details and a privacy policy, it lacks advanced privacy compliance features such as cookie consent mechanisms and security policies. The technical infrastructure is moderately modern but uses outdated libraries that could pose security risks. Security posture is basic with HTTPS enabled but missing important security headers and updated components. Overall, the site is moderately trustworthy but would benefit from technical and security improvements to enhance compliance and user trust.

T

TESPARS

tespars.lv

62

TESPARS is a Latvian e-commerce retailer specializing in power tools and related equipment, prominently featuring brands such as Makita, Festool, Bosch, and Dewalt. The website serves as a primary online sales channel targeting Latvian consumers and businesses in need of construction and garden tools. The company positions itself as the largest Makita product retailer in Latvia, offering a broad product range including batteries, garden machinery, abrasives, and accessories. The site is built on the Magento platform, leveraging modern web technologies such as Alpine.js and Tailwind CSS, and integrates marketing and analytics tools like Google Tag Manager, Google Analytics, Hotjar, and Mailchimp.

S

SIA SPORTA PUNKTS LATVIJA

sportapunkts.lv

42

Sportapunkts.lv is a Latvian-based e-commerce and retail business specializing in sportswear, footwear, accessories, and custom sports uniform printing. The company targets active sports enthusiasts and offers a broad product range for men, women, and children. The website supports multiple languages (Latvian, Russian, English) and integrates social media channels to engage customers. The business appears to be medium-sized with a local market focus and physical store presence. Technically, the site uses a combination of jQuery, Semantic UI, and popular JavaScript libraries for UI and analytics, indicating a moderate level of digital maturity. The site is served over HTTPS, uses Google Analytics and Facebook Pixel for tracking, and includes a cookie consent mechanism, reflecting basic compliance with privacy regulations. However, the absence of a visible privacy policy and security headers suggests room for improvement in security and privacy posture. Overall, the website is functional, professionally designed, and trustworthy but could enhance its security and compliance frameworks.

S

Suitsupply

suitsupply.com

68

Suitsupply is a well-established menswear retailer specializing in premium suits, including wedding, formal, tuxedos, and custom-made options. The company operates both physical stores and an e-commerce platform, targeting men seeking high-quality formalwear crafted from Italian fabrics. The website reflects a mature digital presence with a modern tech stack including React and Next.js, supported by a robust content delivery network and integrated marketing and analytics tools. Security posture is strong with HTTPS enforcement and domain registration consistency, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information and multiple communication channels. Overall, the site demonstrates professionalism, trustworthiness, and a strong market position in the retail fashion sector.

L

Lotus Beauty (by Igors Popovs)

lotusbeauty.online

53

Lotusbeauty.online is a small Latvian-based e-commerce and service website specializing in beauty products, jewelry, and appointment booking for hair treatments. The site also features lifestyle and investment-related content, targeting consumers interested in beauty, lifestyle, and real estate investment. The business operates primarily online with a physical salon address in Riga, Latvia. The website is built on WordPress using WooCommerce for e-commerce and Bookly for appointment scheduling, hosted on DigitalOcean. The technical infrastructure is modern and functional, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and some security best practices in place, though improvements such as DNSSEC and Content-Security-Policy headers are recommended. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy for its niche, though there is room for enhanced security and privacy features.

P

Pull & Bear

pullandbear.com

71

Pull & Bear is a well-established international fashion retail brand specializing in casual clothing, shoes, and accessories for men and women. The website targets the Finnish market with localized content and is part of the Inditex group, a major player in global retail. The site offers a modern e-commerce experience with frequent new arrivals and seasonal collections. Technically, the website employs a proprietary Inditex ecommerce framework, uses Akamai CDN for content delivery, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. The site is mobile-optimized and performs well with good SEO and accessibility features. Security posture is strong with HTTPS enforced, security headers present, and script protection via Jscrambler. However, explicit security policies and incident response contacts are not published, and WHOIS data is unavailable, which slightly impacts trust assessment. Overall, the site is professional, secure, and compliant with GDPR, serving a broad general audience with safe content.

L

High-quality materials for sauna | lvtimber.lv

lvtimber.lv

47

The website lvtimber.lv represents a small Latvian business specializing in high-quality materials for sauna construction and timber products. The site is built on WordPress using Elementor and WooCommerce, indicating a modern e-commerce platform with good technical foundations. The content is relevant and professionally presented, targeting consumers and businesses interested in sauna materials. However, the absence of explicit privacy, cookie, and terms of service policies suggests gaps in compliance and transparency. Security posture is basic with HTTPS enabled but lacking advanced security headers and vulnerability disclosure mechanisms. WHOIS data is unavailable due to query limits, limiting domain legitimacy assessment. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices.

