Security Directory

U

UPGREAT

upgreat.ee

0

UPGREAT is an Estonian-based e-commerce retailer specializing in used and guaranteed Apple devices such as iPhones, MacBooks, iPads, and Apple Watches. The company positions itself as the largest provider of checked used Apple products in Estonia, offering a two-year warranty to customers. The website is built on WordPress with WooCommerce, leveraging modern marketing and analytics tools including Google Tag Manager, TikTok Pixel, Hotjar, and Klaviyo, indicating a mature digital marketing infrastructure. Cookie consent is managed via Cookiebot, ensuring compliance with cookie regulations. However, explicit privacy and terms of service policies are not detected in the provided content, which may impact compliance and user trust.

S

SleepAngel Global

sleepangel.eu

0

SleepAngel Global operates a specialized e-commerce platform focused on filtered bedding products that provide clinically clean comfort and protection against allergens and pathogens. The company positions itself as an innovator in medical-grade bedding technology, with notable partnerships such as the Movistar Cycling Team. The website is built on Shopify, leveraging modern e-commerce technologies and third-party integrations for multilingual support, customer reviews, and marketing analytics. Privacy and cookie compliance are well implemented, reflecting GDPR adherence. Security posture is solid with HTTPS and form protections, though explicit security policies and incident response details are absent. Overall, the site presents a professional and trustworthy front with room for enhanced security transparency.

A

AS Latvijas Maiznieks

maiznieks.com

0

AS Latvijas Maiznieks is a well-established Latvian bakery company founded in 2003, specializing in a wide range of bakery and confectionery products including breads, cakes, frozen bakery goods, and snacks. The company targets retail consumers as well as institutional clients such as schools and kindergartens. Their website reflects a mature digital presence with detailed product catalogs, news updates, and social media integration, supporting their market position as a leading bakery brand in Latvia. Technically, the website uses standard web technologies including jQuery and Slick Carousel, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and basic security headers, though improvements such as DNSSEC and advanced security headers are recommended. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, indicating awareness of GDPR requirements. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

N

Norrison OÜ

norrison.ee

0

Norrison OÜ is an established Estonian company specializing in the manufacturing and retail of knitwear, workwear, school uniforms, and fashion apparel. Founded in 2010, it holds a strong market position as the largest school uniform producer and quality knitwear creator in Estonia. The website serves as a professional e-commerce platform targeting Estonian consumers interested in locally produced, ethically made clothing. The company emphasizes quality, local production, and customer satisfaction, supported by testimonials and a consistent brand presence across social media channels. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies including jQuery, Matomo analytics, and Facebook Pixel for marketing and tracking. The site is hosted by Zone Media OÜ, a reputable Estonian hosting provider. The website demonstrates good mobile optimization, SEO practices, and user experience, although accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting compliance with GDPR requirements. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and the extensive use of third-party tracking scripts may raise privacy considerations. No incident response or security policy information is publicly available, indicating an area for improvement. Overall, the website is trustworthy and professionally maintained, with a solid business foundation and digital presence. Strategic enhancements in security headers, privacy transparency, and incident response readiness would further strengthen its security posture and compliance standing.

S

STIGA Sports

stigasports.se

0

STIGA Sports operates an e-commerce platform specializing in sports and leisure products, including table tennis equipment, scooters, and hockey games. The website targets consumers interested in sports gadgets and leisure activities, positioning itself as a recognized brand in the retail sports sector primarily in Sweden. The business model focuses on direct online sales with a moderate company size and consistent branding. Technically, the website is built using modern frameworks such as Next.js and integrates multiple third-party services for analytics, marketing, and user engagement, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is partial, with a cookie consent banner present but no explicit privacy policy or terms of service detected in the provided content. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Strategic recommendations include enhancing privacy disclosures, improving security headers, and verifying domain registration details to strengthen business credibility and compliance.