4

4x4Shop.lv

4x4shop.lv

48

4x4Shop.lv is a Latvian-based e-commerce retailer specializing in 4x4 vehicle parts and accessories, serving enthusiasts and vehicle owners primarily in Latvia. The website acts as an official dealer for Ironman4x4 products, offering a range of automotive components with a user-friendly car selector tool to aid customers in finding compatible parts. The business model focuses on direct online sales with account management features such as wishlists and checkout. Technically, the site is built on the OpenCart platform, utilizing older but functional technologies like jQuery 2.1.1 and Bootstrap for responsive design. While the site is accessible and well-structured, it lacks modern security headers and uses outdated libraries, which could pose security risks. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The absence of WHOIS data due to query limits limits full domain legitimacy assessment, but the site appears legitimate based on content and business focus. Overall, the site is functional and professional but would benefit from technical and security updates to enhance trust and compliance.

R

ricaveikals.lv

ricaveikals.lv

43

ricaveikals.lv is a Latvian online retail store specializing in products for children, parents, and home goods. The website offers a range of categories including baby products, cleaning supplies, cosmetics, and household appliances, targeting families and household consumers primarily in Latvia. The business operates an e-commerce model with a local market focus and provides special offers and gift cards to customers. The website content is basic but relevant, with clear navigation and contact information provided. Technically, the site is built on a custom CMS likely based on CakePHP, utilizing older JavaScript libraries such as Prototype.js and jQuery 1.4.2. While functional, the technology stack is outdated, which may pose security risks. The site includes cookie consent mechanisms indicating some level of GDPR compliance, but lacks modern security headers and visible SSL configuration details. Performance and mobile optimization are basic, and SEO practices are minimal. From a security perspective, the site shows moderate maturity with cookie consent implemented but lacks advanced security policies, incident response information, and vulnerability disclosures. The use of outdated libraries and absence of security headers are notable weaknesses. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Contact details and physical address are clearly presented, supporting business credibility. Overall, the website is a functional small-scale e-commerce platform with moderate trustworthiness but requires technical and security improvements to enhance its posture and compliance. Strategic recommendations include updating technology stack, implementing security headers, enforcing HTTPS, and publishing security policies to improve user trust and regulatory compliance.

T

T/C Šokolāde

sokoladecentrs.lv

45

T/C Šokolāde is a retail shopping center located in Sigulda, Latvia, offering a variety of retail stores, a cinema, and gift card services. The website presents the business as a local shopping and entertainment hub with a focus on providing a pleasant and sweet experience akin to chocolate. The site is built on WordPress and uses common web technologies such as jQuery, Google Maps API, and Google Analytics for tracking visitor behavior. The technical infrastructure is moderately modern with good mobile optimization and basic SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy transparency. WHOIS data could not be retrieved, limiting domain legitimacy verification.

P

Pričina G., individuālā darba veicēja

alejasmaize.lv

57

Alejas maizes ceptuve is a small artisanal bakery business based in Latvia, specializing in wood-fired natural sourdough bread and confectionery products. Founded in 2013 by Gunita Pričina and family, the business serves local and regional customers through direct sales, markets, and workshops. The website reflects a well-maintained digital presence with clear business information, social media integration, and customer engagement features. Technically, the site uses modern web technologies including jQuery, Google Analytics, and service workers for PWA capabilities, hosted on a CDN platform. Security posture is good with HTTPS enforced and use of CAPTCHA on contact forms, though some security headers could be improved. Privacy compliance is basic, lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-suited for its business model.

P

www.pirtslietudarbnica.lv

pirtslietudarbnica.lv

42

The website pirtslietudarbnica.lv represents a small Latvian e-commerce business specializing in sauna-related products and accessories. The site offers a variety of items such as stone bowls, sauna brushes, stoves, and other sauna finishing materials, targeting consumers interested in sauna culture primarily within Latvia. The business model is retail-focused, leveraging an OpenCart platform to facilitate online sales. The website is professionally designed with clear navigation and a responsive layout, supporting a positive user experience. Contact information is prominently displayed, enhancing customer trust. Technically, the site uses a standard OpenCart CMS with common libraries including jQuery 2.1.1, Bootstrap, Font Awesome, and Swiper for UI components. Google Analytics is integrated for user tracking. While the site uses HTTPS and implements a cookie consent banner, it relies on an outdated jQuery version which may introduce security vulnerabilities. No advanced security headers or explicit security policies are present, indicating room for improvement in security posture. From a security perspective, the site is generally safe with no visible exposed sensitive data or malicious content. However, the lack of updated libraries and security headers, combined with missing terms of service and security policies, suggests moderate security maturity. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site appears legitimate and consistent with a small local business. Strategically, the business should prioritize updating its JavaScript libraries, implementing security headers, and publishing clear security and privacy policies to enhance trust and compliance. Improving these areas will reduce risk and support sustainable growth in the competitive e-commerce sauna products market.