T

TIBHAR

tibhar.info

0

TIBHAR is a well-established German company specializing in the design and production of high-quality table tennis equipment since 1969. The website serves as a retail and promotional platform targeting ambitious table tennis players worldwide. It features multilingual support and integrates modern web technologies such as WordPress, WooCommerce, and Elementor, reflecting a mature digital infrastructure. The site includes embedded video content and social media integration, enhancing user engagement and brand presence. From a security perspective, the website employs HTTPS and domain transfer protections but lacks DNSSEC and visible security headers, indicating room for improvement in hardening its security posture. Privacy compliance is well addressed with GDPR cookie consent mechanisms and a comprehensive privacy policy. Overall, the website demonstrates good professionalism, trustworthiness, and technical implementation, supporting the company's market position in the sports retail sector.

P

PD Instore

neoinstore.com

0

NEO Retail Displayware is a specialized retail merchandising company offering innovative pegboard hardware and signage solutions under the patented neoPEGS™ brand. Their products target retail businesses seeking modern, customizable, and cost-effective displayware. The website is built on WordPress using WPBakery Page Builder and includes standard web technologies such as jQuery and FontAwesome. The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security practices.

F

Fromi GmbH

fromi.com

0

Fromi GmbH is an established German company specializing in the wholesale and distribution of cheese specialities and fine foods, with over 50 years of experience and an international reputation. The company targets cheese retailers, food service professionals, and gourmet consumers, offering a wide range of products and services including cheese selections, fine food offerings, and customer support. The website reflects a professional and consistent brand image with multilingual support and comprehensive product information. Technically, the site is built on WordPress with modern plugins and libraries, optimized for mobile and SEO, and includes cookie consent mechanisms. Security posture is strong with HTTPS, obfuscated emails, and no visible vulnerabilities, though security headers could be improved. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Strategic recommendations include enhancing security headers, publishing incident response policies, and clarifying domain registration details to improve trust and compliance.

M

Montibello – Skin

montibello.com

0

Montibello is a Spanish-based company specializing in hair care, facial, and body treatment products, targeting professionals in the beauty and aesthetics industry. The website provides product information, professional courses, and inspiration for hairdressers and aesthetic professionals, positioning itself as a reputable brand in the retail beauty sector. The digital presence is built on WordPress with WooCommerce, indicating a mature e-commerce platform with integrated marketing and analytics tools such as Google Tag Manager and Cookiebot for consent management. Security is enhanced by the Wordfence plugin, and HTTPS is enforced, reflecting a good security posture. However, the absence of publicly available WHOIS data raises concerns about domain registration transparency. Additionally, the lack of explicit privacy policy, terms of service, and contact information limits the website's compliance and trustworthiness from a privacy and regulatory perspective. Overall, the website is professionally designed and functional but would benefit from enhanced transparency and compliance documentation.

O

Olivia Garden

oliviagarden.eu

0

Olivia Garden is a professional hair styling tools brand offering products such as hair brushes, combs, and scissors. The website targets professional hair stylists and consumers interested in hair care innovations. The brand appears established with a consistent and professional online presence. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, Cookiebot for consent management, and reCAPTCHA for bot protection, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website is professional, trustworthy, and well-optimized, with room for improvement in transparency of security policies and contact information.

C

CrossCafe Pražírna

crosscafeprazirna.cz

0

CrossCafe Pražírna is a specialized coffee roasting company based in the Czech Republic, offering high-quality coffee products through both retail and wholesale channels. The company emphasizes craftsmanship and quality, operating its own roasting facility and maintaining a strong online presence with an e-commerce platform. Their product portfolio includes various coffee blends, capsules, teas, and merchandise, targeting coffee enthusiasts, cafes, offices, and restaurants. The website reflects a professional and consistent brand image with clear business information and active social media engagement. Technically, the website is built on the Shoptet e-commerce platform, utilizing modern web technologies such as jQuery, Google Tag Manager, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The site is mobile-optimized with good SEO and accessibility basics. Security practices include HTTPS enforcement and CSRF protection on forms, alongside a cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy are not explicitly present, and no incident response or vulnerability disclosure information is published. The absence of WHOIS data is a notable gap, limiting the ability to verify domain registration details and ownership, which slightly impacts trustworthiness. Despite this, the website content and business information appear legitimate and professionally maintained. Overall, the site demonstrates a solid digital maturity level with room for security enhancements and transparency improvements.

Birell.cz is the official website of Birell, a leading Czech non-alcoholic beer brand owned by Asahi CE & Europe Services s.r.o. The company has a strong market position in the Czech Republic, offering innovative non-alcoholic beers and radlers with a focus on flavor variety and health-conscious options. The website is built on WordPress with modern plugins and integrates Google Analytics via Google Tag Manager. It features a cookie consent mechanism compliant with GDPR and provides clear contact information including an email and physical address. However, the absence of a publicly accessible privacy policy page and missing WHOIS data limit full trust assessment. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and publishing a security policy. Overall, the website is professional, user-friendly, and well-branded, supporting the company's market leadership.

N

Novoročenky 2024 - Adam Grant

adamgrant.cz

0

The website www.adamgrant.cz represents a small Czech business specializing in luxury New Year greeting cards with a focus on high-quality graphic design and printing. The site is built on WordPress and uses common web technologies such as jQuery and Slick Carousel. The business targets customers seeking premium holiday cards and operates primarily in the retail sector within the Czech Republic. The website content is professionally presented with clear navigation and good mobile optimization, although some modern accessibility features are limited. Technically, the site enforces HTTPS and uses Google Analytics for visitor tracking. However, it lacks important security headers and uses an outdated version of jQuery, which could expose it to vulnerabilities. No privacy or cookie policies are present, indicating a gap in compliance with GDPR and other privacy regulations. Contact information is limited to a phone number and a contact page link, with no email addresses or social media profiles found. From a security perspective, the absence of WHOIS data is concerning and reduces the domain's trustworthiness. No signs of WAF or blocking mechanisms were detected, and the site content is fully accessible. The security posture is moderate but could be significantly improved by adding security headers, updating libraries, and implementing privacy policies. Overall, the site is functional and professional but requires enhancements in security and compliance to reduce risk and improve trust. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, updating outdated libraries, and verifying domain registration details to improve legitimacy. Enhancing incident response readiness and publishing security contact information would also strengthen the security culture and trustworthiness of the business.

J

JMP s.r.o.

valty.cz

0

VALTY.cz is a Czech Republic based retailer specializing in custom mattress systems combining flexible slatted frames and thinner mattresses tailored to individual needs. The company has a strong market presence with over 30 years of experience and multiple physical store locations. Their business model focuses on quality materials, expert advice, and made-to-measure products, targeting consumers seeking ergonomic and hygienic sleep solutions. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic with a cookie consent banner but no explicit privacy or terms pages. Overall, the site is professional and trustworthy with clear contact information and partner ecosystem.

J

JMP s.r.o.

toppery.cz

0

Toppery.cz is a Czech-based retailer and manufacturer specializing in mattress toppers, mattress protectors, travel mattresses, and mattress covers. The company operates both an e-commerce platform and four physical stores across major Czech cities, targeting consumers seeking enhanced sleep comfort and hygiene solutions. The website is professionally designed, localized in Czech, and provides detailed product information and contact details, supporting a medium-sized retail business model with a strong local presence. Technically, the website is built on WordPress 6.4.3 with Bootstrap and jQuery frameworks, integrating SEO best practices via Yoast SEO and leveraging Google Analytics and Tawk.to for analytics and customer engagement. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and does not publish a privacy policy or incident response information. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the business claims, indicating legitimacy. Overall, the security posture is adequate but could be enhanced with additional headers and compliance documentation. The overall risk is moderate with no critical issues detected. Strategic improvements in privacy compliance and security headers would strengthen trust and regulatory adherence, supporting continued growth and customer confidence.

J

JMP s.r.o.

rajpolstaru.cz

0

Ráj polštářů is a Czech Republic based retail and e-commerce business specializing in high-quality pillows and bedding products. The company operates an online shop complemented by four physical stores across major Czech cities, offering anatomical, classic, and children's pillows. Their business model focuses on providing quality materials, expert consultation, and custom bedding solutions, positioning them as a trusted local retailer with a solid market presence since 2015. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Yoast SEO, ensuring good SEO and mobile responsiveness. The site uses HTTPS and integrates Google Analytics and Tawk.to for analytics and customer support, respectively. Security posture is good with SSL and no visible vulnerabilities, though security headers and explicit policies are missing. Privacy compliance is basic with a cookie consent banner but no visible privacy or terms of service pages. Overall, the website is professional and trustworthy with room for improvement in privacy and security policy transparency.