G

GEM ELEMENTS

gemelements.com

57

GEM ELEMENTS is a small retail business specializing in diamond and precious stone jewelry sales based in Riga, Latvia. The website presents a professional image with a focus on high-quality diamond services and jewelry products. The business appears to be well-established since 2017, targeting consumers interested in luxury jewelry in the local market. Technically, the website uses a modern JavaScript stack including jQuery, Owl Carousel, Fancybox, and Select2, alongside multiple analytics and tracking tools such as Google Analytics, Yandex Metrika, Inspectlet, and Facebook Pixel. Cookie consent is managed through Cookiebot, indicating a basic level of privacy compliance. However, no explicit privacy policy or terms of service pages were found in the provided content, which is a compliance gap. Security posture is moderate with no WAF detected and no visible vulnerabilities, but DNSSEC is not enabled and security headers are not evident, suggesting room for improvement. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures, contact information, and security hardening to improve trust and compliance.

Orange Toys is a well-established manufacturer and wholesaler of branded plush toys, targeting children, retailers, and wholesalers globally. The company offers a diverse range of collections and custom toy production services, positioning itself as a quality-focused player in the soft toy retail and manufacturing industry. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses common web technologies such as jQuery and integrates analytics tools like Google Analytics and Yandex Metrika. Hosting is provided by Timeweb, with domain registration dating back to 2007, supporting business legitimacy. Security posture is moderate with HTTPS enabled and CSRF tokens in forms, but lacks DNSSEC and security headers, and does not provide cookie consent mechanisms, indicating areas for improvement. Overall, the site is safe for general audiences with no adult or questionable content detected.

S

SIA “ADUGS Production”

adugs.lv

47

Adugs is a Latvian confectionery company specializing in the production and sale of sweets and related products. The website presents the company as a small local business focused on fresh and appealing confectionery items suitable for various occasions, including private label manufacturing. The site is primarily informational with basic content and navigation, targeting a general audience interested in confectionery products. Technical infrastructure includes common web technologies such as jQuery, Yii framework, Bootstrap, and Swiper, indicating a moderately modern but basic digital presence. Security posture is limited with no visible security headers or privacy policies, and WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is functional but lacks advanced security and compliance features.

T

TWINSET Milano

twinset.com

64

TWINSET Milano operates as an official digital store specializing in women's fashion apparel and accessories. The website presents a professional e-commerce platform targeting fashion-conscious women, offering a curated collection of clothing, dresses, underwear, bags, and shoes. The brand maintains a consistent and polished online presence, leveraging modern technologies and marketing tools to engage its audience. Technically, the site is built on Salesforce Commerce Cloud, integrating various third-party analytics and marketing services such as Google Analytics, Braze, and Cookiebot for privacy compliance. Security measures include HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not prominently available. The absence of WHOIS registration data for the domain is a notable anomaly, potentially indicating privacy protection or registrar issues, which slightly impacts the trust assessment. Overall, the website demonstrates a mature digital infrastructure with good user experience and privacy compliance, suitable for its retail business model.

S

Steve Madden

stevemadden.com

71

Steve Madden is a well-established global fashion brand specializing in footwear, handbags, and accessories. The website serves as a comprehensive e-commerce platform targeting fashion-conscious consumers primarily in the United States. It offers a broad product range with a focus on trendy and stylish designs, supported by a strong brand presence and consistent branding. The business operates on a retail e-commerce model leveraging Shopify as its platform. Technically, the website employs a modern tech stack including Shopify, Fast Simon for search and recommendations, Yotpo for reviews, and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Bing Ads. The site is mobile optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Performance is moderate, typical for a large e-commerce site with rich content. From a security perspective, the site enforces HTTPS and uses reputable third-party services. Consent management is handled via OneTrust with Google Consent Mode integration, indicating good privacy compliance. However, explicit security headers are not clearly present, and no dedicated security or incident response policies are published on the site. The WHOIS data is unavailable or privacy protected, which is unusual for a major brand and slightly reduces trustworthiness from a domain registration standpoint. Overall, the website presents a professional and trustworthy front for Steve Madden's e-commerce operations. Strategic improvements in security header implementation, incident response transparency, and direct contact information availability would further enhance the site's security posture and user trust.