J

JMP s.r.o.

rozkladacipostele.cz

0

JMP s.r.o. operates the website rozkladaci-postele.cz, specializing in the retail and e-commerce sale of folding beds and mattresses primarily targeting customers in the Czech Republic. The company maintains a medium-sized business with multiple physical stores and an online presence, offering a wide range of products with a focus on quality Czech manufacturing. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and various plugins for SEO, analytics, and live chat support. Security posture is solid with HTTPS enforced and no visible critical vulnerabilities, though security headers and formal policies are lacking. Privacy compliance is basic with a cookie consent banner but no published privacy or terms of service pages. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site is functional, trustworthy, and well-positioned in its niche.

R

ROSSMANN

rossmann.cz

0

ROSSMANN.cz is the online presence of ROSSMANN, a large retail chain specializing in drugstore products in the Czech Republic. The website offers a broad assortment of quality goods at competitive prices, including current promotions, flyers, and customer contests. The site targets retail consumers in the Czech market and positions itself as a well-established player in the retail sector. Technically, the website employs modern JavaScript frameworks and libraries, including React components, Google Tag Manager, and Cookiebot for cookie consent management. The site is mobile-optimized and uses preloading techniques for fonts and images to enhance performance. Security-wise, HTTPS is enforced, and cookie consent is implemented, but no explicit security headers or privacy policy pages were detected in the provided content. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and branding suggest a legitimate business. Overall, the site demonstrates good digital maturity with room for improvement in security and privacy transparency.

C

CookTrade s.r.o.

cooktrade.cz

0

CookTrade s.r.o. operates a Czech e-commerce platform specializing in the retail of Tescoma kitchenware products. The company has a long-standing partnership with Tescoma and targets Czech domestic consumers seeking quality kitchen and household products. Their business model focuses on online sales supported by customer service and fast delivery. The website is built on PrestaShop and uses common web technologies such as jQuery and Bootstrap. While the site is functional and professionally designed, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security is generally good with HTTPS enforced, but the use of an outdated jQuery version and absence of security headers present some risks. Overall, the site is trustworthy and consistent with the business claims, but improvements in privacy compliance and security hardening are recommended.

H

HERVIS Österreich

hervis.cz

0

HERVIS Österreich operates a professional e-commerce platform specializing in sports apparel, shoes, and equipment targeted primarily at customers in Austria and neighboring regions. The website presents a consistent brand image with good content quality and clear navigation, supporting a positive user experience. Technically, the site leverages modern frameworks such as Angular and integrates marketing and identity management tools like Adobe Launch and Gigya, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and incident response information suggests room for improvement. The lack of WHOIS data limits domain trust verification, but the overall professionalism and content quality support a moderate to high trust level. Privacy and cookie policies are not explicitly found, which impacts compliance scoring. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing vulnerability disclosure information to strengthen security and trust further.

K

Království tianDe

kralovstvi-tiande.cz

0

Království tianDe operates a professional e-commerce website focused on selling tianDe cosmetics and health products inspired by traditional Chinese medicine. The site targets consumers interested in natural beauty and health products within the Czech Republic. The platform is technologically modern, leveraging React, Google Tag Manager, Microsoft Clarity, Klaviyo, and Sentry for analytics, marketing, and error monitoring. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, which should be addressed to improve business credibility. Overall, the website is functional, well-designed, and provides clear contact information, but could benefit from enhanced transparency and security documentation.

J

JMP s.r.o.

loznice.cz

0

JMP s.r.o. operates the website loznice.cz, specializing in the manufacture and retail of high-quality mattresses, beds, and bedroom furniture with a strong emphasis on Czech production and certification. The company targets consumers seeking quality sleep solutions and offers custom-made products supported by over 30 years of experience. The website features rich multimedia content, product categories, and multiple physical store locations with clear contact information. Technically, the website employs modern web technologies including Bootstrap, jQuery, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Heureka widgets. The site is mobile-optimized and provides a good user experience with clear navigation and structured data for SEO. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain reduces trust from a domain registration standpoint. The site lacks explicit security policies and incident response information, which could be improved to enhance compliance and user trust. Overall, the website presents a professional and trustworthy front for a medium-sized retail business in the Czech Republic, with recommendations to improve domain registration transparency, security headers, and published security policies to strengthen its security posture and compliance.

D

Dr. Oetker

oetker.cz

0

Dr. Oetker Czech Republic operates a well-designed and content-rich website focused on baking recipes, desserts, and product sales. The site targets home bakers and families, offering recipe inspiration and an e-commerce platform for purchasing products. The brand is well-established with over 100 years of history, reflected in consistent branding and professional content. Technically, the website uses modern frameworks such as Next.js and React, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent management, though explicit security headers and privacy policies are lacking. WHOIS data is missing, which reduces trustworthiness but the website's content and branding strongly suggest legitimacy. Overall, the site is professional and user-friendly but could improve transparency on privacy and security policies.

F

Funky Pigeon

funkypigeon.com

0

Funky Pigeon is a UK-based e-commerce retailer specializing in personalized greeting cards, gifts, and flowers. The company operates under the parent company WH Smith PLC, positioning itself as a significant player in the UK retail market for personalized gifting solutions. The website offers a broad range of products tailored for various occasions, targeting consumers seeking unique and personal gift options. Technically, the site is built using modern web technologies including React and Next.js, with integrations for customer data platforms and marketing analytics, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS, employs standard security headers, and provides comprehensive privacy and cookie policies with consent mechanisms, indicating a strong commitment to user data protection. However, the absence of WHOIS registration data is a notable anomaly, though the overall site professionalism and parent company association mitigate concerns. Strategic recommendations include publishing explicit security policies and incident response contacts, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security posture.

R

Rahva Raamat

rahvaraamat.ee

0

Rahvaraamat.ee is the leading Estonian bookstore chain offering a comprehensive selection of books and media products through both online and physical retail channels. The company is well-established with a domain age since 2010 and operates under Zone Media OÜ. Their website is built on modern technologies such as Next.js and React, providing a responsive and user-friendly experience. The integration of Cookiebot ensures GDPR compliance with a detailed cookie consent mechanism. Security posture is strong with HTTPS enforced and appropriate security headers in place, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates a mature digital presence with extensive analytics and advertising integrations, supporting a robust e-commerce business model.

P

POMPdeLUX FI Oy

pompdelux.com

0

POMPdeLUX FI Oy operates a professional e-commerce platform specializing in Scandinavian children's clothing, targeting parents and caregivers seeking quality kidswear. The company has established a solid market presence since its domain registration in 2011, offering seasonal collections through a well-branded and user-friendly Shopify-based website. The site demonstrates a mature digital infrastructure with integration of modern marketing and analytics tools such as Klaviyo and Facebook Pixel, ensuring effective customer engagement and data-driven marketing strategies. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although formal security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website reflects a trustworthy and professional retail business with room for improvement in explicit security transparency and incident readiness.

H

Huonekaluliike Masku

masku.com

0

Huonekaluliike Masku operates as a Finnish furniture retailer offering products both online and in physical stores. The website content is professionally designed with a modern CSS framework and is mobile optimized, targeting Finnish consumers interested in home furniture. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional appearance and consistent branding. The technical infrastructure suggests use of a headless CMS (Storyblok) and modern frontend technologies, but lacks visible analytics or tracking scripts in the provided content. Security posture is weak due to missing security headers, lack of privacy and cookie policies, and no explicit contact information for security or business inquiries. Overall, the website functions well for user experience but requires improvements in security, compliance, and transparency to enhance trust and reduce risk.

Sporditurg.ee operates as a localized Estonian online marketplace specializing in sports equipment and related goods. It provides a platform for both private individuals and legal entities to post free classified ads, targeting sports enthusiasts across Estonia. The website offers categorized listings by sport type, size, condition, and location, facilitating easy navigation for users. The business model is focused on community-driven listings with monetization likely through featured ads and advertising partnerships. The market position is niche and local, serving a specific segment within the retail industry.

PD Instore is a well-established retail design-to-build partner with over 80 years of industry experience, specializing in visual merchandising and instore environment solutions. The company targets retail brands seeking innovative and comprehensive brand experience services, offering design, build, and rollout capabilities. Their market position is strong, supported by a large team and a broad portfolio of well-known brand partnerships. Technically, the website is built on WordPress using Elementor, with modern JavaScript libraries and Google Analytics integration, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

K

Klarvinduer

klarvinduer.dk

0

Klarvinduer.dk is a Danish retail website specializing in custom-made windows and doors, offering high-quality products at factory prices with discounts up to 60%. The business targets both DIY consumers and professional customers, positioning itself competitively in the Nordic and European markets with sister sites in multiple countries. The website is built on modern web technologies including React and Next.js, with content managed via DatoCMS and cookie consent managed by Cookiebot. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or terms of service policies. Contact information is limited to a contact form without explicit emails or phone numbers. The domain registration is consistent with the business history and shows no suspicious patterns, supporting the legitimacy of the site.

N

Natuzzi SpA

natuzzi.com

0

Natuzzi SpA is a globally recognized furniture brand specializing in the design and retail of sofas, chairs, tables, beds, and other home furnishings. The company targets consumers seeking premium and harmonious home decor solutions, positioning itself as a leader in the retail furniture industry. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored for an international audience. Technically, the site leverages modern technologies including React, Google Tag Manager, and Cookiebot for compliance and analytics, ensuring a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published, representing an area for improvement. The WHOIS data is notably missing or unavailable, which introduces some uncertainty about domain registration transparency, but the overall website and brand presence strongly indicate legitimacy. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and enhancing domain registration transparency to bolster trust and compliance.

W

Wiru õlu

wiru.ee

0

Wiru õlu is a small Estonian craft beer brand with a professionally designed WordPress website launched in December 2023. The site focuses on presenting the brand's artisanal beer products with rich descriptive content targeting beer enthusiasts. The technical infrastructure is modern, leveraging WordPress CMS, jQuery, and popular plugins such as Contact Form 7 and All in One SEO, hosted likely by Zone Media OÜ in Estonia. The website is accessible, mobile-optimized, and SEO-friendly with structured data implemented. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site demonstrates a good baseline for a new small business but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

O

Orkla Eesti AS

kalev.eu

0

Kalev is a prominent Estonian confectionery brand operating under Orkla Eesti AS, offering a wide range of chocolates and sweets through retail stores and e-commerce. The website showcases the brand's rich history, product offerings, sustainability initiatives, and retail locations, targeting consumers in Estonia. Technically, the site is built on WordPress with modern plugins and technologies, optimized for SEO and mobile use. Security posture is strong with HTTPS, security headers, and CAPTCHA protections, though formal security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

S

Sandman Group

sandman.ee

0

Sandman Group is a well-established wholesale distributor of consumer electronics in the Baltic region, founded in 1992 and operating the largest warehouse for home appliances in the Baltics. The company serves a broad range of partners including distributors, retail chains, and independent resellers, offering logistics, retail partnerships, and after-sales services. Their market position is strong within Estonia and the wider Baltic states. Technically, the website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, but lacks published security policies and comprehensive privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

F

Forlle'd

forlle-d.com

0

Forlle'd appears to be a skincare brand with a website built on modern JavaScript frameworks such as Nuxt.js and Vue.js. The site includes product showcases and professional/scientific content related to skincare. The technical infrastructure is moderately modern with Google Analytics and Tag Manager integrated for tracking. However, the website lacks critical privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The domain is well-established, registered since 2004 with a reputable registrar, indicating business stability. Security posture is weak due to missing headers and lack of explicit security policies. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

E

Emerante

emerante.ee

0

Emerante is a small Estonian retail and service company specializing in home interior furnishings, offering full services from project planning to installation and furniture maintenance. The website reflects a local market focus with a professional and consistent brand presence. Technically, the site is built on WordPress with WooCommerce, leveraging modern libraries and frameworks such as Bootstrap, jQuery, and Owl Carousel. The site is mobile-optimized and uses SSL with good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms pages. Overall, the site is trustworthy and functional but could improve transparency and security documentation.

K

Kingivabrik OÜ

kingivabrik.ee

0

Kingivabrik OÜ operates a professional e-commerce website specializing in promotional and corporate gifts, offering a wide range of branded merchandise including writing instruments, souvenirs, gift sets, drinkware, textiles, and sweets. The company targets businesses and organizations looking for customized logo products to enhance brand visibility and employee recognition. With over 13 years of experience and a strong client base exceeding 10,000 companies, Kingivabrik holds a solid position in the Estonian retail market for promotional goods. The website is built on a WordPress platform using WooCommerce, enhanced by the Avia Framework and various plugins for e-commerce functionality, multilingual support, and marketing integrations. The technical infrastructure includes modern tracking and analytics tools such as Google Analytics and Facebook Pixel, alongside a live chat widget for customer support. The site demonstrates good mobile optimization, SEO practices, and user experience design, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and employs Google reCaptcha on its contact form to mitigate spam. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are clearly accessible. However, the site lacks explicit security headers and published security or incident response policies, which could be enhanced to strengthen its security posture. Overall, Kingivabrik's website reflects a trustworthy and professional business with a good balance of content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and transparency around security policies would further enhance its risk profile and customer trust.

S

Servaali Oy

servaali.com

0

Servaali Oy is a well-established Finnish company specializing in the import and distribution of quality alcoholic and non-alcoholic beverages. Operating since 1995 and owned by Olvi Oyj, it holds a strong market position as one of Finland's leading alcohol importers. The website reflects this with clear branding, product categories, and a professional presentation targeting HoReCa professionals and consumers interested in premium drinks. Technically, the site is built on WordPress with modern frameworks such as Bootstrap and jQuery, and it employs Cloudflare DNS and Google Analytics for performance and tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

C

C&C EE OÜ (endine iDeal Group AS)

ideal.ee

0

iDeal (operated by C&C EE OÜ) is Estonia's largest reseller and service partner for Apple products, offering a comprehensive range of Apple devices and accessories through both e-commerce and physical stores. The company targets consumers, students, and business clients with services including device sales, repairs, trade-in programs, and financing options. The website demonstrates a mature digital infrastructure built on Magento with modern JavaScript frameworks and integrates multiple marketing and analytics tools. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive cookie consent and privacy policies. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

AS Eesti Pagar is a well-established Estonian bakery company founded in 2010, specializing in a wide range of bread, pastry, and frozen bakery products. The company serves retail consumers and export markets, positioning itself as a key player in the Estonian bakery sector. Their website reflects a professional and consistent brand image with clear product categorization and marketing efforts. Technically, the website is built on WordPress using modern frameworks and libraries such as Foundation, jQuery, and Slick Slider, with integrated marketing and analytics tools including Google Analytics, Facebook Pixel, and Mailchimp. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS with a cookie consent mechanism compliant with GDPR, but lacks explicit security policies and some security headers. WHOIS data confirms the domain's legitimacy and long-term presence, matching the business profile. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and incident response readiness.

V

Vincent Holding OÜ

vholding.ee

0

Vincent Holding OÜ is a sales and distribution company specializing in consumer products such as Batiste dry shampoo, Moxie tampons, Andmetics, Foreo, and Purederm masks. The company positions itself as a major player in the retail sector within Estonia. The website is built using the Wix platform, leveraging Wix Thunderbolt and standard web technologies including JavaScript and Webpack. The technical infrastructure is modern and supports mobile optimization, though performance is moderate. Security posture is adequate with HTTPS enabled and some cookie handling mechanisms, but lacks comprehensive security headers and policies. Privacy compliance is minimal with no visible privacy or cookie policies, and no contact information is provided on the site, which limits user trust and regulatory compliance. Overall, the website is functional and professionally designed but requires improvements in privacy, security policies, and contact transparency to enhance trust and compliance.

K

KaminaKeskus

kaminakeskus.ee

0

KaminaKeskus is an established Estonian retailer specializing in fireplaces, stoves, ovens, sauna stoves, chimneys, and boilers, operating since 1997. The company offers a wide selection of heating appliances with a focus on quality, competitive pricing, and customer convenience including free home delivery. Their market position is strong within Estonia, supported by multiple physical stores and an active online presence. Technically, the website is built on WordPress with the Avada theme, utilizing modern SEO and multilingual plugins, and integrates Google Analytics and Facebook SDK for tracking. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers like CSP and HSTS, and is missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the site is professional and user-friendly but should improve privacy compliance and security policies to enhance trust and regulatory adherence.

H

Hauser's Jewelers

hausersjewelers.com

0

Hauser's Jewelers is a long-established retail and e-commerce business specializing in high-end jewelry and watches, with a heritage dating back to 1898. The website serves as a professional online storefront built on the Shopify platform, showcasing various jewelry collections and brands. The business targets consumers seeking luxury jewelry and watch products, offering both sales and repair services. The site demonstrates consistent branding and good content quality, reflecting its market position as a reputable jeweler. Technically, the website leverages modern web technologies including Shopify's Expression theme, web fonts, and JavaScript libraries. It is hosted on Shopify's infrastructure with Network Solutions as the domain registrar. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Performance is moderate, with standard Shopify CDN usage. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. Contact information is limited to contact forms without explicit emails or phone numbers. No vulnerability disclosure or incident response information is provided. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security header implementation to improve its security posture and regulatory adherence.

A

As Balsnack International Holding

balsnack.ee

0

Balsnack is an established Estonian snack food company founded in 2010, specializing in unique snack products such as potato waffles, popcorn, and breakfast cereals. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting both local consumers and export markets. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies including jQuery and Google APIs, hosted by Elkdata OÜ, a local Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy or security policies. No critical vulnerabilities or WAF blocks were detected, indicating a stable and accessible site. Overall, the website demonstrates a medium-sized retail business with a solid online presence but could improve privacy compliance and security transparency.

A

Analyse²

analyse2.com

0

Analyse² is a B2B company providing advanced retail analytics solutions tailored for FMCG brands and retailers. Their offerings include trade promotion insights and optimization, category analytics, and assortment planning, aimed at driving demand-driven growth and profitability. The company positions itself as a trusted partner to over 100 leading FMCG brands, showcasing logos of notable clients such as Essity, Paulig, Orkla, Fazer, Unilever, and Arla. The website is professionally designed with a clear focus on the retail sector, emphasizing shopper-centric analytics solutions.

P

Pepe Jeans London

pepejeans.com

0

Pepe Jeans London is a well-established fashion retail brand offering a wide range of apparel and accessories for women, men, and children. The website serves as an official e-commerce platform targeting international consumers interested in contemporary fashion trends. The brand maintains a consistent and professional online presence with active social media channels and a clear focus on retail sales. Technically, the website is built on Salesforce Commerce Cloud, leveraging modern JavaScript libraries such as jQuery, and integrates multiple third-party services for marketing, analytics, and payment processing, including Monetate, Cookiebot, FullStory, Global-e, and PayPal. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced further. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The WHOIS data is privacy protected, which is typical for commercial retail domains, and no suspicious indicators were found. Overall, the website presents a solid digital infrastructure with moderate to good security posture and privacy compliance, suitable for its business model and market position.

R

RTT AS

rtt.ee

0

RTT AS is an established Estonian company specializing in retail technology and office supplies, with over 28 years of experience. The company offers a broad range of products including cash registers, printers, copiers, and consumables, alongside installation, maintenance, and training services. Their market position is that of a trusted local provider catering primarily to business customers in Estonia. The website reflects a mature e-commerce platform built on WordPress and WooCommerce, featuring multilingual support and a comprehensive product catalog. Technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and CookieYes for consent management. Security posture is solid with HTTPS enforced and reCAPTCHA integration, although explicit security policies and incident response contacts are not published. Privacy compliance is supported by a detailed cookie consent mechanism, but lacks a visible privacy policy page. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in formal policy disclosures and security header implementation.